Information Security Architect

At Unit4 were in Business for People. The Global Security organisation protects our people platforms products and customers by driving secure design resilience and maturity across the entire business. As we strengthen our architecture capability across CISO IT and CloudOps we are seeking a highly experienced Senior Security Architect to partner across the enterprise and help shape Unit4s future-state security landscape.

This role sits within the CISO Security Team but works with IT CloudOps Enterprise Architecture and Product/Engineering. You will play a pivotal role in designing governing and embedding secure architectural principles across Unit4s technology estate.

The Senior Security Architect will develop and mature Unit4s enterprise security architecture across cloud infrastructure identity SaaS and endpoint domains. You will collaborate with senior stakeholders guide teams and translate business strategy and risk into secure scalable and pragmatic designs.

This is a senior hands-on architectural role for someone who thrives in complex environments can operate strategically and tactically and who brings deep expertise across security architecture cloud and modern enterprise platforms.

Enterprise Security Architecture

• Lead the security targetstate architecture and multiyear roadmap aligning risk reduction and business outcomes; socialize tradeoffs with CISO/CTO/CIO leadership.
• Lead enterprise architecture assessments across multiple environments including:
  • Cloud (Azure) security and network infrastructure including Kubernetes
  • Identity & access management (zero trust conditional access PAM/PIM)
  • Endpoint protection and device assurance
  • CI/CD pipelines and secure software development
  • SOC/SIEM capabilities and threat detection
  • Security governance risk and compliance
  • Platform security (Windows/Mac/Serverless)
• Partner closely with Cloud Ops Internal IT and Product Architecture to ensure security is designed into enterprise platforms and product roadmaps.
• Develop security strategies roadmaps reference architectures and patterns aligned to Unit4s security vision.
• Design and implementation of layered enterprise security architectures ensuring defence-in-depth and resilience across digital estates.
• Act as a senior architectural authority in engagements across CISO IT and CloudOps  Teams providing well reasoned viewpoints on security principles technologies and patterns.
• Ensure architectural decisions incorporate regulatory customer and audit requirements (ISO/IEC27001 SOC reporting BSIC5 NIST CIS Benchmarks MITRE ATT&CK CSACCM) and are evidenced through pattern adoption and architecture reviews.
• Partner closely with IT and CloudOps to embed security controls influence technology decisions and ensure alignment to security strategy.
• Engage with senior stakeholders (CISO CTO CIO Product & Cloud leadership) to shape cyber direction and ensure architectural consistency across teams.

Cloud & Infrastructure Security

• Secure architecture for multicloud environments (Azure primary; awareness of AWS/GCP) across networking compute data containers and serverless.
• Collaborate on the security design engineering and implementation of solutions within the Microsoft 365 (M365) and Entra ID ecosystems.
• Act as a subject matter expert for Microsoft security tooling including Microsoft Defender XDR Defender for Cloud Azure Policy Endpoint management and Conditional Access.
• Implement cloudnative architectures leveraging existing and emerging frameworks.
• Build secure designs with Zero Trust for hybrid working microsegmentation identitycentric access private connectivity and policyascode guardrails.
• Evaluate new cloud services ensuring risks are identified and mitigated before adoption.

Cloud Operations and Product

• Ensure security controls are integrated into CI/CD pipelines and DevSecOps practices (e.g. Infrastructure as Code artifact scanning static analysis).
• Collaborate on the security design for workloads deployed on Microsoft Azure (IaaS PaaS and Serverless) ensuring alignment with corporate security policy and regulatory requirements.
• Act as the Subject Matter Expert (SME) for Azures native security tooling including Microsoft Defender for Cloud (MDC) Azure Policy and Azure Network Security.
• Develop secure reference architectures for Azure cloud services covering:
  • Networking: VNets Azure Firewall NSGs WAF private endpoints ADC (Application Delivery Controller).
  • Container platforms including AKS: cluster governance and baseline policies workload identity network policies admission control image provenance/SBOM and signing supply chain security secrets management runtime threat detection tenancy/isolation and scale/cost guardrails.
  • Compute: VMs scale sets serverless workloads.
  • Storage & Data Services: Storage Accounts Azure SQL managed databases key management.
• Mature security by design in Product implementing compliance checks into pipeline and architecture review and assurance for deviations from standards.
• Contribute security non functional requirements reference patterns and threat models to Product roadmaps; review highimpact designs; ensure product changes align with enterprise guardrails. (Scope is collaborative and advisorynot ownership of Product delivery backlogs.)

