IT Security Analyst
Harbor
IT Security Analyst
Harbor is seeking a Security Analyst to join our internal IT Operations team. This role is responsible for strengthening Harbor's security posture through proactive vulnerability management, third-party risk management (TPRM), and client-facing security assurance activities. The ideal candidate brings hands-on experience with vulnerability scanning tools (particularly Qualys), strong analytical skills, and the ability to communicate security practices effectively across internal and external stakeholders.
This is a fully remote position located in Canada or the Philippines and must align with United States working business hours (EST).
Key Responsibilities:
Vulnerability Management (Qualys-Focused)
- Administer and operate Qualys for continuous vulnerability scanning across infrastructure, endpoints, and cloud environments
- Analyze scan results, prioritize vulnerabilities based on risk, and coordinate remediation efforts with infrastructure and engineering teams
- Track remediation progress and produce reporting dashboards and metrics for leadership
- Continuously improve vulnerability management processes, including SLAs, exception handling, and risk acceptance workflows
Third-Party Risk Management (TPRM)
- Support and manage the third-party risk lifecycle, including vendor onboarding, assessments, and periodic reviews
- Evaluate vendor security posture using standardized frameworks (e.g., SIG, CAIQ, or equivalent)
- Maintain vendor risk inventory and ensure alignment with internal security policies
Client Security Questionnaires & Assurance
- Own and respond to client security questionnaires, RFPs, and due diligence requests
- Collaborate with internal stakeholders to ensure accurate, consistent, and timely responses
- Maintain a centralized knowledge base of standard responses to improve efficiency and consistency
- Support audits and client security reviews as needed
Security Posture & Governance
- Review, update, and maintain security policies, standards, and procedures
- Identify gaps in current security controls and recommend improvements aligned with industry frameworks (e.g., SOC2, ISO 27001)
- Partner with IT and engineering teams to enhance overall security posture and maturity
- Stay current on emerging threats, vulnerabilities, and best practices
Incident Support & General Security Operations
- Assist in the investigation and response to security incidents and vulnerabilities
- Support internal security initiatives, including awareness, compliance, and risk reduction efforts
- Contribute to continuous improvement of security tooling and processes
Required Qualifications:
- 4+ years of experience in information security, cybersecurity, or a related field
- Hands-on experience with vulnerability management tools (preferably Qualys)
- Experience responding to client security questionnaires or audit requests
- Foundational understanding of network security concepts (firewalls, SIEM, IDS/IPS, endpoint protection)
- Familiarity with risk management principles, including third-party/vendor risk
- Familiarity with M365 Security Tools, Exchange Online Protection, Purview, a plus.
Preferred Qualifications
- Experience with TPRM programs or vendor risk platforms
- Knowledge of security frameworks (ISO 27001, SOC 2)
- Experience with remediation tracking and security metrics/reporting
- Familiarity with penetration testing concepts and vulnerability exploitation techniques
Education & Certifications
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
Harbor is the preeminent provider of expert services across strategy, legal technology, operations, and intelligence. Our globally integrated team of 800+ strategists, technologists, and specialists navigate alongside our clients – leading law firms, corporations, and their law departments – to provide essential resources and invaluable insights. Anchored in a rich heritage of deep knowledge, steadfast relationships, and mutual respect, our unwavering dedication lies in shaping the future of the legal industry and fostering enduring partnerships within our community and ecosystem.
Harbor is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, marital status, civil union status, national origin, ancestry, age, parental status, disabled status, veteran status, or any other legally protected classification, in accordance with applicable law.
