Meet Unit4—a fast-paced, game-changing SaaS company revolutionising ERP for scale-ups, mid-market organizations, and category leaders. We're not just rewriting the rules of enterprise software; we're tearing up the old playbook. For 40 years, the ERP industry has been bogged down by clunky, legacy systems, and we're here to shake things up. At Unit4, we're all about transformation. We empower ambitious businesses with cutting-edge ERP solutions that are adaptive, intuitive, and self-driving—designed to free organizations from the mundane and help them focus on what truly matters. Our mission? To turn work into something more meaningful while helping our customers achieve their greatest potential. Want to learn more about how we're reshaping the future? Head to our website and see how we're helping businesses thrive. Job DescriptionAt Unit4, we're in Business for People. The Global Security organisation protects our people, platforms, products, and customers by driving secure design, resilience, and maturity across the entire business. As we strengthen our architecture capability across CISO, IT, and CloudOps, we are seeking a highly experienced Senior Security Architect to partner across the enterprise and help shape Unit4's future‐state security landscape. This role sits within the CISO Security Team but works with IT, CloudOps, Enterprise Architecture, and Product/Engineering. You will play a pivotal role in designing, governing, and embedding secure architectural principles across Unit4's technology estate. The Senior Security Architect will develop, and mature Unit4's enterprise security architecture across cloud, infrastructure, identity, SaaS, and endpoint domains. You will collaborate with senior stakeholders, guide teams, and translate business strategy and risk into secure, scalable, and pragmatic designs. This is a senior, hands‐on architectural role for someone who thrives in complex environments, can operate strategically and tactically, and who brings deep expertise across security architecture, cloud, and modern enterprise platforms. Enterprise Security Architecture Lead the security target‐state architecture and multi‐year roadmap, aligning risk reduction and business outcomes; socialize trade‐offs with CISO/CTO/CIO leadership. Lead enterprise architecture assessments across multiple environments, including:Cloud (Azure) security and network infrastructure, including Kubernetes Identity & access management (zero trust, conditional access, PAM/PIM) Endpoint protection and device assurance CI/CD pipelines and secure software development SOC/SIEM capabilities and threat detection Security governance, risk, and compliance Platform security (Windows/Mac/Serverless)Partner closely with Cloud Ops, Internal IT, and Product Architecture to ensure security is designed into enterprise platforms and product roadmaps. Develop security strategies, roadmaps, reference architectures, and patterns aligned to Unit4's security vision. Design and implementation of layered enterprise security architectures, ensuring defence‐in‐depth and resilience across digital estates. Act as a senior architectural authority in engagements across CISO, IT, and CloudOps Teams, providing well reasoned viewpoints on security principles, technologies, and patterns. Ensure architectural decisions incorporate regulatory, customer, and audit requirements (ISO/IEC27001, SOC reporting, BSIC5, NIST, CIS Benchmarks, MITRE ATT&CK, CSACCM), and are evidenced through pattern adoption and architecture reviews. Partner closely with IT and CloudOps to embed security controls, influence technology decisions, and ensure alignment to security strategy. Engage with senior stakeholders (CISO, CTO, CIO, Product & Cloud leadership) to shape cyber direction and ensure architectural consistency across teams. Secure architecture for multi‐cloud environments (Azure primary; awareness of AWS/GCP) across networking, compute, data, containers, and serverless. Collaborate on the security design, engineering, and implementation of solutions within the Microsoft 365 (M365) and Entra ID ecosystems. Act as a subject matter expert for Microsoft security tooling including Microsoft Defender XDR, Defender for Cloud, Azure Policy, Endpoint management and Conditional Access. Implement cloud‐native architectures leveraging existing and emerging frameworks. Build secure designs with Zero Trust for hybrid working, micro‐segmentation, identity‐centric access, private connectivity, and policy‐as‐code guardrails. Evaluate new cloud services, ensuring risks are identified and mitigated before adoption. Cloud Operations and Product Ensure security controls are integrated into CI/CD pipelines and DevSecOps practices (e.g., Infrastructure as Code, artifact scanning, static analysis). Collaborate on the security design for workloads deployed on Microsoft Azure (IaaS, PaaS, and Serverless), ensuring alignment with corporate security policy and regulatory requirements. Act as the Subject Matter Expert (SME) for Azure's native security tooling, including Microsoft Defender for Cloud (MDC), Azure Policy, and Azure Network Security. Develop secure reference architectures for Azure cloud services, covering:Networking: VNets, Azure Firewall, NSGs, WAF, private endpoints, ADC (Application Delivery Controller). Container platforms including AKS: cluster governance and baseline policies, workload identity, network policies, admission control, image provenance/SBOM and signing, supply chain security, secrets