Thought Leadership & Capability Building

• Contribute to enterprise blueprints playbooks and whitepapers to mature the architectural practice.
• Support the ongoing development of Unit4s secure culture and help uplift security knowledge across technical teams.
• Serve as a trusted advisor articulating complex security concepts and risks to both technical and nontechnical audiences.

Qualifications :

Essential Experience

• 710 years experience in IT or cybersecurity with at least 3 years in a dedicated security architecture role.
• Relevant industry certifications (e.g. CISSP Microsoft Certified: Cyber security Architect Expert (SC-100) Azure Security Engineer (AZ-500)).
• Proven experience designing largescale secure enterprise solutions in complex organisations.
• Deep technical expertise across cloud (Azure required) identity network endpoint SaaS and modern enterprise architectures.
• Strong handson knowledge of Microsoft security technologies (Defender XDR Defender for Cloud Conditional Access Entra ID governance PIM etc.).
• Demonstrated experience delivering Zero Trust concepts in production environments.
• Strong understanding of DevSecOps principles and automation tooling.
• Ability to clearly articulate security risks and solutions to both engineering teams and executive stakeholders.

Desirable Experience

• Knowledge of major frameworks (NIST ISO27001 SOC reporting CIS MITRE ATT&CK CSA CCM).
• Experience with IaC tools (Terraform Bicep) and scripting languages (PowerShell Python).
• Experience designing scalable architectures for hybrid or multicloud environments.
• Prior experience in large enterprises SaaS providers or regulated sectors.

Soft Skills

• Strong consulting-style capability: facilitation stakeholder engagement and outcomebased delivery.
• Comfortable operating in ambiguous environments and simplifying complexity.
• Ability to operate independently managing multiple projects and driving technical decisions.
• Strategic thinker able to connect longterm goals with shortterm action.
• Collaborative and credible across crossfunctional teams.
• Passionate about security innovation and helping the organisation grow securely.

Why This Role Matters

Security architecture underpins Unit4s resilience customer trust and longterm success. As Senior Security Architect you will shape the future of how Unit4 protects and empowers its people products and global customer base. You will influence decisions across CISO IT and CloudOps and ensure that security is embedded at the heart of Unit4s technology strategy.

Additional Information :

Who we are

We are a people-first community that nurtures all the areas that surround your working experience. With us youll be surrounded by a high-performance team that supports your authentic self and celebrates your uniqueness.
We believe that How work should feel is an evolving statement. Work goes beyond tasks and everyday responsibilities its about feeling valued empowered promoted impactful seen and appreciated.
We are reimagining how work makes people feel.

What we offer

a culture built on trust and accountability - giving you the freedom and autonomy to be successful and make an impact
balance - with our Flexible Leave Paid Time Off policy remote working opportunities Global Wellbeing Days and other great benefits
growth opportunities - we provide the tools and guidance required so that you can focus on what really matters to you and so ultimately you can achieve your best work
talented colleagues role models and mentors - work learn and be inspired by some of the best talent in the software industry
a commitment to sustainability - with initiatives such as our Environmental Social and Governance strategy and Act4Good programme
a safe and inclusive working environment supported by our Employee Resource Groups which are open to all.

Our commitment to equity

Unit4 is committed to ensuring equal opportunity for everyone. We make our hiring decisions solely based on skills qualifications and our current business needs. We know that diversity brings fresh perspectives ideas and solutions to our company. This is the essence of our culture. We also welcome and encourage people who are pregnant and/or parents-to-be to apply. If you would like to know more about our commitment to diversity visit our blogs:
Our focus to DEI remains central to who we are
Inclusive hiring at Unit4: Building equal opportunities for all

Background check

This role may require security clearance required for customer projects and access to sensitive (customer) data. That means that after you have accepted our offer we could ask for background checks. Subject to applicable local laws such security checks may require disclosure of personal information including criminal record declaration right to work personal identification and work history. No worries well handle it according to local privacy laws and keep your information safe. Questions Feel free to reach out!

Remote Work :

No

Employment Type :

Full-time