Vacancy posted 23 hours ago
Similar jobs that could be interesting for youBased on the IT Security Analyst in United States vacancy
- ...The Sr. Information Security Analyst is responsible for assessing information risk and facilitates remediation of identified vulnerabilities for IT security and IT risk across the enterprise. Assesses information risk and facilitates remediation of identified vulnerabilities...SuggestedRemote work
TridentCare
United States3 days ago - ...Responsibilities • Cloud network expertise: virtual networks, hybrid connectivity, firewalls, DNS, and network threat management • Cloud security along with the ability to support compliance with industry security standards • Research and architect solutions to solve...Suggested
Yochana
United States23 hours ago - ...IT Security Analyst (Cloud Firewall) - Remote Job Title: IT Security Analyst Senior What This Position Supports: WAF Onboarding Remote: Yes Duration: 4 months Potential to Convert/Or Extend: Yes but would require FTE conversion conversation with budget...SuggestedWork experience placementImmediate startRemote work
ShiftCode Analytics
United States1 day ago - ...IT Security Analyst Supports the enterprise-wide implementation of the Secrets & Credential Management project by analyzing current-state processes, identifying security and control gaps, defining requirements, and driving the secure governance of technical and workforce...SuggestedDaily paidRemote work
NTT DATA Business Solutions
United States3 days ago - ...Principal Epic Security It Analyst HealthPartners is hiring a Principal Epic Security IT Analyst. This position leads the coordination of Epic access activities across modules, care delivery groups, and the HealthPartners system. This role ensures the effective deployment...SuggestedWork experience placementLocal areaRemote work
HealthPartners
United States1 day ago - ...Hello, Hope you are doing good. Position: IT - Clemson University - Security Analyst - Intermediate Location: Clemson, SC (100% Remote) Duration: 12+ Months Job Description: Scope of the project: Medicaid security for payment processing...Remote work
My3Tech Inc
United States3 days ago - ...Role : IT Security Compliance Duration : 6-month contract Hours : 40 hours/week Start Date: ASAP Skills & Experience Required: • 3+ years experience in Information Security , Privacy , or Compliance operations . • Hands...Contract workImmediate startRemote work
E-Solutions
United States2 days ago - ...IT Security Analyst (She/ He/ They) Poland CAPCO POLAND We are looking for Poland based candidate. Capco is a fully independent, global management and technology consultancy. For 25 years we have combined innovative thinking with deep industry knowledge to...Contract workRemote workFlexible hours
Capco
United States22 hours ago - ...LOCALS TO MI, HYBRID MUST • 6+ Years experience with IT security and auditing. • EXPERT knowledge around NIST Controls and ability to perform risk assessments. • bility to coach/train other team members to help improve the process. • Must have excellent communication...Local area
HCL Global Systems
United States3 days ago - ...Security Analyst Participate as a security analyst assigned to IT projects tasked with gathering and reviewing artifacts as part of the controls assessment process related to Commonwealth SEC530 and IRS PUB1075 security standards. Will participate as a member of...Remote work
Argyle Infotech
United States2 days ago - ...Position Title: Epic Security Analyst - Remote Department: IT Information Security Job Description: This position may be performed remotely from the following locations within the United States of America: Arkansas, Kansas, Missouri, Oklahoma, and...Full timeRemote workRelocationShift work
OU Health
United States1 day ago - ...have a primary address located within the state of Michigan or willing to move to Michigan to be considered.** The Data Security Analyst I manages, monitors, and maintains security access controls for an assigned set of users, systems, and applications. The...
MyMichigan Health
Midland, MI5 days ago $77.4k - $135.4k
...you will serve as a central coordinator for Security demand intake and work management across the enterprise. The Security Demand Analyst plays a key role in enhancing the... ...years of experience in information security, IT operations, risk management, or a related function...Vizient
Chicago, IL4 days ago- ...Job: IT Security Analyst 3 (Exp. 11+) Location: Richmond, VA (HYBRID) Interview mode: In-Person Only This position reports to the Governance & Compliance Manager in the IT Division. The IT Security Analyst supports the VDOT Information Security mission...Work experience placementWork at office
My3Tech Inc
Richmond, VA4 days ago - ...Hybrid This position will support agency's mission to support the Virginia State Police Information Security program by providing cybersecurity, risk management, IT infrastructure services and IT governance by working with the agencies to promote information security...Work at office
HCL Global Systems
Richmond, VA4 days ago - ...MUSCOGEE (CREEK) NATION Seeking an IT SECURITY ANALYST General Summary: Analytical and security-focused IT Security Analyst with experience protecting information systems, networks, and data from threats and vulnerabilities. Skilled in monitoring security...Remote work
The Muscogee Nation
Okmulgee, OK4 days ago - ...smarter, faster and more efficient. Job Summary & Responsibilities Third-Party Risk Management: Assess and monitor the security practices of our suppliers. Develop and implement a comprehensive third-party risk management framework. ISO Compliance:...Permanent employmentInternship
Onto
Wilmington, MA3 days ago - ...IT Security Analyst A Few Words About Us Integrated Resources, Inc is a premier staffing firm recognized as one of the tri-states most well-respected professional specialty firms. IRI has built its reputation on excellent service and integrity since its inception in...Full timeWork experience placement
Careers Integrated Resources Inc
Parsippany, NJ1 day ago - ...other scanning tools. Web application scanning and web application firewalls. Containers. CIS benchmarks, STIGs, or other security hardening standards. Additional Desirable Skills Or Experience SAML, Kerberos, OAuth, OIDC, LDAP. Powershell and...
