Jobs at Coalfire
131 open positions
Senior Sales Operations Manager | Remote US
Company: Coalfire
Location: Remote
Posted Mar 14, 2024
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. You may also be eligible to participate in annual incentive, commission, and/or recognition programs. Proficiency with data reporting and GTM tools including Tableau, Snowflake, Salesforce, and Google Suite. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. Clari, CaptivateIQ and/or SPIFF is a plus. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. Bachelor’s degree (four-year college or university) in Business Administration, Finance, Mathematics or Data Science required. Masters in Business Administration preferred. At Coalfire, equal opportunity and pay equity is integral to the way we do business.
Senior Consultant, FedRAMP Assessment | Remote US
Company: Coalfire
Location: Remote
Posted Mar 12, 2024
<p><b>About Coalfire<b><p> <p><br ><p> <p>Coalfire is on a mission to make the world a safer place by solving our clients toughest cybersecurity challenges We work at the cutting edge of technology to advise assess automate and ultimately help companies navigate the everchanging cybersecurity landscape We are headquartered in Denver Colorado with offices across the US and UK and we support clients around the world <p> <p><br ><p> <p>But thats not who we are thats just what we do <p> <p><br ><p> <p>We are thought leaders consultants and cybersecurity experts but above all else we are a team of passionate problemsolvers who are hungry to learn grow and make a difference <p> <p><br ><p> <p>And were growing fast <p> <p><br ><p> <p>Were looking for a Senior Consultant to support our FedRAMP Assessment team <p> <p><b>What Youll Do<b> <p><ul><li>Provides advice to customers on issues affecting the scope of work in a manner that provides additional value <li> <li>Develop documentation and author recommendations associate with your findings on how to improve the customers security posture in accordance with appropriate controls <li> <li>Leads auditsassessments including audit plan preparation review of documentation and evidence evaluation of procedures and client interviews <li> <li>Maintains strong depth of knowledge in one or more cybersecurity frameworks <li> <li>Prepare review and approve assessment reports <li> <li>Manage priorities tasks and hours on projects in conjunction with the project manager to achieve delivery utilization targets <li> <li>Ensures quality products and services are delivered on time <li> <li>Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue <li> <li>Provide mentorship to team members in areas of audit assessment technical review and writing <li> <li>Interfaces with clients through entire engagement interacting with all levels of client organizations <li> <li>Establish and maintain positive collaborative relationships with clients and stakeholders <li> <li>Continuous professional development in maintaining industry specific certifications Maintains strong depth of knowledge in the practice area <li> <li>Collaborates with project managers quality management sales and other delivery team members to drive customer satisfaction and meet project deliverables <li> <li>Establishes account relationships and identifies upsell and cross sell opportunities and escalates to sales <li> <li>Draft audit programs that sufficiently address both the required objectives of the regulatory body and the complexity of the client environment <li> <li>Leads interview and inquiry walkthroughs with clients to determine the conformity of environments against stated requirements <li> <li>Assess security vulnerabilities against the appropriate security frameworks <li> <li>Pursues and corroborates conclusions derived from inquiry procedures with client while ensuring diligent interview notes are captured <li> <li>Offline and remote evidence inspection of client provided documentation appropriately mark artifacts requiring followup or additional clarification <li> <li>Educate and interpret compliance activities for clients <li> <li>Understands how to apply quality standards and adheres to a minimum benchmark for quality assurance throughout the documentation of each work product or deliverable <li> <ul><p><b>What Youll Bring<b> <p><ul><li>Bachelors degree fouryear college or university in IT or business or equivalent combination of education and work experience<li> <li>Five to ten 510 years of experience as a consultant within professional IT services<li> <li>Must hold one of the following certifications CISSP CISA CISM CCSP CISSPISSAP CISSPISSEP CISSPISSMP CFR CCISO GCED GCIH GSLC<li> <li>Deep experience with government compliance including FISMA FedRAMP and DoD RMF<li> <li>Strong knowledge of NIST Special Publications 80030 80037 80053<li> <li>Experience with every step within the delivery of Certification and Accreditation CampA Assessment and Authorization AampA packages that have obtained and maintained full authorization to operate ATO<li> <li>Experience with virtualization or cloud technologies<li> <li>Familiarity with statutes and regulations across multiple industries relevant to IT eg SOX 404 HIPAA FedRAMP GLB Patriot Act<li> <li>Knowledge of information security related solutions tools and utilities<li> <li>Excellent verbal and written skills<li> <li>Willing to travel up to 25<li> <ul><p><b>Bonus Points<b> <p><ul><li>Hold Cloud Security focused certifications AWS Azure CCSK etc<li> <ul><p> <p><p><b>Why Youll Want to Join Us<b><p> <p><br ><p> <p><span>At Coalfire youll find the support you need to thrive personally and professionally In many cases we provide a flexible work model that empowers you to choose when and where youll work