Join us for three days of discovery, updates and insights from members of the Council, regional community figures and merchants.

The PCI SSC 2020 North America Community Meeting Call for Speakers has Closed.

Registration Open
  • Tuesday, September 12
  • Wednesday, September 13
  • Thursday, September 14

Tuesday, September 12

9:00 AM - 5:00 PM

Registration Open

9:00 AM - 1:00 PM

Vendor Showcase Grand Opening

1:00 PM - 1:20 PM

Community Meeting Kick-off

Presented by: Lance J. Johnson, Executive Director, PCI Security Standards Council

1:20 PM - 1:25 PM

Emcee Welcome Remarks

Presented by: Wenlock Free, Regional VP, North America, PCI Security Standards Council

1:25 PM - 1:55 PM

PCI SSC - Where We Are Going and How We Are Getting There

Presented by: Andrew Jamieson, VP, Solutions, PCI Security Standards Council and Emma Sutcliffe, SVP, Standards, PCI Security Standards Council

PCI SSC is more than Mobile and DSS. Join this session to see what direction the Council is going in all the areas of the ecosystem that the standards are involved in.
1:55 PM - 2:15 PM

Skimming Prevention, Best Practices for Merchants

Presented by: Cameron Wallace, Technical Analyst, Lab Programs, PCI Security Standards Council

2:15 PM - 3:00 PM

KEYNOTE: The Art of the Steal

Presented by: Bob Arno, Professor of Pickpocketry

3:00 PM - 3:30 PM

Networking Break and Vendor Showcase

VIP Meet and Greet Add On Experience Featuring Keynote: Bob Arno, Professor of Pickpocketry

For an additional fee, attend this intimate Meet and Greet Reception. This is a great opportunity to engage with our keynote and ask them any lingering questions. To add this experience: Simply go to your registration confirmation email and click “Modify Registration”.  You may need to verify your registration first, then navigate to the “Meet and Greet Add-on" option to purchase this great opportunity. If you haven't registered yet, be sure to add on this experience when registering!
3:30 PM - 4:00 PM

A Conversation with Leading Global Retailers: Successfully Working Through PCI DSS v4.0 Challenges - A Panel Discussion

Moderated by: Emma Sutcliffe, SVP, Standards, PCI Security Standards Council

Panelists: Tony James, CISSP, CISA, CRSC, Director of Cybersecurity, Target; Chanda Mafuka, Head of Governance, Risk & Compliance, Block, Inc. and Walker Thompson, Director of Information Security, Walmart

Hear from some of the world’s largest retailers on how they are successfully working through the unique challenges of implementing PCI DSS v4.0.
4:00 PM - 4:20 PM

PCI DSS v4.0 Part - 1
What’s New: Top FAQs, Resources, Q&A, Guidance Column, etc.

Presented by: Marc Bayerkohler, Standards Trainer, PCI Security Standards Council; Tom White, Senior Manager, Content Development, PCI Security Standards Council and Kandyce Young, Manager, Data Security Standards, PCI Security Standards Council

4:20 PM - 4:40 PM

PCI DSS v4.0 - Part 2
All About INFI

Presented by: John Bloomfield, Manager, Data Security Standards, PCI Security Standards Council and Matt O’Connor, Director, AQM, PCI Security Standards Council

4:40 PM - 5:00 PM

PCI DSS v4.0 - Part 3
What Do I Need to Do In The Next 6 Months? 15 Months?

Presented by: Emma Sutcliffe, SVP, Standards, PCI Security Standards Council

5:00 PM - 5:20 PM

Generative AI: Your New Secret Weapon or an Insider Threat?

Presented by: Kyle Hinterberg, QSA, CISSP, CISA, Manager, LBMC and Brian Willis, Senior Manager, LBMC

Generative AI, made popular by ChatGPT, can be used for anything from crafting email to writing code to passing college exams. What about supporting PCI DSS compliance? Can AI write policies, provide remediation guidance, and help interpret technical jargon? In this presentation, we will provide an overview of Generative AI, explore the efficacy and risk of leveraging AI for PCI DSS compliance, and provide recommendations on how to get the most out of this revolutionary technology.
5:20 PM - 5:30 PM

Day 1 Closing Remarks

5:30 PM - 7:00 PM

Welcome Celebration

Don’t miss this taste of the city and kick-off networking opportunity! This reception will be held onsite at the Oregon Convention Center on the North Plaza.
Sponsored by

