COMPANY OVERVIEW

Cresco Labs is one of the largest public, vertically integrated, multistate operators in the cannabis industry. Our portfolio of in-house cultivated and manufactured brands features some of the highest quality, most awarded and most popular cannabis products in America. With dozens of locations nationwide, our owned and operated Sunnyside® dispensaries provide a welcoming, positive, judgement-free place to shop for anyone at any point on their cannabis journey.
Founded in 2013, Cresco Labs’ mission is to normalize and professionalize cannabis through our passionate employees. As stewards of the cannabis industry, our teams are constantly focused on supporting the needs of our fellow colleagues, consumers, customers, and communities alike. With a focus on Social Equity and Educational Development, our SEEDTM initiative ensures that our company reflects the communities in which we serve, ensuring equal opportunity for all to have the knowledge and resources to work in and own businesses in cannabis.
At Cresco Labs, we aim to revolutionize and lead the nation’s cannabis industry with a focus on quality and consistency of product, and to bring legitimacy to the industry with the highest level of integrity and professionalism.
If you’re interested in joining our mission, click the below links to join our team today!

JOB SUMMARY

Cresco Labs is seeking a detail-oriented and security-focused Service Desk Specialist – User Provisioning & Deprovisioning to join our IT support team. In addition to general service desk tasks, this role is primarily responsible for managing the user lifecycle, ensuring proper access to systems and applications, and enforcing security best practices related to identity and access management (IAM). The analyst will also be responsible for generating and analyzing access reports to maintain compliance and identify potential issues. This is a specialist service desk role, handling user access requests, troubleshooting access-related issues, reporting and escalating concerns as needed.

REQUIRED EXPERIENCE, EDUCATION AND SKILLS

• 2+ years of experience in IT service desk, identity and access management, or related IT support roles.
• Familiarity with IAM solutions like Microsoft Entra ID, Okta, CyberArk, SailPoint, or similar.
• Experience working with ITSM tools such as FreshService, ServiceNow or other ticket management application.
• Basic understanding of authentication protocols (SAML, OAuth, LDAP, SCIM) and directory services (Active Directory, Azure AD, Google Workspace, etc.).
• Strong attention to detail and ability to follow security best practices.
• Excellent customer service and communication skills.
• Ability to work collaboratively with cross-functional teams.
• Familiarity with automation tools (PowerShell, APIs) is a plus but not required.

ADDITIONAL REQUIREMENTS

• Must be 21 years of age or older to apply
• Must comply with all legal or company regulations for working in the industry
  Cresco Labs is an Equal Opportunity Employer and all applicants will be considered without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.

CORE JOB DUTIES

• User Lifecycle Management: Perform provisioning, modification, and deprovisioning of user accounts, access permissions, and security credentials across enterprise systems, with a focus on SOX systems.
• Troubleshooting & Support: Provide first-level troubleshooting for user access issues and escalate complex cases to higher-tier support teams or application business owners.
• Issue Escalation: Escalate unresolved questions or issues to application business owners or senior IT staff when necessary.
• Audit & Compliance Documentation: Ensure all Q&A or clarifications are documented within the ticket and messaged communications for audit purposes.
• Reporting: Generate and analyze reports on user access to ensure compliance and identify potential issues.
• Security & Compliance: Follow role-based access controls (RBAC), least privilege principles, and company security policies to ensure compliance with SOC 2 and other regulatory standards.
• Collaboration & Communication: Work closely with IT, HR, and security teams to ensure seamless onboarding/offboarding processes and access governance.
• Documentation & Knowledge Sharing: Maintain comprehensive documentation on provisioning processes and contribute to knowledge base articles for user access management best practices.
• Handle initial triage and advanced troubleshooting of IT related issues raised by users via ITSM platform or phone.
• Assist end-users using remote desktop tools or phone, chat, email support.
• Troubleshoot basic network connectivity issues.
• Assist with software deployments and process changes.