most effectively whether youre at home or an office<span><p> <p><br ><p> <p><span>Regardless of location youll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities Youll have opportunities to join employee resource groups participate in inperson and virtual events and more And youll enjoy competitive perks and benefits to support you and your family like paid parental leave flexible time off certification and training reimbursement digital mental health and wellbeing support membership and comprehensive insurance options<span><p> <p><br ><p> <p><span>At Coalfire equal opportunity and pay equity is integral to the way we do business A reasonable estimate of the compensation range for this role is $86000 to $148000 based on national salary averages The actual salary offer to the successful candidate will be based on jobrelated education geographic location training licensure and certifications and other factors You may also be eligible to participate in annual incentive commission andor recognition programs All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or status as a protected veteran<span><p> <p><br ><p> <p><span>LIHW1<span><p> <p><span>LIRemote<span><p> <p><p>
Director, Federal Government Go-To-Market | US Remote
Company: Coalfire
Location: Remote
Posted Mar 15, 2024
<p><b>About Coalfire<b><p> <p><br ><p> <p><span>Coalfire is on a mission to make the world a safer place by solving our clients hardest cybersecurity challenges We work at the cutting edge of technology to advise assess automate and ultimately help companies navigate the everchanging cybersecurity landscape We are headquartered in Denver Colorado with offices across the US and UK and we support clients around the world <span><p> <p><br ><p> <p><span>But thats not who we are thats just what we do <span><p> <p><br ><p> <p><span>We are thought leaders consultants and cybersecurity experts but above all else we are a team of passionate problemsolvers who are hungry to learn grow and make a difference <span><p> <p><br ><p> <p><span>And were growing fast <span><p> <p><br ><p> <p><span>We are looking for a Director to join Coalfires Federal Government GoToMarket team<span><p> <p><br ><p> <p><b>Position Summary<b><p> <p><br ><p> <p><span>The Coalfire Federal Government GoToMarket GTM team plays a pivotal role in driving Coalfire customers business opportunities within the government sector through technical expertise and strategic solution selling This role involves leading technical presales activities developing and presenting FedRAMP and DoD CCSRG solutions that meet the unique needs of government clients and ensuring the technical validation phase of sales opportunities is successfully navigated This director position will be responsible for building and leading the Coalfire Federal Government GTM team building and maintaining delivery frameworks for Coalfire client services and overseeing scoping and delivery of client activities and deliverables<span><p> <p><b>What Youll Do<b> <p><ul><li>Lead technical presales activities to qualify Coalfires FedRAMP clients for Federal business including FedRAMP and DoD CCSRG<li> <li>Participate in conferences summits and other industry events as needed to support business development efforts and to grow their government stakeholder network<li> <li>Contributes to Coalfire thought leadership efforts to include but not limited to speaking engagements blogs whitepapers and webinars<li> <li>Lead clientbillable strategy and gotomarket FedRAMP and DoD CCSRG workshops<li> <li>Provide internal training eg government contracting and procurement processes to sales and delivery stakeholders<li> <li>Develop an end to end framework for Coalfires Advisory practice to support our clients with a federal go to market strategy<li> <li>Analyze potential government opportunities for Coalfire clients and recommend appropriate go to market strategy options<li> <li>Driving business opportunities for Coalfire and its clients by leading business and technical validation<li> <li>Solution development ie developing client deliverables associated with government strategy and contracting<li> <li>Drive technical and government contracting expertise within Coalfire<li> <li>Strategic partnerships and support ie helping clients identify key partnerships that may accelerate client deals<li> <li>Serve as personnel manager for future team employee additions<li> <li>Serve as manager for subcontractors contracted when needed<li> <ul><p><b>What Youll Bring<b> <p><ul><li>10+ years of industry experience in a technical presales capacity with 5+ years of direct management experience <li> <li>A degree in Computer Science Information Technology Cybersecurity or a related field preferred<li> <li>Demonstrated experience working within Federal DoD SLED space<li> <li>Industry expertise with cloud computing and SaaS solutions including handson technical experience deploying enterprise FedRAMP and DoD CCSRG compliant solutions and a deep understanding of the cybersecurity ecosystem<li> <li>Strong network of professionals in the government contracting space preferred<li> <li><b>Technical Proficiency<b> Demonstrated ability in a presales capacity to identify business issues and propose solutions Handson experience with enterprise cybersecurity tools and technologies Proficient knowledge of FedRAMP FISMA StateRAMP CMMC NIST ITAR and other related compliance frameworks required for potential clients to provide services to the US public sector<li> <li><b>Soft Skills<b> Excellent presentation and communication skills ability to quickly learn and adapt to new technologies people and processes Has strong analytical and problemsolving skills<li> <li><b>Business Acumen <b>Expert