• GRC Architect- Remote

    Cognizant (Bridgewater, NJ)


    Cognizant (NASDAQ: CTSH) is a leading provider of information technology, consulting, and business process outsourcing services, dedicated to helping the world's leading companies build stronger businesses. Headquartered in Teaneck, New Jersey (U.S.). Cognizant is a member of the NASDAQ-100, the S&P 500, the Forbes Global 1000, and the Fortune 500 and we are among the top performing and fastest growing companies in the world.

     

    This role does not support visa-dependent candidates. Only candidates who are visa-independent are encouraged to apply.

     

    Remote

     

    Title : GRC Architect

    Roles and Responsibilities:

    Role Overview

     

    We are seeking an experienced Cybersecurity Third-Party Risk Assessor to support ongoing vendor due diligence and security assurance activities. The contractor will conduct formal cybersecurity assessments, evaluate vendor control maturity, identify risk exposures, document findings, and collaborate with internal stakeholders on remediation strategies. This role will leverage ServiceNow GRC and requires strong communication skills, analytical capability, and cybersecurity knowledge

    Key Responsibilities

    Responsibilities include engagement planning, directing, and completion of Security Framework assessment, GRC Management using tools like ServiceNow, Third Party Risk Assessment, and Information Security architectural design; should have basic knowledge on Privacy regulations such as GDPR, CCPA; developing and supervising other team members; assisting in assigned client management and practice development activities.

     

    + Perform Cybersecurity Third-Party Risk Assessments (TPRAs) for onboarding, renewal, and periodic review of vendors.

    + Conduct assessments within ServiceNow GRC, ensuring accuracy and completeness of vendor data, evidence, and risk results.

    + Assess vendor cybersecurity and data protection practices, including secure handling of confidential information, infrastructure protections, incident response, access controls, and cloud security.

    + Identify, rate, and communicate potential cyber risks associated with third-party vendors, considering business impact and regulatory requirements.

    + Prepare risk summaries and collaborate with Information Security team members to define remediation requirements, compensating controls, or risk acceptance where applicable.

    + Provide consultation and subject-matter support to cybersecurity and business stakeholders on third-party security risks and remediation expectations.

    + Ensure each assessment meets the predefined scope, methodology, and acceptance criteria established at the start of the assessment.

    + Maintain assessment documentation, remediation tracking, and decision records in ServiceNow for future audit and compliance needs.

    + Perform regular quality checks to verify completeness, accuracy, and consistency of assessment deliverables.

    + Identify improvement opportunities, process gaps, or operational challenges and contribute to enhancements of the TPRM program, workflow, and automation.

    Required Qualifications

    + 7+ years of experience in Cybersecurity, Third-Party Risk, Supplier Risk Management, or IT Risk/GRC.

    + Strong understanding of cybersecurity controls such as data protection, IAM, network security, vulnerability management, encryption, cloud security, and incident response.

    + Experience reviewing vendor evidence (SOC 2, ISO 27001, penetration test results, policy frameworks, cloud security documentation, or certifications).

    + Experience using ServiceNow GRC for risk assessments is highly preferred.

    + Ability to develop clear, actionable remediation recommendations and risk statements.

    + Strong written and verbal communication skills, with ability to speak to both technical and business audiences.

    Preferred Skills

    + Familiarity with frameworks such as ISO 27001, SOC 2, NIST CSF, PCI, GDPR or similar.

    + Experience in a regulated industry (finance, healthcare, insurance, etc.) is an advantage.

     

    Prior consulting or vendor governance experience preferred.

     

    Application Accepted: 11/25/2025

     

    The annual salary for this position is between $100K- 120K depending on experience and other qualifications of the successful candidate

     

    This position is also eligible for Cognizant’s discretionary annual incentive program, based on performance and subject to the terms of Cognizant’s applicable plans.

    Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:

    + Medical/Dental/Vision/Life Insurance

    + Paid holidays plus Paid Time Off

    + 401(k) plan and contributions

    + Long-term/Short-term Disability

    + Paid Parental Leave

    + Employee Stock Purchase Plan

     

    Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.

     

    Our strength is built on our ability to work together. Our diverse backgrounds offer different perspectives and new ways of thinking. It encourages lively discussions, creativity, productivity, and helps us build better solutions for our clients. We want someone who thrives in this setting and is inspired to craft meaningful solutions through true collaboration.

     

    If you are content with ambiguity, excited by change, and excel through autonomy, we’d love to hear from you!

    \#LI-AV1#CB#Ind123

    Cognizant is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.