Wednesday, September 13

9:00 AM - 5:00 PM

Registration Open

9:00 AM - 9:05 AM

Welcome Remarks

Presented by: Wenlock Free, Regional VP, North America, PCI Security Standards Council

9:05 AM - 9:25 AM

When a Hacker Comes Knocking: Vulnerability Disclosure, Bug Bounties, and PCI

Presented by: Ilona Cohen, Chief Legal Officer, Chief Policy Officer, HackerOne, Inc. and Harley Geiger, JD, MA, CIPP/US, Counsel and Senior Director, Venable, LLP

A hacker contacts your organization. They say they have found a major vulnerability in your software. What should you do? Are you under attack? What if the hacker asks for a “donation”? Vulnerability disclosure policies (VDP) and processes are increasingly built into regulations and standards, including PCI DSS v4.0. This presentation will provide an overview of vulnerability disclosure best practices, differences between VDP and bug bounties, and how these practices fit within PCI DSS v4.0 compliance.
9:25 AM - 10:10 AM

Industry Keynote: Social Engineering and "Hacking the Humans"

Presented by: Jenny Radcliffe, People Hacker and Social Engineer

10:10 AM - 10:40 AM

Networking Break and Vendor Showcase

VIP Meet and Greet Add On Experience Featuring Industry Keynote: Jenny Radcliffe, People Hacker and Social Engineer
Sponsored by

For an additional fee, attend this intimate Meet and Greet Reception. This is a great opportunity to engage with our keynote and ask them any lingering questions. To add this experience: Simply go to your registration confirmation email and click “Modify Registration”. You may need to verify your registration first, then navigate to the “Meet and Greet Add-on" option to purchase this great opportunity. If you haven't registered yet, be sure to add on this experience when registering!
10:40 AM - 11:20 AM

Track One

Smart Questions About Cybersecurity: What to Ask at Your Next Board Meeting

Presented by: Nelson Novaes Neto, Research & CTO/Partner, MIT Sloan & C6 Bank

Boards have a unique role in helping their organizations manage cybersecurity threats. They do not have day to day management responsibility, but they do have oversight and fiduciary responsibility. Don’t leave any questions about critical vulnerabilities for tomorrow. Asking the smart questions at your next board meeting might just prevent a breach from becoming a total disaster. This paper on cybersecurity leadership and management has been published in the Harvard Business Review.

Track Two

Mobile Payments: A Developer’s View

Presented by: Sean Estrada, Head of Industry Engagement, Stripe, Inc. and Roshan Sadanani, Product Lead, Payment APIs, Stripe

We live in a mobile-first world. Everything we do these days takes place on a mobile device, whether that’s booking a hair appointment, calling for transportation, or even seeing a doctor. Payments take on many different forms in the mobile space. Join Stripe as we showcase the developer perspective: how software and applications are built to facilitate mobile commerce, the risks and trade-offs involved, and the consumer experience. ​
11:25 AM - 12:05 PM

PCI Complexities in Higher Education - A Panel Discussion

Moderated by: Elizabeth Terry, Senior Manager, Community Engagement, PCI Security Standards Council

Panelists: Kevin Doar, CIA, CISA, CISM, ISA, Director - Merchant Services, University of Washington; Andrea Hendricks, PCIP, Director of Campus Commerce, Baylor University; Bryan Jurewicz, Chief Operations & Revenue Officer, Arrow Payments and Matthew Moore, ISA, Treasury Consultant, The Ohio State University

This panel discussion will educate vendors on procurement processes at universities, compliance oversight at universities for 3rd party vendors, PCI DSS v4.0 rules and how Universities are preparing in regard to 3rd party vendors.

PCI SSC and EMVCo Mobile Security and Standards Update

Presented by: Andrew Jamieson, VP, Solutions, PCI Security Standards Council and Oliver Manahan, Director of Engagement and Operations, EMVCo

Join this session to explore EMVCo’s work on mobile payment acceptance and PCI SSC’s work regarding security.
12:05 PM - 1:20 PM

Networking Lunch and Vendor Showcase

Sponsored by
1:20 PM - 1:40 PM

Track One

What is New for the PCI DSS v4.0 SAQs

Presented by: John Bloomfield, Manager, Data Security Standards, PCI Security Standards Council and Kandyce Young, Manager, Data Security Standards, PCI Security Standards Council

This session will focus on the following: New SAQ guidance issued in 2023, New SAQ SPoC compared to SAQ P2PE, what has changed in the SAQs, SAQ A – what’s with those new requirements? And what’s new for SAQ D for SPs.

