Join us for three days of connecting, discovery, updates from the Council, regional community speakers, merchants, industry experts, and more.

Click here to convert to your local time.

Schedule subject to change – Continue to check back for updates and session details

Registration Now Open
  • Tuesday, 8 October
  • Wednesday, 9 October
  • Thursday, 10 October

Tuesday, 8 October

09:30 - 17:30

Registration Open

10:00 - 12:00

Workshops

NEW - Join these engaging workshops and take part in moderated peer-to-peer discussions, hear industry best practices, network, and share your experiences. Open to all attendees. Please RSVP to select your topic and reserve your seat for the discussion.

Workshop Topic: Assessment Evidence Collection Techniques

Moderated by: John Elliott, FBCS, Principal Consultant, Withoutfire

Workshop Topic: Approaches for Monitoring Third Party Service Providers (TPSPs)

Moderated by: Mahmoud Sultan, Senior Director, Technical Compliance, Toast, Inc.

12:00 - 13:00

Lunch on your own

Right next door to the convention center, the Torre Melina Gran Meliá offers a variety of cuisine. Click HERE to plan ahead.
13:00 - 15:00

Assessor Session

Presented by: John Bloomfield, Manager, Data Security Standards, PCI Security Standards Council; Scott Chambers, Standards Trainer, PCI Security Standards Council and Matt O’Connor, Director, AQM, PCI Security Standards Council

(QSAs, ISAs, ASVs, PFIs, QPAs, CPSAs, SSF, P2PE, 3DS assessors only): As an active assessor in the PCI SSC programs, join us for a special session to hear industry best practices, recent case studies, Council updates, live Q&A and networking opportunities with your peers.
15:00 - 17:00

Vendor Showcase Preview

All are welcome to take a sneak peek at the Vendor Showcase! Light refreshments will be served.

Tech Talks held in the Vendor Showcase

Presented by: Secured Net, Jscrambler, SecurityMetrics & Reflectiz
17:00 - 18:30

Welcome Reception

Beso Pedralbes and Pool Area - Located just outside the convention center doors
Join us poolside and enjoy a taste of Barcelona. ​Step into an evening of food and fun while experiencing some of the city's unique blend of history, culture, and modern charm. Don’t miss this Welcome Reception.
Sponsored by

Wednesday, 9 October

09:30 - 17:30

Registration Open

09:30 - 10:15

Keynote: Shaping the Future of Payment Security - Together

Presented by: Gina Gobeyn, Executive Director, PCI Security Standards Council; Diana Greenhaw, Head of Engagement, PCI Security Standards Council and Deanne Zettler, Head of Product & Technology, PCI Security Standards Council

10:15 - 10:20

Emcee Welcome Remarks

Presented by: Alicia Malone, Senior Manager, Public Relations, PCI Security Standards Council

10:20 - 10:40

How the PCI SSC Standards Work Together

Presented by: Andrew Jamieson, Vice President, Solutions Standards, PCI Security Standards Council

Join us for an engaging session where we explore the evolving landscape of payment security standards across all facets of the ecosystem. Discover the forward-thinking directions the Council is taking in areas crucial to the standards' influence. From emerging technologies to global challenges, we'll uncover the strategic initiatives shaping the future of payment security.
10:40 - 11:00

Your Journey Through the Key New PCI DSS v4.x Requirements - Get Started Now!

Presented by: Kandyce Young, Manager, Data Security Standards, PCI Security Standards Council

Join us to walk through key new requirements in PCI DSS v4, from stored account data protection and authentication, to e-comm skimming and phishing prevention, and more, to learn about how they’re intended to strengthen your organization’s evolving security posture right now – don’t wait until their 31 March 2025 effective date.
11:00 - 11:30

Networking Break and Vendor Showcase

Light refreshments served.

Tech Talks Held in the Vendor Showcase

Presented by: HUMAN
11:30 - 11:50

Track One

Setting Moonshot Goals

Presented by: Michael Aminzade, QSA, PCIP, CISSP, C|CISO, CISM, CRISC, CDPSE, ISO LA27001, Vice President, Managed Compliance Services, VikingCloud and Chelsea Lopez, Risk Director, FIS

On the 12th of September 1962, at Rice University, John F. Kennedy said “We choose to go to the moon. We choose to go to the moon in this decade and do the other things, not because they are easy, but because they are hard, because that goal will serve to organize and measure the best of our energies and skills...” The thing is though he wasn't entirely sure how they were going to achieve that. This lofty goal even spawned a term, moon-shot, which is to plan or do something that seems almost impossible, a long-shot. We have somewhat lost that drive, especially when it comes to cyber security. We need to get back to the days of moon-shot goals, we need to invent, and we need to look far ahead to go on the offensive in cyber security.

