Cybersecurity Administrator

About The Position

Requirements

• 3–5+ years in systems administration, IT operations, or cybersecurity with direct ownership of access management and endpoint security.
• Hands-on JumpCloud experience — SSO/SAML configuration, MDM, and user group management. Non-negotiable.
• Experience with Microsoft 365/Entra ID including conditional access, Defender, and security compliance tools.
• Working knowledge of NetSuite role-based permissions, Slack workspace administration, Asana, and Bill.com.
• Familiarity with PCI compliance requirements, phishing simulation tools (e.g., KnowBe4, Proofpoint), and email security (DMARC/DKIM/SPF).
• Detail-oriented — you complete multi-step processes fully, verify your own work, and don’t consider a task done until it’s confirmed.
• Self-sufficient — you consult documentation, vendor support, and your own testing before escalating. You don’t route basic troubleshooting to your manager.
• Accountable — when something goes wrong, you own it, correct it, and update your process. You don’t attribute errors to tools.
• Security-minded — you think about risk proactively, flag gaps before they become incidents, and treat access management as a critical function, not an administrative task.

Nice To Haves

• Experience with eCommerce SaaS platforms a strong plus (Deposco, Shopify, Airtable, Celigo, etc.).

Responsibilities

• Manage all user provisioning and deprovisioning using JumpCloud SSO/SAML group-based access — access is granted at the group/role level, never the individual user level.
• Troubleshoot SSO authentication issues independently; diagnose JumpCloud group membership failures without escalating to management.
• Perform regular access audits to verify permissions align with active employee records; remediate gaps proactively and document findings.
• Enforce least-privilege access principles across all SaaS platforms and flag over-permissioned accounts during audits.
• Monitor security alerts, logs, and anomalies across Microsoft 365, JumpCloud, and connected systems; investigate and escalate incidents as appropriate.
• Manage and maintain endpoint protection across all company devices — including antivirus, MDM enrollment via JumpCloud, and device compliance policies.
• Administer and enforce MFA across all systems; manage conditional access policies and document security configurations per platform.
• Lead phishing simulation campaigns and security awareness training for employees; track completion rates and follow up with non-compliant users.
• Monitor DMARC, DKIM, and SPF configurations across our email domains; investigate and respond to email-based threats.
• Support PCI compliance requirements including access control reviews, audit log maintenance, and documentation of security controls.
• Maintain and test an incident response runbook; coordinate response to security events with leadership and relevant vendors.
• Execute new hire setup end-to-end: JumpCloud, Microsoft 365, NetSuite role provisioning, Slack, Asana, and all role-specific SaaS access.
• Complete termination checklists fully and on time: disable all accounts, revoke SSO group membership, wipe or recover devices, and document completion in Asana.
• Assign NetSuite access based on confirmed business use case from the direct manager — understand how global permissions interact with role-based permissions.
• Monitor and action support tickets in Asana daily across Accounting, Finance, Merchandising, People, and the Executive team.
• Own weekly bill reconciliation in Bill.com and maintain the systems inventory including renewal dates, license counts, and integration dependencies.
• Evaluate new software tools for security and SSO compatibility before onboarding; document integration requirements and security configurations.
• Partner with third-party vendors (VLCM, Tech Legion, Apple) on hardware procurement, endpoint management, and security escalations.
• Maintain all SOPs, security configurations, and access control documentation with enough detail to be reproducible without your involvement.
• Track all tasks and recurring responsibilities in Asana with accurate due dates; complete recurring work on schedule without reminders.
• Support data retention, endpoint management, and access control policies in line with company IT and security standards.

Benefits

• Competitive compensation + bonuses
• Comprehensive health benefits (medical, dental, vision, pet)
• Open PTO
• 401k with 4% company match up to 6%
• Team Member discount at McGee & Co. + access to Team Member only warehouse sales
• Opportunity to be part of a vibrant, inclusive, and innovative team