Track Two

Cloudy with a Chance of Breaches: Where CHD May Be Hiding and At Risk

Presented by: Anton Abaya, CISA, CISM, PCI QSA; Professional Services Manager, Converge Technology Solutions

Cloud adoption and migration is moving at light speed, faster than traditional IT/Infosec/Compliance teams can support. With that comes risk, and "shadow cardholder data environments" being spawned. Our Cloud Security Assessments have uncovered some of the common pitfalls, twists and turns, and surprising discoveries that could have led to a data breach both in Azure and AWS. This session is ideal for both QSAs and those who own PCI compliance within their organization.
1:45 PM - 2:05 PM

Scaling Your Small Business: Building a Strong Security Framework That Includes PCI DSS Compliance

Presented by: Marc Rubbinaccio, CISSP, CISA, Senior Compliance Manager, Secureframe

This presentation focuses on the importance of having a robust security framework in place as a small business grows and uncovers key strategies for achieving PCI DSS compliance and highlighting the importance of building a security culture within the organization. Learn best practices for establishing effective security protocols including cloud security implementations. The presentation aims to help small businesses build a strong security foundation while prioritizing growing the business.

Software Security Framework: Explaining the Web Software Module Through Analogy and Music

Presented by: Jake Marcinko, Senior Manager, Solution Standards, PCI Security Standards Council

Please join Jake Marcinko, Sr. Manager, Solution Standards, PCI SSC for a musical journey through the Secure Software Standard: Web Software Module. This session uses musical analogies to explain important software security principles and the new Web Software requirements that are intended to enforce those principles.
2:10 PM - 2:30 PM

Scaling 6.4.3 & 11.6.1: Browser Script Management & The Large Enterprise Journey to Compliance

Presented by: Steven Eric Fisher, CISSP, GCPS, Fortune 1 and Jeffrey Zitomer, Senior Director of Product Management, Human Security

Payment Page scripts in the consumer’s browser are both mission critical and a largely unmitigated risk. PCI DSS 4.0 introduces a new security baseline. If you’re like the 92% of companies that lack visibility into their scripts, how do you get there in the next 18 months? Gain helpful insights from an in-progress large enterprise journey; from early risk-awareness, through aligning stakeholders, processes and technology, to achieving compliance by the March 2025 deadline.

The Human Factor in Payment Security: Harnessing Technology and Processes to Fortify the Payment Landscape

Presented by: Dr. Emmanuel Adu-Gyamfi, CISSP, CISA, QSA, PCIP, Sec+, CEO, Eretmis, Inc.

This presentation explores the vital role of human stakeholders in the payment ecosystem, focusing on collaboration, innovation, education, compliance, and customer experience. It highlights the importance of effective communication, adoption of emerging technologies like AI, ML, and blockchain, and promoting security awareness. Balancing security with user experience, stakeholders must adapt to continuous industry transformations and work collectively to create a secure, efficient, and customer.
2:35 PM - 2:55 PM

Prilex Evolution and Prevention Techniques

Presented by: Fernando Bucelli, Security Specialist, Cielo

Join this session to learn about the evolution of fraud in the Brazilian market, the solutions implemented by the community to contain fraud and financial losses, and also propose ideas to help entities involved in the payment chain to identify Prilex malware attacks.

Migration to AES Protected Payments: Current Support and Ongoing Work to Aid Adoption

Presented by: Steven Bowles, Regional Security Officer, NAR, Ingenico, Inc.; Richard Kisley, Chief Engineer, IBM Corporation and Dr. Susan Langford, Senior Cryptographer, Utimaco

The Payment Industry has used TDES encryption for years to protect PIN and cardholder data. As computing power increases, TDES is becoming more and more susceptible to attack. NIST recommends migrating to AES to address this threat - but where is the payment industry in this task, what work has already been done, and what remains to be done? This session will cover: the current state of AES support, ongoing AES work in standards, and considerations for planning your AES migration.
2:55 PM - 3:25 PM

Networking Break and Vendor Showcase

Light refreshments served.
3:25 PM - 3:45 PM

Track One

You've Been Hacked: Now What?