in government business development especially for federal contracting Proficient in developing client business cases in order to inform bidnobid decisions by senior leadership Comfortable presenting business strategies to executive and senior leaders Proficient with the concepts of PampL ROI costbenefit breakeven budgeting and government procurement cycles<li> <ul><p><b>Bonus Points<b> <p><ul><li>CISSPCCSP certifications are preferred<li> <ul><p> <p><p><b>Why Youll Want to Join Us<b><p> <p><br ><p> <p><span>At Coalfire youll find the support you need to thrive personally and professionally In many cases we provide a flexible work model that empowers you to choose when and where youll work most effectively whether youre at home or an office<span><p> <p><br ><p> <p><span>Regardless of location youll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities Youll have opportunities to join employee resource groups participate in inperson and virtual events and more And youll enjoy competitive perks and benefits to support you and your family like paid parental leave flexible time off certification and training reimbursement digital mental health and wellbeing support membership and comprehensive insurance options<span><p> <p><br ><p> <p><span>At Coalfire equal opportunity and pay equity is integral to the way we do business A reasonable estimate of the compensation range for this role is $104000 to $179600 based on national salary averages The actual salary offer to the successful candidate will be based on jobrelated education geographic location training licensure and certifications and other factors You may also be eligible to participate in annual incentive commission andor recognition programs All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or status as a protected veteran<span><p> <p><br ><p> <p><span>LIJM3<span><p> <p><span>LIRemote<span><p> <p><p>
Senior Manager, Cloud Solutions | Remote US
Company: Coalfire
Location: Remote
Posted Mar 14, 2024
<p><b>About Coalfire<b><p> <p> <p> <p><span>Coalfire is on a mission to make the world a safer place by solving our clients toughest cybersecurity challenges We work at the cutting edge of technology to advise assess automate and ultimately help companies navigate the everchanging cybersecurity landscape We are headquartered in Denver Colorado with offices across the US and UK and we support clients around the world <span><p> <p><span> <span><p> <p><span>But thats not who we are thats just what we do <span><p> <p><span> <span><p> <p><span>We are thought leaders consultants and cybersecurity experts but above all else we are a team of passionate problemsolvers who are hungry to learn grow and make a difference <span><p> <p><span> <span><p> <p><span>And were growing fast <span><p> <p><br ><p> <p><span>Were looking for a Senior Manager to support our Cloud Services team <span><p> <p><br ><p> <p><b>This can be a remote position must be located in the United States<b><p> <p><br ><p> <p><b>Position Summary<b><p> <p><br ><p> <p><span>The Cloud Services Senior Manager at Coalfire plays a crucial role in driving the organizations business and practice direction They possess strong communication skills technical writing abilities and expertise in cloud architecture project management marketing and sales support They are responsible for building and maintaining strong client relationships and actively managing project progress and resources Additionally they coordinate gotomarket strategies for new services and play a vital role in shaping the overall direction and success of the practice People management mentorship recruiting and training are also key responsibilities ensuring the development and growth of both the team and the practice as a whole<span><p> <p><b>What Youll Do<b> <p><ul><li>Serve as Solutions Architect and engagement lead for client projects<li> <li>Support thought leadership activities blogwhite paperswebinars<li> <li>Lead delivery support of sales team on client sales calls<li> <li>Build and maintain strong longterm relationships with key client stakeholders<li> <li>Track and understand clients evolving needs<li> <li>Allocate resources such as personnel and budgets appropriately<li> <li>Manage multiple team tracks of consultantsspecialistsdelivery<li> <li>Work with other departments to determine marketing strategies for external campaigns<li> <ul><p><b>What Youll Bring<b> <p><ul><li>BS or above in related Information Technology field or equivalent combination of education and experience<li> <li>Experience managing teams of 37 individuals<li> <li>Excellent communication organizational and problemsolving skills<li> <li>Effective documentation skills to include technical diagrams and written descriptions<li> <li>Professional attitude and demeanor<li> <li>35 years directly supporting at least one of the following cloud IaaS providers AWS Azure GCP<li> <li>Conversational knowledge of orchestration and automation tools such as Terraform and Ansible<li> <li>Critical thinking and ability to balance security requirements with mission needs<li> <li>Exampled relationship management and ability to work with CSuite<li> <li>Project management experience for individual and team projects ability to track detailed tasks and ensure timely delivery<li> <li>Ability to work quickly efficiently and accurately in a dynamic and fluid environment<li> <ul><p><b>Bonus Points<b> <p><ul><li>Previous experience mentoring or managing consultants in a professional services organization<li> <li>Cloudbased networking experience Palo Alto Cisco ASAv etc<li> <li>Familiarity with frameworks such as FedRAMP FISMA SOC ISO HIPAA HITRUST PCI etc<li> <li>PMP CISSP CISM or CISA<li> <li>Familiarity with