Job Type:
- Full Time
- Hybrid Onsite at the Studio McGee \| McGee \& Co. HQ Office located in Draper, Utah (preferred)
- Reports To: Director, Technology \& Strategic Operations
- Manage all user provisioning and deprovisioning using JumpCloud SSO/SAML group\-based access — access is granted at the group/role level, never the individual user level.
- Troubleshoot SSO authentication issues independently; diagnose JumpCloud group membership failures without escalating to management.
- Perform regular access audits to verify permissions align with active employee records; remediate gaps proactively and document findings.
- Enforce least\-privilege access principles across all SaaS platforms and flag over\-permissioned accounts during audits.
- Monitor security alerts, logs, and anomalies across Microsoft 365, JumpCloud, and connected systems; investigate and escalate incidents as appropriate.
- Manage and maintain endpoint protection across all company devices — including antivirus, MDM enrollment via JumpCloud, and device compliance policies.
- Administer and enforce MFA across all systems; manage conditional access policies and document security configurations per platform.
- Lead phishing simulation campaigns and security awareness training for employees; track completion rates and follow up with non\-compliant users.
- Monitor DMARC, DKIM, and SPF configurations across our email domains; investigate and respond to email\-based threats.
- Support PCI compliance requirements including access control reviews, audit log maintenance, and documentation of security controls.
- Maintain and test an incident response runbook; coordinate response to security events with leadership and relevant vendors.
- Execute new hire setup end\-to\-end: JumpCloud, Microsoft 365, NetSuite role provisioning, Slack, Asana, and all role\-specific SaaS access.
- Complete termination checklists fully and on time: disable all accounts, revoke SSO group membership, wipe or recover devices, and document completion in Asana.
- Assign NetSuite access based on confirmed business use case from the direct manager — understand how global permissions interact with role\-based permissions.
- Monitor and action support tickets in Asana daily across Accounting, Finance, Merchandising, People, and the Executive team.
- Own weekly bill reconciliation in Bill.com and maintain the systems inventory including renewal dates, license counts, and integration dependencies.
- Evaluate new software tools for security and SSO compatibility before onboarding; document integration requirements and security configurations.
- Partner with third\-party vendors (VLCM, Tech Legion, Apple) on hardware procurement, endpoint management, and security escalations.
- Maintain all SOPs, security configurations, and access control documentation with enough detail to be reproducible without your involvement.
- Track all tasks and recurring responsibilities in Asana with accurate due dates; complete recurring work on schedule without reminders.
- Support data retention, endpoint management, and access control policies in line with company IT and security standards.
- 3–5\+ years in systems administration, IT operations, or cybersecurity with direct ownership of access management and endpoint security.
- Hands\-on JumpCloud experience — SSO/SAML configuration, MDM, and user group management. Non\-negotiable.
- Experience with Microsoft 365/Entra ID including conditional access, Defender, and security compliance tools.
- Working knowledge of NetSuite role\-based permissions, Slack workspace administration, Asana, and Bill.com.
- Familiarity with PCI compliance requirements, phishing simulation tools (e.g., KnowBe4, Proofpoint), and email security (DMARC/DKIM/SPF).
- Experience with eCommerce SaaS platforms a strong plus (Deposco, Shopify, Airtable, Celigo, etc.).
- Detail\-oriented — you complete multi\-step processes fully, verify your own work, and don’t consider a task done until it’s confirmed.
- Self\-sufficient — you consult documentation, vendor support, and your own testing before escalating. You don’t route basic troubleshooting to your manager.
- Accountable — when something goes wrong, you own it, correct it, and update your process. You don’t attribute errors to tools.
- Security\-minded — you think about risk proactively, flag gaps before they become incidents, and treat access management as a critical function, not an administrative task.
- Competitive compensation \+ bonuses
- Comprehensive health benefits (medical, dental, vision, pet)
- Open PTO
- 401k with 4% company match up to 6%
- Team Member discount at McGee \& Co. \+ access to Team Member only warehouse sales
- Opportunity to be part of a vibrant, inclusive, and innovative team
Who We Are:
Founded in 2014, Studio McGee, Inc. is one of the fastest growing home design brands in America. Our journey began with a thriving interiors business that focused on approachable, yet aspirational design. By leveraging the power of digital communities, we were able to expand our footprint in the interior design industry through an unconventional approach that connected us with our consumers. We continued to carry that forward\-thinking attitude into the launch of our retail business, McGee \& Co., which anchors the operational and revenue growth of our company. Our licensing partnerships allow us to further expand our design voice beyond our own collection. From a multi\-year partnership with Target to an Emmy\-nominated Netflix Series and a NY Times Best\-Selling book, Studio McGee's passion is to empower people to design with an approachability that enhances their daily life and elevates their everyday. Whether following us on social media or becoming part of our company, we invite you to join us on our mission to “Make Life Beautiful.”
About the Role:
===================
The Cybersecurity Administrator owns identity and access management, endpoint security, threat monitoring, and SaaS operations across our tech stack. You ensure every user has the right access, every device is secure and managed, and every potential threat is identified and addressed before it becomes an incident.
This is a hands\-on role requiring proven experience with JumpCloud SSO, group\-based access management, endpoint protection, and security compliance. You work independently, follow and build documented processes, and hold yourself to a high standard of accuracy and accountability.
What You'll Do:
*Identity \& Access Management*
*Cross Functional/Internal Team Role*
*Onboarding \& Offboarding*
*Systems \& Operations*
*Documentation \& Compliance*
What We're Looking For:
*Technical Skills*
*How You Work*
Benefits:
McGee is proud to be an equal opportunity employer \- we see the beauty of celebrating our teams' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status. Together we Make Life Beautiful.