Solution Security Architect W - m - Nb H/F - Ubisoft

Ubisoft is a global leader in gaming with teams across the world creating original and memorable gaming experiences, from Assassin's Creed, Rainbow Six to Just Dance and more. We believe diverse perspectives help both players and teams thrive. If you're passionate about innovation and pushing entertainment boundaries, join our journey and help us create the unknown !You will join the Security and Risk Management department as a Solution Security Architect (also referred to as Embeds) focused on Identity and Devices topics.

By integrating deeply with teams, you drive security from within, implementing protections, accelerating remediations. You will contribute to the reduction of risks by embedding within the identify and devices IT teams, while working with the rest of the organization.

We are looking forsenior sysadmin or infrastructure engineers who is interested to pivot to gaining experience in cloudexpertiseAND exposure to security tooling.

Key Responsibilities

- Lead the remediation of critical vulnerabilities within the assigned scope, including post-incident actions.
- Implement security measures on behalf of development or infrastructure teams within the designated perimeter.
- Roll out major security initiatives such as logging, MFA, and secret management across the mandate scope.
- Provide expert security recommendations tailored to our systems and context.
- Build and maintain security configuration templates and hardening standards.
- Prototype and validate new security improvements or solutions.
- Ensure proper documentation of all implemented security controls and measures.
- Contribute to a corpus of best-practices, knowledge bases, and guidelines to push security left and foster self-service

Requirements

- System Administration & Infrastructure Engineering
- Identity & Access Management: Entra ID / Azure AD, Hybrid Join, B2B/B2C, SSO, Federation, Conditional Access, MFA, OIDC/SAML, Windows Hello
- On-Premises AD Management: Active Directory, GPO, PKI, SCCM, ADFS
- Device Management & Security: Intune, Device Compliance, App Protection, Microsoft Defender for Endpoint (MDE)
- Automation: Advanced PowerShell scripting

Optional / Nice-to-Have Skills:

- Microsoft 365: Exchange Online, Teams, SharePoint, DLP/MIP
- Networking, Linux Administration
- Compliance Reporting: Tenable, Power BI