Company Overview
With 80,000 customers across 150 countries, UKG is the largest U.S.-based private software company in the world. And we're only getting started. Ready to bring your bold ideas and collaborative mindset to an organization that still has so much more to build and achieve? Read on.
At UKG, you get more than just a job. You get to work with purpose. Our team of U Krewers are on a mission to inspire every organization to become a great place to work through our award-winning HR technology built for all.
Here, we know that you're more than your work. That's why our benefits help you thrive personally and professionally, from wellness programs and tuition reimbursement to U Choose - a customizable expense reimbursement program that can be used for more than 200+ needs that best suit you and your family, from student loan repayment, to childcare, to pet insurance. Our inclusive culture, active and engaged employee resource groups, and caring leaders value every voice and support you in doing the best work of your career. If you're passionate about our purpose - people -then we can't wait to support whatever gives you purpose. We're united by purpose, inspired by you.
Want more jobs like this?
Get jobs in Weston, FL delivered to your inbox every week.
About the Team:
This role is part of the Offensive Security practice at UKG. We are responsible for all penetration testing and red team operations for UKG. As the threat emulators and ethical hackers for the company we have the unique mission of identifying, validating, and measuring the effectiveness of our people, processes, and technical controls across the entire UKG footprint.
About the Role:
We are seeking an experienced and highly skilled Principal Red Team Operator to join our cybersecurity team. The ideal candidate will have extensive experience in red team operations, with a proven ability to lead complex security assessments and mentor junior team members and drive strategic initiatives.
Responsibilities include:
- Strategic Planning and Execution: Propose, plan, and execute Red Team operations based on realistic threats to the organization. This involves understanding the organization's business objectives and aligning Red Team activities to support these goals.
- Leadership and Mentorship: Lead and mentor junior team members, fostering a culture of continuous learning and improvement. This includes providing guidance on complex engagements and developing the team's skills.
- Collaboration with Other Teams: Work closely with other security teams, such as the Blue Team and Security Incident Response Team (SIRT), to improve detection and response capabilities. This collaboration ensures a holistic approach to security.
- Development of Custom Tools and Techniques: Innovate and develop custom tools, payloads, and techniques to simulate advanced threats. This includes automating attack techniques and contributing to open-source tools.
- Threat Intelligence and Modeling: Stay informed on current security trends, advisories, and research. Use this knowledge to model potential threats and develop strategies to mitigate them.
- Business Impact Analysis: Identify and prioritize critical business assets, ensuring that Red Team efforts focus on the most valuable and vulnerable parts of the organization.
Reporting and Communication: Write detailed reports covering the goals, outcomes, and recommendations of Red Team operations. Communicate findings effectively to both technical and non-technical stakeholders.
- Policy and Process Enhancement: Collaborate with non-technical teams to propose enhancements to organizational policies and processes, ensuring they are robust against potential threats.
About You:
Basic Qualifications:
- 10+ years of offensive security experience, demonstrated ability in maturing an offensive security program, to align with business needs and mitigation of risk, and leading complex engagements and mentoring junior team members.
- Expert-level proficiency with all common operating systems such as Windows, MacOS, Linux, ChromeOS, iOS, and Android.
- Advanced expertise in cloud platforms (AWS/Azure/GCP and O365/Google Workspace) and container technologies (Kubernetes/Docker).
- Mastery in Windows Active Directory exploitation and lateral movement.
- Extensive experience in custom tool and payload development, reverse engineering, and evasion techniques.
- Proficiency in multiple programming languages (e.g., Python, Golang, JavaScript/TypeScript, C#, C/C++, PowerShell, and/or Bash).
Preferred Qualifications:
- Comprehensive understanding of network and web-related protocols (e.g., TCP/IP, HTTP, HTTPS).
- Proven track record in social engineering, including reconnaissance and phishing/vishing pretexts.
- Proactively collaborate with and influence senior leadership to identify critical business processes and drive architectural and remediation strategies.
- Exceptional written and verbal communication skills.
- Expertise in exploit development and/or assembly (x86/arm).
- Advanced knowledge of threat modeling, threat intelligence, or incident response.
- Experience with DevOps and CI/CD technologies.
- Proven experience conducting physical penetration testing engagements, including entry skills and RFID hacking.
- In-depth knowledge of blockchain security.
- Relevant certifications (e.g., OSCP, GWAPT, GPEN) are a plus but not required.
Where we're going
UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it's our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow!
Equal Opportunity Employer
UKG is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws.
View The EEO Know Your Rights poster
UKG participates in E-Verify. View the E-Verify posters here.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
Disability Accommodation in the Application and Interview Process
For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.
The pay range for this position is $142,100 to $204,200, however, base pay offered may vary depending on skills, experience, job-related knowledge and location. This position is also eligible for a short-term incentive and a long-term incentive as part of total compensation. Information about UKG's comprehensive benefits can be reviewed on our careers site at https://www.ukg.com/careers