Company Overview:
Headquartered in Atlanta, Georgia, ControlScan provides Payment Card Industry (PCI) compliance solutions that fit the specific needs of small- to medium-sized merchants (defined by Visa as *Level 4*). The company helps simplify PCI compliance and reduce risk for acquirers by achieving high PCI compliance rates for their merchants. As a market leader in PCI compliance, ControlScan offers its acquirer partners the unique benefits of an exclusive focus on servicing Level 4 merchants, programs that work based on the needs of each acquirer and a track record of success in achieving high PCI compliance rates. For more information about ControlScan visit www.controlscan.com.

Senior Security Analyst

Description
The Senior Security Analyst works within ControlScan*s customer support area, interacting directly with customers to resolve issues related to vulnerability scans of the customers* network and web application resources. The Senior Security Analyst support activities revolve around helping customers understand their vulnerability scan reports, providing guidance on the remediation of failing threats, and evaluating customer disputes of failing threats (false positive claims).

Responsibilities
* Validate the scoping of vulnerability and web application scanning engagements
* Assist customers with the interpretation of their vulnerability scan reports * particularly threats that have been discovered that are of a sufficient severity to fail the scan based on PCI standards
* Provide guidance to customers and their third party technology providers (e.g., web hosts) on the remediation of threats that fail their scan
* Assist in operational projects and tasks
* Evaluate false positive claims submitted by customers who wish to dispute a threat finding(s) that fail their scan based on PCI standards
* Participate in the ongoing improvement of the scanning and vulnerability remediation processes
* Review and validate ASV customer attestation reports
* Ability to pass exam covering Payment Card Industry Data Security Standards (PCI DSS) requirements and ASV scan testing procedures
Qualifications and Skills
* Minimum 5 years experience in IT or technical support role
* Minimum 1 year experience in customer service role
* Excellent oral/written communication skills
* Experience with network security technologies (e.g., IPS/IDS, firewalls, policy management)
* Interest in developing skills and knowledge in the area of security testing and open security testing standards and projects, including OWASP
* Security+ or equivalent security experience
* Experience with vulnerability scanning solutions such as Nessus or Qualys a plus
* Experience with web application scanning, including zero-day vulnerabilities, a plus