Intern, Information Technology

Information Technology Intern

Location – Solana Beach, CA

LENZ Therapeutics is a pharmaceutical company focused on the commercialization of VIZZ® (aceclidine ophthalmologic solution) 1.44%, the first and only FDA-approved aceclidine based eye drop for treating presbyopia, a condition impacting an estimated 1.8 billion people globally and 128 million people in the United States. LENZ is commercializing VIZZ® in the United States and continues to establish licensing partnerships internationally to provide access to VIZZ globally. The company is headquartered in San Diego, California.

If you are a college student or new graduate, our Summer Intern Program offers the opportunity to gain invaluable firsthand work experience in an area related to your academic field of study or interest. Join us for 8-12 weeks from late May to August, to experience a structured and mutually beneficial learning experience along with LENZ’s unique environment and culture.

Join LENZ Therapeutics as an intern and be part of a team that believes we are better together. You will work alongside supportive, driven colleagues who are all in on our mission and committed to helping you learn and grow. This role is based on site in our Solana Beach office Monday–Thursday, with remote work on Fridays. We provide lunch onsite and come together each day, creating a collaborative, energetic environment where curiosity, ingenuity, and teamwork thrive.

Overall Purpose:

We are seeking an Information Technology Intern who will support the IT Security team in the assessment, implementation, and continuous improvement of security controls aligned to the CIS Critical Security Controls v8 and the NIST Cybersecurity Framework (CSF) 2.0. The Cybersecurity Controls & Cloud Compliance Intern will report to the Director, Information Technology. The intern will focus primarily on Microsoft Azure and cloud-based infrastructure, contributing to configuration hardening, policy enforcement, compliance gap analysis, and security documentation. This is a hands-on, technical role with measurable deliverables.

Key Responsibilities of the Role:

CIS Controls & Framework Implementation

• Assist in closing gaps against CIS Controls v8 Implementation Groups (IG1-IG2), mapping current-state configurations to target-state requirements
• Assist in implementing or documenting controls across key CIS domains including asset inventory, data protection, access control, audit log management, and incident response
• Support alignment activities between CIS Controls and NIST CSF 2.0 core functions: Govern, Identify, Protect, Detect, Respond, and Recover
• Contribute to control evidence collection for compliance tracking and audit readines

Azure & Cloud Security

• Evaluate Azure environment configurations using Microsoft Defender for Cloud (Secure Score, recommendations, and compliance dashboards), Purview, and other Microsoft security tools
• Assist in implementing Azure Policy definitions and initiatives to enforce baseline security configurations
• Review and help remediate findings related to identity and access management (IAM), storage security, and key management
• Support implementation of Microsoft Entra ID (formerly Azure AD) security best practices including MFA, Conditional Access, and Privileged Identity Management (PIM)
• Assist with cloud workload protection configuration across Azure VMs, containers, and serverless functions

Documentation & Reporting

• Develop and maintain control implementation documentation, evidence artifacts, and remediation tracking registers
• Prepare concise status reports and briefings for IT leadership on control gaps, progress, and risk indicators
• Contribute to the organization’s security policy library, including procedure updates aligned to framework requirements

Collaboration & Learning

• Partner with IT team to identify security requirements and integrate controls into existing workflows
• Participate in team meetings, tabletop exercises, and working groups

 

Academic Credit:

If an internship is associated with academic credit:

• The intern is responsible for coordinating credit requirements with their institution.
• LENZ may complete required evaluations or documentation, as appropriate.
• Academic credit does not replace compensation unless the internship qualifies as unpaid under California law.

Physical Demands and Work Environment

Onsite in Solana Beach, CA Monday to Thursday (remote Fridays). Typically works in an office environment. May, on a continuous basis, sit at desk for a long period of time, intermittently answer telephone and write or use a keyboard to communicate through written means. Some walking and lifting up to 20 lbs. may be required. The noise level in the work environment is usually low to moderate. Must be flexible to work varying schedules and hours as needed. Frequent out-of-town travel may be required. The physical demands described above are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Mission Statement:

LENZ employees are united in a mission to improve and sustain vision. We are passionate and creative about applying scientific innovation to meet the needs of the millions of people worldwide who suffer from Presbyopia and other ophthalmic maladies. We focus on the development and commercialization of new therapies to bring our mission to life for patients every day.

Hourly Rate

• Pay is $20/hr. Schedule can be up to 40 hours per week.

Additional Details:

• Internships are temporary and typically last 8–12 weeks (start and end dates will be clearly defined in writing in the offer letter).
• Internships do not guarantee future employment.

Required Skills:

• Foundational knowledge of cybersecurity concepts including the CIA triad, least privilege, defense in depth, and network security fundamentals
• Basic familiarity with cloud computing concepts (IaaS, PaaS, SaaS) and at least introductory exposure to Microsoft Azure or another major cloud provider (AWS, GCP)
• Understanding of one or more security frameworks: CIS Controls, NIST CSF
• Analytical mindset with attention to detail and ability to document findings clearly and concisely
• Ability to work independently and manage time effectively in a remote or hybrid environment
• Ability to handle confidential information responsibly and adhere to security policies

Preferred Qualifications:

• Hands-on experience with Microsoft Azure through coursework, labs, certifications, or personal projects (Azure portal, Azure CLI)
• Completion of or active pursuit of an entry-level certification such as CompTIA Security+, Microsoft AZ-900 (Azure Fundamentals), SC-900 (Security Fundamentals), AZ-500 (Azure Security Engineer), or equivalent
• Familiarity with security tooling such as Microsoft Defender for Cloud, Microsoft Sentinel, Nessus/Tenable, Qualys, or similar
• Familiarity with scripting languages (PowerShell, Python, Typescript or Bash) for automation and configuration management tasks
• Exposure to GRC (Governance, Risk, and Compliance) platforms or tools
• Participation in cybersecurity competitions (CTFs), clubs, or student organizations

Program Requirements:

• Currently enrolled in an accredited undergraduate or graduate program in Cybersecurity, Information Technology, Computer Science, Information Systems, or a closely related field
• Cumulative 3.0 GPA or above; college transcript required.
• Currently enrolled in or newly graduated from an accredited college/university.
• Legally authorized to work in the U.S.
• At least 18 years of age prior to the scheduled start date.
• Must complete an application and provide a cover letter expressing interest and indicating best department to further learning goals.
• Must successfully pass a background check prior to the program start date. Onboarding will be provided.
• Successfully pass all compliance modules.
• Final presentation on learning during last week of the program.