CoalfireOne key components

Connect with us

Developed and used by our own assessors, CoalfireOne℠ provides a single place to access assessments tailored by our practice experts to fit your needs.

A powerful platform for managing cyber risk and compliance


Company and project-specific dashboards help you track project-specific action items, schedule timelines, and manage priorities and risks – so you can ensure projects meet expected dates and results.


Utilizing information defined during the environment and scope definition process, our assessors configure the necessary requirements and controls for your project. By tailoring the project in this way, all project members can focus on the critical items required for compliance and reporting needs.

Document management

Easily manage documents and evidence through secure document libraries, which integrate with other features, like action items, to automatically create relationships to in-scope controls and requirements.

Action items

Stay on-task with full visibility into what’s needed to satisfy assessment requirements and regulatory controls on a per-project basis. Track action items such as document collection, project constraints, and asset and evidence collection. Create your own action items and custom fields to manage internal needs and communicate with your teams. With full support for requirement classification, work assignments, and approval workflow, assessment tasks are easier to complete.

Help and guidance

Self-help is simplified by offering users access to online resources within CoalfireOne. Action items contain important guidance that help users understand exactly what is required to satisfy the requests.

Product support

Easily request assistance and quickly resolve issues. Our feature and help request submission forms let you submit requests without leaving your project and workflow. CoalfireOne support actively monitors these requests to ensure timely responses.

Scanning support

The CoalfireOne Scanning Services Team helps you understand compliance and what you can do to manage risk. We are certified authorized scanning vendors (ASVs), here to assist you as you navigate the various PCI SSC scanning requirements. Additionally, we help you address identified vulnerabilities in need of remediation and provide support on any PCI SSC inquiries. Whether you need assistance determining scope or you have scanning questions, we are here for you.

CoalfireOne℠ delivers the technology and insight to help you simplify compliance and reduce risks.

Learn More