Skip to content

Senior Cyber Risk Analyst

General information


USA - USA - Remote


Governance, Risk & Compliance

Ref #:


Description & Requirements


This position works as part of the Governance, Risk and Compliance team responsible for demonstrating to internal stakeholders and external customers compliance with information security and privacy frameworks including SOC 2, ISO, PCI and HIPAA. The team determines through monitoring, control testing and business consultation that the company's information resources are secure from unauthorized access, protected from inappropriate alteration, physically secure, and available to users in a timely fashion. UKG is seeking to implement a GRC tool and integrate risk assessment activities.

Primary/Essential Duties and Key Responsibilities:
● Plan, coordinate and execute work assignments with process/control owners and auditors
● Support the design, implementation and support of a GRC tool that is aligned with the GRC’s team vision and focus
● Support the implementation of a risk assessment methodology across the Governance, Risk and Compliance function
● Evaluate and support implementation new and evolving technologies, frameworks, and certification programs
● Advise and collaborate on projects by providing IT controls expertise and considerations
● Identify and recommend business process changes resulting in strengthened internal controls
● Collaborate with control owners to implement process changes and track to completion
● Assess readiness of product/service for certification and/or audit


● Bachelor’s Degree in Management Information Systems or related fields
● 3-5 years minimum general IT control experience
● Knowledge of general IT control areas
● Experience implementing and using a GRC tool – RSA Archer preferred
● Knowledge cloud technologies and environments
● Experience implementing ISMS (Information Security Management System) under the ISO 27001 standard.
● Experience with security and audit frameworks, controls and best practices: AICPA SOC 1 and SOC 2, ISO 27000 series (27001, 27002, 27017, 27018), and protection of PII
● CISA, CISSP, CCSK, CRISC and other professional certifications are a plus


Corporate overview

Here at UKG, Our Purpose Is People. UKG combines the strength and innovation of Ultimate Software and Kronos, uniting two award-winning, employee-centered cultures. Our employees are an extraordinary group of talented, energetic, and innovative people who care about more than just work. We strive to create a culture of belonging and an employee experience that empowers our people. UKG has more than 13,000 employees around the globe and is known for its inclusive workplace culture. Ready to be inspired? Learn more at

EEO Statement

Equal Opportunity Employer

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws. 

View The EEO is the Law poster and its supplement. 

View the Pay Transparency Nondiscrimination Provision

UKG participates in E-Verify. View the E-Verify posters here.

Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email or please call 1 (978) 250 9800.