management, runtime threat detection, tenancy/isolation and scale/cost guardrails. Compute: VMs, scale sets, serverless workloads. Storage & Data Services: Storage Accounts, Azure SQL, managed databases, key management.Mature security by design in Product, implementing compliance checks into pipeline and architecture review and assurance for deviations from standards. Contribute security non functional requirements, reference patterns, and threat models to Product roadmaps; review high‐impact designs; ensure product changes align with enterprise guardrails. (Scope is collaborative and advisory—not ownership of Product delivery backlogs.) Thought Leadership & Capability Building Contribute to enterprise blueprints, playbooks, and whitepapers to mature the architectural practice. Support the ongoing development of Unit4's secure culture and help uplift security knowledge across technical teams. Serve as a trusted advisor, articulating complex security concepts and risks to both technical and non‐technical audiences. Qualifications7–10+ years' experience in IT or cybersecurity, with at least 3 years in a dedicated security architecture role. Relevant industry certifications (e.g., CISSP, Microsoft Certified: Cyber security Architect Expert (SC‐100), Azure Security Engineer (AZ‐500)). Deep technical expertise across cloud (Azure required), identity, network, endpoint, SaaS, and modern enterprise architectures. Strong hands‐on knowledge of Microsoft security technologies (Defender XDR, Defender for Cloud, Conditional Access, Entra ID governance, PIM, etc.). Demonstrated experience delivering Zero Trust concepts in production environments. Strong understanding of DevSecOps principles and automation tooling. Ability to clearly articulate security risks and solutions to both engineering teams and executive stakeholders. Knowledge of major frameworks (NIST, ISO27001, SOC reporting, CIS, MITRE ATT&CK, CSA CCM). Experience with IaC tools (Terraform, Bicep) and scripting languages (PowerShell, Python). Experience designing scalable architectures for hybrid or multi‐cloud environments. Prior experience in large enterprises, SaaS providers, or regulated sectors. Soft Skills Strong consulting-style capability: facilitation, stakeholder engagement, and outcome‐based delivery. Comfortable operating in ambiguous environments and simplifying complexity. Ability to operate independently, managing multiple projects and driving technical decisions. Strategic thinker able to connect long‐term goals with short‐term action. Collaborative and credible across cross‐functional teams. Passionate about security, innovation, and helping the organisation grow securely. Why This Role Matters Security architecture underpins Unit4's resilience, customer trust, and long‐term success. As Senior Security Architect, you will shape the future of how Unit4 protects and empowers its people, products, and global customer base. You will influence decisions across CISO, IT, and CloudOps and ensure that security is embedded at the heart of Unit4's technology strategy. Additional InformationWho we areWe are a people‐first community that nurtures all the areas that surround your working experience. With us, you'll be surrounded by a high‐performance team that supports your authentic self and celebrates your uniqueness. We believe that 'How work should feel' is an evolving statement. Work goes beyond tasks and everyday responsibilities it's about feeling valued, empowered, promoted, impactful, seen, and appreciated. We are reimagining how work makes people feel. What we offera culture built on trust and accountability - giving you the freedom and autonomy to be successful and make an impact balance - with our Flexible Leave Paid Time Off policy, remote working opportunities, Global Wellbeing Days, and other great benefits growth opportunities - we provide the tools and guidance required so that you can focus on what really matters to you and so, ultimately, you can achieve your best work talented colleagues, role models and mentors - work, learn and be inspired by some of the best talent in the software industry a commitment to sustainability - with initiatives such as our Environmental, Social, and Governance strategy and Act4Good programme a safe and inclusive working environment – supported by our Employee Resource Groups, which are open to all. Our commitment to equityUnit4 is committed to ensuring equal opportunity for everyone. We make our hiring decisions solely based on skills, qualifications, and our current business needs. We know that diversity brings fresh perspectives, ideas, and solutions to our company. This is the essence of our culture. We also welcome and encourage people who are pregnant and/or parents‐to‐be to apply. If you would like to know more about our commitment to diversity, visit our blogs: Our focus to DEI remains central to who we are Inclusive hiring at Unit4: Building equal opportunities for all Background checkThis role may require security clearance required for customer projects and access to sensitive (customer) data. That means that after you have accepted our offer, we could ask for background checks. Subject to applicable local laws, such security checks may require disclosure of personal information including criminal record declaration, right to work, personal identification and work history. No worries – we'll handle it according to local privacy laws and keep your information safe. Questions? Feel free to reach out!#J-18808-Ljbffr