configuration baseline standards such as CIS Benchmarks amp DISA STIG<li> <li>Experience with MS Project and Visio<li> <ul><p> <p><p><b>Why Youll Want to Join Us<b><p> <p><br ><p> <p><span>At Coalfire youll find the support you need to thrive personally and professionally In many cases we provide a flexible work model that empowers you to choose when and where youll work most effectively whether youre at home or an office<span><p> <p><br ><p> <p><span>Regardless of location youll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities Youll have opportunities to join employee resource groups participate in inperson and virtual events and more And youll enjoy competitive perks and benefits to support you and your family like paid parental leave flexible time off certification and training reimbursement digital mental health and wellbeing support membership and comprehensive insurance options<span><p> <p><br ><p> <p><span>At Coalfire equal opportunity and pay equity is integral to the way we do business A reasonable estimate of the compensation range for this role is $94000 to $163000 based on national salary averages The actual salary offer to the successful candidate will be based on jobrelated education geographic location training licensure and certifications and other factors You may also be eligible to participate in annual incentive commission andor recognition programs All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or status as a protected veteran<span><p> <p><br ><p> <p><span>LIRemote<span><p> <p><span>LIGB1<span><p> <p><p>
Senior Website Optimization Manager | Remote US
Company: Coalfire
Location: Remote
Posted Mar 09, 2024
Coalfire is seeking a Senior Website Optimization Manager with extensive experience in technical website optimization, SEO, and project management. The role involves building and managing website projects, collaborating with cross-functional teams, and continuously optimizing site performance. Coalfire offers a flexible work model, prioritizes employee wellbeing, and provides competitive benefits and compensation. The ideal candidate will have a Bachelor's degree, strong SEO skills, and proficiency in analytics tools, HTML, CSS, and CMS administration.
Principal, FedRAMP Compliance Advisory | Remote US
Company: Coalfire
Location: Remote
Posted Mar 14, 2024
<p><b>About Coalfire<b><p> <p><br ><p> <p><span>Coalfire is on a mission to make the world a safer place by solving our clients hardest cybersecurity challenges We work at the cutting edge of technology to advise assess automate and ultimately help companies navigate the everchanging cybersecurity landscape We are headquartered in Denver Colorado with offices across the US and UK and we support clients around the world <span><p> <p><br ><p> <p><span>But thats not who we are thats just what we do <span><p> <p><br ><p> <p><span>We are thought leaders consultants and cybersecurity experts but above all else we are a team of passionate problemsolvers who are hungry to learn grow and make a difference <span><p> <p><br ><p> <p><span>And were growing fast <span><p> <p><br ><p> <p><span>We are looking for a Principal to join Coalfires FedRAMP Advisory team<span><p> <p><br ><p> <p><b>Job Summary<b><p> <p><br ><p> <p><span>The Principal Consultant SME is considered a Compliance Advisory subject matter expert SME with strong expertise in a focal technical area eg evaluatingassessing the security and compliance of client firmsservices against regulatory industry requirements and standards or against security best practice frameworks etc but has subject matter knowledge andor experience in the other areas that affect the practice <span><p> <p><span> <span><p> <p><span>The Principal Consultant SME is expected to leverage their technical and business experience across four 4 domains including<span><p> <p><span> <span><p> <p><span>1 Evaluate and enhance the security of complex systems that may impact both risk and compliance for organizations large and small <span><p> <p><span>2 Mentor and develop team members to help grow the team and its capabilities<span><p> <p><span>3 Perform research on topics andor areas affecting client engagements or regulatory requirements to bring clarity to that area which may involve engaging the regulatory bodies to get the clarification Communicate the information gathered to the entire practice through various mediums such as information repositories meetings trainings etc Update repositories that have outdated information with updated information <span><p> <p><span>4 Engage <span><i>outwardly<i><span> into the community through blog posts technical white papers forum participation and conference speaking engagements Engage <span><i>inwardly<i><span> to support business and practice growth by developing SalesMarketing collateral delivery methodologies and SOPs trainmentor colleagues as necessary and serve as the SME for all topics related to your technical or compliance area of expertise<span><p> <p><b>What Youll Do<b> <p><ul><li>Work with industry and standards bodies to provide information security technical and nontechnical expertise<li> <li>Work with other teams within Coalfire to drive customer success<li> <li>Scope and lead onsite engagements with clients This includes leading presales calls onsite visits understanding customer security and compliance requirements and environments and proposing and delivering packaged offerings or custom solution engagements<li> <li>Develop technical content such as security plans procedures policies and white papers that can be used by our clients to assist them in elevatingbuilding out their security and compliance programs<li> <li>Lead delivery engagements including onsite projects working