PCI Penetration Testing Coordinator

NBCUniversal’s Cyber Governance Risk and Compliance team is seeking a PCI Scanning & Penetration Testing Coordinator to lead and manage the organization’s PCI ASV scanning and penetration testing programs. This role serves as the central liaison between internal business units, technical teams, and external vendors, while also possessing the technical capability to conduct penetration tests independently when required. The successful candidate will ensure timely execution, remediation, and compliance with PCI DSS requirements across all business entities. Responsibilities: Managing and maintaining PCI ASV scan schedules across all business units. Initiating and tracking ad hoc scans, ensuring timely execution and reporting. Validating remediation of vulnerabilities and special notes, coordinating with technical teams and GRC. Acting as the single point of contact for the ASV vendor, resolving anomalies and portal issues. Negotiating false positives and scan disputes with the vendor on behalf of business units. Coordinating annual and ad hoc PCI penetration tests across applicable environments. Scoping, scheduling, and executing penetration tests internally when vendor support is unavailable or impractical. Performing manual and automated testing techniques including network, web application, and system-level assessments. Analyzing test results, documenting findings, and providing remediation guidance aligned with PCI DSS. Tracking remediation efforts and maintaining centralized documentation of test reports and compliance evidence. Generating and maintaining reports for internal stakeholders, auditors, and compliance attestations. Interfacing with business unit technical teams to ensure understanding and prioritization of findings. Providing guidance and support to teams with limited PCI knowledge or bandwidth.