**Company Description** Meet Unit4—a fast\-paced, game\-changing SaaS company revolutionising ERP for scale\-ups, mid\-market organizations, and category leaders. We’re not just rewriting the rules of enterprise software; we’re tearing up the old playbook. For 40 years, the ERP industry has been bogged down by clunky, legacy systems, and we’re here to shake things up. At Unit4, we’re all about transformation. We empower ambitious businesses with cutting\-edge ERP solutions that are adaptive, intuitive, and self\-driving—designed to free organizations from the mundane and help them focus on what truly matters. Our mission? To turn work into something more meaningful while helping our customers achieve their greatest potential. Want to learn more about how we’re reshaping the future? Head to our website and see how we’re helping businesses thrive. **Job Description** At Unit4, we’re in Business for People. The Global Security organisation protects our people, platforms, products, and customers by driving secure design, resilience, and maturity across the entire business. As we strengthen our architecture capability across CISO, IT, and CloudOps, we are seeking a highly experienced Senior Security Architect to partner across the enterprise and help shape Unit4’s future\-state security landscape. This role sits within the CISO Security Team but works with IT, CloudOps, Enterprise Architecture, and Product/Engineering. You will play a pivotal role in designing, governing, and embedding secure architectural principles across Unit4’s technology estate. The Senior Security Architect will develop, and mature Unit4’s enterprise security architecture across cloud, infrastructure, identity, SaaS, and endpoint domains. You will collaborate with senior stakeholders, guide teams, and translate business strategy and risk into secure, scalable, and pragmatic designs. This is a senior, hands\-on architectural role for someone who thrives in complex environments, can operate strategically and tactically, and who brings deep expertise across security architecture, cloud, and modern enterprise platforms. **Enterprise Security Architecture** * Lead the security target‑state architecture and multi‑year roadmap, aligning risk reduction and business outcomes; socialize trade‑offs with CISO/CTO/CIO leadership. * Lead enterprise architecture assessments across multiple environments, including: + Cloud (Azure) security and network infrastructure, including Kubernetes + Identity \& access management (zero trust, conditional access, PAM/PIM) + Endpoint protection and device assurance + CI/CD pipelines and secure software development + SOC/SIEM capabilities and threat detection + Security governance, risk, and compliance + Platform security (Windows/Mac/Serverless) * Partner closely with Cloud Ops, Internal IT, and Product Architecture to ensure security is designed into enterprise platforms and product roadmaps. * Develop security strategies, roadmaps, reference architectures, and patterns aligned to Unit4’s security vision. * Design and implementation of layered enterprise security architectures, ensuring defence\-in\-depth and resilience across digital estates. * Act as a senior architectural authority in engagements across CISO, IT, and CloudOps Teams, providing well reasoned viewpoints on security principles, technologies, and patterns. * Ensure architectural decisions incorporate regulatory, customer, and audit requirements (ISO/IEC 27001, SOC reporting, BSI C5, NIST, CIS Benchmarks, MITRE ATT\&CK, CSA CCM), and are evidenced through pattern adoption and architecture reviews. * Partner closely with IT and CloudOps to embed security controls, influence technology decisions, and ensure alignment to security strategy. * Engage with senior stakeholders (CISO, CTO, CIO, Product \& Cloud leadership) to shape cyber direction and ensure architectural consistency across teams. **Cloud \& Infrastructure Security** * Secure architecture for multi‑cloud environments (Azure primary; awareness of AWS/GCP) across networking, compute, data, containers, and serverless. * Collaborate on the security design, engineering, and implementation of solutions within the Microsoft 365 (M365\) and Entra ID ecosystems. * Act as a subject matter expert for Microsoft security tooling including Microsoft Defender XDR, Defender for Cloud, Azure Policy, Endpoint management and Conditional Access. * Implement cloud‑native architectures leveraging existing and emerging frameworks. * Build secure designs with Zero Trust for hybrid working, micro‑segmentation, identity‑centric access, private connectivity, and policy‑as‑code guardrails. * Evaluate new cloud services, ensuring risks are identified and mitigated before adoption. **Cloud Operations and Product** * Ensure security controls are integrated into CI/CD pipelines and DevSecOps practices (e.g., Infrastructure as Code, artifact scanning, static analysis). * Collaborate on the security design for workloads deployed on Microsoft Azure (IaaS, PaaS, and Serverless), ensuring alignment with corporate security policy and regulatory requirements. * Act as the Subject Matter Expert (SME) for Azure's native security tooling, including Microsoft Defender for Cloud (MDC), Azure Policy, and Azure Network Security. * Develop secure reference architectures for Azure cloud services, covering: + Networking: VNets, Azure Firewall, NSGs, WAF, private endpoints, ADC (Application Delivery Controller). + Container platforms including AKS: cluster governance and baseline policies, workload identity, network policies, admission control, image provenance/SBOM and signing, supply chain security, secrets management, runtime threat detection, tenancy/isolation