\nAbout Coalfire\n\n\nCoalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we\nsupport clients around the world.\n\n\nBut that’s not who we are – that’s just what we do.\n \nWe are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.\n\n\nJob Summary\n\n\nAs a Senior Manager, you'll manage a team of consultants, manage client escalations, and lead engagements. This role will have a detailed understanding of compliance framework requirements, perform advisory consulting support, and develop compliance-related reports/documentation for clients. You will also provide quality control and peer review to other members of the delivery staff, and work closely with Project Managers, Directors, Senior Directors and other Delivery team members to effectively manage project timelines and deliverables. You’ll be responsible for directly managing and mentoring 3-6 team members and lead various projects for clients. For each engagement, you’ll focus on the success of the project and achieving overall client satisfaction. You’ll work directly with the Director or Senior Director to implement strategic plans to grow the service line and enhance the overall team’s capabilities and skillsets.\n\n\n\nWhat You'll Do\n* Manage priorities, tasks and hours on projects in conjunction with the project manager and management to achieve delivery utilization targets.\n* Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue.\n* Interfaces with clients through entire engagement, interacting will all levels of client organizations. \n* Establish and maintain positive, collaborative relationships with clients and stakeholders.\n* Collaborate with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables.\n* Manage team, responsible for talent decisions in regard to performance management, compensation and hiring. \n* Provide mentorship and coaching to team members in areas of technology, consulting, technical review and writing.  \n* Maintain strong depth of knowledge in the practice area, seek professional development opportunities, and maintain industry specific certifications.\n* Establish account relationships and identifies upsell and cross sell opportunities and escalates to sales.\n* Ensure team members are achieving project margins and utilization targets\n* Lead complex and less complex projects, guiding the customer and all resources successfully through the project lifecycle.\n* Lead advisory projects from start to finish to include workshops, gap analyses, document development projects, and ad hoc consulting support\n* Execute examine, interview, and test procedures in accordance with compliance advisory security control framework (NIST, FISMA, FedRAMP, StateRAMP, DoD, etc.), etc.) requirements\n* Ensure cybersecurity policies are adhered to and that required controls are implemented\n* Validate respective information system security plans or policy/procedure documentation to ensure compliance advisory control requirements are met.\n* Author recommendations associated with findings on how to improve the customer’s security posture \n* Closely follow industry development and trends to develop and maintain industry-specific policies, procedures, and training.\n* Lead IT system security consultation within cloud-based and on-premises environments in accordance with framework specific (NIST SP 800-53, 800-37, OMB, HITRUST CSF, ISO 27002, and other authoritative IT) security guidance\n* Develop System Security Plans, Configuration Management, IT Contingency, and Incident Response Plans, security policies/procedures, risk assessment plan or other requirements in accordance with compliance framework requirements\n* Prepare, review and/or update, and maintain IT Security supporting artifacts\n* Provide guidance to Information System Owners\n* Identify information security problems and challenges, researching and developing technical solutions to rectify them\n* Demonstrate expertise in the control requirements and test procedures of NIST, FISMA, FedRAMP, StateRAMP, DoD, etc.  or other security compliance frameworks.\n* Ensure cybersecurity policies are adhered to and that required controls are implemented.  If the required controls are not implemented provide recommendations to the client to improve their security posture.\n* Validate respective information system security plans to ensure control requirements are met.\n* Develop technical content, such as procedures and policies, risk management tools, etc., that will be used by clients to assist them in elevating/build out their security programs for system authorization.\n* Mentor all project team members on compliance (NIST, FISMA, FedRAMP, StateRAMP, DoD, etc.) specific consulting methodologies.\n* Performing interviews of potential new hires for an intern, associate, consultant, senior consultant and senior manager roles.\n\n\n\nWhat You'll Bring\n* Minimum of 5 years or more of working experience in information technology, information security, technical assessment, or audits\n* Substantial knowledge of security control requirements (NIST, FISMA, FedRAMP, StateRAMP, DoD, etc.) and how they overlap with additional frameworks \n* Significant experience in understanding and applying relevant technical knowledge in FISMA/FedRAMP and other compliance framework assessments within moderate and large hyperscale CSP environments\n* Knowledge in conducting multi-framework consolidated compliance assessment activities\n* Detailed understanding of IT security technologies including network and application security, firewalls, access management, and data protection \n* Experience with virtualization and cloud technologies \n* Experience with client-server and traditional on-premises architecture \n* Familiarity with statutes and regulations across multiple industries relevant to IT  \n* Demonstrated ability to lead moderately complex system assessments/consulting engagements independently\n* Demonstrated ability to assist team members with proper artifact collection and interviewing clients to ascertain control implementation details\n* Demonstrated ability to read and interpret all control families\n* Demonstrated ability to read and interpret firewall rulesets and to create network/boundary/data flow diagrams \n* Strong written and verbal communication skills including the ability to explain technical matters to a non-technical audience \n* Strong consulting skills; ability to advise and challenge the status quo while building strong relationships \n* Ability to build high-trust relationship and credibility quickly \n* Ability to lead projects successfully and delegate up and across  \n\n\n* Ability to prioritize and manage multiple initiatives/projects.    \n\n\n* Strong excel skills with ability to develop worksheets with complex formulas  \n\n\n* Ability to lead teams small to large teams in the assessment and internal environments\n* Ability to speak to Cloud Service Providers to resolve issues and come to a conclusion of the assessment\n* At least one of the following Advanced certifications or equivalent in cybersecurity or cloud: CISSP, CISA, CISM, CAP, CRISC, and/or cloud specific certification (AWS, GCP, or Azure) or specialty certification in security \n* Bachelor's degree (four-year college or university) or equivalent education and experience \n\n\n\nBonus Points\n* Strong knowledge of container-based architectures \n* Knowledge of various cloud environments, including AWS, GCP, and Azure\n* Bachelors of Science degree in a technical field (CIS, MIS, IT, Engineering, or related field)\n\n\n\n\n$94,000 - $163,000 a yearThe salary range listed is a reasonable estimate of the compensation range for this role based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs. \n#LI-JM3#LI-Remote\n\n\n\n\n\nWhy You’ll Want to Join Us\n\n\nAt Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.\n\n\nRegardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.\n\n\nAt Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at [email protected]. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Cloud, Senior and Sales jobs that are similar:\n\n $65,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nUnited States

\nCority is the global enterprise EHS software provider creating industry-leading technology to empower those who transform the way the world works. \n \nFor over 35 years, Cority has been powered by the spirit of innovation, deep domain expertise, and a commitment to integrity that enables higher levels of operational and sustainable performance with the most comprehensive, human-centered, and secure SaaS platform to help workers and businesses thrive in 100 countries around the world. \n \nThe company enjoys the industry’s highest levels of client satisfaction and has received many awards for its strong employee culture and outstanding business performance. To learn more, visit www.cority.com.\n\n\n\n\n\n\n\n\n\nPRIMARY RESPONSIBILITIES\n* Act as the primary technical liaison between Cority Client Service Consultants and clients during a project. This includes but is not limited to project meetings where technical discussions regarding database conversion (data mapping development and support to programming for SQL Script writing), review of client legacy systems for integration to Cority via proprietary web service tools, advanced security configuration, defining workflow logic through business rule and advanced report development.\n* Liaise with product/programming and consulting team to expedite resolution of high priority issues identified during the implementation ensuring client satisfaction and delivery of resolved technical issues or new enhancements required for a client’s Go Live. Gather technical information to provide context around technical troubleshooting that may be required during an implementation. Track and maintain bugs/findings during the implementation using JIRA.\n* Assist in client business process review sessions (on-site or remote), provide support for any in-scope technical requirements, and assist in development of any project documentation\n* Provide Technical Subject Matter Expertise for implementing the Cority application to meet client requirements regarding application authentication (SSO, LDAP, LDAPS, MFA), Data Clean-up tasks for historical data (Web Service tools or SQL Scripts), integrations between client and Cority systems (Web Service Tools (using SOAP / REST API’s), SQL Scripts with FTP / SFTP), understanding of HL7 file format and MIRTH Connect middle wear and any other in-scope technical tasks required for a successful implementation. Establish, in conjunction with the lead Client Service -=Consultant and the client, a plan for management of the project implementation including intervention where timeline milestones are being delayed or missed.\n* Define and document technical requirements in the form of Change Requests (Change Control Documentation) when applicable. Provide experience to clients and support development of test cases and validate changes in software through design reviews to confirm software changes meet client expectations and requirements.  Where necessary validate the specifications with the programming and product team.\n* Conduct System Administrator and advanced Business Intelligence Reporting training sessions for client system administrators and other technical leads.\n* Provide application enhancement suggestions to Product Management for the core product by means of in-depth business / technical needs analysis from the client and assessing viability of use for other Cority clients.\n\n\n\nEDUCATION:\n* A graduate of a university program in occupational health & safety, industrial hygiene, business administration or computer science or a related program with equivalent work experience.  Industry experience in the field of Sustainability or EHSQ is highly recommended.  Experience with the Cority software is desired.\n\n\n\nEXPERIENCE:\n* Working Knowledge of technical tools such as Relational Database Management Tools (SQL or Oracle), Web Service Utilities (using SOAP or REST API’s), SSO Platforms (ADFS, Shibboleth, Ping Federate, etc).\n* Working knowledge with Java Script, PowerShell, Visual Basic for Applications (VBA).\n* Experience with MIRTH or other middleware tools for converting CSV to HL7 is a strong asset.\n* Must have strong Organizational and Time Management skills.\n* Must be able to understand and communicate the role of technology in the delivery Of a SaaS based solutions.\n* Must have a knowledge of system development life cycles (SDLC)\n* Must have the ability to work independently as well as with a team.\n* Must have excellent interpersonal and communications skills.\n* An ability to mentor team members and resolve conflicts considered a strong asset.\n* Ability to speak French is required.\n* May be required to Travel.\n\n\n\n\n\nCority is committed to a diverse and inclusive work environment. Cority is an equal opportunity employer and does not discriminate based on race, nationality, gender, gender identity, sexual orientation, protected veteran status, age, disability or any other legally protected status. For applicants who would like to request for accommodation please send an email to [email protected]. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, SaaS, Consulting and Java jobs that are similar:\n\n $57,500 — $95,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nCanada