Security Solutions Architect

COMPANY DESCRIPTION

Ubisoft is a global leader in video games, with teams around the world creating original and memorable gaming experiences, from Assassin's Creed to Rainbow Six, Just Dance, and many more. We believe that diversity of perspectives advances both players and teams. If you are passionate about innovation and want to push the boundaries of entertainment, join our adventure and help us create the unknown!

JOB DESCRIPTION

You will join the Security and Risk Management department as a Security Solutions Architect, with a focus on network security topics. By fully integrating into the teams, you will champion security from within, implementing protections and accelerating remediations. You will contribute to risk reduction by integrating with the Network teams, while collaborating with the rest of the organization.

Main Responsibilities

• Drive the remediation of critical vulnerabilities within the assigned scope, including post-incident actions.
• Implement security measures on behalf of network infrastructure teams.
• Deploy major security initiatives across the entire scope of your mandate.
• Provide expert security recommendations adapted to our systems and context.
• Design and maintain secure configuration models and hardening standards.
• Prototype and validate new security improvements or solutions.
• Ensure adequate documentation of all implemented security controls and measures.
• Contribute to a body of best practices, knowledge bases, and guides to promote early security integration (shift-left) and self-service automation.

QUALIFICATIONS

• Expertise in network security on L2 to L4 layers, including routing, ACL, VPN, segmentation, LAN/WAN architectures (e.g., Cisco), firewalls, and data center load balancers.
• Solid proficiency in cloud network security for AWS and Azure, including VPC/VNet design, peering, security groups/NSG, firewalls, hybrid connectivity, and policy enforcement (e.g., Calico).
• Skills in Linux system security, including nftables/iptables, hardening, logging, and securing services such as DNS, IDS, PowerDNS, and Suricata.
• Proficiency in automation via Infrastructure as Code (e.g., Terraform, Ansible) and scripting/programming in Python, Go, or Bash for tools and workflows.
• Knowledge of advanced network and security concepts such as DNSSEC, PKI, TLS, reverse proxies, NAC solutions (e.g., Cisco ISE), 802.1X, and device state management.
• Familiarity with cloud-native and container security, including Kubernetes networking, CNI/Calico, zero-trust architectures, and operational practices such as SIEM usage and root cause analysis.

ADDITIONAL INFORMATION

We adopt a hybrid work model that helps you stay connected with your team and aligned with company priorities, while giving you the opportunity to maintain your work-life balance. Note that some roles are entirely office-based and are not eligible for hybrid work.

For your information: If you need a work permit, your eligibility may depend on your education and years of relevant work experience, as required by the government.

Skills and knowledge come in different forms and can be based on relevant experiences, which is why we strongly encourage you to apply, even if you do not meet all the requirements listed above.

At Ubisoft, we encourage diversity in all its forms. We are committed to fostering an inclusive and respectful work environment for everyone. We know it's important for the interview to be enjoyable. Therefore, if you need accommodations, please let us know if we can do anything to facilitate the interview process.