Security Analyst

Job Description Summary

For over forty years, HarbourVest has been home to a committed team of professionals with an entrepreneurial spirit and a desire to deliver impactful solutions to our clients and investing partners. As our global firm grows, we continue to add individuals who seek a collaborative, open-door culture that values diversity and innovative thinking.

In our collegial environment that’s marked by low turnover and high energy, you’ll be inspired to grow and thrive. Here, you will be encouraged to build on your strengths and acquire new skills and experiences.

We are committed to fostering an environment of inclusion that promotes mutual respect among all employees. Understanding and valuing these differences optimizes the potential of both the individual and the firm.

HarbourVest is an equal opportunity employer.

This position will be a hybrid work arrangement. You will receive 18 remote workdays per quarter to use at your discretion, subject to manager approval. For example, you may choose to work in the office 4 days per week and take one remote day weekly (typically 13 weeks per quarter), leaving 5 additional remote days to be used as needed.

We are seeking a self-motivated Security Analyst who is passionate about monitoring, analyzing, and investigating potential security threats using HarbourVest’s robust security tool stack. The Security Analyst will be pivotal in contributing to threat assessments, mitigation activities, and enhancing related processes/procedures. These processes include vulnerability detection/remediation, and incident response.

The Ideal Candidate Is Someone Who Is:

• Passionate about results, goal driven, assertive, accountable and collaborative
• Excited to learn more about cybersecurity!
• Familiar working at a company with a global presence spanning multiple time zones
• Self-starter with demonstrated ability to work independently prioritize tasks and manage time effectively
• Open to a flexible work schedule outside normal business hours (on-call rotation)

What You Will Do:

• Provide effective, front-line support for monitoring, detecting, and responding to threats, anomalies, and deficiencies in the environment
• Support the deployment of existing security controls and ensure they run efficiently and effectively
• Contribute to metrics and reporting to track coverage and effectiveness of security processes
• Automate repetitive tasks related to alert triage, incident response, and governance
• Support the vulnerability and patch management program to reduce critical risks
• Project assignments and other responsibilities as required

What You Bring:

• Experience leading security investigations, triaging security alerts, and documenting incident response activity
• Good communication skills, particularly in relating technical concepts to a non-technical audience
• Demonstrated experience with security tools: SIEM/Log Management, NIDS/NIPS, Application Control, EDR, CASB, PAM, CSPM
• Experience securing both cloud and on-premises infrastructure
• Experience with one or more general purpose programming/scripting languages (e.g. Python, PowerShell)
• Knowledge of governance and audit frameworks (e.g. SOC2, ISO, NIST, etc)
• Knowledge of network security principles including protocols, access controls, and segmentation
• Knowledge of Identity and Access Management (IAM) platforms

Education Preferred

• Bachelor's degree or equivalent work experience
• Related Security certifications (CISSP, CCSP, CISM, GSEC, GPCS, etc.)

Experience

• 1-3 years of experience in Security, preferred

#Li-Hybrid