Description

Job Summary:
UKG is seeking a Principal, Security Architect to work in our Global Security team. The Security Architecture team contributes to the Global Security and UKG missions by building and maintaining solid mutual beneficial partnerships with all areas of the business. We are strong believers of security as a business enabler, hence to achieve this level of partnership we strive to provide responsive, easy to maintain, and cost-effective security solutions. We are a highly versatile and technical team, gleaning from network engineering, developers, application security, software architecture, and Third-Party/Partner reviews. Amongst our main team roles are:
● Evaluate solutions, architectures, and processes to assess risk
● Identify solutions to remediate risk
● Evaluate Third Party Assessments & Partner's security postures and adherence to UKG standards.
● Participate in and drive technology projects
● Develop software frameworks both for internal and external consumption

If you have 10 or more years partnering with business units in order to develop the best possible security models to roll out new applications, systems, networks, and architecture to secure the future of the organization, you should consider UKG. If you love to work in a dynamic and challenging environment, with great benefits, compensation, and a great work-life balance, you should talk to us.

Essential Duties and Responsibilities: (other duties may be assigned)
(List primary responsibilities only. These are the duties that are unique to the job position. As the Hiring Manager, you will cover the full Job Description, with both Essential and General Responsibilities, with your final candidates. You will measure the employee’s primary performance against these job duties.)
● Serve as a security thought leader for multiple security domains
● Partner with Business Units to review the proposed architecture for complex business & application projects.
● Design enterprise-class security networks, applications, and systems for Dev, QA and Production environments
● Create & Align standards, frameworks, and security with overall business and technology strategy
● Identify and communicate current and emerging security threats
● Design security architecture elements to mitigate threats as they emerge
● Create solutions that balance business requirements with information and cyber security requirements
● Identify security design gaps in existing and proposed architectures, and recommend changes or enhancements
● Train users in implementation or conversion of systems
● Be trusted as expert advisor for security related questions, lead meetings and projects
● Understand and use threat model methodologies/Risk Analysis and or Architecture Review methods to be able to model application/network/systems and understand Threats.
● Document necessary security controls/requirements that should be in place.
● Comfortable in designing technical solutions to mitigate or eliminate security vulnerabilities
● Comfortable to coordinate brainstorming activities to document threat scenarios
● Comfortable to review network architectures and operation system security settings

Qualifications

● Security architecture experience, demonstrating solutions delivery, principles and emerging technologies - Designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions, working with Security, Information Technology, and Product Development teams.
● Consulting and engineering in the development and design of security best practices, and implementation of solid security principles across the organization to meet business goals along with customer and regulatory requirements.
● Expert knowledge of security considerations of cloud computing: Including data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks.
● Advanced knowledge of Identity and access management (IAM)
● As a Principal Security Architect, you will be expected to have experience in multiple security domains to develop security solutions that consider all factors to resolve complex business problems
● Deep understanding of TCP/IP
● Expert knowledge of Microservice Architecture, Container technologies and Cloud services
● Self-lead. Take initiative. Build relationships

Five (5) or more years’ experience in:

● Authentication (Identity management, MFA/2FA)
● Authorization (claims, RBAC, fine grained, coarse grained, XACML, OAUTH2, SAML2)
● Hands-on Experience with container technologies (Docker, Kubernetes, Istio)
● Applied Cryptography (PKI, Appropriate usage of Cryptographic Primitives, Digital Signatures, HASHing, HMACs)
● Network Design Concepts (TCP/IP, Routing, Switching)
● Operation System Hardening (Window Server, Linux)

Preferred Qualifications/Skills:
(These are qualifications/skills that, although not required, will be a definite PLUS if the candidate possesses them.)
● Master's degree Preferred or equivalent experience in Computer Science or related field
#LI-Hybrid

Company Overview

EEO Statement

Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.