Principal Consultant, ISO Advisory | Remote US

About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ toughest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference. 
And we’re growing fast.
We’re looking for a Principal Consultant to support our ISO Advisory team. 
Position Summary
You  will perform a variety of ISO engagements (such as workshops, policy and procedure development) for ISO certification compliance.  This role will specialize in assessing the readiness for ISO certification and providing those advisory services necessary for a successful ISO audit.

What you'll do

• You’ll work collaboratively with a team of ISO advisory assessors as a ISO advisor and assist with the planning and delivery of those services.
• Be the team lead on engagements against ISO standards to provide information security technical and non-technical expertise.
• Work with other teams within Coalfire, and collaborate with the ISO assessment team, to drive customer success.
• Lead on-site engagements with clients. This includes onsite visits, understanding customer security and compliance requirements and environments, and proposing and delivering packaged offerings or custom solution engagements.
• Develop technical content, such as procedures and policies, risk management tools, etc., that will be used by our clients to assist them in elevating/build out their security programs for ISO certification.
• Delivery projects to build out compliance roadmaps, architecture guidance, gap remediation, etc.

What you'll bring

• 4+ years experience performing ISO/IEC 27001:2013 assessments
• 4+ years of experience in an IT security audit, assessment, compliance, risk management, or data privacy role
• 4+ years of experience working with any of the following frameworks: Payment Card Industry (PCI) Council's Payment Card Industry Data Security Standard (PCI DSS) , ISO/IEC 27701:2019 (and/or its mapped references ISO/IEC 29100:2011, ISO/IEC 27018:2019), ISO/IEC ISO/IEC 9001:2015, Health Insurance Portability and Accountability Act (HIPAA), HITRUST, System and Organization Controls (SOC) 2, or National Institute of Standards and Technology (NIST) frameworks
• ISO/IEC 27001 Lead Auditor
• Bachelor's Degree in Computer Science, Information Systems Management, Information Security, Business or equivalent experience required
• Willing to travel up to 50%

Bonus Points

• Certified Information Systems Auditor (CISA), Certificate of Cloud Security Knowledge (CCSK), ISO 9001:2015 Lead Auditor, Certified Information Systems Security Professional (CISSP), or Certified Information Privacy Professional (CIPP/US) 

Why you'll want to join us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like flexible time off, certification and training reimbursement, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. A reasonable estimate of the compensation range for this role is $104,000 to $179,600 based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs. 
#LI-Remote#LI-KL1