UKG (Ultimate Software Group)

Lead Cyber Risk Analyst

General Information

Ref #:

20240037941

Travel Amount Required:

None

Job Type:

Regular-Full Time

Location:

Noida - India - India

Company Overview

Here at UKG, our purpose is people™. Our HR, payroll, and workforce management solutions help organizations unlock happier outcomes for all. And our U Krewers, who build those solutions and support our business, are talented, collaborative, and innovative problem-solvers. We strive to create a culture of belonging and an employee experience that empowers our people – both at work and at home. Our benefits show that we care about the whole you, from adoption and surrogacy assistance to tuition reimbursement and wellness programs. Our employee resource groups provide a welcoming place to land, learn, and connect with those who share your passions and interests. What are you waiting for? Learn more at www.ukg.com/careers #WeAreUKG

Description & Qualifications

Description

The Enterprise Risk team enables the business in proactive identification, evaluation, mitigation, monitoring, and escalation of organizational risks. UKG evaluates risk holistic to the organization; including strategic, financial, compliance, cybersecurity, and operational risk. This position is part of a subset of the Enterprise Risk team who partners with customer facing teams to address risks in areas such as (but not limited to) implementations, data handling, customer support, payroll processing, and payment services. As a member of the team, the individual will be committed to overall data protection risk management and its role in the company's continued success. The Level III Cyber Risk Analyst position is a highly visible role that interfaces with key stakeholders in the organization and may also support UKG customers and Partners. The position demands an organized, action-oriented team player with the ability to prioritize daily work and support multiple initiatives simultaneously; effective communication and customer focus is required. Primary responsibilities include performing risk assessments of UKG product, processes, and technologies to determine potential risk factors, quantifying risk and forecast probable outcomes, partnering with risk owners to determine mitigation activities, preparing reports to stakeholders to summarize their risk landscape, and staying attune to the organization’s goals as processes/technologies evolve.

RESPONSIBILITIES

• Perform risk assessments for various business units that support functions related to implementations, data handling, customer support, payroll processing, and payment services.

• Identify and partner with Subject Matter Experts (SMEs) to develop appropriate remediation plans in alignment risk UKG methodology.

• Succinctly document, report, and monitor remediation plans to closure.

• Manage relationships with key leaders within your domain to establish trust, understand business objectives, and align risk assessment priorities to strategic initiatives.

• Identify relevant key performance indicators (KPIs) to quantify the effectiveness of controls implemented for risk management activities.

• Assist in compilation of materials to help ensure risk management statuses, trends, and escalations are rolled up to management.

• Stay abreast of emerging cybersecurity trends, threats, and technologies to inform strategic planning and risk mitigation efforts.

• Perform additional duties and projects as assigned by management.

Qualifications

• BE/ BTech/MCA degree in a risk management related discipline or equivalent experience and a minimum of 5-6 years' work experience in information security governance and/or related functions (such as IT audit or IT Risk Management).

• Familiarity with Governance, Risk and Compliance (GRC) tools.

• Knowledge of payroll processing activities and related risks is favored.

• Experience with information security frameworks including SOC 2 or ISO27001/17/18.

• Strong business acumen to include strong verbal and written communication skills.

• CISA, CISM, CRISC, CISSP, or similar security certification preferred.

EEO Statement

Equal Opportunity Employer

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws.

View The EEO Know Your Rights poster (https://www.eeoc.gov/sites/default/files/2022-10/EEOC_KnowYourRights_screen_reader_10_20.pdf) and its supplement .

View the Pay Transparency Nondiscrimination Provision (https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf)

UKG participates in E-Verify. View the E-Verify posters here (https://www.e-verify.gov/sites/default/files/everify/posters/EVerifyParticipationPoster.pdf) .

Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.