Massachusetts Information Technology Jobs

Search for Jobs in Information Technology
MassHire JobQuest Logo

Job Information

UKG (Ultimate Kronos Group) Principal Identity Access Management Architect in Lowell, Massachusetts

Principal Identity Access Management Architect

General Information

Ref #:


Travel Amount Required:

Up to 25%

Job Type:

Regular-Full Time


Alpharetta - Georgia - United States, Atlanta - Georgia - United States, Lowell - Massachusetts - United States, Weston - Florida - United States

Company Overview

Here at UKG, our purpose is people™. Our HR, payroll, and workforce management solutions help organizations unlock happier outcomes for all. And our U Krewers, who build those solutions and support our business, are talented, collaborative, and innovative problem-solvers. We strive to create a culture of belonging and an employee experience that empowers our people – both at work and at home. Our benefits show that we care about the whole you, from adoption and surrogacy assistance to tuition reimbursement and wellness programs. Our employee resource groups provide a welcoming place to land, learn, and connect with those who share your passions and interests. What are you waiting for? Learn more at #WeAreUKG

Description & Qualifications


About the Team:

UKG is seeking a Principal Identity Access Management (IAM) Specialist to work in our Global Security team, as part of our IAM & Engineering team to be responsible for leading the organization's Identity and Access Management program.

About the Role:

This role involves developing and implementing strategies, policies, and procedures to protect digital assets, ensuring compliance with regulations, and managing user access to systems and data. This individual will collaborate with various teams, including IT, cybersecurity, compliance, and business units, to achieve these objectives.

Key Responsibilities:

• Strategy Development: Develop and execute a comprehensive IAM strategy that aligns with the organization's business goals and security requirements.

• Policy and Procedure Development: Create and maintain IAM policies, procedures, and standards to ensure compliance with regulatory requirements and industry best practices.

• Access Control: Implement and manage access control mechanisms, including role-based access control (RBAC), least privilege access, and multi-factor authentication (MFA) to safeguard critical systems and data.

• User Lifecycle Management: Select and build out end-to-end tooling to manage the user lifecycle process.

• Identity Governance: Establish identity governance practices to ensure that user access permissions are reviewed, validated, and audited regularly.

• Security Awareness: Promote security awareness and best practices among employees and stakeholders, conducting training sessions as necessary.

• Incident Response: Develop and maintain an IAM incident response plan to address security incidents and breaches promptly.

• Compliance: Ensure compliance with relevant data protection regulations, such as GDPR, HIPAA, or industry-specific standards.

• Vendor Management: Manage relationships with IAM solution vendors, staying current with industry trends and evaluating new technologies.

• Budget Management: Develop and manage the IAM budget, ensuring cost-effective solutions and resource allocation.


About you:

Basic Qualifications:

• Bachelor’s degree in computer science, Information Security, or a related field.

• 6+ years of experience in identity and access management, with a proven track record in a leadership role.

• Strong understanding of cybersecurity principles and best practices.

• In-depth understanding of authentication and authorization mechanisms, including SSO, phishing-resistant MFA, and PAM, across on-premises, distributed, and SaaS environments.

• Hands on experience working hands on with the IAM ecosystem of a modern cloud environment (AWS/Azure or GCP)

• Experience working on the implementation of a modern Identity Governance and Administration (IGA) platform such as Saviynt. Experience setting up birthright provisioning, access management workflows, access certification campaigns, and integrating this platform with Active Directory and HR Systems.

• Hands on experience with Infrastructure as code technology such as Terraform and Kubernetes and leading implementations of IAM technology which incorporate these elements.

• Experience working with modern continuous integration / continuous deployment pipelines to source control and automate the deployment of IAM technology solutions.

• Experience building out the development / test / production lineups of IAM technologies and the processes by which new functionality is introduced and promoted to test and production.

• Familiarity with IAM technologies, such as Identity Governance and Administration (IGA), Single Sign-On (SSO), and Privileged Access Management (PAM).

• Excellent communication, leadership, and project management skills.

• Ability to collaborate effectively with cross-functional teams and stakeholders.

• Knowledge of industry regulations and compliance requirements.

• Skilled in designing and configuring IAM across complex global infrastructures for high availability, with an understanding of cyberattacks and proactive IAM defenses.

Preferred Qualifications:

• Master’s degree in computer science, Information Security, or a related field

• Relevant certifications such as CIAM, CISSP, CISM, CISA or equivalent IAM vendor-specific certifications

• Hands-on experience with IAM technologies, such as Identity Governance and Administration (IGA), Single Sign-On (SSO), and Privileged Access Management (PAM).


EEO Statement

Equal Opportunity Employer

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws.

View The EEO Know Your Rights poster ( and its supplement .

View the Pay Transparency Nondiscrimination Provision (

UKG participates in E-Verify. View the E-Verify posters here ( .

Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email