and scale/cost guardrails. + Compute: VMs, scale sets, serverless workloads. + Storage \& Data Services: Storage Accounts, Azure SQL, managed databases, key management. * Mature security by design in Product, implementing compliance checks into pipeline and architecture review and assurance for deviations from standards. * Contribute security non functional requirements, reference patterns, and threat models to Product roadmaps; review high‑impact designs; ensure product changes align with enterprise guardrails. (Scope is collaborative and advisory—not ownership of Product delivery backlogs.) **Thought Leadership \& Capability Building** * Contribute to enterprise blueprints, playbooks, and whitepapers to mature the architectural practice. * Support the ongoing development of Unit4’s secure culture and help uplift security knowledge across technical teams. * Serve as a trusted advisor, articulating complex security concepts and risks to both technical and non‑technical audiences. **Qualifications** **Essential Experience** * 7–10\+ years’ experience in IT or cybersecurity, with at least 3 years in a dedicated security architecture role. * Relevant industry certifications (e.g., CISSP, Microsoft Certified: Cyber security Architect Expert (SC\-100\), Azure Security Engineer (AZ\-500\)). * Proven experience designing large‑scale, secure enterprise solutions in complex organisations. * Deep technical expertise across cloud (Azure required), identity, network, endpoint, SaaS, and modern enterprise architectures. * Strong hands‑on knowledge of Microsoft security technologies (Defender XDR, Defender for Cloud, Conditional Access, Entra ID governance, PIM, etc.). * Demonstrated experience delivering Zero Trust concepts in production environments. * Strong understanding of DevSecOps principles and automation tooling. * Ability to clearly articulate security risks and solutions to both engineering teams and executive stakeholders. **Desirable Experience** * Knowledge of major frameworks (NIST, ISO27001, SOC reporting, CIS, MITRE ATT\&CK, CSA CCM). * Experience with IaC tools (Terraform, Bicep) and scripting languages (PowerShell, Python). * Experience designing scalable architectures for hybrid or multi‑cloud environments. * Prior experience in large enterprises, SaaS providers, or regulated sectors. **Soft Skills** * Strong consulting\-style capability: facilitation, stakeholder engagement, and outcome‑based delivery. * Comfortable operating in ambiguous environments and simplifying complexity. * Ability to operate independently, managing multiple projects and driving technical decisions. * Strategic thinker able to connect long‑term goals with short‑term action. * Collaborative and credible across cross‑functional teams. * Passionate about security, innovation, and helping the organisation grow securely. **Why This Role Matters** Security architecture underpins Unit4’s resilience, customer trust, and long‑term success. As Senior Security Architect, you will shape the future of how Unit4 protects and empowers its people, products, and global customer base. You will influence decisions across CISO, IT, and CloudOps and ensure that security is embedded at the heart of Unit4’s technology strategy. **Additional Information** Who we are We are a people\-first community that nurtures all the areas that surround your working experience. With us, you’ll be surrounded by a high\-performance team that supports your authentic self and celebrates your uniqueness. We believe that ‘How work should feel’ is an evolving statement. Work goes beyond tasks and everyday responsibilities it’s about feeling valued, empowered, promoted, impactful, seen, and appreciated. We are reimagining how work makes people feel. What we offer * a culture built on trust and accountability \- giving you the freedom and autonomy to be successful and make an impact * balance \- with our Flexible Leave Paid Time Off policy, remote working opportunities, Global Wellbeing Days, and other great benefits * growth opportunities \- we provide the tools and guidance required so that you can focus on what really matters to you and so, ultimately, you can achieve your best work * talented colleagues, role models and mentors \- work, learn and be inspired by some of the best talent in the software industry * a commitment to sustainability \- with initiatives such as our Environmental, Social, and Governance strategy and Act4Good programme * a safe and inclusive working environment – supported by our Employee Resource Groups, which are open to all. Our commitment to equity Unit4 is committed to ensuring equal opportunity for everyone. We make our hiring decisions solely based on skills, qualifications, and our current business needs. We know that diversity brings fresh perspectives, ideas, and solutions to our company. This is the essence of our culture. We also welcome and encourage people who are pregnant and/or parents\-to\-be to apply. If you would like to know more about our commitment to diversity, visit our blogs: * Our focus to DEI remains central to who we are * Inclusive hiring at Unit4: Building equal opportunities for all Background check This role may require security clearance required for customer projects and access to sensitive (customer) data. That means that after you have accepted our offer, we could ask for background checks. Subject to applicable local laws, such security checks may require disclosure of personal information including criminal record declaration, right to work, personal identification and work history. No worries – we'll handle it according to local privacy laws and keep your information safe. Questions? Feel free to reach out!