The Dignify Solutions, LLC
New York, NY1 day ago - ...and Business consulting services. We are in search of a highly motivated candidate to join our talented Team. Job Title : IT Security Analyst Senior. Location : Atlanta, GA. About the Role: We are seeking a Security Engineer (WAF SME) to join a dynamic...For contractorsWork experience placementRemote work
Ampcus
Atlanta, GA10 days ago - ...Tallahassee, Orlando, Jacksonville, Miami and Tampa Job Summary Join our team as an IT Security Manager, where you will develop and manage security across multiple IT functional areas, such as data, systems, network, and Web operations. In this role, you will assist in...Work experience placementFlexible hours
Cook Systems
New York, NY2 days ago - ...divh2IT Security Analyst/h2pIdealforce have a contract role available immediately for IT Security Analyst to join our customer in Phoenix Arizona. This is an ONSITE position. Only local candidates are considered for this role. Please find below additional details about...Contract workLocal areaImmediate start
Idealforce
Phoenix, AZ1 day ago - ...IT Security Analyst Arete Technologies, Inc. offers a set of innovative consulting and outsourcing services, bridging the gap between requirements and outputs of various dexterous and facile companies worldwide. The thrust of providing global deliverables with focus...Local areaWorldwide
Arete Technologies Inc
Atlanta, GA1 day ago $101.33k - $125.18k
...somewhere, waiting for someone to give me a chance to live ..." - Client from Telecare What You Will Do to Change Lives The IT Security Analyst is responsible for leading enterprise risk management, compliance, and security governance initiatives across Telecare's...Full timePart timeRemote workMonday to FridayShift workDay shiftTelecare Corporation
Alameda, CA1 day ago$36 per hour
...with your recruiter to learn more. Base pay range $36.00/hr - $36.00/hr Direct message the job poster from TekWissen Title: IT Security Analyst II Work Location: Detroit, MI, 48226 Duration: 9 Months Job Type: Contract Work Type: Remote Overview : TekWissen is a global...Contract workWork experience placementRemote workTekwissen
Detroit, MI4 days ago- ...Information Security Risk Management This position shall perform cross-functional collaboration with the other members of the information... ...Access Management (IAM) experience Clear understanding of IT audit methodologies. Exceptional written and oral communication...Work experience placement
LanceSoft
Detroit, MI3 days ago - ...Job Title: Security Analyst The Department of Technology, Management and Budget supports the business operations of state agencies through... ...systems analysis, computer programming, information assurance, IT project management or mathematics. Information Technology...Work at officeRemote workRelocation package2 days per week3 days per week
GovernmentJobs.com
Dimondale, MI18 hours ago - ...Hello All, I hope you're doing well. Job: Dimondale, MI - IT - DTMB - Cyber Security - CIP - IT Security Analyst 3 - Vulnerability Management Team Location : Dimondale MI Candidates must be currently local within a commutable distance, no more...Work at officeLocal area
My3Tech Inc
Dimondale, MI18 hours ago - ...The IT Security Analyst is responsible for completing and maintaining system security plans (SSP) for new and existing systems. This requires close coordination with IT project teams, business and enterprise security representatives, and product owners, to establish and...Work at officeShift work
Kaav Inc.
Lansing, MI18 hours ago - ...Whitley Penn, a leading CPA and Consulting firm, is looking for an IT Security Analyst to join our team. The IT Security Analyst is an entry-level position within the IT team, providing firm-wide support for information and data security. This role involves assisting with...Full timeWork at officeLocal areaMonday to Friday
Whitley Penn
Dallas, TX18 hours ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to IT Security Analyst. Be the first to apply!
Related searches
- information security compliance analyst United States
- application security analyst United States
- network security analyst United States
- junior security analyst United States
- national security analyst United States
- rate analyst United States
- cloud security analyst United States
- security analyst intern United States
- security operations analyst United States
- entry level security analyst United States