with clients to build out compliance roadmaps architecture guidance gap assessments etc<li> <li>Manage delivery engagements by providing project status updates to applicable stakeholders identifying showstoppers and roadblocks to project success etc <li> <li>Collaborate with Coalfire engineering support and business teams to convey partner and customer feedback<li> <li>Serve as the practice subject matter expert SME for escalations salesmarketing support driving practice profitability and revenue<li> <li>Provide Delivery Team Support including identifying process improvements training delivery personnel on methodologiestools and quality topics and mentoring delivery personnel<li> <li>Development of industrywide service line thought leadership through<li> <li>Authoring methodologies templates white papers work instructions guidelines forms tools<li> <li>Developing and delivering industry specific training including speakingpresenting at conferences creating webinars <li> <li>Support management of client satisfaction at all phases of the client relationship<li> <li>Ensure continuous professional development by maintaining industry specific certifications <li> <li>Maintain strong depth of knowledge in the practice area<li> <li>Collaborate with project managers quality management sales and other delivery team members to drive customer satisfaction and meet project deliverables<li> <li>Establish account relationships identifies upsell and cross sell opportunities and escalates to Sales <li> <ul><p><b>What Youll Bring<b> <p><ul><li>7+ years of experience in an IT security audit assessment compliance risk management or data privacy role<li> <li>Knowledge and awareness of the latest information risk security and compliance innovations trends challenges and solutions <li> <li>Knowledge of compliance standardsframeworks and professional practices eg NIST ISO SOC HITRUST PCI FedRAMP FISMA etc <li> <li>Knowledge of the typical enterprise risk and security operational practices <li> <li>Knowledge of information security related solutions tools and utilities <li> <li>Experience in strategy development setting direction for team members influencing both internally and externally<li> <li>Experience building common compliance frameworks as well as mapping between different compliance requirements<li> <li>Demonstrated breadth of security expertise in various sub domains such as encryption identity incident response etc<li> <li>Handson technical expertise is nice to have due to the technical components of the frameworks that are worked with<li> <li>Experience with risk assessment methodologies and risk reporting for executive leadership<li> <li>Proven background in clearly writing complex technical documents that can be presented across a varied enterprise corporate audience<li> <li>Strong verbal and written communications skills are a must as well as the ability to work effectively across internal and external organizations and virtual teams<li> <li>Exceptional interpersonal and communication skills and an executive presence comfortable talking with CIOs CTOs and CISOs about complex security issues<li> <li>Ability to think strategically about business product and technical challenges<li> <li>Strong initiative <li> <p><br ><p> <p>7+ years of experience working with one more or a combination of the following<p> <li>National Institute of Standards and Technology NIST frameworks 800 series<li> <li>FISMA<li> <li>FedRAMP<li> <li>DoD RMF <li> <li>StateRAMP<li> <li>VA 6500<li> <li>CMS ARS<li> <p> <p> <ul><p><b>Bonus Points<b> <p><ul><li>Big Four AdvisoryConsulting Experience<li> <li>Vulnerability management security operations or configuration management experience<li> <li>AWS Azure Google Cloud Platform certifications <li> <li>Vendor certifications for applicable product solution sets<li> <ul><p> <p><p><b>Why Youll Want to Join Us<b><p> <p><br ><p> <p><span>At Coalfire youll find the support you need to thrive personally and professionally In many cases we provide a flexible work model that empowers you to choose when and where youll work most effectively whether youre at home or an office<span><p> <p><br ><p> <p><span>Regardless of location youll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities Youll have opportunities to join employee resource groups participate in inperson and virtual events and more And youll enjoy competitive perks and benefits to support you and your family like paid parental leave flexible time off certification and training reimbursement digital mental health and wellbeing support membership and comprehensive insurance options<span><p> <p><br ><p> <p><span>At Coalfire equal opportunity and pay equity is integral to the way we do business A reasonable estimate of the compensation range for this role is $104000 to $17900 based on national salary averages The actual salary offer to the successful candidate will be based on jobrelated education geographic location training licensure and certifications and other factors You may also be eligible to participate in annual incentive commission andor recognition programs All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or status as a protected veteran<span><p> <p><br ><p> <p><span>LIJM3<span><p> <p><span>LIRemote<span><p> <p><p>
Director Cloud Services | US Remote
Company: Coalfire
Location: Remote
Posted Mar 22, 2024
Coalfire is a cybersecurity firm seeking a Director for its Cloud Services team. The role involves managing a team, handling client escalations, performing audits, and driving revenue growth. Coalfire offers a flexible work model, prioritizes employee wellbeing, and provides competitive benefits. The company is committed to equal opportunity and pay equity.
