Lead Cyber Risk Analyst

Company Overview 

With 80,000 customers across 150 countries, UKG is the largest U.S.-based private software company in the world. And we’re only getting started. Ready to bring your bold ideas and collaborative mindset to an organization that still has so much more to build and achieve? Read on.  

 At UKG, you get more than just a job. You get to work with purpose. Our team of U Krewers are on a mission to inspire every organization to become a great place to work through our award-winning HR technology built for all. 

 Here, we know that you’re more than your work. That’s why our benefits help you thrive personally and professionally, from wellness programs and tuition reimbursement to U Choose — a customizable expense reimbursement program that can be used for more than 200+ needs that best suit you and your family, from student loan repayment, to childcare, to pet insurance. Our inclusive culture, active and engaged employee resource groups, and caring leaders value every voice and support you in doing the best work of your career. If you’re passionate about our purpose — people —then we can’t wait to support whatever gives you purpose. We’re united by purpose, inspired by you.   

 What You’ll Do 

• Ensure public sector security control frameworks are included in UKGs control framework
• Support designing / maintaining UKG’s central security control framework
• Participate in annual reviews/alignment of UKG controls
• Review policies & procedure documents to ensure controls are comprehensively covered
• Translate security and technical requirements into actionable guidance and control statements
• Develop and maintain technical documentation related to regulatory compliance activities.
• Ensure timely delivery of all required documentation.
• Participate in security reviews; support audits and assessments (both internal and external), to ensure ongoing compliance with FedRAMP and other relevant security standards.
• Provide guidance to teams on how to remediate gaps discovered during assessments
• Stay abreast of industry trends, emerging threats, and new security technologies to continually enhance security architecture.
• Communicate security risks and solutions to different audiences ranging from business leaders to engineers.
• Drive automation efforts for the implementation and validation of security controls to ensure products meet and maintain compliance with security requirements.
• Champion security best practices to highly technical teams as well as mentor team members and those in other technical roles who are critical to the successful delivery of UKG’s cybersecurity strategy.

What Experience You’ll Need

• 3+ Yrs designing and maintaining internal security control frameworks
• 3+ Yrs supporting FedRAMP/StateRAMP programs
• Extensive knowledge of FedRAMP controls, policies, and procedures.
• Familiarity with federal security frameworks such as NIST, FISMA, CMMC, and other relevant standards.
• Excellent communication and presentation skills with the ability to convey complex security concepts to technical and non-technical stakeholders.
• Bachelor's degree or equivalent work Experience
  
  

  What could set you apart

• Strong expertise in conducting risk assessments and developing risk mitigation strategies.
• Certifications such as CISSP, CISM, GCP PCA, AWS Certified Solutions Architect, or other relevant certifications are highly desirable.
• Well versed in compliance, security standards, and guidelines including: SOX, NIST, CIS, ISO 27001/2, PCI DSS.
• Proven understanding of security controls and technologies including SIEM, DLP, WAF, IPS, and firewalls.
• Able to automate/script daily tasks through Python, bash, or equivalent.
• Experience with one or more of the following programming languages: C#, Java, C/C++, GoLang, and/or Python.

Where we’re going 

UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it’s our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow!   

Equal Opportunity Employer    

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws.      

View The EEO Know Your Rights poster and its supplement.      

View the Pay Transparency Nondiscrimination Provision     

UKG participates in E-Verify. View the E-Verify posters here.   

 Disability Accommodation 

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.   

The pay range for this position is $126,300 to $180,000, however, base pay offered may vary depending on skills, experience, job-related knowledge and location. This position is also eligible for a short-term incentive and a long-term incentive as part of total compensation. Information about UKG’s comprehensive benefits can be reviewed on our careers site at https://www.ukg.com/careers