Associate, Vulnerability Assessment

Associate, Vulnerability Assessment United StatesDivisionHex / Penetration Testing - Offensive Security - Compliance /Regular Full Time /Remote About Coalfire Coalfire is on a mission to make the world a safer place by solving our clients' hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world. But that's not who we are - that's just what we do. We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

POSITION SUMMARY

The Vulnerability Assessment Associate is responsible for identifying, analyzing, and reporting security vulnerabilities across systems, networks, and applications. This role supports the organization's cybersecurity posture by conducting regular assessments, prioritizing risks, and collaborating with technical teams to remediate identified issues or determine mitigating controls to reduce security risk severities. What You'll Do Operate, review, or assess implementations of vulnerability scanning tools (Tenable, Qualys, Nexpose, Prisma Cloud, Burp, etc.). Provide recommendations on remediating host-based and web application vulnerabilities. Conduct manual validation to confirm vulnerability closure. Analyze raw scan data to provide reports detailing credential success, inventory validation, and open vulnerabilities. Perform analysis to validate justifications provided by clients for vendor dependencies, false positives, operational requirements, and risk adjustments. Collaborate with other Coalfire personnel to drive customer satisfaction and ensure timely delivery of vulnerability scan findings, analysis results, and validated justifications. What You'll Bring Less than 2 years of vulnerability assessment experience. Past experience with a leading vulnerability scan tool (Tenable, Qualys, Nexpose, Prisma Cloud, Burp, etc.). Bachelor's degree in related Cybersecurity, Information Technology, Computer Science, or equivalent combination of education and experience. Understanding of policies, procedures, development, and implementation of vulnerability identification, scanning, analysis, remediation tactics, and reporting within an organization. In depth knowledge and experience of industry best practices for vulnerability management. Expertise in Security Frameworks (ISO, NIST, COBIT, HIPAA/HITECH, etc.) and regulatory requirements. Certification in Security+, CCSK, AWS Cloud Practitioner, SSCP, GSEC, CEH, Cloud+, SC-900, ISC² CC, AZ‑900, Cloud Essentials+, or GCP Bonus Points Familiarity with 3 or more frameworks such as FedRAMP, FISMA, SOC, ISO, HIPAA, HITRUST, etc. Experience creating system inventories, boundary diagrams, and/or plans of actions and milestones (POA&M). Familiarity with Cloud services such as AWS, GCP, & Azure. Familiarity with configuration baseline standards such as

CIS & STIG.

Experience with scripting such as Python, Bash, PowerShell. $86,000 - $96,000 a year The salary range listed is a reasonable estimate of the compensation range for this role based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs. Why You'll Want to Join Us At Coalfire, you'll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you'll work most effectively - whether you're at home or an office. Regardless of location, you'll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You'll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you'll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options. At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at HumanResourcesMB@coalfire.com. We may use artificial intelligence (AI) tools to support parts of the hiring process, such as analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.