Company Overview
With 80,000 customers across 150 countries, UKG is the largest U.S.-based private software company in the world. And we’re only getting started. Ready to bring your bold ideas and collaborative mindset to an organization that still has so much more to build and achieve? Read on.
At UKG, you get more than just a job. You get to work with purpose. Our team of U Krewers are on a mission to inspire every organization to become a great place to work through our award-winning HR technology built for all.
Here, we know that you’re more than your work. That’s why our benefits help you thrive personally and professionally, from wellness programs and tuition reimbursement to U Choose — a customizable expense reimbursement program that can be used for more than 200+ needs that best suit you and your family, from student loan repayment, to childcare, to pet insurance. Our inclusive culture, active and engaged employee resource groups, and caring leaders value every voice and support you in doing the best work of your career. If you’re passionate about our purpose — people —then we can’t wait to support whatever gives you purpose. We’re united by purpose, inspired by you.
About the Team:
At UKG, security is at the core of everything we do. We are looking for Security Engineer to join our dynamic and growing team to continuously improve our application and infrastructure security posture.
About the Role:
The Security Engineer will be responsible for implementing, maintaining, and documenting security solutions and related controls throughout the Enterprise. This includes managing security lifecycle; tools and tasks that will include installing, configuring, troubleshooting, and updating software; establishing and managing accounts; implementing operational and technical security controls; and adhering to organizational security policies and procedures.
Responsibilities:
Assist in the design, testing, implementation, and ongoing support of security solutions to ensure compliance with FedRAMP security controls and best practices: Endpoint Security Detection and Response (e.g., Carbon Black, FireEye, CrowdStrike, SentinelOne, Sophos, McAfee, Symantec, Cylance, Windows Defender, Cisco AMP)Data Loss Prevention (DLP) solutions Vulnerability Scanning and Management (e.g., Rapid7, Qualys, Tanium, Nessus, Wiz) Cloud Security Posture Management (CSPM) tools and frameworks to ensure adherence to FedRAMP security requirements for cloud environments Authentication and Identity Management: Integrate security tools with Identity Provider (IDP) systems to enforce authentication and access control standards Public Cloud Security: Assist with securing AWS, Azure, or GCP environments in compliance with FedRAMP standards System/Server Resource Management: Manage performance, capacity, availability, serviceability, and recoverability to ensure operational efficiency in a federal context Collaborate with the Observability Team to integrate security application and system event logs into the Security Information and Event Management (SIEM) system, enhancing threat detection and compliance reporting Maintain Security Configuration Baselines to harden systems in line with FedRAMP security baselines Collaborate with Cross-Functional Teams to optimize and tune security system performance, ensuring compliance with applicable federal regulations Operational Monitoring and Alerting: Implement and improve security-related monitoring, alerting, and incident response processes Documentation and Compliance: Ensure all system operations, maintenance activities, and security configurations are thoroughly documented and updated in accordance with FedRAMP requirements SSL/TLS Certificate Management: Create and manage internal and external certificates to ensure secure communications and compliance Secrets Management: Support the implementation of secure secrets management solutions for sensitive information handling Generate Dashboards and Reports on identity and security tools compliance for internal and external audits Audit Support: Assist the Governance, Risk, and Compliance (GRC) team with audits, assessments, and FedRAMP compliance initiatives Requirements Development and Deliverables: Assist in the development of security requirements and ensure timely delivery of security-related tasks and objectives
About You:
Required Qualifications:
5-7+ years of experience in a security engineering role with Malware Protection, EDR, FIM, Vulnerability Scanner tools, compliance support 5+ years of experience with security frameworks including NIST, CIS, etc Experience with common security controls such as Antimalware, Endpoint Detection and Response, GPOs, IPTables or NFTables Experience with Common Information Technology infrastructure such as SSO, SAML, DNS, Active Directory and Remote access solutions such as Citrix and VDI
Preferred Qualification:
Industry recognized Security certification such as CSSP, CISSP, etc Cloud and system hardening Bachelors in Information Security or related fields Basic knowledge of networking: routing and switching including subnetting Experience with operating system (Windows, Linux, MacOS, COS) Knowledge of secrets management General knowledge of container technology Understanding of SSL/TLS certificates and implementation (Private and public key infrastructure) Knowledge of PowerShell or similar scripting languages Experience with Public Cloud provider infrastructure related to system deployments
Where we’re going
UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it’s our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow!
Equal Opportunity Employer
UKG is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, disability, religion, sex, age, national origin, veteran status, genetic information, and other legally protected categories.
View The EEO Know Your Rights poster
UKG participates in E-Verify. View the E-Verify posters here.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
Disability Accommodation in the Application and Interview Process
For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.
The pay range for this position is $99,800.00 to $143,450.00 USD, however, base pay offered may vary depending on skills, experience, job-related knowledge and location. This position is also eligible for a short-term incentive and a long-term incentive as part of total compensation. Information about UKG’s comprehensive benefits can be reviewed on our careers site at https://www.ukg.com/careers