Join Coalfire's Adversary Services team as a Senior/Principal Consultant, focusing on identifying and mitigating security gaps through adversary simulations and client advisories.
About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
Position Summary
We are looking for an exceptionally skilled and experienced Senior/Principal Consultant to join our team. You will join our Adversary Services team (Red Team) in helping our clients identify and mitigate gaps in detection and response, identify novel vulnerabilities and misconfigurations that lead to further compromise, and emulate real-world threat actor tactics, techniques, and procedures (TTPs). You will play a critical role in shaping our capabilities and ensuring that the Adversary Services team is recognized as one of the leading teams in the offensive security industry.
What You'll Do
- Provide expertise in adversary services, working in detection and response evasion, creation of novel tactics and exploits, emulation of threat actor TTPs, and the evolution of sophisticated command and control (C2) infrastructure.
- Develop and execute on sophisticated offensive cybersecurity tradecraft to gain initial access, establish persistence, escalate privileges, move laterally, and evade detection and response controls.
- Execute on adversary simulation, adversary emulation, and purple team exercises.
- Lead prolonged, holistic, engagements of our clients’ systems and applications, identifying and prioritizing security risks, detection gaps, and recommending appropriate remediation measures, with reporting aligned to MITRE ATT&CK and other relevant frameworks.
- Develop and maintain custom exploit code, scripts, and tools to automate and streamline adversary services activities.
- Stay current with emerging security threats and trends, and proactively identify areas of improvement to enhance our security posture.
- Act as a trusted advisor to our clients on security matters, providing insights and recommendations to inform strategic decision-making.
What You'll Bring
- 6+ years of experience in penetration testing, adversary services/red teaming, and purple teaming, with a minimum of 3+ years leading covert Red Team engagements.
- Significant experience creating and delivering specialized testing and training for internal stakeholders and customers on the latest threat actor TTPs and capabilities, including advanced persistent threats (APTs), ransomware, and insider threats.
- Experience presenting thought leadership, including talks at security conferences, blogs, or in other forums.
- Deep technical expertise in adversary services-related tradecraft, including development and management of command and control infrastructure, custom development of leading C2 toolsets (e.g. Cobalt Strike, Sliver, Mythic), and stewardship of evasion techniques to maximize effectiveness.
- Extensive experience conducting adversary services engagements across a variety of platforms and environments, including on-premise, cloud, and hybrid environments.
- Relevant certifications such as CRTO, CRTO II, AT:RTO, OSEP, or related.
- Excellent communication and collaboration skills, with the ability to effectively convey complex technical concepts to both technical and non-technical audiences.
- Experience in all components of the attack chain, including OSINT, social engineering (phishing, vishing, smishing), payloads, C2 infrastructure, lateral movement, privilege escalation, and impact objectives.
- Technical knowledge of programming and scripting languages (e.g. Python, Ruby, Go) to develop and modify custom evasion tooling and infrastructure.
- Ability to thrive in a fast-paced, dynamic environment, and adapt quickly to changing priorities and requirements.
- Ability to foster a positive work environment and attitude, with a “team first” mentality.
Why You’ll Want to Join Us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at [email protected].
Top Skills
Cobalt Strike
Go
Mythic
Python
Ruby
Sliver
Coalfire Westminster, Colorado, USA Office
11000 Westmoor Circle, Westminster, CO, United States, 80021
Coalfire Greenwood Village, Colorado, USA Office
8480 E Orchard Rd, Greenwood Village, CO, United States, 80111
Similar Jobs
Cloud • Security • Cybersecurity
Join our Adversary Services team to identify and mitigate detection gaps, emulate threat actor tactics, and enhance cybersecurity posture.
Top Skills:
Cobalt StrikeGoMythicPythonRubySliver
.png)
Artificial Intelligence • Blockchain • Fintech • Financial Services • Cryptocurrency • NFT • Web3
Partner with finance stakeholders to implement and configure Kyriba and other financial applications, perform analysis, lead testing, and support business process transformation.
Top Skills:
BoomiJIRAKyribaMulesoftNetSuiteOracleRest ApiSAPSftpSoap WebservicesWorkato
Artificial Intelligence • Blockchain • Fintech • Financial Services • Cryptocurrency • NFT • Web3
The role involves building and maintaining deployment systems in Golang, designing scalable solutions, and providing support to internal engineers.
Top Skills:
BlockchainCloud TechnologyGo
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
