IT Security Analyst
POSITION OVERVIEW
Harbor Health is seeking a hands-on IT Security Analyst to support the security posture and technical operations of our healthcare startup. This role combines cybersecurity principles with practical IT deployment and support, making it ideal for someone who thrives in a fast-paced startup environment. You'll be a key player in day-to-day incident response, asset and identity management, and policy adherence while also supporting IT system administration when needed. This position offers the opportunity to see projects through from implementation to completion while helping to secure our member-centered healthcare platform.
POSITION DUTIES & RESPONSIBILITIES
Security Operations & Incident Response:
- Act as Harbor's primary incident response coordinator, documenting and executing After Action Reports (AARs) and mitigation strategies
- Own the vendor security review process, including third-party risk assessments and security questionnaires
- Coordinate employee-facing security programs, such as phishing simulations and awareness training
Identity & Access Management:
- Administer and maintain identity and access management systems, security tooling, and endpoint policies across environments
- Maintain security configurations in platforms such as AWS, Google Workspace, and endpoint management systems
Compliance & Policy Management:
- Support asset management practices, from documentation to lifecycle oversight
- Review and update internal policies to ensure adherence to security frameworks and controls
- Ensure compliance with HIPAA and other healthcare security requirements
IT Infrastructure Support:
- Support IT infrastructure projects including clinic deployments, endpoint provisioning, and patching
- Manage and track hardware/software assets and enforce policy-based controls
- Provide technical support across both Mac and Windows environments
DESIRED PROFESSIONAL SKILLS & EXPERIENCE
Required Qualifications:
- Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field
- 3+ years of experience in IT security or system administration with hands-on responsibility for incident response, IAM, or endpoint security
- Strong understanding of HIPAA, and familiarity with NIST, PCI, or NCQA frameworks
- Demonstrated ability to manage and track hardware/software assets and enforce policy-based controls
- Excellent documentation skills and comfort applying policies to day-to-day operational work
- Ability to manage multiple priorities across security, compliance, and IT functions
Preferred Qualifications:
- Master's degree in Cybersecurity or Healthcare related field
- Security certifications such as Security+, GSEC, or CISSP
- Experience supporting startups or resource-constrained teams
- Exposure to AWS security configuration and cloud-native security principles
- Familiarity with endpoint deployment or support in a multi-site or healthcare environment
- Comfort working across both Mac and Windows environments
- Interest in growing into a more strategic role over time
Additional Requirements:
- Hybrid role based in Austin, TX
- Occasional local travel to clinical sites may be required
WHAT WE OFFER
- Opportunity to shape Harbor Health's security infrastructure and protect member data in a transformative healthcare environment
- Collaborative and dynamic work environment
- An organization made of people who are passionate about changing the healthcare landscape
- Competitive salary and benefits package
- Professional development and growth opportunities
- A transparent and unique culture