Associate, Compliance Security Penetration Tester

Coalfire

1d•$64,000 - $117,000

About The Position

Coalfire is on a mission to make the world a safer place by solving our clientsâ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world. But thatâs not who we are â thatâs just what we do. We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference. Working independently and collaboratively with a team to support the following work activities where skills apply such as: Internal and External Network Penetration Testing, Application Penetration Testing (Browser-based, API, Mobile), Cloud Solution Penetration Testing, Social Engineering, Wireless Assessments. Conduct security assessments on a wide variety of technologies and implementations. Simulate sophisticated cyberattacks for clients worldwide.

Requirements

Bachelor's degree (four-year college or university) or equivalent combination of education and work experience
3+ yearsâ experience in information security with network penetration testing experience
Experience working with enterprise environments
Experience with network or systems administration
Hands-on experience with scripting languages such as Python, Powershell, Shell, or Ruby
Experience with one or more IT security compliance frameworks, such as PCI, FISMA, HIPAA, FEDRAMP, or HITRUST
One to three (1-3) years of experience in an IT Security Audit and/or Compliance role
Experience interacting with management in a consultative manner
Strong IT understanding with respect to networks, servers, workstations, and applications
Excellent communication and presentation skills
Ability to travel up to 20%

Nice To Haves

Deep experience engaging clientele in consulting-related environments
Experience leading penetration team engagements
Reverse engineering malware, data obfuscators, or ciphers
An aptitude for technical writing, including assessment reports, presentations, and operating procedures
Strong understanding of security principles, policies, and industry best practices
Experience working with C and various compiler toolchains
Community contributions or participation including
CTF, Hack-the-box, or cyber-defense competitions
Speaking or presentations
Public security research

Responsibilities

Advises clients on technical security or compliance activities
Manages priorities and tasks to achieve delivery utilization targets.
Operates with professionalism both internally and with clients.
Ensures quality products and services are delivered on time.
Continues to develop professional skills with relevant industry specific certifications. Maintains strong depth of knowledge in the practice area.
Collaborates with project managers, quality management, sales, and other delivery team members to drive customer satisfaction and meet project deliverables.
Develop processes, procedures, and methodologies to enhance testing processes and experience
Assist with report generation and quality assurance processes
Develop client relationships
Assist in the scoping of prospective engagements, leading engagements from initial stages through implementation and remediation
Manage project escalations of current testing being conducted
Mentor and develop less experienced staff
Contribute to the Penetration Testing Team overall success by managing your team to meet various business objectives and metrics