Coalfire Logo

Coalfire

Senior ConMon Engineer

Reposted 5 Days Ago
Be an Early Applicant
Remote
Hiring Remotely in United States
86K-148K Annually
Senior level
Remote
Hiring Remotely in United States
86K-148K Annually
Senior level
Lead and enhance vulnerability management processes, ensuring compliance and security in cloud environments, while collaborating with technical teams for remediation efforts.
The summary above was generated by AI
About Coalfire

Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.

But that’s not who we are – that’s just what we do.
 
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

Position Summary
We’re looking for a Senior Continuous Management Engineer to lead and enhance vulnerability management processes, driving compliance and security in cloud-based environments. If you’re driven by a desire to innovate, excel at operational excellence, and thrive in a collaborative environment, come be part of a team committed to making the world a safer place. 

What You'll Do

  • Provide senior-level oversight for enterprise vulnerability management tools (for example, Tenable, Nessus, Burp, Qualys, Rapid7, Wiz, Prisma, Microsoft Defender), ensuring they remain updated and fully operational
  • Lead the execution of regular and on-demand scans across a variety of environments (operating systems, databases, web applications, containers), then collaborate with technical teams (for example, SRE and client administrators) to prioritize and remediate vulnerabilities
  • Serve as a key point of contact for monthly reporting on open vulnerabilities, vendor dependencies, and operational requirements, delivering clear data-driven updates to clients
  • Offer strategic, risk-based recommendations to improve vulnerability posture, aligning remediation with organizational and compliance objectives
  • Work closely with cross-functional teams to refine and integrate vulnerability management processes in cloud environments (AWS, Azure, GCP)
  • Enhance internal standards, processes, and documentation for vulnerability management, including training materials, standard operating procedures, and best practices
  • Lead or support security assessment and authorization initiatives to ensure adherence to compliance frameworks such as FedRAMP, HITRUST, and PCI

What You'll Bring

  • 5–7 years of professional experience in vulnerability management, compliance monitoring, or related security operations roles
  • Extensive background in managing vulnerabilities across operating systems, databases, networks, containers, web applications, and APIs
  • Experience supporting vulnerability management in at least two of the following cloud providers: AWS, Azure, GCP, with a proven track record of integrating tools into cloud workflows
  • Involvement with at least one compliance framework (for example, FedRAMP, HITRUST, PCI), contributing to security assessments and risk-based reporting
  • Demonstrated success producing periodic vulnerability status reports, ensuring timely remediation efforts and accountability across multiple stakeholders
  • Advanced administrative understanding of AWS, Azure, or GCP
  • Strong expertise in vulnerability scanning technologies and methods, including scoring systems (CVSS, CMSS)
  • Excellent communication, organizational, and documentation skills, with the ability to convey technical findings and remediation plans to both internal teams and clients
  • Demonstrated ability to coordinate and influence technical teams, fostering collaboration for effective vulnerability mitigation
  • Proficiency in scripting (for example, Python, PowerShell) for automating tasks and scaling vulnerability management solutions
  • Familiarity with defining and enforcing baseline configuration standards (for example, CIS Benchmarks) and presenting compliance findings
  • Professional/Expert level certifications in Azure or AWS or GCP
  • Security-focused cloud certifications for Azure or AWS or GCP

Bonus Points

  • Security+
  • CISSP
  • Terraform

Why You’ll Want to Join Us

At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.

Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.

At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at [email protected].

Top Skills

AWS
Azure
Burp
GCP
Microsoft Defender
Nessus
Powershell
Prisma
Python
Qualys
Rapid7
Tenable
Terraform
Wiz

Similar Jobs

14 Minutes Ago
Remote
United States
175K-200K Annually
Senior level
175K-200K Annually
Senior level
Aerospace • Software • App development
Lead aviation research initiatives by building a high-caliber team, establishing partnerships, publishing findings, and translating insights into business impact.
Top Skills: Aviation ExpertiseData AnalysisOperational Performance MetricsQuantitative Methods
16 Minutes Ago
Remote or Hybrid
2 Locations
108K-203K Annually
Senior level
108K-203K Annually
Senior level
Fintech • Payments • Software • Financial Services
The Content Manager will create engaging B2B marketing content for sales teams, improve pitch systems, and enhance merchant communications.
Top Skills: Adobe Creative CloudFigma
20 Minutes Ago
Remote or Hybrid
Phoenix, AZ, USA
16-33
Junior
16-33
Junior
eCommerce • Fintech • Hardware • Payments • Software • Financial Services
As a Customer Success Advocate, you will assist Square sellers through phone and email, providing product knowledge and support while handling inquiries and escalations. You'll identify customer needs and improve their experience, requiring adaptability to the evolving product ecosystem.

What you need to know about the Boston Tech Scene

Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.

Key Facts About Boston Tech

  • Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
  • Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
  • Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
  • Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account