Colorado Technology Jobs

Colorado Jobs

Job Information

Coalfire Systems, Inc. Senior Consultant, SSF in Westminster, Colorado

Coalfire SystemsCoalfire is an EEO employer. We celebrate diversity and are committed torespecting one another, embracing individual differences, and creating aninclusive environment for all employees.Senior Consultant, SSFUS--RemoteJob ID: 2021-3595Type: Regular Full-Time# of Openings: 1Category: Cyber Assurance ServicesRemoteOverviewLeading cloud infrastructure providers, SaaS providers, and enterprisesturn to Coalfire for help solving their toughest cybersecurity problems.Through the combination of extensive cloud expertise, technology, andinnovative and holistic approaches, Coalfire empowers clients to achievetheir business objectives, use security and compliance to their advantage,and fuel their continued success. Coalfire has been a cybersecurity thoughtleader for 20 years and has offices throughout the United States and Europe.ResponsibilitiesIn this role, you will conduct technical testing for payment applications.This opportunity provides access to the rapidly emerging market for ITGovernance, Risk, and Compliance (IT GRC) management. For ITapplication validation assessments, your primary focus will be to validatetechnical controls for compliance with the Payment Card Industry (PCI)Payment Application and Secure Software framework standard. In thisposition, you will be one of the most senior IT auditors in the industry.You will be a key member of the solution validation team that works withvarious financial companies to advise them about application architecture,software security and software development.* Perform technical solution testing across a wide variety of technologies,including penetration testing* Gather evidence through collaborative client interviews* Compare client documentation to current compliance guidelines* Prepare SSF Reports On Validation and Compliance and/or authoring whitepapersQualifications* Bachelor's degree (four-year college or university) in an IT-relatedfield or equivalent combination of education and work experience* Five or more (5+) years in IT security and/or application development* Current CISSP, or the ability to obtain* Current CISA, or the ability to obtain* Desire and ability to become P2PE-QSA certified* Strong understanding of PCI compliance, encryption algorithms, keymanagement techniques, PKI, HSM, POI key-injection, physical securityfor secure areas, and relevant PCI PTS Security Requirements* Knowledge of industry cryptography standards such as ISO 11568 and 13491,ANSI X9.97, and NIST 140-2 Level 3* Excellent written and verbal communication skills* Ability to comfortably interact with senior management and clients in aconsultative manner* Excellent customer service and project management skills* Experience with risk assessment and gap analysis* Experience in IT security audit and compliance* Ability to travel up to 50%Apply Here: