Lead Cyber Risk Analyst

Company Overview With 80,000 customers across 150 countries, UKG is the largest U.S.-based private software company in the world. And we’re only getting started. Ready to bring your bold ideas and collaborative mindset to an organization that still has so much more to build and achieve? Read on.   At UKG, you get more than just a job. You get to work with purpose. Our team of U Krewers are on a mission to inspire every organization to become a great place to work through our award-winning HR technology built for all.  Here, we know that you’re more than your work. That’s why our benefits help you thrive personally and professionally, from wellness programs and tuition reimbursement to U Choose — a customizable expense reimbursement program that can be used for more than 200+ needs that best suit you and your family, from student loan repayment, to childcare, to pet insurance. Our inclusive culture, active and engaged employee resource groups, and caring leaders value every voice and support you in doing the best work of your career. If you’re passionate about our purpose — people —then we can’t wait to support whatever gives you purpose. We’re united by purpose, inspired by you.    What You’ll Do Ensure public sector security control frameworks are included in UKGs control frameworkSupport designing / maintaining UKG’s central security control frameworkParticipate in annual reviews/alignment of UKG controlsReview policies & procedure documents to ensure controls are comprehensively coveredTranslate security and technical requirements into actionable guidance and control statementsDevelop and maintain technical documentation related to regulatory compliance activities.Ensure timely delivery of all required documentation.Participate in security reviews; support audits and assessments (both internal and external), to ensure ongoing compliance with FedRAMP and other relevant security standards.Provide guidance to teams on how to remediate gaps discovered during assessmentsStay abreast of industry trends, emerging threats, and new security technologies to continually enhance security architecture.Communicate security risks and solutions to different audiences ranging from business leaders to engineers.Drive automation efforts for the implementation and validation of security controls to ensure products meet and maintain compliance with security requirements.Champion security best practices to highly technical teams as well as mentor team members and those in other technical roles who are critical to the successful delivery of UKG’s cybersecurity strategy.What Experience You’ll Need3+ Yrs designing and maintaining internal security control frameworks3+ Yrs supporting FedRAMP/StateRAMP programsExtensive knowledge of FedRAMP controls, policies, and procedures.Familiarity with federal security frameworks such as NIST, FISMA, CMMC, and other relevant standards.Excellent communication and presentation skills with the ability to convey complex security concepts to technical and non-technical stakeholders.Bachelor's degree or equivalent work Experience  What could set you apartStrong expertise in conducting risk assessments and developing risk mitigation strategies.Certifications such as CISSP, CISM, GCP PCA, AWS Certified Solutions Architect, or other relevant certifications are highly desirable.Well versed in compliance, security standards, and guidelines including: SOX, NIST, CIS, ISO 27001/2, PCI DSS.Proven understanding of security controls and technologies including SIEM, DLP, WAF, IPS, and firewalls.Able to automate/script daily tasks through Python, bash, or equivalent.Experience with one or more of the following programming languages: C#, Java, C/C++, GoLang, and/or Python.Where we’re going UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it’s our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow!   Equal Opportunity Employer    Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws.      View The EEO Know Your Rights poster and its supplement.View the Pay Transparency Nondiscrimination ProvisionUKG participates in E-Verify. View the E-Verify posters here.    Disability Accommodation For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.   The pay range for this position is $126,300 to $180,000, however, base pay offered may vary depending on skills, experience, job-related knowledge and location. This position is also eligible for a short-term incentive and a long-term incentive as part of total compensation. Information about UKG’s comprehensive benefits can be reviewed on our careers site at Job ID:LEADC010252Employment Type:RegularWork Style:Location:Alpharetta,GA,United States, Atlanta,GA,United States, Lowell,MA,United States, Weston,FL,United StatesTravel:Up to 50%Role:Lead Cyber Risk AnalystDepartment:Legal