Consultant - Application Security Penetration Tester | Remote US
Company: Coalfire
Location: Remote
Posted Mar 19, 2024
<p><b>About Coalfire<b><p> <p><span> <span><p> <p><span>Coalfire is on a mission to make the world a safer place by solving our clients toughest cybersecurity challenges We work at the cutting edge of technology to advise assess automate and ultimately help companies navigate the everchanging cybersecurity landscape We are headquartered in Denver Colorado with offices and remote positions across the US and UK and we support clients around the world <span><p> <p><span> <span><p> <p><span>But thats not who we are thats just what we do <span><p> <p><span> <span><p> <p><span>We are thought leaders consultants and cybersecurity experts but above all else we are a team of passionate problemsolvers who are hungry to learn grow and make a difference <span><p> <p><span> <span><p> <p><span>And were growing fast <span><p> <p><span> <span><p> <p><span>Were looking for a Consultant to support our Application Security team <span><p> <p> <p> <p><b>Position Summary<b><p> <p><span> <span><p> <p><span>Coalfire Application Security AppSec is composed of highly specialized security testers and advisors with a passion for enhancing system security postures Our team members actively participate in the information security community and have released toolsets blog posts and whitepapers Our team members have presented at numerous industry conferences including BlackHat DefCon ShmooCon BlueHat DerbyCon 44CON and numerous BSides about offensive and defensive operations as well as the tools and capabilities we create and share Come join an amazing technical security team who makes a difference in the information security industry and consistently pushes the limit of offensive and defensive security capabilities<span><p> <p><span> <span><p> <p><span>The Consultant works closely with other Delivery team members on engagements assessing the security and compliance of various types of client applications and supporting infrastructure against regulatory and industry requirements and standards as well as security best practice frameworks The Consultant is a technically proficient individual contributor with broad and deep technical skills meeting the objectives of their engagements collaborating with clients mentoring teammates and providing subject matter expertise across one or more technical domains The Consultant is a trusted advisor to clients and through objective testing and results reporting supports the client in making wellinformed riskbased decisions to improve overall security posture <span><p> <p><b>What Youll Do <b> <p><ul><li>Work independently and collaboratively with a team to both lead and support engagements<li> <li>Application Penetration Testing Browserbased API Mobile IoT Cloud<li> <li>Threat Modeling<li> <li>Source Code Reviews<li> <li>Advise clients on technical security or compliance activities<li> <li>Manage priorities and tasks to achieve utilization targets<li> <li>Operate with professionalism both internally and with clients<li> <li>Ensure quality reports and services are delivered efficiently and on time<li> <li>Collaborate with project managers quality management sales and other delivery team members to drive customer satisfaction and meet project deliverables<li> <li>Communicate with client stakeholders to include leadership systems and network administrators security engineers development and support teams<li> <li>Enhance and maintain cloud service provider technical testing methodologies and standards<li> <li>Lead and support penetration testing projects through their entirety<li> <li>Contribute to thought leadership initiatives through blogs conference speaking andor RampD functions<li> <ul><p><b>What Youll Bring<b> <p><ul><li>Proven track record of success managing client engagements<li> <li>A thorough understanding of the Secure Development Life Cycle<li> <li>A working knowledge of popular web technologies and languages such as NET Java EE Nodejs Rails or JavaScript<li> <li>Working knowledge of web service protocols and hosting technologies<li> <li>Familiarity with code scanning and dynamic analysis tools<li> <li>Application penetration testing and assessment tradecraft and methodologies including browserbased API thick client and mobile testing<li> <li>Strong working knowledge of at least two programming or scripting languages and the ability to read code regardless of the language in which it is written<li> <li>Excellent verbal and written communication skills including technical writing of assessment reports presentations and operating procedures<li> <li>Clientcentric consulting with high level of collaboration<li> <li>Strong understanding of security principles policies and industry best practices<li> <li>Ability to travel up to 10 potentially amp during normal circumstances<li> <ul><p><b>Bonus Points<b> <p><ul><li>Experience in a consultingprofessional services role<li> <li>Experience in Application Security andor Software Development<li> <li>Cloud Service penetration testing tradecraft and methodologies across one or more service providers eg AWS GCP etc<li> <li>Familiarity with DevOps engineering concepts infrastructure automation pipelines version control and deployment strategies are also a plus<li> <li>Deep progressive experience with AWS security concepts including IAM STS and AWS specific security controls and security architecture design patterns Professionallevel AWS certifications SAPDEP or AWS Specialty certifications with supporting professional experience Experience