Track Two

Streamlining Key Management in the Payment Card Industry: An Innovative and Audit-Friendly Approach

Presented by: Kris Olejniczak, QSA, P2PE QSA, SSF QSA, QPA, Managing Director, Patronusec and Rolf Pielage, Senior Manager, Deloitte Netherlands

Traditional methods for managing cryptographic keys have often involved labor-intensive processes that not only increase the margin of error but also complicate compliance and auditing procedures. We will unveil a different and innovative approach to key management that redefines the traditional approach while significantly reducing manual efforts. We will explore an automated key management approach, designed to enhance security measures and simplify the auditing process and show how automated systems can handle key generation, distribution, rotation, and destruction with minimal human intervention. Furthermore, we will demonstrate how this novel approach facilitates a seamless and transparent auditing trail simplifying auditing process.
11:55 - 12:15

Track One

Ace Your PCI DSS v4.0 Assessment: QSA Secrets for Success

Presented by: Gary Glover, CISSP, CISA, QSA, VP of Assessments, SecurityMetrics, Inc.

PCI DSS v4.0 has new, challenging requirements. Learn from Gary Glover, SecurityMetrics VP of Assessments, on how to approach a successful PCI DSS v4.0 assessment.

Pulling from SecurityMetrics’ auditors’ experience with v4.0 assessments, you’ll receive insights on the best ways to simplify and understand any new requirements, best practices for future-dated requirements, and how to prepare your team for their PCI v.4.0 obligations.

Track Two

The Hitchhiker’s Guide to the Software Security Galaxy

Panelists: Jake Marcinko, Senior Manager, Solution Standards, PCI Security Standards Council and Bhavna Sondhi, Director, Technical Solutions, Coalfire Systems, Inc​.

Please join Jake Marcinko, Senior Manager Solution Standards at PCI SSC and Bhavna Sondhi, Director of Technical Solutions at Coalfire for an interactive journey into the future of software security. This ‘choose your own adventure’ style session will discuss how new and evolving technologies such as cloud, low- or no-code development tools and AI are revolutionizing software engineering, the security risks posed by the use of such technologies, and practical guidance on how to leverage such technologies safely and securely.
12:20 - 12:40

Track One

Challenges with PCI P2PE Solutions While Building Resilience in the European Payments Landscape

Presented by: Josef Huff, Senior Professional Card Payment, Schwarz IT KG and Marlany Naidoo, ISA, CRISC, CISM, Associate C-CISO, Payment Security Lead, Schwarz IT KG

The payment landscape in the Europe market has undergone significant changes in recent years. With the rise of new technologies, customer expectations have evolved, and the SCHWARZ Group who is a leading retailer providing card payments via multiple payment channels throughout its subsidiaries, among them being Lidl and Kaufland, have had to adapt to stay resilient. This presentation explores some of the key challenges faced by Schwarz as a retailer in the European payment market, as well as the implications of the new Point to Point Encryption (P2PE) data standard on those wanting to build resilience models.

Track Two

What Are the Implications of Infrastructure as Code and PCI DSS?

Presented by: John Bloomfield, Manager, Data Security Standards, PCI Security Standards Council and Peter O’Sullivan, Principal Information Security Consultant, Blackfoot Cybersecurity

Wondering how to handle Infrastructure as Code and cloud deployments for PCI DSS? This session considers how to meet PCI DSS requirements in environments defined by Infrastructure as Code from the Council’s perspective and an assessor’s viewpoint. Topics include integration, code repositories, scoping, significant changes, and assessment practicalities.
12:45 - 13:05

Track One

P2PE Program Enhancements

Presented by: Mike Thompson, Director, Solution Standards, PCI Security Standards Council

The Council highly values stakeholder feedback, and we have heard you!​

We’ve made value-add changes based on what we've heard to enhance the P2PE Program to benefit stakeholders and help contribute to even greater market adoption.

