Job Description

Here at UKG, our purpose is people . Our HR, payroll, and workforce management solutions help organizations unlock happier outcomes for all. And our U Krewers, who build those solutions and support our business, are talented, collaborative, and innovative problem-solvers. We strive to create a culture of belonging and an employee experience that empowers our people - both at work and at home. Our benefits show that we care about the whole you, from adoption and surrogacy assistance to tuition reimbursement and wellness programs. Our employee resource groups provide a welcoming place to land, learn, and connect with those who share your passions and interests. What are you waiting for Learn more at #WeAreUKG Description This position works as part of the Governance, Risk and Compliance (GRC) department, which is responsible for management of cyber risk across the enterprise. The role offers the opportunity to be engaged in all facets of cyber risk including security, privacy, risk management, as well as security and compliance program development. As a member of the department, the individual will be committed to overall data protection, risk management and its role in the company\'s continued success. This position serves as an internal risk consultant and will be the subject matter expert responsible for designing, implementing, and supporting a security control framework for a multi-tenant software-as-a-service product. Primary responsibilities include assisting with audits of SSAE18 SOC 1, SOC 2, and ISO compliance exams and monitoring control activities in certified environments. This position demands an organized, detail-oriented team player with the ability to prioritize daily work and support multiple initiatives simultaneously strong communication and customer focus is required. RESPONSIBILITIES . Contribute risk and compliance expertise and support to assist in the achievement of cloud audit/compliance programs. . Support customer hosted cloud environments to ensure control activities are designed and implemented appropriately to protect the security, confidentiality, privacy, integrity, and availability of data in compliance with organization policies and standards. . Perform continuous monitoring activities to confirm the control environment is operating effectively and escalate identified deviations. . Participate in risk assessments in SSAE18 SOC 1, SOC 2, ISO environments and collect evidence in support of audits. . Assist external auditors conducting annual compliance audits by reviewing all evidence to confirm it satisfies the items included in the document request list. . Utilize industry experience and knowledge to provide expertise and support to ensure company\'s security framework remains in compliance with applicable regulations including evolving data privacy regulations. . Support the development, implementation, and updating of security policies and procedures. . Facilitate the exception and exemption processes for vulnerability management and hardening management programs. . Perform additional duties and projects as assigned by management. Qualifications B Tech/MCA , Any Graduate

foundit