Marc Bayerkohler

Standards Trainer, PCI Security Standards Council

Before joining the PCI Security Standards Council as a Standards Trainer, Marc spent ten years doing PCI assessments as a QSA, PA-QSA, QSA (P2PE), and PA-QSA (P2PE). He has worn a number of hats over the years doing work such as security assessments, pentesting, SOX audits, network security, forensics, UNIX system administration, and manning the helpdesk. Marc enjoys talking about encryption and believes he has the largest collection of Spanish comic books in Colorado.

Marc Bayerkohler's Events

Assessor Session

Date: Tuesday, September 10

Presented by: Marc Bayerkohler, Standards Trainer, PCI Security Standards Council; Lauren Holloway, Director of Data Security Standards, PCI Security Standards Council; Matt O’Connor, Director, AQM, PCI Security Standards Council and Travis Powell, Director, Training Programs, PCI Security Standards Council

Assessor Session (QSAs, ISAs, ASVs, PFIs, QPAs, CPSAs, SSF, P2PE, 3DS assessors only): As an active assessor in the PCI SSC programs, join us for a special session to hear industry best practices, recent case studies, Council updates, live Q&A and networking opportunities with your peers.

Advancing Payment Security: Comprehensive Strategies for Reducing PCI Scope

Date: Wednesday, September 11

Track One

Moderated by: Marc Bayerkohler, Standards Trainer, PCI Security Standards Council

Panelists: Tony James, ISA, CISSP, CISA, C-RISC, Director of Cyber Security, Target Corporation; Eric Kitchens, Principal, Technical Governance, Toast Inc. and Viviana Wesley, PCI QSA, ISO 27001 Auditor, CISM. Principal Consultant, Governance, Compliance and Engineering Services, HALOCK Security Labs

The continuous evolution of payment security strategies aims at enhancing the protection of cardholder data and reducing the PCI scope for merchants. This panel discussion seeks to illuminate the spectrum of solutions that effectively minimize merchant exposure to cardholder data, including the established point-to-point encryption (P2PE), innovative end-to-end encryption (E2EE) solutions, and models where solution providers act as merchants. Featuring insights from a solution provider (Toast), an experienced merchant (Target), and QSAC (HALOCK Security Labs), the session will provide a holistic view of the technologies and methodologies that can lead to a significant reduction in PCI scope while maintaining or enhancing security measures.

Security Is a Continuous Process

Date: Wednesday, September 11

Track One

Presented by: Marc Bayerkohler, Standards Trainer, PCI Security Standards Council

Join us on a journey of discovery as we explore a fictional Mesozoic themed park, and the security failings that led to its demise.  We will examine and explore how the application of requirements from across the PCI Standards may have saved the day as well as the guests!