Track Two

Getting Ready for Secure Software Standard Security Assessment - A Vendor And A Penetration Tester Perspective

Presented by: Carlos Marquez, QSA, PFI Core, Senior Information Security Consultant, Foregenix and Flavio Bonfiglio Sorans, Managing Principal and Head of Software Security, Foregenix

We will provide an overview of the Secure Software Standard and the key differences between traditional application pentest and security tests for this standard. The goal is to help application vendors and customers prepare for the assessment process and anticipate the information and technical scenarios required. The aim is to facilitate an understanding of the impact and implications of the tests and findings and how to improve the Software Life Cycle to get ready. Assessing applications involves understanding payment transactions, sensitive data flows and access to all the components from operational and functional points of view. This guide will help you to be prepared for your assessment!
13:05 - 14:30

Networking Lunch and Vendor Showcase

Tech Talks Held in the Vendor Showcase

Presented by: BOTECH, Titania & Insside
14:30 - 14:50

Track One

Concept to Certification - A Journey to PCI Product Listing

Presented by: Zelia Pantani, Product Security Governance, Block, Inc.

A highlight of best practices for moving a payment acceptance solution (hardware or software) from the ideation/concept stage all the way through to the listing on the PCI website. This includes a walkthrough of managing relationships with all of the various stakeholders involved in the process, including but not limited to engineering, product development, marketing, legal, product testing laboratories, and PCI staff.

Track Two

Migrating to AES (Advanced Encryption Standard) - Learnings and Perspectives from Australia and France

Presented by: Guillaume Dabosville, Security Expert, Cartes Bancaires and Riaz Hussain, Head of Security Standards & Transformation, Australian Payments Network

AES (Advanced Encryption Standard) Migration Programs have been established in both Australia and France.

This is a joint presentation from Australian Payments Network and Cartes Bancaires, exploring the approaches being undertaken, the relevant domestic contexts, and key issues and lessons learnt within these programs.

Within the presentation, suggestions and recommendations as to how PCI SSC and the PCI Community may help and benefit from these programs.
14:55 - 15:15

Track One

See Yourself In Cyber: Security Careers Beyond Hacking

Presented by: Ed Adams, Executive, Cyversity and Luke Fletcher, Senior Crisis Consultant, Secura, a Bureau Veritas Company

Red & Blue Teams conduct internal “war games” to assess preparedness and resiliency, blending colors to produce Purple Teams. But what about teams that build and/or operate IT applications and infrastructure? Are they color blind? There’s tremendous value in teaching attack and defend tactics to these teams. We'll discuss ways the people in your organization—inhabiting such roles--can contribute to improving its cybersecurity backbone. Using the color wheel analogy, we'll explore the responsibilities of practitioners who operate within each “slice of the pie.” You’ll also learn how improving your firm’s diversity and inclusion can have dramatically positive effects on your team’s talent. Specific references to PCI standards abound!

Track Two

The Future of the Payment HSM - Cryptography as Service

Presented by: Aidan Corcoran, Chief Architect - Payment Cryptography, Verisec International AB

Cryptography as Service or Cloud HSMs can be a complimentary solution to the delivery of payment applications in the cloud. Even on-premises applications can be connected to Cryptography as Service in addition to or as an alternative to physical HSMs.

What is it? How does it work? Is it PCI compliant? Does it make sense for my organization?

Join Aidan for about 20 minutes and bring yourself up to date on the latest technical and business developments in this evolving area. Find answers to these and to the many other questions you may have. Learn about the service delivery methods, key management implications and the PCI compliance requirements.
15:20 - 15:40

Track One

Security Is a Continuous Process

Presented by: Scott Chambers, Standards Trainer, PCI Security Standards Council

Join us on a journey of discovery as we explore a fictional Mesozoic themed park, and the security failings that led to its demise.  We will examine and explore how the application of requirements from across the PCI Standards may have saved the day as well as the guests!

Track Two

PCI DSS v4.0 Cryptographic Activity Monitoring

Presented by: Vui Huang Tea, Engineer, Swedbank

Case study of how a leading bank in Sweden attained comprehensive PCI DSS v4.0 cryptographic agility in the monitoring of encryption & verification technologies usage across an organization.
15:40 - 16:10

Networking Break and Vendor Showcase

Light refreshments will be served.

