About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
Position Summary
We’re looking for a continuous monitoring engineer to work on our vulnerability management processes, driving compliance and security in cloud-based environments. If you’re driven by a desire to innovate, excel at operational excellence, and thrive in a collaborative environment, come be part of a team committed to making the world a safer place.
What You'll DoManage Plan of Action & Milestones (POA&Ms) lifecycle including creation, tracking, risk adjustment justification, and deviation requests in coordination with 3PAO assessors and federal stakeholdersCollect, organize, and maintain security control evidence and artifacts for monthly continuous monitoring deliverables and assessment/authorization activities, ensuring alignment with FedRAMP, HITRUST, PCI, and similar frameworksMaintain accurate system inventory and authorization boundary documentation to ensure scanning scope aligns with approved system boundariesAnalyze scan results for false positives, document justifications, and prepare deviation requests with supporting risk assessmentsTranslate technical vulnerability findings into risk-based language for federal clients and authorization officials, presenting monthly status briefings as neededCollaborate with development, SRE, and infrastructure teams to integrate vulnerability management into CI/CD pipelines, cloud environments (AWS, Azure, GCP), and container/Kubernetes platformsParticipate in change management processes to ensure continuous monitoring activities align with system changes and maintain compliance postureSupport and maintain enterprise vulnerability management tools (such as Tenable, Nessus, Burp, Qualys, Rapid7, Wiz, Prisma, Microsoft Defender), ensuring timely updates and patchesRun regular and on-demand scans across operating systems, databases, web applications, and containers, then work with technical teams to create tickets for remediationTrack and document vendor dependencies, operational requirements, and open vulnerabilities, producing clear monthly reports and updates for clientsContribute to improving internal standards and processes, including maintaining documentation, training materials, and standard operating proceduresWhat You'll Bring3–5 years of professional experience in vulnerability management, compliance monitoring, or related security operations rolesHands-on expertise with operating system, database, network, container, web application, and API vulnerability managementDirect experience supporting vulnerability management in at least two of the following cloud providers: AWS, Azure, GCPBackground working within at least one compliance framework (for example, FedRAMP, HITRUST, PCI), including risk assessment and reportingExperience delivering monthly or periodic vulnerability status reports and tracking remediation efforts with internal and external teamsAdministrator-level certification in AWS, Azure, or GCPWorking knowledge of cloud architecture and security controls in AWS, Azure, or GCP, including ability to assess attack surfaces and recommend cloud-native remediation approachesStrong knowledge of vulnerability scanning technologies and methods, including scoring systems (CVSS, CMSS) and risk prioritization frameworksUnderstanding of NIST 800-53 security controls, particularly RA-5, SI-2, CM-6, and how continuous monitoring supports control implementationExperience with STIG benchmarks and automated compliance scanning tools (SCAP, SCC)Familiarity with baseline configuration standards (CIS Benchmarks, vendor hardening guides) and compliance posture reportingAbility to distinguish false positives from true vulnerabilities and articulate risk-based justifications for deviation requestsProficiency in scripting languages (Python, PowerShell, Bash) for task automation, report generation, and remediation workflowsStrong client-facing communication and documentation skills, with ability to present technical findings to federal stakeholders and produce timely compliance reportsAbility to work efficiently with cross-functional technical teams to investigate, prioritize, and coordinate vulnerability remediation effortsBachelor’s degree or equivalent work experience.Bonus PointsSecurity-focused cloud certifications for AWS, Azure, or GCPCISSPFamiliarity with container security scanning tools (Trivy, Anchore, Snyk) and Kubernetes security posturesKnowledge of software composition analysis (SCA) and static/dynamic application security testing (SAST/DAST) toolsFamiliarity with CI/CD security integration patterns and DevSecOps toolchainsWhy You’ll Want to Join Us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at HumanResourcesMB@coalfire.com. 
