Conduct penetration testing and security assessments across various platforms, simulate cyberattacks, advise clients on security best practices, and mentor junior staff.
About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
Position Summary
Join a collaborative and dynamic team of cybersecurity professionals to conduct cutting-edge penetration testing across a wide range of technologies and environments. As a Consultant, you’ll play a key role in identifying vulnerabilities, simulating real-world cyberattacks, and helping our clients strengthen their security posture.
Your day-to-day will include internal and external network penetration testing, application security assessments (browser-based, API, mobile), cloud environment testing, social engineering engagements, and wireless assessments.
What You’ll Do
- Perform security assessments across various platforms and technologies
- Simulate sophisticated cyberattacks to assess and improve client defenses
- Advise clients on technical security and compliance best practices
- Manage your own testing priorities and deliver high-quality work on time
- Collaborate with internal teams - PMs, QA, sales, and other consultants to deliver exceptional client service
- Create and maintain testing methodologies, documentation, and processes
- Write detailed, high-quality reports for both technical and executive stakeholders
- Scope and lead penetration testing engagements from start to finish
- Help resolve escalations during active assessments
- Mentor junior team members and contribute to a positive team environment
- Support the team’s success by contributing to KPIs, innovation, and knowledge sharing
What You’ll Bring
- Bachelor's degree (four-year college or university) or equivalent combination of education and work experience
- 3+ years of hands-on experience in network and/or application penetration testing
- Proficiency with scripting languages such as Python, PowerShell, Shell, or Ruby
- Familiarity with security frameworks (e.g., PCI, HIPAA, FedRAMP, HITRUST, or FISMA)
- 1–3 years of experience in IT security audit and/or compliance roles
- Strong technical foundation in networks, servers, workstations, and applications
- Experience working in a consulting or client-facing role (minimum 3 years)
- Strong communication and presentation skills - able to interface with both technical and non-technical stakeholders
- Willingness to travel occasionally (up to 10%)
- Compliance-Driven Penetration Testing (e.g., PCI, FedRAMP)
- Cloud Penetration Testing (e.g., AWS, Azure, GCP)
- Network/Active Directory Penetration Testing
- Application (Web/API/Mobile/Thick) Penetration Testing
- Secure Code Review
- Hardware or IoT Testing
- Container Security Testing
- AI or ML System Testing
- Proven ability to manage time and juggle multiple tasks under tight deadlines
- Strong consulting presence - can lead client meetings, kickoff calls, and present findings clearly
- Excellent report writing skills - capable of drafting both technical detail and executive summaries
- Continuous learning mindset - actively pursuing certifications and keeping up with threat landscapes
You should have solid proficiency in at least one of the following areas:
What Sets You Apart
Why You’ll Want to Join Us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at [email protected].
Top Skills
AWS
Azure
GCP
Penetration Testing
Powershell
Python
Ruby
Shell
Similar Jobs
Big Data • Cloud • Software • Database
The role involves enhancing MongoDB's product security, advocating for security initiatives, collaborating with engineering teams, and leading security projects. The focus includes threat modeling, security assessments, and educating others on security practices.
Top Skills:
AWSAzureC++Database SecurityGCPGoJavaScriptPython
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
Assist in incident response, perform malware analysis, improve detection processes, and provide customer communications in a hybrid cybersecurity role.
Top Skills:
.NetCC#LinuxmacOSMalware Analysis ToolsNetwork Analysis ToolsPerlPythonRuby On RailsVbWindows
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
As a Technical Analyst, you will respond to incidents, conduct malware analysis, and support security operations to protect organizations.
Top Skills:
.NetCC#PerlPythonRuby On RailsVb
What you need to know about the Charlotte Tech Scene
Ranked among the hottest tech cities in 2024 by CompTIA, Charlotte is quickly cementing its place as a major U.S. tech hub. Home to more than 90,000 tech workers, the city’s ecosystem is primed for continued growth, fueled by billions in annual funding from heavyweights like Microsoft and RevTech Labs, which has created thousands of fintech jobs and made the city a go-to for tech pros looking for their next big opportunity.
Key Facts About Charlotte Tech
- Number of Tech Workers: 90,859; 6.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lowe’s, Bank of America, TIAA, Microsoft, Honeywell
- Key Industries: Fintech, artificial intelligence, cybersecurity, cloud computing, e-commerce
- Funding Landscape: $3.1 billion in venture capital funding in 2024 (CED)
- Notable Investors: Microsoft, Google, Falfurrias Management Partners, RevTech Labs Foundation
- Research Centers and Universities: University of North Carolina at Charlotte, Northeastern University, North Carolina Research Campus
