Skip to content

Principal DevSecOps Engineer

General Information

Ref #:

20220026114

Travel Amount Required:

None

Job Type:

Regular-Full Time

Location:

Atlanta - Georgia - United States, Lowell - Massachusetts - United States, Weston - Florida - United States

Description & Qualifications

Description

Job Summary:

UKG is seeking a talented DevSecOps Engineer to join our internal Global Security Research & Architecture team chartered to identify application security vulnerabilities within the UKG product lines. The goal of this team is to make sure that the code of our family of enterprise software applications is secure.

This is a rare opportunity for the right DevSecOps Engineer to join UKG’s award winning team. You will be working alongside some of the best in the business. If you are qualified and want to join our top-rated team, apply online today.

You will be focused on working with application project and development teams throughout the entire process.


Primary/Essential Duties and Key Responsibilities:

• Develop code to integrate our SAST and SCA solutions with other systems
including CI/CD pipelines and Vulnerability Management UIs. Main languages
and technology stack: Python, Golang, and PostgreSQL.
• Ensure that the Static Application Security Testing (SAST) environment is
performing optimally
• Provide education and guidance about SAST tools and process best practices
• Ensure compliance with applicable Policies, Standards, Requirements and
Directives
• Assist with audits to demonstrate compliance
• Schedule, scope and prioritize SAST assessments of applications
• Identify, document, rate, and communicate vulnerabilities to responsible teams
• Reproduce, demonstrate and retest vulnerabilities
• Maintain awareness of security issues amongst development community
• Continually improve SAST process and environment
• Provide expertise in Continuous Test/Integration/Deployment platforms
• Assist dev teams during release deployment and with periodic
system/application patching

Qualifications

• Must have a bachelor's degree in Computer Science or related field
• 8+ years of information technology industry experience
• 6+ years of application security experience
• Must be familiar with OWASP top ten understanding of vulnerability
governance and reporting
• Working experience with Software Composition Analysis (SCA) tools - Black
Duck, Trivy, Clair, etc.
• Working experience with Static Application Security Testing (SAST) tools
Checkmarx, etc.
• Experience in in developing and consuming API endpoints programmatically
• Fluent in scripting languages - Bash, Python, JavaScript
• Understanding of multi-tiered architecture
• Experience with cloud security - Google Cloud preferred
• Experience with Container technology (Docker, Kubernetes, etc.)
• Experience with code repository management platforms - GitHub, BitBucket,
GitLab
• Must be a team player with great interpersonal skills

Company Overview

Here at UKG, Our Purpose Is People. UKG combines the strength and innovation of Ultimate Software and Kronos, uniting two award-winning, employee-centered cultures. Our employees are an extraordinary group of talented, energetic, and innovative people who care about more than just work. We strive to create a culture of belonging and an employee experience that empowers our people. UKG has more than 13,000 employees around the globe and is known for its inclusive workplace culture. Ready to be inspired? Learn more at www.ukg.com/careers

EEO Statement

Equal Opportunity Employer

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws. 

View The EEO is the Law poster and its supplement. 

View the Pay Transparency Nondiscrimination Provision

UKG participates in E-Verify. View the E-Verify posters here.

Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com or please call 1 (978) 250 9800.

Apply