Presented by: Rob Harvey, CISSP, ISO 27001, QSA, Managing Director - Risk, Security, and Privacy, Online Business Systems and Adam Kehler, Director - Risk, Security, and Privacy, Online Business Systems

It's 4am and the phone rings. You've been hacked, and your data is being held ransom - operations are shut down, panic is setting in, stories are circulating, and the media are starting to stir. What do you do? What's your first phone call? This interactive session will role-play, live on stage, just what happens after that phone call. We'll cover some of the first steps, look at response communications and look to the audience for ideas, how their organizations have planned for this, and more.

Track Two (Tech Demos are sponsored sessions)

SecurityMetrics: How to Protect Your Ecommerce Transactions: An Overview of PCI DSS v4.0 Changes for Ecommerce Sites

Presented by: Gary Glover, CISSP, CISA, QSA, VP Assessments, SecurityMetrics

This presentation explains why PCI requirement 11.6.1 was added in PCI 4.0. We will discuss changes made to the SAQ A, including why scanning was added and how it makes you more secure. We will use case studies from Shopping Cart Inspect to illustrate the threats these changes to the PCI standard are trying to resolve. Lastly, we will discuss solutions to PCI 11.6.1 as well as the SAQ A and introduce a timeline for acquirers and merchants to follow so that they can begin their compliance plan.
3:50 PM - 4:10 PM

Understanding Roles in a Breach Scenario

Moderated by: Mark Mrotek, Director, Certification Programs, PCI Security Standards Council

Panelists: David Ellis, VP, Forensic Investigations, SecurityMetrics and Daniel Wright, VP, Merchant Account Data Compromise, Bank of America, N.A

Ever wondered what happens when account data is breached? Join us to hear about the latest trends around the world in reported account data breaches, and hear insight from key stakeholders about the roles and processes that take place when a breach occurs. Our panel of experts discuss aspects of account data breaches that many of us may be unaware of.

K3DES: Assessments in the Hybrid World of Remote and Onsite

Presented by: Howard Glavin, CISM, CRISC, CDPSE, QSA, CTGA, Executive Vice President, K3DES, LLC

As businesses have moved to a pure work from home and or a Hybrid work environment the ability to conduct a true assessment is becoming extremely more difficult. The session is to provide insight in how to make the assessment be accurate and of value dealing with the risks associated with hybrid work environment. the session will give insight into how to conduct the interviews to allow for the accurate data to be received when the interviewees are not directly in front of you.
4:15 PM - 4:35 PM

The Ten Habits of Effective PCI DSS v4.0 Compliance Professionals

Presented by: Ralph Villanueva, PCIP, CISA, CISM, ISO27001LA, ISO27701LA, IT Security and Compliance Analyst, Hilton Grand Vacations

This session will discuss how should PCI compliance professionals deal with implementing PCI DSS v4.0. The speaker will leverage his more than 10 years' PCI work experience in discussing insights and actionable advice from implementing PCI compliance at the people, process, and technology aspects of IT operations.

27K1 Ltd: A Total, PCI DSS v4.0 Compliance Software Solution

Presented by: Jeremy Martin, Co-Founder and Director, 27k1 Ltd and James Seaman, MSc; CISM; CRISM, Director, IS Centurion Consulting Ltd

UK-based 27k1 Ltd has developed the innovative and intuitive 27k1 ROC Edition software for PCI SSC approved QSA companies. The software combines ISO 27001 Management Systems with the PCI DSS v4.0 controls to create streamlined, digitalized PCI DSS assessments, task management, communication, and reporting. A user-friendly interface, integration of the official PCI SSC MS documents: ROC, AOC, SAQs, etc. and comprehensive features enhance collaboration and enable a competitive edge in PCI DSS v4.0 management and compliance. Visit Booth 60 at the PCI SSC Community Meeting or contact www.27k1.com for a demonstration.
4:40 PM - 5:00 PM

Beyond the Contract: Managing Customer/Service Provider Relationships

Presented by: Kara Gunderson, PCIP, Director Payment Card Operations, Citgo Petroleum Corporation; Greg Luna, Senior Legal Counsel, CITGO Petroleum Corporation and Todd McClelland, Attorney at Law, Partner, Head of Global Data Privacy and Cyber Security, McDermott, Will & Emery, L.L.C.

Contracts between merchants and service providers are often not ideal, for either or both parties, when it comes to addressing PCI DSS, cybersecurity, and data protection issues. Yet, we need to find a way to make them work. Our presentation begins by recapping PCI DSS requirements for service provider contracts. We then provide three example scenarios for how parties might address these issues, presenting each scenario from both the merchant and service provider perspectives. We conclude by offering mitigating measures parties may consider to create a defensible position, manage the cybersecurity risk, and to get the most out of their contracts.