Tech Talks Held in the Vendor Showcase

Presented by: Total Compliance Tracking
16:10 - 16:30

Track One

Tech Exchange: K3DES LLC - Managing Data, Data Centers, and Compliance in Today's Remote World

Presented by: Howard Glavin, CISM, CRISC, CDPSE, QSA, CTGA, Executive Vice President, K3DES LLC

Today’s Data Management is not the same as it was 5 years ago. Your grandma’s brick-and-mortar buildings, dedicated to service only your needs and where you had total control over the data, are mostly a thing of the past. With the advent of Cloud, Multi-Tennant Datacenters, and Virtual everything, it is hard to figure what data you have or where it is stored. Do you even know where the “where’ is physically located? Are your data and devices being managed in a hostile country that will view and, frankly, use whatever they choose for their own needs? How are you protecting the company’s golden nugget, the data?  This presentation will expose you to the methods needed for protection of the data and its locations, for today and tomorrow.    

Track Two

Updates in the Lab Management Program

Presented by: Andrew Jamieson, Vice President, Solutions Standards, PCI Security Standards Council

Join us to learn more on updated information and the changes to the Lab Management program. This includes Modular onboarding which decouples the PCI PTS lab requirement, vendor notification process, and a brief look at the approved device and solution website for PTS devices and MPoC solutions.
16:35 - 16:55

Track One

DORA: How the Next Wave of Requirements Is Hitting the Payment Card Industry

Presented by: Christopher Kristes, Executive Board Member, QSA, usd AG and Christian Schwartz, Head of Security in Finance, usd AG

With many organizations still in the thick of their transition to PCI DSS v4.0, the financial sector is facing the next wave of requirements: DORA. The Digital Operational Resilience Act will apply as of January 2025 and have a significant impact on many actors of the payment card industry – directly or indirectly. Who is affected and what are the main DORA requirements? With DORA focusing on the resilience and PCI DSS on the confidentiality of payment data, is there still an overlap in their requirements? Can organizations benefit from PCI DSS compliance when implementing DORA? Join an expert for InfoSec in finance and an experienced QSA in discussing these questions and learn what you can do to prepare today, tomorrow and by January 2025.

Track Two

You Dropped a “BOM” on me, baby…

Presented by: Jake Marcinko, Senior Manager, Solution Standards, PCI Security Standards Council

Please join Jake Marcinko, Senior Manager Solution Standards at PCI SSC for a detailed look at the concept of software Bill of Materials (BOM), and how the PCI Software Security Framework is leveraging them now and in the future.    
17:00 - 17:20

Track One

Tech Exchange: Sycurio - Securing Your Payment Infrastructure and Delivering PCI DSS Compliance in the Age of AI

Presented by: Keith Harper, Pre-Sales Engineer, Sycurio

AI is transforming how firms interact with customers & their data. From self-service options & secure payment solutions to fraud detection & agent assistance, AI is revolutionizing operations & CX. As customer needs & payment landscapes evolve, the need for heightened security is paramount. AI services are entering the payment environment, posing both opportunities & challenges. While AI offers efficiency & convenience, it raises a crucial question: can we achieve convenience & robust security?

Track Two

PCI Compliant Device Provisioning in Practice

Presented by: Torben Ellgaard, Sr. Product Manager, Cryptera A/S

Vendors that perform the initial provisioning of devices and injection of keys, must establish a security setup that complies with PCI PIN requirements. This talk provides guidance on how to establish and operate an efficient PCI compliant service for provisioning PCI PTS devices. Subjects covered include:
  • User Management, User Identification and User Roles
  • Cost of establishing HSA, CA, HSM’s, etc.
  • Practical Key Management - Key Import and Export, back-up, etc.
  • Audit trail
  • Secure device link, no injection of clear-text keys
  • Key Binding via TR-31 cryptograms
The information and examples serve to confirm your understanding and perhaps as inspiration to optimize your key injection.
17:30 - 19:00

Networking Reception and Vendor Showcase

Refreshments will be served.

Tech Talks Held in the Vendor Showcase

Presented by: VikingCloud & Integrity 360

Thursday, 10 October

09:30 - 12:30

Registration Open

09:30 - 09:35

Welcome Remarks

Presented by: Alicia Malone, Senior Manager, Public Relations, PCI Security Standards Council

09:35 - 09:55

Digital Fire Doors: The Frontline Defenders Against Ransomware and For Maintaining Secure & Resilient Operations

Presented by: Ian Robinson, Chief Architect, Titania and Jim Seaman, MSc (Security Management) CISM CRISC CDPSE M.Inst.ISP, IS Centurion Consulting Ltd

Although it is only a recommendation for PCI DSS v4.0, effective network segmentation is a must to protect your digital realm from cyber threats like ransomware. Firewalls, routers and switches must be appropriately placed for network security control. Though far more complex than physical fire doors, these devices act similarly, as digital barriers that keep attacks at bay and prevent full-scale network disaster by stopping the spread of fires. Their effectiveness depends on vigilant updating and monitoring. Lapses may lead to breaches. New Operational Resilience regulations (eg CORA/DORA) also require organizations to protect their digital assets that support identified Important Business Services, by implementing effective digital fire doors.
09:55 - 10:15

Has IoT Security Improved? Or Is It Still Down The (Smart) Toilet?

