Please check back for ongoing updates.


Andrew Henwood
CEO, Foregenix


Mr. Henwood is the CEO of Foregenix, a cyber security consultancy and solution provider. Foregenix is a PCI QSA, PA-QSA, P2PE and PFI certified company and provides assessment services and innovative, baked-in cyber security solutions globally.


Mr Henwood is a PCI security industry entrepreneur and is active in evangelising and recommending cyber security best practices through experience garnered from over 18 years of work in the field.


Mr Henwood has been involved within the payments industry since 2001, where he assisted in developing the first versions of the payment brand security standards in Europe. Mr Henwood is a frequent public speaker on cyber security topics.


Ambassador (Retired) Malcolm Grant Ferguson (OMAA)


Malcolm served as Foreign Service Officer and Ambassador – personal rank of Chief Director, managing Embassy while on posting abroad and Acting as Foreign Policy Adviser and senior manager for Regional Divisions of the Foreign Ministry.

Since Retiring from the Foreign Service he has founded a Financial and Business Consultancy. He works with inter alia with Brenthurst Foundation; US Foreign Trade Council in New York. He serves as a Political Risk Analyst and Agricultural Commodities Sourcing Adviser to Emerging Markets Focus Inc., VKB Nu-Pro Commodities, ECTP(BTG Pactual) Commodities and Southern African Representative of TerraWealth Trader SA de CV (Mexico) a specialised White Maize Trading Company. He is also a Regional Adviser to McDonald Pelz of Colorado USA regarding grain trading in Africa and Middle East region and a financial consultant to various South African corporations on Africa business and security requirements.


Jeremy King
International Director, PCI Security Standards Council


Mr. King leads the Council’s efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council’s General Manager and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through all international markets, and driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification, and testing programs.


Mauro Lance
Chief Operating Officer, PCI Security Standards Council


Mr. Lance is responsible for the day to day operations, business strategy, investments and growth of the Council. He leads the creation and implementation of programs and world-class processes for certification, assessor quality management and training, critical to the Council’s mission of increasing payment card security globally through adoption of the PCI Security Standards.  Most recently, Mr. Lance held leadership positions at the MIT Media Lab and the World Wide Web Consortium, and was a founding director of the Web Foundation. He is a Fulbright Scholar and holds a Master’s degree in Business Administration from Suffolk University, and a Bachelor’s degree in Business Administration from the Pontificia Universidad Católica de Valparaiso. Mr. Lance has lived and worked in Chile, China, France, and the United States.


Troy Leach
CISSP, CISA, Chief Technology Officer, PCI Security Standards Council


In his role, Mr. Leach partners with Council representatives, Participating Organizations and industry leaders to develop comprehensive standards and strategies to secure payment card data and the supporting infrastructure. He is a congressional subject matter expert on payment security and the current chairman of the Council’s Standards Committee. Prior to joining the PCI Council, Mr. Leach has held various positions in IT management, software development, systems administration, network engineering, security assessment, forensic analytics and incident response for data compromise. Mr. Leach holds a Master of Science in Telecommunications & Network Management as well as a graduate degree in Information Security Management from Syracuse University.


David Martin-Woodgate
Commercial Director, Forensics & IR


David is a world class consultant that has focused on high profile projects for the UK Armed Forces, Government agencies and leading commercial organisations. David specialises in business consulting, payments, compliance, breach clean-up, enterprise, information assurance, corporate/information security and risk in sector leading organisations across many business verticals and markets.


David’s early career focused upon extending mobile data communication systems to deployed personnel, as part of multiple UK Armed Forces operational deployments, including provisioning network administration / engineering / security within secure UK and Coalition environments. To further his career, David then progressed into the training consultancy environment, providing leading standard training within the information and cyber security arenas (CISSP, SSCP, Security+, EC-CEH, EC-NSA and BCS ISMP).


David then moved into the management within the Risk-X, Forensics and IR Team, as an Associate Director and remains the operational focus for the Forensics & Incident Response capability.


Mark Meissner
VP, Public Relations, PCI Security Standards Council


Mr. Meissner works closely with the Council’s leadership team to develop communications strategies that promote the PCI Security Standards and the priority initiatives of the Council globally and with a wide range of stakeholders. Mr. Meissner brings more than two decades of experience in helping Fortune 500 companies, elected officials, trade associations and high profile individuals navigate a myriad of communications challenges in the global marketplace. Over the years Mark has worked with many high-profile clients in engaging with major news organizations such as USA Today, The Washington Post, 60 Minutes, The New York Times, The Wall Street Journal, CNN, and The Times of London.


Meissner began his career in the world of politics. Mark was a candidate for U.S. Congress in 2002, finishing second among a crowded field of five better known candidates for Indiana’s 2nd Congressional District. Before joining the PCI Security Standards Council, Meissner was the Founder and President of MJM Strategies, a strategic communications consulting firm.


Meissner teaches as an Adjunct Professor at The George Washington University Graduate School of Political Management (GSPM) where he has served on the faculty for more than a decade. Meissner holds a Master’s Degree from The American University and a Bachelor’s Degree from Indiana University.


