Vulnerability Management Analyst

Website controlscan ControlScan, Inc.

ControlScan is a recognized leader in cybersecurity, helping businesses everywhere secure their IT networks and protect payment card data. Our “We’ve Got Your Back” brand promise inspires an internal culture of customer-centric teamwork, empowered employees, spirited collaboration, and a place where folks enjoy coming to work every day. Join us and learn why more than 1.7 million businesses—including retailers, restaurants, hotels, healthcare providers and educational institutions—have benefitted from our managed security and compliance solutions.

Position Description:

The Vulnerability Management Analyst works within ControlScan’s Compliance Support area, interacting directly with customers to address issues related to vulnerability scans of the customers’ network and web sites.  The Vulnerability Management Analyst’s support activities are focused on helping customers understand their vulnerability scan reports, providing guidance on the remediation of failing threats, and evaluating customer disputes of failing threats (false positive claims). Often, this position must simply educate the customer to aid in the understanding of the possible risk to the systems’ data if vulnerabilities and poor configurations are not fixed. The Vulnerability Management team also works with customers who are utilizing managed security products, such as network or web application firewalls.


  • Validate the scoping of vulnerability and web application scanning engagements
  • Assist customers with the interpretation of their vulnerability scan reports, particularly threats that have been discovered that are of a sufficient severity to fail the scan based on PCI standards
  • Provide guidance to customers and their third-party technology providers (e.g., web hosts) on the remediation of threats that fail their scan
  • Assist in operational projects and tasks
  • Evaluate false positive claims submitted by customers who wish to dispute a threat finding(s) that fail their scan based on PCI standards
  • Participate in the ongoing improvement of the scanning and vulnerability remediation processes
  • Review and validate ASV customer attestation reports
  • Able to pass exam covering Payment Card Industry Data Security Standards (PCI DSS) requirements and ASV scan testing procedures
  • Securely configure network and web application firewalls to meet customers’ business needs
  • Work in a hybrid Windows and Linux environment


  • Minimum 2 years’ experience in IT or technical support role, preferably as a network or system administrator
  • Minimum 1 year of experience in a customer service role
  • Strong verbal/written communication skills
  • Understanding of networking including TCP/IP and OSI model
  • Ability to work in both Windows and Linux environments
  • Interest and aptitude for developing skills and knowledge in the area of security testing
  • Exposure to network and application vulnerabilities and the tools to identify them a plus

 Our Perks:

  • Work/life balance
  • Competitive health care and retirement benefits, including a company match
  • Paid time off and nine paid holidays
  • Casual dress code
  • Opportunities for continuous learning and development
  • Company-sponsored membership to TAG (Technology Association of Georgia)
  • Generous employee referral bonus program
  • Free, all-you-can-drink Dunkin’ Donuts and Starbucks coffee
  • On-site cafe
  • Complimentary on-site fitness center
  • Short walk or bike ride to Big Creek Greenway

If you are interested in being considered for this opportunity, please send your resume and salary requirements to

To apply for this job email your details to