Coalfire is hiring a
Senior Consultant

Summary

The job is for a Cybersecurity Consultant at Coalfire. The role involves providing advice to customers, leading audits/assessments, maintaining strong knowledge in one or more cybersecurity frameworks, preparing assessment reports, managing priorities, ensuring quality products and services are delivered on time, mentoring team members, interfacing with clients, establishing account relationships, drafting audit programs, assessing security vulnerabilities, educating and interpreting compliance activities for clients, and understanding how to apply quality standards. The candidate should have a Bachelor's degree in IT or business, 5-10 years of experience as a consultant within professional IT services, hold one of the specified certifications, have deep experience with government compliance, strong knowledge of NIST Special Publications, experience with every step within the delivery of Certification and Accreditation packages, experience with virtualization or cloud technologies, familiarity with statutes and regulations across multiple industries relevant to IT, excellent verbal and written skills, and be willing to travel up to 25%. Bonus points are given for holding Cloud Security focused certifications. The salary range is $86,000 - $148,000 a year, with opportunities for annual incentive, commission, and recognition programs. Coalfire offers flexible work models, prioritizes connection and wellbeing, provides competitive perks and benefits, and values equal opportunity and pay equity.

Requirements

• Holds a Bachelor's degree (four-year college or university) in IT or business
• Has 5 to 10 years of experience as a consultant within professional IT services
• Must hold one of the following certifications: CISSP, CISA, CISM, CCSP, CISSP-ISSAP, CISSP-ISSEP, CISSP-ISSMP, CFR, CCISO, GCED, GCIH, GSLC
• Deep experience with government compliance, including FISMA, FedRAMP, and DoD RMF
• Strong knowledge of NIST Special Publications 800-30, 800-37, 800-53
• Experience with every step within the delivery of Certification and Accreditation (C&A) / Assessment and Authorization (A&A) packages that have obtained and maintained full authorization to operate (ATO)
• Experience with virtualization or cloud technologies
• Familiarity with statutes and regulations across multiple industries relevant to IT (e.g. SOX 404, HIPAA, FedRAMP, GLB, Patriot Act)
• Knowledge of information security related solutions, tools, and utilities
• Excellent verbal and written skills
• Willing to travel up to 25%

Responsibilities

• Provides advice to customers on issues affecting the scope of work in a manner that provides additional value
• Develop documentation and author recommendations associate with your findings on how to improve the customer’s security posture in accordance with appropriate controls
• Leads audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews

Preferred Qualifications

Hold Cloud Security focused certifications (AWS, Azure, CCSK, etc.)

Benefits

• Flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office
• Competitive perks and benefits, including paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options