Christopher Novak
Director, Investigative Response, Verizon RISK Team


Mr. Novak is a co-founder and the Director of the Verizon Investigative Response Unit – a division of the Verizon RISK Team. He is an internationally recognized expert in the field of investigative response and computer forensics. He has been involved with information security for over 15 years. He has assisted corporations, government agencies, and attorneys with all matters involving computer forensics, fraud investigations, and crisis management. He has testified as an expert witness in various matters and before such bodies as the Supreme Court of the State of New York.  He has also briefed United States congressional committees such as Senate Banking, House Financial Services, Senate Commerce, House Energy & Commerce, Senate Judiciary, House Homeland Security and Senate Homeland Security & Government Affairs.  He has been an advisor on dozens of high-profile intrusion and data breach investigations around the globe. He works closely with local, state and federal law enforcement agencies as well as joint investigative operations coordinated with foreign law enforcement.


Mr. Novak has worked in various consulting positions within Verizon; from individually contributing to a larger tactical response team to his current position, where he manages a global team of highly skilled consultants. Each of these teams around the world maintains experts in various fields of study and practice, such as forensic analysis, malware reverse engineering, threat intelligence analysis and threat actor attribution, among others. He specializes in high-level crisis and emergency response matters and is regularly consulting with executives from Fortune 500 companies with regard to pre-planning for such situations as well as leading active crisis response matters and liaising with external partners.


Mr. Novak is an active public speaker, discussing various topics ranging from high-level best practices to executive-level crisis management. He has been a contributing member of the Verizon Data Breach Investigations Report since its first publication in 2008 and has been featured in such media outlets as The Wall Street Journal, ABC News, American Banker, and many others.  He is an active member among multiple industry trade groups and a frequent guest lecturer at universities. He also serves as an advisor for many industry-related associations in an effort to further promote cybersecurity awareness and education as well as working closely with organizations as it relates to various policy initiatives on the topic of cybersecurity.


He holds a Bachelor of Science degree in Computer Engineering from Rensselaer Polytechnic Institute.


Stephen W. Orfei
General Manager, PCI Security Standards Council


Mr. Orfei leads the PCI Security Standards Council in its mission to educate, empower and protect payment data globally, working closely with merchants, acquirers, financial institutions, security practitioners, law enforcement and other key stakeholders across the global payment eco-system.


Mr. Orfei is a recognized industry expert in global payment platforms, e-commerce, mobile payments, transit and cybersecurity. He is called on regularly for his expertise by government, law enforcement, industry groups and the media. Mr. Orfei has testified before the U.S. Congress as a cybersecurity expert, served as a representative of the United States at the G7 Roma Lyon group of world leaders on card crimes, participated in U.S. Presidential Cybersecurity Summits, and has played a leading role in global Acquirer Forums and PCI Community Meetings around the world.  Orfei regularly meets with top U.S. government officials from a range of agencies to discuss cybersecurity and provide strategic guidance.


A holder of several payments industry patents and awards, Mr. Orfei’s career spans senior posts at several high-profile companies including MCI International, a global telecommunications corporation, where as Director of International Marketing, he oversaw marketing for international business with direct revenue responsibility for over $400 million. Following his successful 13 years of service at MCI International, Orfei spent 14 years at MasterCard Worldwide, a global payments & technology company as Senior Vice-President Emerging Payment Platforms.


In his role at MasterCard, Orfei managed all aspects of development, implementation, and deployment of emerging payment platforms across Global Products and Services. Among his many achievements, Orfei led the entrepreneurial initiative to design, build and demonstrate (NYC-MTA) the next generation of Automated Fare Collection Systems for the transit industry.  The initiative was awarded the prestigious NYU Rubin Center Transportation Industry Innovation Award.


Prior to his leadership of the PCI Security Standards Council, Mr. Orfei served as a security consultant where he led a highly credentialed security team to defend “high value targets” from cyber-attacks.


Orfei is a former U.S. Marine who is active with veteran related charities including the Semper Fi Fund and the Wounded Warrior Project.


Walter Volker
Chief Executive Officer – Pasa


Walter is the Chief Executive Officer of the Payments Association of South Africa (PASA), which he joined in March 2008. Prior to this he worked for Absa Bank (a member of Barclays) for 17 years, the last decade of which he established and headed up the Group Payments function – responsible for the coordination and management of all payment systems in the banking group.


During his career in banking and payment systems, Walter played a key and leading role in a number of payments innovations in South Africa; these include the introduction of debit cards in the late 1990s, the


migration to EMV chip & PIN technology, the launching of a real-time inter-bank EFT service (called Real Time Clearing), the introduction of an Early Debit Order processing service, and a number of others.


Over the years he has served on a number of boards and committees, including the BankservAfrica board, AllPay board, PASA Council, MasterCard Global Debit Board of Advisors, MasterCard Chip Expert Group, EMVCo Board of Advisors, SWIFT National Member Group, SA Reserve Bank Strategy Body, the NPS Act Standing Committee, and others. He is also a member of the International Council of Payment Association Chief Executives (ICPACE). Walter holds a Bachelor of Science (UP) and a Masters in Business  Leadership (UNISA SBL) (cum laude) degree, as well as post-graduate qualifications from IMD in Lausanne, Switzerland, and the Gordon Institute of Business Science (GIBS) in Johannesburg.