DataStealth: Realtime Content Protection. It's Required. And It's Easy.

Presented by: Derek Schenk, CTO, DataStealth

DataStealth is a patented breakthrough in cybersecurity that has been proven to help many organizations comply with the PCI Data Security Standards. PCI DSS 4.0 requires organizations to ensure the integrity of webpages, along with the content being delivered, to ensure that nothing malicious is delivered to users. Static file integrity checks do not work as it is too late in the process. DataStealth provides real-time integrity checks, on every page, delivered to every user, every time.
5:05 PM - 5:25 PM

Achieving and Maintaining PCI Compliance In An Acquisition Model

Presented by: Heidi Babi, PCIP, ISA, PCI Security Assurance & Compliance Sr. Lead, Mars, Incorporated and Jeffrey Moy, PCIP, ISA, PCI Security Assurance & Compliance Sr. Lead, Mars, Incorporated

Sharing best practices to promote and manage PCI compliance across a global entity with an acquisition model, exploring real-life examples that include both successes and challenges.

Total Compliance Tracking, LLC: Streamlining Complex Compliance Engagements

Presented by: Todd Coshow, Head of Business Development, Total Compliance Tracking and Jon Dotson, Head of Product, Total Compliance Tracking

Let's face it, managing compliance sucks. TCT has over a decade serving organizations in the compliance space that have complicated compliance engagements, and driving efficiency into managing all of the explanations and attachments required for these engagements across complicated workflows. TCT serves organizations subject to compliance through Assessors managing a multitude of Client engagements, across over 100 different compliance tracks. See a walk-through of how to make things better.
5:30 PM - 5:50 PM

Compliance is a Program, Not a Project

Presented by: Michael Aminzade, QSA, PCIP, CISSP, C|CISO, CISM, CRISC, CDPSE, ISO LA27001 Vice President, Managed Compliance Services, VikingCloud and Chelsea Lopez, CIA, CISA, CRISC, CISSP, PCI-ISA Enterprise Risk Director, FIS

The Golden Gate Bridge consists of 83,000 tonnes of steelwork, with main cables made up if 80,000 miles of spun galvanized steel wire. Currently there are 40 ironworkers and painters who battle wind, sea air and fog to repair corroding steel. Just as you finish one task, another one starts, or the task you just finished needs redoing again. The thing is though, if the maintenance program isn’t continued, and managed, the results could be catastrophic. Likewise, if we treat compliance programs as individual projects, or one-off tasks, corrosion of our overall security posture and our compliance status could easily occur. So, what we will consider as part of this presentation is:
  • Why compliance should be viewed as a program.
  • World view on regulatory compliance.
  • Synergies between compliance programs.
  • Developing a mature compliance program.
  • Impediments to success.

A-LIGN: Get Audit-Ready In A Fraction Of The Time By Leveraging Powerful Automation

Presented by: Chris Lamm, PCI Managing Consultant, A-LIGN and Dustin Rich, PCI Practice Lead, A-LIGN

Ready to leave behind the audit headaches of the past? See how A-LIGN’s compliance automation platform, A-SCEND, can help you complete your audits faster and easier than ever before. Collect evidence with the click of a button, leverage policy templates to establish new policies, set up continuous monitoring to keep an eye on your compliance program year-round, and more. And most importantly, free up your time and resources for the work that matters most to your organization.
6:00 PM - 7:30 PM

Networking Reception and Vendor Showcase

Thursday, September 14

9:00 AM - 9:10 AM

Welcome Remarks

Presented by: Wenlock Free, Regional VP, North America, PCI Security Standards Council

9:00 AM - 11:00 AM

Registration Open

9:10 AM - 9:30 AM

Unleashing the Power of Participation with PCI SSC

Presented by: Lindsay Goodspeed, Senior Manager, Corporate Communications, PCI Security Standards Council and Elizabeth Terry, Senior Manager, Community Engagement, PCI Security Standards Council

Learn how you and your organization can make the most of your participation with the Council. This presentation will reflect feedback we have received from you, the PCI SSC community, and demonstrate how the Council uses this feedback to implement changes to benefit you and global payment security.
9:30 AM - 10:15 AM

