ControlScan has helped small to midsize enterprises (SMEs) maintain information technology security and Payment Card Industry security standards compliance for more than 15 years. ControlScan was founded in 2005 by its first chief executive officer, Richard Stanton. He was succeeded by Joan Herbig in 2007, who led the company until 2017, when ControlScan was acquired by Thompson Street Capital Partners and merged with EchoSat. At that time, EchoSat CEO Marc Carl assumed leadership over both entities. ControlScan is headquartered in Alpharetta, Ga., and has branch locations in Lexington, Ky. and in Hunt Valley, Md., where the firm's 24-hour security operations center is based. It employs approximately 150 staff members.
ControlScan's stated mission is "to ensure that each of our customers is thoroughly equipped to protect their business from cybercrime." To accomplish this, the company provides traditional managed security services, such as unified threat management firewall and vulnerability scanning, as well as advanced services for 24/7 security threat detection and response. "ControlScan is also well known for our ability to expertly guide businesses of every size through the PCI compliance process," Carl said. "More than 155 merchant services partners and 1.8 million businesses rely on our efficient, user-friendly PCI 1-2-3 program to manage risk and compliance."
In addition, the ControlScan Security Consulting Services team provides a range of PCI-related services, such as qualified security assessments and web app penetration testing. The team also includes experts in medical and other security and privacy frameworks. Carl mentioned that the company delivers top quality at a reasonable price. "Our security-as-a-service delivery model gives the SME cost-effective access to the same cybersecurity services and technologies as their larger counterparts," he said. "We cultivate the very best people, processes and technology partnerships and pass along their benefits to our customer base."
Notably, ControlScan's service delivery is governed by key principles. "We have our customers’ backs by practicing these core operating values," he said, listing five focus areas as follows:
Further, the CEO identified a handful of unique qualities that separate ControlScan from its competitors. "ControlScan focuses on the SME, because this is an underserved market that needs the most assistance with people, processes and technology for better cybersecurity," he said. "We are the SME champion, focusing on cybersecurity so our customers can focus on running their business, not securing it." Core also pointed out that ControlScan is "the only managed security service provider that takes a holistic approach to cybersecurity and compliance, helping businesses avoid siloed processes that can negatively impact overall security posture."
To demonstrate its commitment, ControlScan recently pursued new industry certifications, including Managed Network Service Provider for Verifone and Gilbarco to reduce convenience retailers' breach risk, Qualified Security Assessor to validate point-to-point encryption and PCI compliance, and Qualified PIN Assessor for performing security assessments against PIN payment environments. In March 2020, ControlScan also became one of the first PCI Software Security Framework Assessor companies. "The ControlScan team is consistently developing new services to bolster our technology stack and ensure that our customers’ needs are holistically met," Core said, adding that recent enhancements include offering managed detection and response services to businesses using Microsoft Office 365, Google G Suite, or cloud-based SaaS and PaaS applications and services.
In addition, ControlScan introduced PaySafe PumpConnect to increase security and payment transaction speeds at fuel pumps and advance its endpoint security service to provide even greater detection and response capabilities.
Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.
Executive Vice President
1-800-825-3310, Ext. 2