John Bloomfield

Manager, Data Security Standards, PCI Security Standards Council

Mr. Bloomfield works as a standards manager within the PCI Data Security Standards Team and is the chair of the Small Merchant Task Force. Prior to joining the Council, he was previously a security assessor for Card Production, 3DS, and a QSA. He holds an MSc in Cyber Defence and Information Assurance and is a CISSP, CDPSE, CISM, CISA and ISO 27001 lead auditor.

John Bloomfield's Events

Assessor Session

Date: Tuesday, 8 October

Presented by: John Bloomfield, Manager, Data Security Standards, PCI Security Standards Council; Scott Chambers, Standards Trainer, PCI Security Standards Council and Matt O’Connor, Director, AQM, PCI Security Standards Council

(QSAs, ISAs, ASVs, PFIs, QPAs, CPSAs, SSF, P2PE, 3DS assessors only): As an active assessor in the PCI SSC programs, join us for a special session to hear industry best practices, recent case studies, Council updates, live Q&A and networking opportunities with your peers.

What Are the Implications of Infrastructure as Code and PCI DSS?

Date: Wednesday, 9 October

Track Two

Presented by: John Bloomfield, Manager, Data Security Standards, PCI Security Standards Council and Peter O’Sullivan, Principal Information Security Consultant, Blackfoot Cybersecurity

Wondering how to handle Infrastructure as Code and cloud deployments for PCI DSS? This session considers how to meet PCI DSS requirements in environments defined by Infrastructure as Code from the Council’s perspective and an assessor’s viewpoint. Topics include integration, code repositories, scoping, significant changes, and assessment practicalities.