IT Infrastructure and Security Analyst

Who We Are 

CPM Educational Program’s mission is to empower mathematics students and teachers through exemplary curriculum, professional development, and leadership. Our teacher-supporting, student-centered, problem-based classroom solutions for grades 6–12 foster engagement and equity in the classroom, while we strive to cultivate these same values within our workplace culture.

CPM Educational Program is committed to being an open-minded, inclusive organization that embraces diversity and values underrepresented voices and experiences. CPM Educational Program is an equal opportunity employer. We do not discriminate on the basis of race, religion, sex, gender, sexual identity, disability, or any other protected status.

CPM Educational Program knows that diversity generates better ideas, inspires creativity, and is essential to building a positive workplace. As an employer of choice we hire and retain the best employees by valuing differences, creating a collaborative work environment, and providing career development opportunities.

Your Role at a Glance

The IT Infrastructure and Security Analyst is a full-time, exempt, role that reports to the Chief Technology Officer in the Information Technology department. 

This position is responsible for managing and securing company devices, administering mobile device management (MDM) platforms, enforcing access controls, and supporting ongoing security and compliance efforts. The ideal candidate has a strong understanding of endpoint management, access provisioning, and IT security best practices in a corporate environment.

This role does not carry any supervisory responsibilities.

Education and/or Experience: 

• 2–4 years of experience in IT infrastructure, systems administration, or security operations.
• Hands-on experience with MDM platforms (e.g., Kandji/Hexnode/JumpCloud, etc.).
• Working knowledge of identity and access management tools (e.g., Google Workspace, AWS,).
• Understanding of endpoint security, patch management, and device compliance.
• Familiarity with security frameworks and compliance standards (e.g., NIST,  ISO 27001, etc).
• Strong troubleshooting and problem-solving skills

Computer Skills: Experience with scripting or automation (e.g., PowerShell, Bash) for device or user management, as well as experience working in a regulated or compliance-driven environment, is preferred. An individual should have knowledge of Google Workspace. Knowledge of basic office equipment should include: Internet, email, telephone, and computers.  Ability to learn to use unfamiliar software. 

Certificates, Licenses, Registrations:  Certifications such as CompTIA Security+, Microsoft Certified: Security, Compliance, and Identity Fundamentals, or similar are preferred. A current driver’s license and proof of auto insurance are required if driving for work.

Essential Duties and Responsibilities

• Device & Endpoint Management:
  • Design, administer, and optimize enterprise device management solutions (e.g., Kandji/Hexnode/JumpCloud).
  • Oversee and refine enrollment, configuration, and compliance of company devices (macOS, iOS, Android, Windows).
  • Analyze and monitor device inventory, status, and health through MDM and endpoint management tools.
• Access Controls:
  • Architect and manage user access provisioning, de-provisioning, and permissions using tools such as Google Workspace, AWS, or other IAM solutions.
  • Implement and refine role-based access control (RBAC) and enforce least privilege principles.
  • Conduct access reviews and contribute to audit and compliance strategy.
• Security & Compliance Support:
  • Develop and apply security protocols for patching, vulnerability mitigation, and encryption enforcement.
  • Support the design and continuous improvement of security policies and technical controls.
  • Contribute to internal audits, risk assessments, and compliance initiatives (e.g., NIST, ISO 27001,  etc.).
  • Monitor and triage security alerts, escalating incidents based on severity and impact.
• Infrastructure Support:
  • Consult on IT operations, including network architecture and system reliability.
  • Work with other IT and security team members to improve infrastructure reliability and security posture.
  • Document system configurations, architectural decisions, and technical standards.

Additional responsibilities aligned with the needs of the organization.