IT Security Analyst

Remote Full-time
Harbor is seeking a Security Analyst to join our internal IT Operations team. This role is responsible for strengthening Harbor’s security posture through proactive vulnerability management, third-party risk management (TPRM), and client-facing security assurance activities. The ideal candidate brings hands-on experience with vulnerability scanning tools (particularly Qualys), strong analytical skills, and the ability to communicate security practices effectively across internal and external stakeholders.
This is a fully remote position located in Canada or the Philippines and must align with United States working business hours (EST).

Key Responsibilities:
Vulnerability Management (Qualys-Focused)

Administer and operate Qualys for continuous vulnerability scanning across infrastructure, endpoints, and cloud environments
Analyze scan results, prioritize vulnerabilities based on risk, and coordinate remediation efforts with infrastructure and engineering teams
Track remediation progress and produce reporting dashboards and metrics for leadership
Continuously improve vulnerability management processes, including SLAs, exception handling, and risk acceptance workflows

Third-Party Risk Management (TPRM)

Support and manage the third-party risk lifecycle, including vendor onboarding, assessments, and periodic reviews
Evaluate vendor security posture using standardized frameworks (e.g., SIG, CAIQ, or equivalent)
Maintain vendor risk inventory and ensure alignment with internal security policies

Client Security Questionnaires & Assurance

Own and respond to client security questionnaires, RFPs, and due diligence requests
Collaborate with internal stakeholders to ensure accurate, consistent, and timely responses
Maintain a centralized knowledge base of standard responses to improve efficiency and consistency
Support audits and client security reviews as needed

Security Posture & Governance

Review, update, and maintain security policies, standards, and procedures
Identify gaps in current security controls and recommend improvements aligned with industry frameworks (e.g., SOC2, ISO 27001)
Partner with IT and engineering teams to enhance overall security posture and maturity
Stay current on emerging threats, vulnerabilities, and best practices

Incident Support & General Security Operations

Assist in the investigation and response to security incidents and vulnerabilities
Support internal security initiatives, including awareness, compliance, and risk reduction efforts
Contribute to continuous improvement of security tooling and processes

Required Qualifications:

4+ years of experience in information security, cybersecurity, or a related field
Hands-on experience with vulnerability management tools (preferably Qualys)
Experience responding to client security questionnaires or audit requests
Foundational understanding of network security concepts (firewalls, SIEM, IDS/IPS, endpoint protection)
Familiarity with risk management principles, including third-party/vendor risk
Familiarity with M365 Security Tools, Exchange Online Protection, Purview, a plus.

Preferred Qualifications

Experience with TPRM programs or vendor risk platforms
Knowledge of security frameworks (ISO 27001, SOC 2)
Experience with remediation tracking and security metrics/reporting
Familiarity with penetration testing concepts and vulnerability exploitation techniques

Education & Certifications

Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)
About Us:
Harbor is the preeminent provider of expert services across strategy, legal technology, operations, and intelligence. Our globally integrated team of 800+ strategists, technologists, and specialists navigate alongside our clients – leading law firms, corporations, and their law departments – to provide essential resources and invaluable insights. Anchored in a rich heritage of deep knowledge, steadfast relationships, and mutual respect, our unwavering dedication lies in shaping the future of the legal industry and fostering enduring partnerships within our community and ecosystem.
Harbor is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, marital status, civil union status, national origin, ancestry, age, parental status, disabled status, veteran status, or any other legally protected classification, in accordance with applicable law.

Apply Now

Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Remote United States Product Tester & Reviewer – Consumer Experience Analyst for Home Product Evaluations (Work‑From‑Home Flexible Gig)

Remote

Global Digital Marketing Lead

Remote

Retention Marketing Manager

Remote

Remote Live Chat or Tele Chat Support

Remote

Network Engineer Subject Matter Expert

Remote

**Experienced Part-Time Customer Support Representative – Remote Work Opportunity at blithequark**

Remote

[Remote] Machine Learning Scientist III

Remote

Part Time Evening Remote Data Entry Specialist ...

Remote

Experienced Customer Support Specialist – Part-Time Live Chat Representative for Remote Work Opportunity

Remote

Associate Director - Director, Pharmacovigilance and Drug Safety - Safety Scientist job at Xenon Pharmaceuticals in Boston, MA

Remote
← Back