Solution Security Architect

Ubisoft is a global leader in gaming with teams across the world creating original and memorable gaming experiences, from Assassin's Creed, Rainbow Six, to Just Dance and more. We believe diverse perspectives help both players and teams thrive. If you're passionate about innovation and pushing entertainment boundaries, join our journey and help us create the unknown!

You will join the Security and Risk Management department as a Solution Security Architect (also referred to as Embeds) focused on Network Security topics. By integrating deeply with teams, you drive security from within, implementing protections, and accelerating remediations. You will contribute to the reduction of risks by embedding within the Network IT teams, while working with the rest of the organization.

• Lead remediation of critical vulnerabilities within the assigned scope, including post-incident actions.
• Implement security measures on behalf of network infrastructure teams
• Roll out major security initiatives across the mandate scope.
• Provide expert security recommendations tailored to our systems and context.
• Build and maintain security configuration templates and hardening standards.
• Prototype and validate new security improvements or solutions.
• Ensure proper documentation of all implemented security controls and measures.
• Contribute to a corpus of best-practices, knowledge bases, and guidelines to push security left and foster self-service

• Expertise in network security across L2-L4, including routing, ACLs, VPNs, segmentation, LAN/WAN architectures (e.g., Cisco), and data center-grade firewalls and load balancers.
• Strong mastery of cloud network security for AWS and Azure, including VPC/VNet design, peering, security groups/NSGs, firewalls, hybrid connectivity, and policy enforcement (e.g., Calico).
• Proficiency in Linux system security, including nftables/iptables, hardening, logging, and securing services such as DNS, IDS, PowerDNS, and Suricata.
• Skilled in automation through Infrastructure as Code (e.g., Terraform, Ansible) and scripting/programming in Python, Go, or Bash for tooling and workflows.
• Knowledge of advanced networking and security concepts such as DNSSEC, PKI, TLS, reverse proxies, NAC solutions (e.g., Cisco ISE), 802.1X, and device posture management.
• Familiarity with cloud-native and container security, including Kubernetes networking, CNI/Calico, zero-trust architectures, and operational practices such as SIEM usage and root cause analysis.

We embrace a hybrid work model helping you stay connected with your team and aligned with business priorities, while giving you the opportunity to maintain your work-life balance. Note, that some roles are fully office-based and are not eligible for hybrid work.

Just a heads up: If you require a work permit, your eligibility may depend on your education and years of relevant work experience, as required by the government.

Skills and competencies show up in different forms and can be based on different experiences, that is why we strongly encourage you to apply even though you may not have all the requirements listed above.

At Ubisoft, we embrace diversity in all its forms. We're committed to fostering an inclusive and respectful work environment for all. We know the importance of providing a pleasant interview experience, therefore if you need any accommodation, please let us know if there is anything we can do to facilitate the interview process.