Coalfire Systems
Senior Consultant, Compliance Security
Coalfire Systems, Chicago, Illinois, United States, 60290
Coalfire is an EEO employer. We celebrate diversity and are committed to respecting one another, embracing individual differences, and creating an inclusive environment for all employees.
About Coalfire Coalfire is on a mission to make the world a safer place by solving our clients' hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.
But that's not who we are - that's just what we do. We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
Position Summary Join a collaborative and dynamic team of cybersecurity professionals to conduct cutting-edge penetration testing across a wide range of technologies and environments. As a Senior Consultant on the Compliance Security team, you'll play a key role in identifying vulnerabilities, simulating real-world cyberattacks, and helping our clients strengthen their security posture.
Your day-to-day will include leading internal and external network penetration testing, application security assessments (browser-based, API, mobile), cloud environment testing, social engineering engagements, and wireless assessments.
What you'll do
Plan and lead penetration testing engagements across networks, applications, cloud infrastructure, APIs, and mobile platforms
Focus area on technical project leadership and cloud penetration testing engagements
Deliver clear, actionable technical reports and executive summaries
Provide expert guidance on remediation and risk mitigation strategies
Collaborate cross-functionally with delivery teams, project managers, and sales to ensure successful engagement outcomes
Escalate critical issues and ensure timely resolution of project challenges
Mentor and support the development of less experienced team members
Contribute to research, tool development, and knowledge sharing within the security practice
Support the achievement of team utilization and delivery metrics
What You'll Bring
Bachelor's degree (four-year college or university) or equivalent combination of education and work experience
Minimum 5+ years of hands-on experience in network and/or application penetration testing
Minimum 5+ years of experience in cybersecurity consulting
Demonstrated expertise in one or more areas: Web Application, API, Mobile, Cloud, and Internal and External Network Penetration Testing
Proficiency in multiple scripting or programming languages (e.g., Python, PowerShell, C, Bash)
Experience testing against one or more IT security compliance frameworks, such as PCI, FISMA, HIPAA, FedRAMP, or HITRUST
Strong understanding of security frameworks and standards (e.g., OWASP, NIST, PTES, PCI DSS, HIPAA, FedRAMP)
Proven experience interacting with clients, delivering presentations, and writing detailed assessment reports
Experience leading penetration testing engagements and working independently in a client-facing capacity
Willingness to travel occasionally (up to 10%)
You should have solid proficiency in at least one of the following areas
Compliance-Driven Penetration Testing (e.g., PCI, FedRAMP)
Cloud Penetration Testing (e.g., AWS, Azure, GCP)
Network/Active Directory Penetration Testing
Application (Web/API/Mobile/Thick) Penetration Testing
Secure Code Review
Hardware or IoT Testing
Container Security Testing
AI or ML System Testing
What Sets You Apart
Proven ability to manage time and juggle multiple tasks under tight deadlines
Strong consulting presence - can lead client meetings, kickoff calls, and present findings clearly
Excellent report writing skills - capable of drafting both technical detail and executive summaries
Continuous learning mindset - actively pursuing certifications and keeping up with threat landscapes
The salary range listed is a reasonable estimate of the compensation range for this role based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs.
Why You'll Want to Join Us At Coalfire, you'll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you'll work most effectively - whether you're at home or an office.
Regardless of location, you'll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You'll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you'll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at HumanResourcesMB@coalfire.com.
Bonus Points
Please see job description
PI278281580
#J-18808-Ljbffr
About Coalfire Coalfire is on a mission to make the world a safer place by solving our clients' hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.
But that's not who we are - that's just what we do. We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
Position Summary Join a collaborative and dynamic team of cybersecurity professionals to conduct cutting-edge penetration testing across a wide range of technologies and environments. As a Senior Consultant on the Compliance Security team, you'll play a key role in identifying vulnerabilities, simulating real-world cyberattacks, and helping our clients strengthen their security posture.
Your day-to-day will include leading internal and external network penetration testing, application security assessments (browser-based, API, mobile), cloud environment testing, social engineering engagements, and wireless assessments.
What you'll do
Plan and lead penetration testing engagements across networks, applications, cloud infrastructure, APIs, and mobile platforms
Focus area on technical project leadership and cloud penetration testing engagements
Deliver clear, actionable technical reports and executive summaries
Provide expert guidance on remediation and risk mitigation strategies
Collaborate cross-functionally with delivery teams, project managers, and sales to ensure successful engagement outcomes
Escalate critical issues and ensure timely resolution of project challenges
Mentor and support the development of less experienced team members
Contribute to research, tool development, and knowledge sharing within the security practice
Support the achievement of team utilization and delivery metrics
What You'll Bring
Bachelor's degree (four-year college or university) or equivalent combination of education and work experience
Minimum 5+ years of hands-on experience in network and/or application penetration testing
Minimum 5+ years of experience in cybersecurity consulting
Demonstrated expertise in one or more areas: Web Application, API, Mobile, Cloud, and Internal and External Network Penetration Testing
Proficiency in multiple scripting or programming languages (e.g., Python, PowerShell, C, Bash)
Experience testing against one or more IT security compliance frameworks, such as PCI, FISMA, HIPAA, FedRAMP, or HITRUST
Strong understanding of security frameworks and standards (e.g., OWASP, NIST, PTES, PCI DSS, HIPAA, FedRAMP)
Proven experience interacting with clients, delivering presentations, and writing detailed assessment reports
Experience leading penetration testing engagements and working independently in a client-facing capacity
Willingness to travel occasionally (up to 10%)
You should have solid proficiency in at least one of the following areas
Compliance-Driven Penetration Testing (e.g., PCI, FedRAMP)
Cloud Penetration Testing (e.g., AWS, Azure, GCP)
Network/Active Directory Penetration Testing
Application (Web/API/Mobile/Thick) Penetration Testing
Secure Code Review
Hardware or IoT Testing
Container Security Testing
AI or ML System Testing
What Sets You Apart
Proven ability to manage time and juggle multiple tasks under tight deadlines
Strong consulting presence - can lead client meetings, kickoff calls, and present findings clearly
Excellent report writing skills - capable of drafting both technical detail and executive summaries
Continuous learning mindset - actively pursuing certifications and keeping up with threat landscapes
The salary range listed is a reasonable estimate of the compensation range for this role based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs.
Why You'll Want to Join Us At Coalfire, you'll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you'll work most effectively - whether you're at home or an office.
Regardless of location, you'll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You'll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you'll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at HumanResourcesMB@coalfire.com.
Bonus Points
Please see job description
PI278281580
#J-18808-Ljbffr