Eric Kitchens

Principal, Technical Governance, Toast Inc.

Eric is a GRC professional with decades of experience in the field. His career has focused on administering, assessing, and managing security controls within financial institutions, merchants, and MSSPs, serving as a QSA/QPA and managing a team of assessors. As Principal of Technical Governance at Toast, he provides strategic guidance and identifies technical controls to meet security objectives. Eric lives in Denver, CO and enjoys playing music, gaming, and spending time outdoors with his dogs.

Eric Kitchens's Events

Advancing Payment Security: Comprehensive Strategies for Reducing PCI Scope

Date: Wednesday, September 11

Track One

Moderated by: Marc Bayerkohler, Standards Trainer, PCI Security Standards Council

Panelists: Tony James, ISA, CISSP, CISA, C-RISC, Director of Cyber Security, Target Corporation; Eric Kitchens, Principal, Technical Governance, Toast Inc. and Viviana Wesley, PCI QSA, ISO 27001 Auditor, CISM. Principal Consultant, Governance, Compliance and Engineering Services, HALOCK Security Labs

The continuous evolution of payment security strategies aims at enhancing the protection of cardholder data and reducing the PCI scope for merchants. This panel discussion seeks to illuminate the spectrum of solutions that effectively minimize merchant exposure to cardholder data, including the established point-to-point encryption (P2PE), innovative end-to-end encryption (E2EE) solutions, and models where solution providers act as merchants. Featuring insights from a solution provider (Toast), an experienced merchant (Target), and QSAC (HALOCK Security Labs), the session will provide a holistic view of the technologies and methodologies that can lead to a significant reduction in PCI scope while maintaining or enhancing security measures.