Coalfire

Consultant, Penetration Tester

Posted Yesterday

Be an Early Applicant

Hiring Remotely in United States

Remote

64K-117K Annually

Mid level

Cloud • Security • Cybersecurity

The Role

Conduct penetration testing and security assessments for various technologies and environments. Identify vulnerabilities, simulate cyberattacks, and advise clients on security best practices. Manage testing engagements and support junior staff.

Summary Generated by Built In

About Coalfire

Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.

But that’s not who we are – that’s just what we do.

We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

Position Summary:

Join a collaborative and dynamic team of cybersecurity professionals to conduct cutting-edge penetration testing across a wide range of technologies and environments. As a Consultant, you’ll play a key role in identifying vulnerabilities, simulating real-world cyberattacks, and helping our clients strengthen their security posture.

Your day-to-day will include internal and external network penetration testing, application security assessments (browser-based, API, mobile), cloud environment testing, social engineering engagements, and wireless assessments.

What You’ll Do

Perform security assessments across various platforms and technologies
Simulate sophisticated cyberattacks to assess and improve client defenses
Advise clients on technical security and compliance best practices
Manage your own testing priorities and deliver high-quality work on time
Collaborate with internal teams, PMs, QA, sales, and other consultants to deliver exceptional client service
Create and maintain testing methodologies, documentation, and processes
Write detailed, high-quality reports for both technical and executive stakeholders
Scope and lead penetration testing engagements from start to finish
Help resolve escalations during active assessments
Mentor junior team members and contribute to a positive team environment
Support the team’s success by contributing to KPIs, innovation, and knowledge sharing.

What You’ll Bring

A Bachelor’s Degree (or equivalent experience) in Information Security, Computer Science, or a related field
3+ years of hands-on experience in network and/or application penetration testing
Proficiency with scripting languages such as Python, PowerShell, Shell, or Ruby
Familiarity with security frameworks (e.g., PCI, HIPAA, FEDRAMP, HITRUST, or FISMA)
Experience with GCP and tenant deployments
1–3 years of experience in IT security audit and/or compliance roles
Strong technical foundation in networks, servers, workstations, and applications
Experience working in a consulting or client-facing role (minimum 3 years)
Strong communication and presentation skills—able to interface with both technical and non-technical stakeholders
Willingness to travel occasionally (up to 10%)

You should have solid proficiency in the following areas:

Compliance-Driven Penetration Testing (e.g., PCI, FedRAMP)
Cloud Penetration Testing (e.g., AWS, Azure, GCP)

Bonus Points

Additional proficiency in at least one of the following areas:

Network/Active Directory Penetration Testing
Application (Web/API/Mobile/Thick) Penetration Testing
Hardware or IoT Testing
Container Security Testing
AI or ML System Testing

What Sets You Apart

Proven ability to manage time and juggle multiple tasks under tight deadlines
Strong consulting presence and can lead client meetings, kickoff calls, and present findings clearly
Excellent report writing skills and capable of drafting both technical detail and executive summaries
Continuous learning mindset with active pursuit of certifications and keeping up with threat landscapes

Why You’ll Want to Join Us

At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.

Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.

At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at [email protected].

Top Skills

AWS

Azure

GCP

Powershell

Python

Ruby

Shell

View all jobs at Coalfire

View Coalfire Profile

Report Job

Am I A Good Fit?

beta

Get Personalized Job Insights.

Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company

HQ: Westminster, CO

1,062 Employees

Year Founded: 2001

What We Do

Coalfire is the cybersecurity advisor that helps private and public sector organizations avert threats, close gaps, and effectively manage risk. By providing independent and tailored advice, assessments, technical testing, and cyber engineering services, we help clients develop scalable programs that improve their security posture, achieve their business objectives, and fuel their continued success. Coalfire has been a cybersecurity thought leader for more than 20 years and has offices throughout the United States and Europe.