with serverless design concepts and supporting services including S3 SQS SNS CloudFront DynamoDB Lambda and API Gateway<li> <li>Knowledge of advancedniche AWS services including Cognito IoT Core or SageMaker are a major plus<li> <li>Mobile platform penetration testing tradecraft and methodologies across widelyused platforms iOS andor Android <li> <li>Microservices testing<li> <li>Experience with DevOps andor Security Maturity Modelling eg OWASP SAMM<li> <li>Testing IoT devices and software<li> <li>Networkhostbased penetration testing tradecraft and methodologies<li> <ul><p> <p><p><b>Why Youll Want to Join Us<b><p> <p><br ><p> <p><span>At Coalfire youll find the support you need to thrive personally and professionally In many cases we provide a flexible work model that empowers you to choose when and where youll work most effectively whether youre at home or an office<span><p> <p><br ><p> <p><span>Regardless of location youll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities Youll have opportunities to join employee resource groups participate in inperson and virtual events and more And youll enjoy competitive perks and benefits to support you and your family like paid parental leave flexible time off certification and training reimbursement digital mental health and wellbeing support membership and comprehensive insurance options<span><p> <p><br ><p> <p><span>At Coalfire equal opportunity and pay equity is integral to the way we do business A reasonable estimate of the compensation range for this role is $64000 to $112000 based on national salary averages The actual salary offer to the successful candidate will be based on jobrelated education geographic location training licensure and certifications and other factors You may also be eligible to participate in annual incentive commission andor recognition programs All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or status as a protected veteran<span><p> <p><br ><p> <p><span>LIRemote<span><p> <p><span>LIGB1<span><p> <p><p>
Senior Consultant, AWS Specialist | Remote US
Company: Coalfire
Location: Remote
Posted Mar 12, 2024
<p><b>About Coalfire<b><p> <p><span> <span><p> <p><span>Coalfire is on a mission to make the world a safer place by solving our clients toughest cybersecurity challenges We work at the cutting edge of technology to advise assess automate and ultimately help companies navigate the everchanging cybersecurity landscape We are headquartered in Denver Colorado with offices across the US and UK and we support clients around the world<span><p> <p><span> <span><p> <p><span>But thats not who we are thats just what we do<span><p> <p><span> <span><p> <p><span>We are thought leaders consultants and cybersecurity experts but above all else we are a team of passionate problemsolvers who are hungry to learn grow and make a difference <span><p> <p><span> <span><p> <p><span>At Coalfire the Application Security AppSec Business is composed of highly skilled security testers with a passion for enhancing system security postures Our team members actively participate in the information security community and have released toolsets blog posts and whitepapers Our team members train and present at numerous industry conferences including BlackHat DefCon ShmooCon BlueHat DerbyCon 44CON and numerous BSides covering offensive and defensive operations as well as the tools and capabilities we create and share Come join an amazing technical security team which makes a difference in the information security industry and consistently pushes the limits of offensive and defensive security capabilities<span><p> <p><br ><p> <p><span>And were growing fast Were looking for a Senior Consultant to support our Offensive Security team<span><p> <p><br ><p> <p><b>Position Summary<b><p> <p><br ><p> <p><span>The Senior Consultant works closely with other Delivery team members on engagements assessing the security and compliance of various types of client applications and supporting infrastructure against regulatory and industry requirements and standards as well as security best practice frameworks The Consultant is a technically proficient individual contributor with broad and deep technical skills meeting the objectives of their engagements collaborating with clients mentoring teammates and providing subject matter expertise across one or more technical domains The Consultant is a trusted advisor to clients and through objective testing and results reporting supports the client in making wellinformed riskbased decisions to improve overall security posture <span><p> <p><span> <span><p> <p><span>Senior Consultants continue to deepen their skills and broaden their impact both internal to Coalfire as well as the Security Community as a whole As a member of the Offensive Security AWS Team you will be responsible for architecture review roles and access review driving the methodology and execution of offensive penetration testing activities<span><p> <p><b>What Youll Do<b> <p><ul><li>As a member of the Offensive Security AWS Team you will be responsible for architecture review roles and access review driving the methodology and execution of offensive penetration testing activities These duties include<li> <li>Provide guidance to teammates and clients by advising on security and configuration bestpractices defenseindepth and secure SDLC <li> <li>Communicate with client stakeholders to include leadership systems and network administrators security engineers development and support teams<li> <li>Enhance and maintain cloud service provider technical testing methodologies and standards<li> <li>Lead and support penetration testing projects through their entirety ie scoping through outbrief<li> <li>Participate in internal and external security trainings and conferences<li> <ul><p><b>What Youll Bring<b> <p><ul><li>Proven track record of success managing client engagements<li> <li>Professionallevel AWS certifications SAPDEP or AWS Specialty certifications with supporting professional experience<li> <li>Minimum of 4 years of realworld experience with AWS application architectures including<li> <li>Deep progressive experience with AWS security concepts including IAM STS and AWS specific security controls and security architecture design patterns<li> <li>Experience with serverless design concepts and supporting services including S3 SQS SNS CloudFront DynamoDB Lambda and API Gateway<li> <li>Knowledge of advancedniche AWS services including Cognito IoT Core or SageMaker are a major plus<li> <li>Familiarity with DevOps engineering concepts infrastructure automation pipelines version control and deployment strategies are also a plus<li> <li>Proficiency with a variety of programming languages JavaScript Java Python Go etc <li> <li>An ability to validate that an environment meets security objectives through offensive security techniques including<li> <li>Experience with web application and API penetration testing methods and tools<li> <li>Experience with XSS CSRF IDOR AuthNAuthZ and Confused Deputy attacks<li> <li>Practical knowledge of cryptographic concepts<li> <li>Organized and capable of providing formal documentation<li> <li>Flourishes in cooperative work environments<li> <li>Excellent communication and clientfacing skills<li> <li>Selfmotivated and takes initiative to enhance or improve processes procedures and solutions<li> <li>Mentor teammates less familiar with AWS services and architectures<li> <ul><p><b>Bonus Points<b> <p><ul><li>AWS Certified Solutions Architect Professional AWS Certified Security AWS Certified Advanced Networking AWS Certified SysOps Administrator<li> <li>AWAE OSCP OSCE OSEE certifications<li> <li>Network Database System administration experience and certifications<li> <ul><p> <p><p><b>Why Youll Want to Join Us<b><p> <p><br ><p> <p><span>At Coalfire youll find the support you need to thrive personally and professionally In many cases we provide a flexible work model that empowers you to choose when and where youll work most effectively whether youre at home or an office<span><p> <p><span> <span><p> <p><span>Regardless of location youll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities Youll have opportunities to join employee resource groups participate in inperson and virtual events and more And youll enjoy competitive perks and benefits to support you and your family like flexible time off certification and training reimbursement and comprehensive insurance options <span><p> <p><span> <span><p> <p><span>At Coalfire equal opportunity and pay equity is integral to the way we do business A reasonable estimate of the compensation range for this role is $86000 to $148000 based on national salary averages The actual salary offer to the successful candidate will be based on jobrelated education geographic location training licensure and certifications and other factors You may also be eligible to participate in annual incentive commission andor recognition programs<span><p> <p><br ><p> <p> <span>LIRemote <span><p> <p><span>LIGB1<span><p> <p><p>
Account Executive – Compliance Services | Remote US
Company: Coalfire
Location: Remote
Posted Mar 22, 2024
Coalfire is a cybersecurity company seeking an Account Executive to join their Compliance Services sales team. The role involves developing business development initiatives, creating and executing a quarterly business development plan, building relationships with clients, and engaging in strategic discussions to provide cybersecurity guidance. The ideal candidate should have 7+ years of experience in direct sales or account management, a proven track record of achieving annual revenue targets, and excellent communication skills. Coalfire offers a flexible work model, competitive perks, and benefits, and is committed to equal opportunity and pay equity.
Associate, Application Security Penetration Tester | US Remote
Company: Coalfire
Location: Remote
Posted Mar 19, 2024
Coalfire is a cybersecurity company with a mission to make the world safer. They are looking for an Associate to join their Application Security team. The role involves testing applications and APIs, conducting architecture reviews, and advising clients on security activities. Coalfire values thought leadership, collaboration, and professional growth, offering flexible work models, competitive benefits, and opportunities for career advancement.
Senior Site Reliability Engineer | Remote US
Company: Coalfire
Location: Remote
Posted Mar 15, 2024
Coalfire is a cybersecurity company seeking a Senior Site Reliability Engineer to support their Cloud Services team. The role involves working with major public clouds, utilizing automation, and providing seamless reliability and scalability of SaaS products. The ideal candidate will have 5+ years of experience in 24x7x365 production operations, cloud operations, and automation in AWS, Azure, or GCP. They should be proficient in Infrastructure-as-Code, orchestration/automation tools, and container orchestration solutions. Strong communication, organizational, and problem-solving skills are required. Coalfire offers a flexible work model, competitive perks, and benefits, and is committed to equal opportunity and pay equity.