Manager, Compliance Advisory

9 hours, 44 minutes ago
Full-time
Lead
Cybersecurity
Coalfire

Coalfire

Coalfire is a cybersecurity advisor that helps organizations avert threats, reduce risk, and turn security into a competitive advantage, fueling their success.

Internet Software & Services
251-1K
Founded 2001
$9M raised

Description

  • Directly manage, mentor, and coach 2-3 consultants while fostering accountability, collaboration, and continuous improvement.
  • Provide day-to-day leadership, performance feedback, onboarding support, and skills development for team members.
  • Support resourcing decisions, workload planning, project margin, and utilization management.
  • Lead advisory engagements across the full project lifecycle, from planning and execution through review and closure.
  • Maintain clear communication and strong relationships with client stakeholders across multiple levels.
  • Execute and oversee compliance assessments for frameworks such as FedRAMP, CMMC, DISA Cloud SRG, FISMA, and related standards.
  • Lead interviews, examinations, and testing procedures to validate control implementation.
  • Develop, review, and maintain security documentation, including policies, procedures, risk assessments, and supporting artifacts.
  • Perform quality reviews of project deliverables to ensure accuracy, completeness, and alignment with framework requirements.
  • Partner with delivery, quality, and sales teams to manage risks, meet timelines, improve client satisfaction, and identify upsell and cross-sell opportunities.

Requirements

  • Minimum 5 years of experience in information technology, information security, technical assessment, or audits.
  • Substantial knowledge of security control requirements such as NIST, FISMA, FedRAMP, CMMC, and DoD frameworks.
  • Experience applying FISMA/FedRAMP and related compliance frameworks in moderate and large hyperscale CSP environments.
  • Knowledge of multi-framework consolidated compliance assessment activities.
  • Understanding of IT security technologies including network security, application security, firewalls, access management, and data protection.
  • Experience with virtualization, cloud technologies, and client-server or traditional on-premises architecture.
  • Ability to lead moderately complex system assessments or consulting engagements independently.
  • Ability to assist with artifact collection, client interviewing, and interpretation of control families and firewall rulesets.
  • Strong written and verbal communication skills, including the ability to explain technical topics to non-technical audiences.
  • At least one advanced certification or equivalent in cybersecurity or cloud, such as CISSP, CISA, CISM, CAP, CRISC, CMMC CCP, AWS, GCP, or Azure certification.
  • Bachelor's degree or equivalent education and experience.
  • Preferred: knowledge of container-based architectures.
  • Preferred: knowledge of AWS, GCP, and Azure cloud environments.
  • Preferred: bachelor's degree in a technical field such as CIS, MIS, IT, or Engineering.

Benefits

  • Flexible work model with the ability to choose when and where you work, including home or office options.
  • Paid parental leave.
  • Flexible time off.
  • Certification and training reimbursement.
  • Digital mental health and wellbeing support membership.
  • Comprehensive insurance options.
  • Opportunities to join employee resource groups and participate in in-person and virtual events.
  • Commitment to pay equity, equal opportunity, and reasonable accommodation support.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Senior Technical Consultant — Physical & Logical Access Control (ServiceNow Platform)

SwiftConnect 51-200 Software Development

An experienced technical consultant is needed to advise product and engineering teams building an enterprise workplace security capability on the ServiceNow platform, unifying physical access control with identity, HR, and IT workflows.

REST API SOAP
9 hours, 44 minutes ago

Regional Security Manager

Stand Together 251-1K Diversified Consumer Services

Stand Together is hiring a Regional Security Manager to support its philanthropic community by assessing and reducing security risk across facilities, events, and operations in an assigned region.

9 hours, 59 minutes ago

Field Strategist

Convergent Research 11-50 Professional Services

Atlas Computing is hiring a Field Strategist to scope and launch new AI resilience interventions, working with experts, funders, and future owners to turn complex societal risks into actionable efforts.

Cybersecurity Machine Learning Prototyping
9 hours, 59 minutes ago

Cybersecurity Assessment and Authorization SME

Electrosoft 51-250 Internet Software & Services

Electrosoft Services, LLC is hiring a Cybersecurity Assessment and Authorization SME to support a Department of War cybersecurity program focused on RMF implementation, authorization, and continuous monitoring across complex enterprise environments.

Cybersecurity
1 day, 9 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers