Before you apply to a job, select your language preference from the options available at the top right of this page. Explore your next opportunity at a Fortune Global 500 organization. Envision innovative possibilities, experience our rewarding culture, and work with talented teams that help you become better every day. We know what it takes to lead UPS into tomorrow—people with a unique combination of skill + passion. If you have the qualities and drive to lead yourself or teams, there are roles ready to cultivate your skills and take you to the next level. Job Description: SENIOR INFORMATION SECURITY ANALYST The Sr. Information Security Analyst on the Information Security Identity Access Governance (Info Sec IAG) will assist in maintaining and building out our identity provisioning and auditing practice. This position is critical to maintaining the integrity, security, and compliance of our IBM z/OS Mainframe environment within IBM Security Server (RACF). This role ensures operational stability, regulatory adherence, and timely support for business-critical systems. This position leads the implementation of new Mainframe hardware cryptographic master keys, ensuring robust encryption capabilities. In addition, the role supports SOX compliance through quarterly DataSet audits and UPS control reviews for application access. Serving as the primary authority for encryption operations in our Mahwah data center, this resource also manages the digital certificate lifecycle, guaranteeing alignment with corporate security standards and regulatory requirements. Responsibilities: - Performs incident management, team mailbox support, daily requests received in SailPoint which includes MFA assignment, Dataset, CICS, Generic IDs and DB2 new group requests. - Completes IIQ SailPoint post processing for elevated RACF group connections. - Handles support issues and carries a support phone during the allocated week. - Reports and performs access reviews such as DataSet Quarterly audits, SOX relates audits for UPS controls for application access. - Monitors and completes any manual jobs. - Installs and provide life cycle management support for digital certificates. - Performs encryption functions using pervasive and crypto keys. - Performs master key entry for new z/OS boxes as well as rotates master keys in ICSF. Qualifications: - Experience completing end to end Mainframe projects. - Minimal Mainframe requirements include knowledge and experience using IBM Security Server (RACF), IBM z/OS mainframe environments, TN3270 interfaces (i.e. QWS3270), 3270 session monitors (i.e. TPX), TSO, ISPF. - TKE utility experience and ICSF key management experience is a must. - Pluses include additional knowledge and experience of Mainframe auditing as well as using any of the following: Stig Viewer, Vanguard Administrator, IBM zSecure Audit for RACF, REXX, JCL. - Minimal Windows requirements include knowledge and experience using MS Office products and Planview. - Excellent written and verbal communication skills - Bachelor’s Degree or International equivalent in Computer Science or a related field preferred Other Criteria - Job Grade: 20H - Work Location: This is a remote position but candidates will be required to report to the Mahwah, NJ, Parsippany, NJ or Alpharetta, GA location occasionally Pay Range: Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $90,840.00/year to $168,360.00/year. Pay is based on several factors including but not limited to, market location and may vary depending on job-related knowledge, skills, and education/training and a candidate’s work experience. Hired applicants are offered annual short-term and/or long-term incentive compensation programs, subject to applicable eligibility requirements. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance. The company offers the following benefits for this position, subject to applicable eligibility requirements. Medical/prescription drug coverage, Dental coverage, Vision coverage, Flexible Spending Account, Health Savings Account, Dependent Care Flexible Spending Account, Basic and Supplemental Life Insurance & Accidental Death and Dismemberment, Disability Income Protection Plan, Employee Assistance Program, 401(k) retirement program, Vacation, Paid Holidays and Personal time, Paid Sick and Family and Medical Leave time as required by law, and Discounted Employee Stock Purchase Program. Employee Type: Permanent UPS is committed to providing a workplace free of discrimination, harassment, and retaliation. Other Criteria: UPS is an equal opportunity employer. UPS does not discriminate on the basis of race/color/religion/sex/national origin/veteran/disability/age/sexual orientation/gender identity or any other characteristic protected by law. Basic Qualifications: Must be a U.S. Citizen or National of the U.S., an alien lawfully admitted for permanent residence, or an alien authorized to work in the U.S. for this employer.

• Help Tenchi clients understand our product features and best practices for reducing cyber risk in cloud environments, ensuring the successful adoption of our product integrated into the client's third-party risk management process. • Perform routine operations to meet our clients' requests, generating insights to guide future automation of these operations. • Diagnose product-related issues and work with the technical support and engineering teams to resolve client issues efficiently. • Monitor the health of client environments and collaborate with them to drive product adoption. • Work with the product team by providing customer feedback and offering insights for product improvements and enhancements. • Proactively engage with clients to identify their needs, concerns, and areas for improvement, assisting them in achieving their cybersecurity objectives. • Track and report key metrics such as client satisfaction, product usage, and retention. • Assist in the creation and maintenance of client-facing resources, such as FAQs, product documentation, and best practice guides. • Experience with Python programming and task automation is a plus. • Experience building and maintaining QuickSight, PowerBI, and other analytics dashboards is a plus.

• Join our team as a Cybersecurity Analyst, where you'll play a critical role in assessing and analyzing cybersecurity documentation for client information systems. • You'll apply your scripting skills to develop and improve automations that streamline our assessment processes. • Your work will align with FISMA, NIST RMF for Federal Civilian Agencies, RMF for DoD IT, FedRAMP, and departmental standards, with a primary focus on FedRAMP. • Engage directly with clients through verbal communication to perform interviews for assessments, understand their needs, and provide effective solutions. • Conduct comprehensive assessments by analyzing cybersecurity documentation and performing evidence collection, interviews, and tests to evaluate compliance with relevant standards such as FISMA, NIST RMF, and FedRAMP. • Creating scripts and/or utilizing scripts to automate repetitive tasks and improve the efficiency of security assessments, reporting, and evidence collection. • Conduct system and network vulnerability scanning and analysis using tools such as Nessus/ACAS, SCC, and DISA STIGs/STIG Viewer. • Prepare clear and accurate reports and documentation, with an emphasis on creating scripts to automate analysis and report generation. • Work independently or as part of a client delivery team in a fast-paced, deadline-driven, remote environment. • Travel up to 25% for client engagements as required.

• Support Ensono’s internal audit and security control framework initiatives. • Document the Audit Process for All Ensono Audits. • Identify AI Opportunities for Internal Audit and develop solutions. • Review and update Ensono Security Control Framework (ESCF) with test procedures.