Security Solutions Architect

Company Description

Ubisoft is a global reference in video games, with teams around the world that create original and memorable gaming experiences, from Assassin’s Creed to Rainbow Six to Just Dance and many others. We believe that diversity of viewpoints drives progress for both players and teams. If you are passionate about innovation and want to push the boundaries of entertainment, join our adventure and help us create the unknown!

Job Description

You will join the Security and Risk Management department as a Security Solutions Architect, focusing on network security topics. By fully integrating into the teams, you will carry security from within, implementing protections and accelerating remediations. You will contribute to risk reduction by integrating with the Network teams while collaborating with the rest of the organization.

Main Responsibilities

• Lead the remediation of critical vulnerabilities within your assigned perimeter, including post-incident actions.
• Implement security measures on behalf of the network infrastructure teams.
• Deploy major security initiatives across the entire scope of your mandate.
• Provide expert security recommendations tailored to our systems and context.
• Design and maintain secure configuration models and security hardening standards.
• Prototype and validate new security improvements or solutions.
• Ensure proper documentation of all controls and security measures implemented.
• Contribute to a corpus of best practices, knowledge bases, and guides to promote early integration of security (shift-left) and self-service automation.

Qualifications

• Expertise in network security at layers L2 to L4, including routing, ACL, VPN, segmentation, LAN/WAN architectures (e.g.: Cisco), firewalls, and data center load balancers.
• Strong command of cloud network security for AWS and Azure, including VPC/VNet design, peering, security groups/NSG, firewalls, hybrid connectivity, and policy enforcement (e.g.: Calico).
• Skills in Linux system security, including nftables/iptables, hardening, logging, and securing services such as DNS, IDS, PowerDNS, and Suricata.
• Mastery of automation via Infrastructure as Code (e.g.: Terraform, Ansible) and scripting/programming in Python, Go, or Bash for tools and workflows.
• Knowledge of advanced networking and security concepts such as DNSSEC, PKI, TLS, reverse proxies, NAC solutions (e.g.: Cisco ISE), 802.1X, and device state management.
• Familiarity with cloud-native and container security, including Kubernetes networking, CNI/Calico, zero-trust architectures, and operational practices such as using a SIEM and root cause analysis.

Additional Information

Note: If you require a work permit, your eligibility may depend on your education and years of relevant work experience, as required by the government.

Skills and knowledge come in different forms and may be based on relevant experience, so we strongly encourage you to apply even if you do not meet all the requirements listed above.

At Ubisoft, we encourage diversity in all its forms. We are committed to fostering an inclusive and respectful work environment for all. We know that it is important that the interview is enjoyable. Therefore, if you need accommodations, please let us know if there is anything we can do to facilitate the interview process.