IT Security Engineer

Summary

Join Cresco Labs as an IT Security Engineer and play a vital role in ensuring compliance with HIPAA and SOX regulations. You will collaborate with various teams to identify and remediate security risks, develop and implement security policies and procedures, and maintain core security tools across the Microsoft ecosystem. Responsibilities include administering security and compliance tools, securing network and endpoint environments, and assisting the Security Operations Center. This position requires experience with security frameworks and technical expertise in computer networking and cloud environments. A bachelor's degree in a related field or sufficient experience is preferred, along with strong communication and organizational skills. Cresco Labs offers a competitive salary and benefits package, including health insurance, retirement benefits, paid time off, and more.

Requirements

• Experience with security frameworks (HIPAA, SOC 2, HiTrust, NIST, ISO27001)
• Technical expertise in computer networking, Microsoft Azure, and Microsoft 365 cloud environments, including configuration, management, and security best practices
• Demonstrates strong organizational skills and the ability to communicate effectively through clear, concise written and verbal communication
• Self-motivated and proactive, with the ability to work independently, take ownership of projects, and drive tasks to completion with minimal supervision
• Must be 21 years of age or older to apply
• Must comply with all legal or company regulations for working in the industry

Responsibilities

• Collaborate with Information Security and other IT teams to identify security risks, control gaps, and system vulnerabilities, and lead efforts to remediate issues in a timely and effective manner
• Continuously develop strong controls around Identity and Access Management (IAM), such as creating conditional access policies, identity governance practices, and privileged access management policies
• Support IT General Controls (ITGC) activities by creating and maintaining audit-ready documentation, including detailed architectural diagrams and technical materials that illustrate security controls, data flows, and system integrations
• Collaborate with internal and external auditors to ensure compliance with security and governance standards
• Administer and maintain core security and compliance tools across the Microsoft ecosystem, including Microsoft Entra ID, Microsoft Defender (Endpoint, Cloud, O365), Microsoft Purview, Microsoft Sentinel, Tanium, and other Microsoft Azure services
• Ensure consistent configuration, monitoring, and policy enforcement across Microsoft 365 and Azure environments
• Secure network and endpoint environments by managing Cisco Meraki firewalls, ACLs, and VPNs, implementing intrusion detection/prevention systems (IDS/IPS), and maintaining endpoint protection solutions to ensure robust threat defense and network segmentation
• Assist the Security Operations Center (SOC) in monitoring SIEM alerts, investigating security events, and responding to incidents to ensure timely threat detection and remediation
• Rotating on-call schedule to allow for cross coverage

Preferred Qualifications

• Security certification strongly preferred; examples include Microsoft Certified: Azure Security Engineer Associate, CompTIA Security+, ISC 2 certifications, or GIAC certifications such as GSEC, GCIA, or GMON
• Bachelor’s degree in MIS, Computer Science, or Cybersecurity preferred, or sufficient experience in relevant fields

Benefits

• Major medical, dental and vision insurance
• A 401(K)-match program
• FSA/HSA programs
• LTD/STD options
• Life insurance and AD&D
• Paid holidays and paid time off
• Annual discretionary bonuses
• Stock options
• Participation in our employee discount program