About Coalfire

Cyber Risk Management and Compliance

We are a group of technology professionals that started in 2001 with a simple idea – cyber threats are increasing, compliance mandates are getting more complicated, and a well-designed cyber risk management program is your best line of defense. We’ve been rethinking risk management and compliance ever since.

Coalfire helps organizations comply with global financial, government, industry and healthcare mandates while helping build the IT infrastructure and security systems that will protect their business from security breaches and data theft. The company is a leading provider of IT advisory services for security in retail, payments, healthcare, financial services, higher education, hospitality, government and utilities.

Coalfire professionals use a combination of IT experience, expertise and intelligence to independently audit and evaluate your entire IT infrastructure to determine what your actual risks are, help you understand how to protect your business assets, and what resources you need to quickly identify and respond to security threats.

Featured Clients


Coalfire has been listed on Consulting magazine's Fastest Growing Firms for 2015. This is a list of the fastest growing consulting firms in North America - honoring consulting firms of all sizes and of any sector. Firms are ranked by their rate of revenue growth between 2011 and 2014. To participate, you must have started generating revenue by 2011. Coalfire ranked #15 on the list of 50.

Coalfire has been named to Inc. magazine’s list of the fastest-growing private companies in America. Coalfire ranks #2101 on the exclusive 2015 Inc. 5000 list, which represents the most comprehensive look at America’s privately-owned businesses.

See Coalfire’s complete listing is here.


Industry Associations & Affiliations


Experience and Accreditations

We have more than 15 years’ experience in IT security and compliance, serving thousands of client organizations across the United States and the U.K. Our accreditations include:

  • ANSI-ASQ National Accreditation Board (ANAB) ISO 27001 Certification
  • Certified of Cloud Security Knowledge (CCSK)
  • Certified in the Governance of Enterprise IT® (CGEIT®)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager® (CISM®)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Risk and Information Systems Control (CRISC)
  • Cisco Certified Network Associate (CCNA)
  • FedRAMP Accredited Third Party Assessment Organization (3PAO)
  • GIAC Web Application Penetration Tester (GWAPT)
  • GIAC Security Leadership (GSLC)
  • Health Information Trust Alliance (HITRUST) Common Security Framework (CSF) Assessor
  • PCI SSC Approved Scanning Vendor (ASV)
  • PCI SSC Qualified Security Assessor Company (QSAC)
  • PCI SSC Payment Application Qualified Security Assessor (PA-QSA)
  • PCI SSC Payment Application Qualified Security Assessor Point-to-Point Encryption (PA-QSA P2PE)
  • VMware Certified Professional (VCP5-DCP)

Coalfire’s continuing mission is to provide knowledge, tools, guidance and independent assessment services to all organizations.