Presented by: Ken Munro, CEO, Pen Test Partners Inc.

It’s been nearly a decade since we first showed security failures in talking kid's dolls and tea kettles. Since then, we’ve been pushing standards bodies and the government to provide guidance to protect consumers’ privacy. Regulation is coming very soon, so how do we all avoid failing foul of it? The fines for non-compliance are punchy in some regions. In the meantime, we keep finding facepalm-worthy security issues in IoT. Let’s learn from those in an informative and entertaining talk about hacking smart toilets, ski tech, connected airplanes and plenty more.
10:15 - 11:00

Keynote: Security in an Age of Exponential Innovation

Presented by: Dr Bruce McCabe, The Global Futurist

In an age of exponential innovation, what disruptive technologies will impact cybersecurity? How can we keep up with the speed of change? What big actions could we take to make our future more secure? In this presentation, Dr Bruce McCabe, Global Futurist, will draw on his meetings with cutting-edge scientists and thinkers around the world to broaden the lens and help us to ‘think bigger’ about cybersecurity through 2050. He will introduce us to his most impactful emerging technologies and their implications, both positive and negative. He will discuss incentives and some of the big social, political and financial ideas to enhance security. He will name his biggest threats. Most importantly, Bruce will help us to think differently and more expansively about opportunities to make the future more secure.
11:00 - 11:30

Networking Break and Vendor Showcase

Light refreshments will be served.

Tech Talks Held in the Vendor Showcase

Presented by: Akamai Technologies
11:30 - 11:50

Let’s Address the AI and ML Elephant in the Room

Presented by: Christopher Mawby, ISA, Principal Security Architect, Oracle Corporation

Join this session to learn how AI and ML might affect PCI compliance. This will take the form of an abstract study in two parts. The first part is for the PCI Merchant and Service Provider. How AI and ML can influence the business's PCI compliance. The second part will look into how the bad actor can use AI and ML to break down the defender's security layers quickly and through playing the long game where enough reconnaissance will lead to the inevitable breach. Using AI in a PCI environment will not make it PCI compliant. AI and ML use is not without risks, but it is also the next evolution for our business enterprises.
11:50 - 12:10

Learning From Safety-Critical Industries: Control Failure Is Normal, Deal With It.

Presented by: John Elliott, FBCS, Principal Consultant, Withoutfire

In 2024 cybersecurity isn’t easy. New vulnerabilities are discovered more quickly than ever, threat actors always find new techniques and development wants to make 10 releases a day. Despite a focus on in-depth, the failure of just a single control (or a requirement that’s not in place) can be the opportunity a persistent attacker needs to gain a foothold before moving laterally. With so many controls and an increased rate of business change, how do we maintain healthy, working, operational controls? Discover the strategies that safety-critical industries like aviation have developed to ensure high control reliability and how these strategies can be adopted by cybersecurity teams to secure our companies and the data we care about.    
12:10 - 12:30

Secure Migration of Cardholder Data

Presented by: Mika Rautio, PCIP, CISA, CISM, CRISC, Senior Security Architect, Nexi

This talk is a story about a project where cardholder data was migrated from an eCommerce payment service provider to another. Planning and executing zero-downtime migration of mission critical high transaction volume payment services is a challenge. Adding PCI DSS and privacy considerations to the project takes everything to another level! The talk will cover practical details of how the cardholder data migration project was planned and executed. It will go through how data security and privacy can be achieved in the project. From PCI DSS compliance perspective, the talk focuses particularly on how cardholder data is protected at-rest and in-transit.    
12:30 - 12:50

Tech Exchange: Jscrambler - Iframing the Payment Form - The Defense Perspective

Presented by: Pedro Fortuna, CTO & Founder, Jscrambler S.A.

Iframing a payment form by a third-party payment processor is often used to reduce the number of applicable PCI DSS requirements for the merchant's website. More recently, PCI DSS v4 introduced new requirements, some applicable to the merchant's page hosting the iframe. A number of attacks against the iframe can still result in cardholder data being leaked. This talk provides an in-depth look into the security risks that exist on iframed payment forms, and a view on how to defend them.
12:50 - 13:10

How to Balance Conflicting Acquiring Bank Objectives - Insights Into the Conflicting Payments, Risk and Compliance Management Landscape In The Small Merchants’ Segment

Presented by: Natasja Bolton, PCI Compliance and Security Specialist, VikingCloud and Daniela Christoffel, Compliance Manager (PCI), Nexi

Acquiring banks, like Nexi Group, are not only merchant services providers they are also payment solution providers and technology vendors. As such, they have objectives and drivers that often conflict and can be hard to balance. Acquiring banks have an obligation to enforce merchant compliance with card scheme rules and the PCI DSS but are also driven by the need to support evolving payment technologies and customer payment preferences. How can acquiring banks best manage the risks to payment card account data as the payments landscape changes? Join this interactive session examining how acquiring banks may best serve the SME merchant business community and the wider payments industry in balancing their objectives.    
13:10 - 13:30

Global Updates: Payment Trends and Threats

Presented by: Nitin Bhatnagar, Regional Director India, South Asia and Middle East, PCI Security Standards Council; Yew Kuann Cheng, Regional VP, Asia-Pacific, PCI Security Standards Council; Diana Greenhaw, Head of Engagement, PCI Security Standards Council; Jeremy King, Regional VP, EMEA, PCI Security Standards Council and Guilherme Scheibe, Regional Director, Brazil & LAC, PCI Security Standards Council

The PCI SSC Global team has a unique global presence, providing insights into payment trends and threats worldwide. This presentation synthesizes perspectives from diverse stakeholders across regions with distinct needs, resources, and cultures, offering actionable insights applicable globally. It illuminates regional challenges in payment security and their potential global ramifications.
13:30 - 15:00

Networking Lunch and Vendor Showcase

Tech Talks Held in the Vendor Showcase

Presented by: Yazara & Source Defense
15:00 - 15:20

Tech Exchange: Zimperium - Lessons Learned from Securing MPoC Solutions and the Need for Continuous Security

Presented by: Krishna Vishnubhotla, Mobile App Security Specialist, Zimperium

As the industry navigates MPoC security requirements, it faces a sophisticated mobile threat landscape that evolves every day. There needs to be more than the annual certification process. Our presentation delves into why continuous, adaptive security, enhanced by AI and automation, is crucial for safeguarding MPoC solutions beyond initial certification against zero-day vulnerabilities and other emerging challenges.
15:20 - 15:40

Safeguarding Your “Boat” So you Don’t Get Hooked

Presented by: Andrew Jamieson, Vice President, Solutions Standards, PCI Security Standards Council

Join PCI SSC on this “phishing adventure” as they delve into the best practices and requirements in securing your “boat” from potential catastrophic phishing incidents!
15:40 - 16:10

PCI SSC MPoC and Mobile Updates

Presented by: Andrew Jamieson, Vice President, Solutions Standards, PCI Security Standards Council

Join us as we explore the evolving landscape of mobile payments and the latest advancements in the MPoC Standard. From understanding the importance of the PCI SSC's MPoC requirements to navigating the complexities of securing mobile transactions, this session equips attendees with essential knowledge and strategies to enhance their organization's security posture.
16:10 - 16:40

Stronger Together – The Value of Participating with the PCI SSC

Moderated by: Mark Meissner, Senior Vice President, Education & Engagement, PCI Security Standards Council

Panelists: Pedro Fortuna, CTO & Founder, Jscrambler S.A.; Gary Glover, CISSP, CISA, QSA, VP of Assessments, SecurityMetrics, Inc.; Diana Greenhaw, Head of Engagement, PCI Security Standards Council and Marie Christine Vittet, VP Compliance, Accor

This session explores the intrinsic value and strategic benefits of active participation with the PCI SSC. Discover how participation can enhance your organization's security posture, foster industry-wide innovation, and fortify global trust in payment security. Join us to learn why, in the realm of payment security, we are truly stronger together with the PCI SSC.
16:40 - 17:00

Wrap Up Session and Closing Remarks

Presented by: PCI Security Standards Council