Coalfire

Founded in 2001, we provide cybersecurity and compliance services to enterprises and tech businesses in the tech, healthcare, and finance industries. Our services include IT Audits, Risk Assessments, Penetration Testing, and compliance assessments for PCI-DSS/PA-DSS, HIPAA/HITECH/HITRUST, FISMA/FedRAMP 3PAO, CSA STAR, ISO 42001, and HITRUST. We also offer Third Party Risk Management, Cyber Risk Assessment, Cyber Breach Services, Gap Advisory, Cloud Maturity Assessment, Accelerated Cloud Engineering, Application Security, DevSecOps, Cloud Penetration Testing, FedRAMP, StateRAMP, Compliance Automation, Advisory, Strategy Privacy Risk, CISO Program Management, Vulnerability Management, and Red Team services.

We organize our work into three main areas: Advisory and TRUST Engineering, Assessment, and Cybersecurity. Our advisory services help build secure solutions to meet compliance goals. Assessment services check that controls, processes, and governance follow established standards. Our DivisionHex team delivers offensive, defensive, and managed cybersecurity services. We also help clients with AI risk and governance, including practical approaches for Generative AI and Agentic Security.

We secure cloud environments for over 700 cloud service partners. We have been named to Consulting Magazine’s list of fastest-growing firms four times and our team holds over 900 licenses and certifications. We were among the first to assess compliance with frameworks like CMMC and PCI. We also developed the Accelerated Cloud Engineering methodology, which we believe can cut time to market by 80% for AWS users.

We operate under “The Coalfire Code,” our set of core values:

• Respect: We embrace individuality, act with sincerity, and improve our communities.
• Excellence: We deliver quality and aim to exceed expectations for both internal and external clients.
• Leadership: We encourage creativity, lead by example, are resourceful, and empower innovation.
• Integrity: We communicate honestly, are accountable for our actions, and act ethically.
• Teamwork: We work as a team, collaborate, and support our colleagues and clients.
• Enthusiasm: We celebrate success, enjoy our work, and have fun together.

We are committed to our clients by simplifying cybersecurity, protecting them from cyber threats, reducing vulnerabilities, improving their security, and serving as their trusted cyber partner.

Our team has between 1,001 and 5,000 employees, including over 1,000 cybersecurity experts. We cultivate an inclusive environment where our employees feel empowered to tackle cybersecurity challenges. We support professional growth through mentorship, leadership programs, and chances for advancement.

We are dedicated to diversity and inclusion, creating a workplace where everyone feels included, supported, and respected. Our team members connect through company events, interest-based communities, and employee resource groups. We encourage work-life balance with flexible remote work options and wellness initiatives. We have been recognized as a Top Workplace since 2018 and support veterans and active-duty service members, earning the 2022 Secretary of Defense Employer Support Freedom Award and HIRE Vets Medallion Award.

We offer comprehensive insurance plans through UnitedHealthcare for employees and their families, including options for pet coverage. Our benefits include paid parental leave and flexible time off. For professional growth, we provide tuition and certification reimbursement and advancement opportunities, including formal leadership programs.

We support employee well-being with a digital mental health and wellness membership, wellness initiatives, fitness challenges, and an Employee Assistance Program. Our competitive compensation packages may include annual incentives, commissions, or recognition programs. We support a flexible work model, with hybrid remote, office-based, and fully remote options depending on the role. Employees can join employee resource groups and participate in various in-person and virtual company events. We also ensure equal opportunity and pay equity, with non-discrimination guarantees.