Security Operations Analyst

As a Security Operations Analyst at CMG, you will play a pivotal role in protecting our technology stack, data, and users. You will work closely with Security, IT, and Engineering teams to ensure the security, resilience, and compliance of our cloud-first, distributed environment. This is a remote position with an expectation of high autonomy, initiative, and the ability to drive improvements across security operations and IT security. Monitor, triage, and respond to security alerts and incidents across endpoints, cloud, and SaaS environments. Conduct root cause analysis, document incidents, and assist with post-incident reviews. Develop and maintain incident response playbooks; participate in tabletop exercises. Administer and enhance endpoint security for macOS and Windows, supporting company-owned devices. Develop and manage endpoint hardening baselines, configurations, and compliance reporting. Support automation and scripting efforts (e.g., PowerShell, Bash, Python) to improve monitoring and response. Support security and compliance controls in Azure AD, Office 365, and key SaaS platforms. Implement and monitor access controls, DLP policies, and secure configurations for cloud and SaaS solutions. Participate in third-party and vendor risk reviews; contribute to risk assessments and audits. Support the development and maintenance of security policies, procedures, and runbooks.