Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers.  Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships with leading cloud and technology providers including Amazon, Microsoft, IBM, Google and Oracle and Federal agencies.  Coalfire has been a cybersecurity thought leader for over 20 years and has offices throughout the United States and Europe and is committed to making the world a safer place by solving our clients’ toughest security challenges. 

But that’s not who we are – that’s just what we do.

We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.  

We’re currently seeking a Senior Cybersecurity Risk Analyst to support our Federal team in Washington, D.C. (Hybrid; 3 days on site). 

Job Summary
This position will be responsible for assessing and executing cloud security controls, creating technical documentation for the appropriate security processes, and other tasks required for advanced-level continuous monitoring activities and designing security capabilities. The ideal candidate will be adept at collaborating with IT, Data Engineers, and Product Managers to optimize security across cloud and on-premises ecosystems. 

• Ensure that the appropriate operational cybersecurity posture is maintained for assigned systems to provide confidentiality, integrity, and availability of information systems.
• Perform risk analysis and management tasks related to cloud computing, virtualization, Platform as a Service (PaaS), Infrastructure as a Service (IaaS), Software as a Service (SaaS).
• Conduct technical risk assessments for various Cloud platforms.
• Work with Cloud Security Alliance (CSA) guidelines and security guidance from the National Institute of Standards and Technology (NIST)
  • To include SP-800-37, NIST SP 800-144, NIST SP 800-145, NIST SP 800-146, Federal Risk and Authorization Management Program (FedRAMP) security control baselines and security guides.
• Provide advisement to stakeholders in current technologies to include new cloud, mobile and desktop application work products.
  

• Expertise in common cyber security technical controls and their application to cloud systems, such as access control, audit and accountability, configuration management, identification and authentication, system and communication protection, and system and information integrity.
• Strong understanding of US Government cyber security standards and methodologies including:
  • FISMA, the NIST (CSF) Cyber Security Framework, NIST 800-37 RMF, NIST 800-53 Cyber Security Controls,
  • Federal Risk and Authorization Management Program (FedRAMP) and Federal Cloud guidelines
• Knowledge of other common industry cyber security standards and organizational best practices.
• Proven success in helping lead support to a team-oriented environment.
• Demonstrated experience supporting CASB/SASE solutions.
• Expertise in cloud architectures (e.g., SaaS, PaaS), common commercial cloud systems (e.g., Google Workspace, Microsoft 365, AWS, Oracle) and cloud security solutions (e.g., Cloud Access Security Broker, Multi-factor Authentication, Zero Trust Architecture).

Education
Completed Bachelor’s degree from an accredited university, preferably in an IT related field.

Clearance / Suitability 

Ability to obtain a clearance or a Public Trust is preferred, however all clearance levels and non-cleared applicants will also be considered.

Certifications 

One or more of the following certifications: CCSP, CCSK, CISSP, or CRISC

Years of Experience 

Overall 7 - 10 years of experience in Information Security, Risk Analysis, and Compliance - to include previous support with cloud environments.

Our people make Coalfire Federal great. We work together on interesting things and achieve exceptional results. We act as trusted advisors to our customers and are committed to client-focused innovation as well as innovation in the industries that we serve.

Coalfire offers our people the chance to grow professionally with colleagues they like and respect while tackling challenges that stretch their minds and expand their skill sets. Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more.

You’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support memberships, and comprehensive insurance options.  

Coalfire is an EEO employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.