Here at UKG, our purpose is people™. Our HR, payroll, and workforce management solutions help organizations unlock happier outcomes for all. And our U Krewers, who build those solutions and support our business, are talented, collaborative, and innovative problem-solvers. We strive to create a culture of belonging and an employee experience that empowers our people – both at work and at home. Our benefits show that we care about the whole you, from adoption and surrogacy assistance to tuition reimbursement and wellness programs. Our employee resource groups provide a welcoming place to land, learn, and connect with those who share your passions and interests. What are you waiting for? Learn more at www.ukg.com/careers  #WeAreUKG 

Description

About the Team:
UKG is seeking a Principal Security Architect to work in our Global Security team. The Security Engineering team contributes to the Global Security and UKG missions by delivering security solutions and partnering with Operations, Infrastructure and DevOps teams across UKG to improve the organizations security posture. We are strong believers of security as a business enabler, hence, to achieve this level of partnership, we strive to provide responsive, easy to maintain cost effective security solutions. As a Principal Security Architect, you will be expected to have experience in multiple security domains to develop security solutions that consider all factors to resolve complex business problems. We are a highly versatile and technical team.
Job Responsibilities:
• Evaluate security postures and adherence to UKG standards.
• Participate in and drive security technology projects
• Partner with Business Units to review the proposed Cloud and Infrastructure architecture designs
• Design enterprise-class security frameworks for networks, cloud, and systems
• Create & Align security standards and with overall business and technology strategy
• Use current programming language and technologies to write code for managing Infrastructure as Code (IaC)
• Mentor team members
• Self-lead/takes initiative, build relationships
• Be trusted as an expert advisor for security related questions, lead meetings and projects
• Document necessary security controls/requirements that should be in place
• Comfortable in designing technical solutions to mitigate or eliminate security vulnerabilities
• Comfortable with reviewing network architectures and operation systems

Qualifications

About You:
Basic Qualifications:
7 or more years’ experience in:
• Security architecture, demonstrating solutions delivery, principles, and emerging technologies - Designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions.
• Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements.
• Security considerations of cloud computing: They include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and WAF/DDoS attacks.
• Identity and access management (IAM) – the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.
• Experience with multiple programming languages (.Net, Java, Python)
• Deep understanding of TCP/IP
• Authentication (Identity management, MFA/2FA, PAM, IGA)
• Applied Cryptography (PKI, Appropriate usage of Cryptographic Primitives, Digital Signatures, HASHing, HMACs)
• Authorization (claims, RBAC, fine grained, coarse grained, XACML, OAUTH, SAML)
• Network Design Concepts (TCP/IP, Routing, Switching)
• Operation System Hardening (Window Server, Linux)
Preferred Qualifications:
• At least 3 years of experience building and architecting on Cloud-based Platforms
• Detailed understanding of Cloud Security fundamentals
• Professional experience architecting/operating solutions and security frameworks built on AWS, Azure, or Google Cloud and virtualization technologies, such as Kubernetes, Docker and OpenStack
• The ability to design, install and maintain security controls over multi-cloud Platforms
• 3-5 years of relevant experience working with technologies such as Ansible, Terraform, RegEx, Chef
• BA or BS in information security, engineering, computer science, or related area.MS is aplusCertification in any of the following a plus: Google Cloud Architect; AWS Cloud Architect; CISSP

#LI-Hybrid

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.