Principal - Enterprise, Global, & AI Compliance Advisory

Sorry, this job was removed at 12:15 a.m. (UTC) on Tuesday, Mar 31, 2026
Be an Early Applicant
Hiring Remotely in United States
Remote
104K-180K Annually
Cloud • Security • Cybersecurity
The Role
About Coalfire

Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.

But that’s not who we are – that’s just what we do.
 
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

What You'll Do

  • GRC Engineering & Automation: Design and implement automated compliance workflows using leading platforms (UiPath, Vanta, Drata, Archer, etc.). Develop and maintain Centralized Compliance Frameworks (CCF) to unify multi-framework compliance requirements. Architect scalable compliance solutions integrated with enterprise systems and cloud environments.
  • Experience designing internal controls, designing internal controls assessments, designing sampling methodologies, scoping assessments, planning assessments, and gaining management support.
  • Continuous Controls Monitoring: Implement and manage continuous monitoring solutions for real-time compliance and risk visibility. Develop dashboards and reporting mechanisms leveraging data analytics tools (e.g., Snowflake).
  • AI & Advanced Technologies: Apply prompt engineering techniques and leverage LLMs/AI models to enhance compliance automation and risk analysis. Train internal teams and clients on AI-driven compliance tools and methodologies.
  • Privacy & Data Governance: Advise on privacy frameworks (GDPR, CCPA, ISO 27701) and implement data governance strategies. Ensure compliance with global data protection regulations through automated controls and reporting.
  • GRC as a Service & MSP/MSSP Strategy: Develop service delivery models for GRC as a Service. Collaborate with MSP/MSSP teams to design recurring revenue streams and future-of-work strategies for compliance services.
  • Thought Leadership & Mentorship: Publish technical white papers, blogs, and deliver presentations on GRC engineering and automation trends. Mentor team members on compliance engineering, automation tools, and AI integration.
  • Work with industry and standards bodies to provide information security technical and non-technical expertise.
  • Work with other teams within Coalfire to drive customer success.
  • Scope and lead on-site engagements with clients. This includes leading pre-sales calls, onsite visits, understanding customer security and compliance requirements and environments, and proposing and delivering packaged offerings or custom solution engagements.
  • Develop technical content, such as security plans, procedures, policies, and white papers that can be used by our clients to assist them in elevating/building out their security and compliance programs.
  • Lead delivery engagements including on-site projects working with clients to build out compliance roadmaps, architecture guidance, gap assessments, etc.
  • Collaborate with Coalfire engineering, support and business teams to convey partner and customer feedback.
  • Serve as the practice subject matter expert (SME) for escalations, sales/marketing support, driving practice profitability and revenue.
  • Provide Delivery Team Support, including: identifying process improvements, training Delivery personnel on methodologies/tools and quality topics, and mentoring Delivery personnel.
  • Development of industry-wide service line thought leadership through:
  • Authoring: methodologies, templates, white papers, work instructions, guidelines, forms, and tools
  • Developing and delivering industry specific training, including speaking/presenting at conferences, creating webinars
  • Ensure continuous professional development by maintaining industry specific certifications.
  • Maintain strong depth of knowledge in the practice area including being able to provide technical recommendations for clients to mitigate risks and implement controls in-line with framework requirements
  • Collaborate with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables.
  • Establish account relationships and identifies upsell and cross sell opportunities and escalates to sales  
  • Travel up to 20%

What You'll Bring

  • 7+ years of experience in an IT security audit, assessment, compliance, risk management, or data privacy role.
  • Bachelor's Degree in Computer Science, Information Systems Management, Information Security, Business or equivalent experience required.
  • Proven experience with GRC automation platforms (UiPath, Vanta, Drata, Archer, OneTrust, Oracle GRC, Hyperproof, or other market competitors, etc..).
  • Familiarity with GRC as a Service, MSP, and MSSP concepts to build recurring revenue models.
  • A strong work ethic, thirst for knowledge, enthusiasm for tacking new challenges, and a “we, not I” mentality when it comes to teamwork and the achievement of organizational goals.
  • Strong communication skills with executive presence for CIO/CTO/CISO-level discussions.
  • Knowledge of the latest information risk, security and compliance innovations, trends, challenges and solutions to provide best-practice recommendations.
  • Experience in leveraging security best practices and/or standards (NIST, ISO, CIS Top 20, ISSA, CSA CMM, OWASP, DMBOK, Prosci, GAO Greenbook, COBIT, AICPA/SOC TSCs) to solve problems for GRC programs.
  • Strong knowledge of Centralized Common Compliance Frameworks (CCF) and multi-framework mapping.
  • Experience building common compliance frameworks as well as mapping between different compliance requirements.
  • Demonstrated depth of security understanding in various sub domains such as encryption, business continuity, disaster recovery, identity and access management, incident response, change management, etc.
  • Hands-on experience in systems architecture and integration of compliance solutions.
  • Problem solving skills that contribute to the development of consultative solutions for unique client requirements.
  • Proven background in clearly writing complex technical documents that can be presented across a varied enterprise corporate audience.
  • Proven ability in strategic consulting and influencing executive level decision makers both internally and externally.
  • Experience leading discussions on the relationship between security, risk management, compliance, and sales/marketing.
  • 3+ years of experience working with ISO/IEC 27001:2022 and/or System and Organization Controls (SOC) 2
  •  
  • 7+ years of experience working with two or more of the following:
  • ISO/IEC 27001:2022
  • ISO/IEC 27701:2019
  • ISO 22301:2019
  • ISO/IEC 42001:2023
  • ISO 9001:2015
  • System and Organization Controls (SOC) 2
  • National Institute of Standards and Technology (NIST) frameworks (800 series)
  •  
     