Keynote: Above All Else - The Power of Passion

Presented by: Jamie Clarke, Professional and Olympic-Level Performance Coach, Expedition Leader

10:15 AM - 10:45 AM

Networking Break and Vendor Showcase

VIP Meet and Greet Add On Experience Featuring Keynote: Jamie Clarke, Professional and Olympic-level Performance Coach, Expedition Leader, Business Builder, and Master Motivator

For an additional fee, attend this intimate Meet and Greet Reception. This is a great opportunity to engage with our keynote and ask them any lingering questions. To add this experience: Simply go to your registration confirmation email and click “Modify Registration”. You may need to verify your registration first, then navigate to the “Meet and Greet Add-on" option to purchase this great opportunity. If you haven't registered yet, be sure to add on this experience when registering!
10:45 AM - 11:05 AM

PCI SSC Special Interest Group Update

Presented by: Kristine Harper, PCI DSS QSA, Principal Assurance Consultant, AWS Security Assurance Services, LLC.; Steve Porter, CISSP, QSA, QPA, GPEN, GWAPT, GICSP, GMOB, GCIH, GSNA, GSEC, CEO/ Founder, Secured Net Solutions Inc. and Kandyce Young, Manager, Data Security Standards, PCI Security Standards Council

11:05 AM - 11:35 AM

Making the Payments Industry Stronger – A Panel Discussion

Moderated by: Mark Meissner, SVP, Education & Engagement, PCI Security Standards Council

Panelists: Fernando Bucelli, Security Specialist, Cielo; John Elliot, Security Advisor, Jscrambler; Wenlock Free, Regional VP, North America, PCI Security Standards Council and Timothy Thomas, PCIP, Senior Product Manager, Bank of America N.A.

There are so many ways to engage with the PCI SSC. In this panel discussion, you will hear from PCI SSC Board of Advisors and Principal Participating Organization members about the various ways they have engaged with the PCI SSC and how payment stakeholders can have a voice in the development of standards and programs. You will also want to hear about the new benefits associated with being active with the PCI SSC and then make your plan to get more involved.
11:35 AM - 11:55 AM

Bridge the Gap: Speak the Same Language As Your Assessor - A Panel Discussion

Moderated by: Elizabeth Terry, Senior Manager, Community Engagement, PCI Security Standards Council

Panelists: Boyd Clewis, CISSP, CISA, CCSK, PCIP;​ CEO, Genesis Security and Compliance; Brittany George, QSA, CISA, CISM, PCIP, Partner, Weaver and Tidwell, L.L.P.; Richard Haag, QSA, QSA-P2PE, QPA, VP Compliance Services, Intersec Worldwide and Phyllis Woodruff, PCI ISA, CISM, PMP, VP IT Risk & Compliance, Global Payments Direct

An interactive panel discussion where we talk through the benefits of having ISA(s) on your team. How speaking the same language as your QSA facilitates more efficient & effective assessment, reduces friction, cost and time, as well as strengthening the relationship between the organization and assessor.
11:55 AM - 12:00 PM

Closing Remarks

Presented by: Wenlock Free, Regional VP, North America, PCI Security Standards Council

12:00 PM - 1:00 PM

Assessor and Payment Vendor Lunch

1:00 PM - 3:00 PM

Assessor Session (QSAs, ISAs, ASVs, PFIs, QPAs, CPSAs only)

Presented by: Matt O’Connor, Director, AQM, PCI Security Standards Council; Travis Powell, Director, Training Programs, PCI Security Standards Council; Elizabeth Terry, Senior Manager, Community Engagement, PCI Security Standards Council and Kandyce Young, Manager, Data Security Standards, PCI Security Standards Council

As an active assessor in the PCI SSC programs, join us for a special session to hear industry best practices, recent case studies, Council updates, live Q&A and networking opportunities with your peers.

Payment Vendor Session (PCI Recognized Labs; CPoC, MPoC, and SPoC Product Vendors; and P2PE and SSF Assessors and Vendors)

Presented by: Leon Fell, Director, Device Standards, PCI Security Standards Council; Andrew Jamieson, VP, Solutions, PCI Security Standards Council; Jake Marcinko, Senior Manager, Solution Standards, PCI Security Standards Council and Mike Thompson, Director, Solutions Standards, PCI Security Standards Council

Join your peers for an informational session including Q&A with the PCI SSC team to discuss what’s new for vendors and labs for PCI PTS, P2PE, Mobile, and Software Security.