Job Description
About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
Position Summary
This is a great opportunity to grow your career and lead enterprise engagements as a Senior Consultant for our Payments Solution Validation team.
In this role you will lead and perform assessments of client environments against regulatory and industry security standards, with a primary focus on PCI Point-to-Point Encryption (P2PE) and PCI PIN Security standards.
As a senior member of the Payments Solution Validation team, you will evaluate technical controls, encryption architectures, and secure key-management practices for financial institutions and payment solution providers.
You will act as a trusted advisor, guiding clients on data protection strategies, encryption best practices, and overall PCI compliance while delivering high-quality assessment reports and attestations.
What You’ll Do
Leads audits and assessments including audit planning, evidence review, controls evaluation, and client interviews.
Prepare relevant frameworks assessment reports and attestations.
Manage priorities, tasks and hours on projects in coordination with project managers to meet delivery utilization targets.
Ensure all deliverables meet Coalfire quality standards and timelines.
Proactively escalate client or project risks to management.Interface with clients throughout the engagement, including executive and technical stakeholders
Build and maintain strong, collaborative client relationships
Maintain industry certifications and deepen subject matter expertise through continuous professional development.
Travel up to 30% as required
What You’ll Bring
Certifications:
- Information security certification: CISSP OR CISM OR ISO Lead 27001:2022 Lead Implementer
- Audit Certification: CISA OR GSNA OR ISO 27001:2022 Lead Auditor OR IRCA ISMS Auditor or higher, IIA Certified Internal Auditor (CIA)
- Willingness and ability to pursue P2PE-Assessor and/or QPA (PIN Assessor) certification.
Experience:
- 5+years in IT security, payments security and/or application development
- Bachelor’s degree (four-year college or university) or equivalent combination of education and work experience.
- Knowledge of industry cryptography standards such as ISO 11568 and 13491, ANSI X9.97, and NIST 140-2 Level 3
- Strong understanding of PCI compliance, encryption, key management, PKI, HSMs, POI key-injection, physical security controls
- Experience with security audits, risk assessments, and gap analyses.
- A commitment to your profession demonstrated by participation in industry events, seminars, blogs, and memberships in professional associations
Skills:
- Strong consulting skills with executive leadership and technical teams; ability to advise, challenge, and influence while building trust
- Excellent written and verbal communication skills
- Ability to lead and facilitate meetings with small and large groups
- Strong customer service, stakeholder management, and project management skills
- Ability to manage multiple initiatives and projects independently in a fast‑paced consulting environment
Bonus Points
- Current or former PCI-QSA certification
- Current or former P2PE certification
- Current or former PIN certification
$86,000 - $148,000 a year
The salary range listed is a reasonable estimate of the compensation range for this role based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs.
#LI-HW1
#LI-Remote
Why You’ll Want to Join Us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at [email protected].
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
