We are a group of technology professionals that started in 2001 with a simple idea – cyber threats are increasing, compliance mandates are getting more complicated, and a well-designed cyber risk management program is your best line of defense. We’ve been rethinking risk management and compliance ever since.

Coalfire helps organizations comply with global financial, government, industry and healthcare mandates while helping build the IT infrastructure and security systems that will protect their business from security breaches and data theft. The company is a leading provider of IT advisory services for security in retail, payments, healthcare, financial services, higher education, hospitality, government and utilities.

Coalfire professionals use a combination of IT experience, expertise and intelligence to independently audit and evaluate your entire IT infrastructure to determine what your actual risks are, help you understand how to protect your business assets, and what resources you need to quickly identify and respond to security threats.
Show more

Employee Rating

Parent CompanyThe Carlyle Group
HQWestminster, US
Cybersecurity ratingBMore
Coalfire was founded in 2001 and is headquartered in Westminster, US

Viewing summary data as a guest

Sign up for free to see all data

Key People/Management at Coalfire

Tom McAndrew

Tom McAndrew

CEO, Director
Rohan Haldea

Rohan Haldea

Mark Carney

Mark Carney

Executive Vice President, Cyber Security Services
Michael Chao

Michael Chao

Chief Financial Officer
Jim Pflaging

Jim Pflaging

Leslie Jones

Leslie Jones

Chief Human Resources Officer
Show more

Coalfire Office Locations

Coalfire has offices in Westminster, Alpharetta, Carlsbad, Centennial and in 9 other locations
Westminster, US (HQ)
11000 Westmoor Cir #450
Alpharetta, US
12735 Morris Rd
Carlsbad, US
5650 El Camino Real
Centennial, US
7200 S Alton Way
Dallas, US
14800 Landmark Blvd
Laguna Hills, US
23332 Mill Creek Dr
Show all (13)

Coalfire Financials and Metrics

Summary Metrics

Founding Date


Total Funding

$9.4 m


In total, Coalfire had raised $9.4 m. Coalfire is a subsidiary of The Carlyle Group

Coalfire Cybersecurity Score

Cybersecurity ratingPremium dataset



SecurityScorecard logo

Coalfire Online and Social Media Presence

Embed Graph

Coalfire News and Updates

Coalfire Named to Washington Post Top Workplaces

Criteria for the highest-ranked workplaces was based solely on direct response from thousands of DC-area employees in surveys conducted by Energage, an HR consulting firm based in Philadelphia.read more

Coalfire ISO Awarded one of the World's First ISO 27701 Accreditation Decisions Among Certification Bodies

This accreditation was reviewed and decided by the ANSI National Accreditation Board (ANAB) based in the United States. Coalfire ISO was part of the first decision group containing two management system certification bodies that were awarded this accreditation by ANAB.read more

Funds advised by Apax Partners to acquire Coalfire from The Carlyle Group and The Chertoff Group

WESTMINSTER, Colo. and NEW YORK, Dec. 13, 2019 /PRNewswire/ -- Funds advised by Apax Partners (the "Apax Funds") today announced they have reached an agreement to acquire Coalfire, a provider of cybersecurity advisory and assessment services, from The Carlyle Group (NASDAQ: CG) and The...

Coalfire Cloud Study: Security Concerns Still a Barrier to Cloud Adoption

Westminster, CO – October 3, 2019 – Coalfire, a provider of cybersecurity advisory and assessment services, today announced the release of a new Securealities research report: “Cloud Security Intelligence Report.”read more

Coalfire Launches Pair of New Cloud Services to Enhance Secure Cloud Offering Portfolio

WESTMINSTER, Colo., May 20, 2019 /PRNewswire/ -- Coalfire, a trusted provider of cybersecurity advisory and assessment services, today announced that is has launched two new cloud services to complement their comprehensive suite of cloud security services. The suite is designed to help...

Coalfire Announces "CoalCast Podcast" on First Anniversary of Research and Development Team

WESTMINSTER, Colo., Feb. 1, 2019 /PRNewswire/ -- Coalfire, a provider of cybersecurity advisory and assessment services, today announced the launch of its new podcast, CoalCast. The monthly podcast will discuss general cybersecurity topics and current events targeted toward the InfoSec...
Show more

Coalfire Blogs

Top ten strategies for SOC reports during Covid-19

The audit cycle for organizations that receive SOC reports includes new challenges related to Covid-19. Remote workforces are now the norm throughout the world, which introduces new risks. For example, connecting to corporate networks using personal computers that may be infected with malware is one…

FedRAMP 101: How to get listed as “In Process”

Are you a cloud service provider working on a federal contract and need a FedRAMP authorization – but don’t have a sponsor yet? Acquiring a committed government agency sponsor early in the FedRAMP process is crucial to your success and will ensure a smoother process. A major role for an agency spons…

Chasing doorbells: Finding IoT vulnerabilities in embedded devices

The goal of this research project was to see if we could find any vulnerabilities and obtain full persistence on an IoT device, while learning about embedded devices in general. This post will take you through our journey to find vulnerabilities in a common, reasonably priced IoT device. For our res…

New OCR-ready risk analysis: Why the confusion?

Are you ready for an Office for Civil Rights (OCR) investigation? Will your risk analysis and risk management methodologies and documents be sufficient to meet the HIPAA Security Rule?

Key scoping factors when pursuing ISO 27001 certification

Service providers that seek the most recognized implementation of an information security baseline and governance structure should consider the ISO/IEC 27001:2013 (“ISO 27001”) standard. The information security management system (ISMS) prescribed by this widely adopted publication engages personnel…

P2PE v3.0 – Why organizations should prepare now

The Payment Card Industry Security Standards Council (PCI SSC) published version 3.0 of the Point-To-Point Encryption (P2PE) standard back in December 2019. The new version simplifies and adds flexibility to the process for component and solution providers to validate their P2PE products for cardhol…
Show more

Coalfire Frequently Asked Questions

  • When was Coalfire founded?

    Coalfire was founded in 2001.

  • Who are Coalfire key executives?

    Coalfire's key executives are Tom McAndrew, Rohan Haldea and Mark Carney.

  • How many employees does Coalfire have?

    Coalfire has 808 employees.

  • Who are Coalfire competitors?

    Competitors of Coalfire include CloudCoffer, ZingBox and Nok Nok Labs.

  • Where is Coalfire headquarters?

    Coalfire headquarters is located at 11000 Westmoor Cir #450, Westminster.

  • Where are Coalfire offices?

    Coalfire has offices in Westminster, Alpharetta, Carlsbad, Centennial and in 9 other locations.

  • How many offices does Coalfire have?

    Coalfire has 13 offices.