IT Auditor

Posted on 9/8/2023

1,001-5,000 employees

Website

Cannabis and medical marijuana

Company Overview

Cresco Labs is on a mission to normalize, professionalize and revolutionize cannabis.

Locations

Chicago, IL, USA

Experience Level

Entry

Junior

Mid

Senior

Expert

Desired Skills

Oracle

CategoriesNew

IT & Security

Requirements

A degree in information technology/computer information systems or related (essential)
Certified Information Systems Auditor (CISA) (essential)
2 years of work experience as an IT Auditor
Experience with firewalls (functionality and maintenance), Office 365 Security, VSX, and Endpoint Security
Financial and IT application experience (SAP, Oracle, Peoplesoft, and Hyperion)
Expert in Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits
Clear understanding of IT audit methodologies
Ability to work under pressure in a fast-paced environment
Strong attention to detail with an analytical mind and outstanding problem-solving skills
Great awareness of cybersecurity trends and hacking techniques
Must be 21 years of age or older to apply
Must comply with all legal or company regulations for working in the industry

Responsibilities

Examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies
Troubleshoot security and network problems
Plan, implement, monitor, and upgrade security measures for the protection of the organization's data, systems, and networks
Participate in the change management process
Test & identify network & system vulnerabilities and create counteractive strategies to protect the network
Conduct efficient and effective IT audit procedures
Communicate complex technical issues in simplified terms to the relevant staff
Perform regular audit testing and provide recommendations
Review, evaluate, and test application controls
Provide recommendations and guidance on identified security and control risks
Develop a strong understanding of policy gaps & create relevant policies, standards, & procedures where needed; examine System & Organization Controls (SOC) reports for 3rd party applications

COMPANY OVERVIEW

Cresco Labs is one of the largest public, vertically integrated, multistate operators in the cannabis industry. Our portfolio of in-house cultivated and manufactured brands features some of the highest quality, most awarded and most popular cannabis products in America. With dozens of locations nationwide, our owned and operated Sunnyside® dispensaries provide a welcoming, positive, judgement-free place to shop for anyone at any point on their cannabis journey.

Founded in 2013, Cresco Labs’ mission is to normalize and professionalize cannabis through our passionate employees. As stewards of the cannabis industry, our teams are constantly focused on supporting the needs of our fellow colleagues, consumers, customers, and communities alike. With a focus on Social Equity and Educational Development, our SEEDTM initiative ensures that our company reflects the communities in which we serve, ensuring equal opportunity for all to have the knowledge and resources to work in and own businesses in cannabis.

At Cresco Labs, we aim to revolutionize and lead the nation’s cannabis industry with a focus on quality and consistency of product, and to bring legitimacy to the industry with the highest level of integrity and professionalism.

If you’re interested in joining our mission, click the below links to join our team today!

MISSION STATEMENT

At Cresco, we aim to lead the nation’s cannabis industry with a focus on regulatory compliance, product consistency, and customer satisfaction. Our operations bring legitimacy to the cannabis industry by acting with the highest level of integrity, strictly adhering to regulations, and promoting the clinical efficacy of cannabis. As Cresco grows, we will operate with the same level of professionalism and precision in each new market we move in to.

JOB SUMMARY

Cresco Labs is looking to employ an IT Auditor for our Corporate Internal Audit (IA) team. The IT Auditor serves as a central point of contact for the execution of periodic and annual IT general controls activities. As a valued member of the greater IA, you will join a team looking to provide independent input into Cresco’s key processes and controls, assisting with the controlled implementation and operationalization of systems, reviewing the ITGC program with our senior management and Cresco’s external auditor, and assisting the company in driving towards overall best practices.

CORE JOB DUTIES

Examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies.
Troubleshoot security and network problems.
Plan, implement, monitor, and upgrade security measures for the protection of the organization’s data, systems, and networks.
Participate in the change management process.
Test & identify network & system vulnerabilities and create counteractive strategies to protect the network.
Conduct efficient and effective IT audit procedures.
Communicate complex technical issues in simplified terms to the relevant staff.
Perform regular audit testing and provide recommendations.
Review, evaluate, and test application controls.
Provide recommendations and guidance on identified security and control risks.
Develop a strong understanding of policy gaps & create relevant policies, standards, & procedures where needed; examine System & Organization Controls (SOC) reports for 3^rd party applications.

REQUIRED EXPERIENCE, EDUCATION AND SKILLS

A degree in information technology/computer information systems or related (essential).
Certified Information Systems Auditor (CISA) (essential).
2 years of work experience as an IT Auditor.
Experience with firewalls (functionality and maintenance), Office 365 Security, VSX, and Endpoint Security.
Financial and IT application experience (SAP, Oracle, Peoplesoft, and Hyperion).
Expert in Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits.
Clear understanding of IT audit methodologies.
Ability to work under pressure in a fast-paced environment.
Strong attention to detail with an analytical mind and outstanding problem-solving skills.
Great awareness of cybersecurity trends and hacking techniques.

BENEFITS

Cresco Labs is proud to offer eligible employees a robust offering of benefits including, major medical, dental and vision insurance, a 401(K)-match program, FSA/HSA programs, LTD/STD options, life insurance and AD&D. We also offer eligible employees paid holidays and paid time off. Other rewards may include annual discretionary bonuses, stock options as well as participation in our employee discount program. Benefits eligibility for permanent positions may vary by full-time or part-time roles, location, or position.

ADDITIONAL REQUIREMENTS

Must be 21 years of age or older to apply
Must comply with all legal or company regulations for working in the industry

Cresco Labs is an Equal Opportunity Employer and all applicants will be considered without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.