  • One or more of the following certifications:
  • ISO: ISO/IEC 27001, ISO/IEC 27701:2019, ISO/IEC 42001:2023, and/or ISO 22301:2019 Lead Auditor/Implementer
  • CISM
  • CISA
  • CIPP/US / CIPP/EU
  • CISSP
  • CRISC
  • CDPSE
  • AAIA
  • AAIR
  • AAISM
  • CGEIT
  • CCP/CCA

Bonus Points

  • Big Four Advisory/Consulting Experience
  • DevSecOps Experience 
  • CISSP, CISM, CRISC, CDPSE, or CGEIT
  • HITRUST Certified CSF Practitioner (CCSFP)
  • CIPP/US / CIPP/EU
  • ISO 42001 Lead Auditor/Implementer 
  • AWS, Azure, Google Cloud Platform certification(s). 
  • CCSK
  • AAIA
  • AAIR
  • AAISM
  • OpenFair or related certification, CCBP 
  • Vendor certifications for applicable product solution sets

Why You’ll Want to Join Us

At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.

Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.

At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at [email protected].

Coalfire Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Coalfire and has not been reviewed or approved by Coalfire.

  • Leave & Time Off Breadth Flexible paid time off and paid parental leave are prominently offered, with remote/WFH support enabling time away when workload allows.
  • Healthcare Strength Comprehensive medical, dental, vision, wellness resources, and an EAP are part of the core package. Carrier coverage and plan options are regularly highlighted across employer materials.
  • Retirement Support A company‑matched 401(k) is included alongside other financial and development perks. This retirement benefit is consistently featured across benefits overviews.

Coalfire Insights

Similar Jobs

Coupa Logo Coupa

Account Director

Artificial Intelligence • Fintech • Information Technology • Logistics • Payments • Business Intelligence • Generative AI
In-Office or Remote
New York, NY, USA
3000 Employees
150K-170K Annually

Liberty Mutual Insurance Logo Liberty Mutual Insurance

Inside Sales Representative

Artificial Intelligence • Fintech • Insurance • Marketing Tech • Software • Analytics
Remote or Hybrid
9 Locations
40000 Employees
45K-85K Annually

Halter Logo Halter

Account Manager

Greentech • Hardware • Internet of Things • Machine Learning • Software • Business Intelligence • Agriculture
Remote
2 Locations
350 Employees

Liberty Mutual Insurance Logo Liberty Mutual Insurance

Director I, Product Research

Artificial Intelligence • Fintech • Insurance • Marketing Tech • Software • Analytics
Remote or Hybrid
5 Locations
40000 Employees
120K-225K Annually
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Chicago, IL
1,062 Employees
Year Founded: 2001

What We Do

Coalfire is the cybersecurity advisor that helps private and public sector organizations avert threats, close gaps, and effectively manage risk. By providing independent and tailored advice, assessments, technical testing, and cyber engineering services, we help clients develop scalable programs that improve their security posture, achieve their business objectives, and fuel their continued success. Coalfire has been a cybersecurity thought leader for more than 20 years and has offices throughout the United States and Europe.

Similar Companies Hiring

Amplify Platform Thumbnail
Fintech • Financial Services • Consulting • Cloud • Business Intelligence • Big Data Analytics
Scottsdale, AZ
62 Employees
Credal.ai Thumbnail
Software • Security • Productivity • Machine Learning • Artificial Intelligence
Brooklyn, NY
Milestone Systems Thumbnail
Artificial Intelligence • Security • Software • Analytics • Big Data Analytics
Lake Oswego, OR
1500 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account