Please check back for ongoing updates.


John Crossley
Chief Risk Officer, VISA Japan

Mr. Crossley is the Chief Risk Officer for Visa in Japan, reporting to the Asia Pacific Regional Risk Officer. As CRO, he is responsible for maintaining trust in Visa’s payment system and leading the Japan market in payment security.


John joined Visa in 2007 as the Japan Head of Emerging Products & Innovation, responsible for EMV, contactless, mobile payments, and e-commerce. From 2010 to 2015 John was the General Manager of Visa’s CyberSource subsidiary in Japan, overseeing all aspects of the CyberSource payment gateway and fraud management business.


Before joining Visa John held various roles at an IT security services company, based in Japan, Malaysia, Hong Kong, and the US. John holds a B.S. in Computer Science, with a minor in Japanese.


Hiroaki Ibayashi
Senior Director of Cyber Security, The Tokyo Organising Committee of the Olympic and Paralympic Games

Mr. Ibayashi has been assigned to The Tokyo Organising Committee of the Olympic and Paralympic Games since November 2014. Before the assignment, Mr Ibayashi was engaged in building cyber security solutions at NTT Communications.


Sajal Islam
Audit Manager, UL

Mr. Islam has worked over 11 years as a security consultant in the payment industry at UL. Mr. Islam is responsible for managing various PCI assessment services. Before joining UL he worked as an academic at Monash University and Central Queensland University in Australia. He holds a Ph.D. in Information Technology from Monash University as well as an engineering degree in Computer Science and Engineering from Bangladesh University of Engineering and Technology (BUET).


Lance J. Johnson
Executive Director, PCI Security Standards Council

Mr. Johnson is responsible for driving and implementing the Council’s strategic direction. For the past five years, he served as the Chief Operating Officer at Sequent Software, Inc. where he led all corporate administration and operations. Prior to Sequent, Johnson spent more than twenty years at Visa Inc., as a senior leader directing Visa’s efforts in global risk management and security, fraud detection and control, and global payment data and device security. As an expert in payment security, Mr. Johnson holds several patents, served in the U.S. Navy, and has a Bachelor’s degree in Business Administration and Management from the University of Central Florida.]


Jeremy King
International Director, PCI Security Standards Council

Mr. King leads the Council’s efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council’s General Manager and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through all international markets, and driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification, and testing programs.


Mauro Lance
Chief Operating Officer, PCI Security Standards Council

Mr. Lance is responsible for the day to day operations, business strategy, investments and growth of the Council. He leads the creation and implementation of programs and world-class processes for certification, assessor quality management and training, critical to the Council’s mission of increasing payment card security globally through adoption of the PCI Security Standards.  Most recently, Mr. Lance held leadership positions at the MIT Media Lab and the World Wide Web Consortium, and was a founding director of the Web Foundation. He is a Fulbright Scholar and holds a Master’s degree in Business Administration from Suffolk University, and a Bachelor’s degree in Business Administration from the Pontificia Universidad Católica de Valparaiso. Mr. Lance has lived and worked in Chile, China, France, and the United States.


Troy Leach
CISSP, CISA, Chief Technology Officer, PCI Security Standards Council

Mr. Leach partners with Council representatives, Participating Organizations and industry leaders to develop com­prehensive standards and strategies to secure payment card data and its supporting infrastructure.


He is a subject matter expert on payment security and has testified on several occasions before various House and Senate Congressional committees. Mr. Leach also provides guidance and security expertise to a multitude of U.S. and international government entities as well as law enforcement. Mr. Leach serves on several advisory boards such as ANSI X9, Merchant Acquirer Committee and contributes to online communities such as BankInfoSecurity and CSO Online. Mr. Leach is often quoted in cybersecurity news stories and has been quoted by news organizations including the Washington Post and Wall Street Journal.


David McGregor
Manager Melbourne PTS Lab, UL

Mr. McGregor has worked in development and evaluation of payments and embedded systems for over 20 years. He has had various roles, including PTS, FIPS 140-2, DSS, PA-DSS, embedded software/ architecture. Mr. McGregor started working on PTS evaluation in 2008 and has been involved in the requirement changes from v1 through to v5. Mr. McGregor holds a double degree in Engineering and Computer science from Monash University.


Mark Meissner
VP, Public Relations, PCI Security Standards Council

Mr. Meissner leads the Council’s public relations efforts. In this role, Mr. Meissner works closely with the Council’s leadership team to develop communications strategies that promote the PCI Security Standards and the priority initiatives of the Council globally and with a wide range of stakeholders. Mr. Meissner brings more than two decades of experience in helping Fortune 500 companies, elected officials, trade associations and high-profile individuals navigate a myriad of communications challenges in the global marketplace. Over the years, he has worked with many high-profile clients in engaging with major news organizations such as USA Today, The Washington Post, 60 Minutes, The New York Times, The Wall Street Journal, CNN, and The Times of London.


Before joining the PCI Security Standards Council, Mr. Meissner was the Founder and President of MJM Strategies, a strategic communications consulting firm. He began his career in the world of politics. He honed his political skills working on the staffs of two fellow Hoosiers – U.S. Senator Evan Bayh (D-IN) and U.S. Representative Tim Roemer (D-IN). He served as Campaign Manager for Representative Roemer’s successful 1994 re-election campaign. Mr. Meissner was a candidate for U.S. Congress in 2002, finishing second among a crowded field of five better-known candidates for Indiana’s 2nd Congressional District. His underdog campaign was hailed by the media as “relentless” and “impressive.”


Mr. Meissner teaches as an adjunct professor at The George Washington University Graduate School of Political Management (GSPM), where he has served on the faculty for more than a decade. He holds a master’s degree from The American University and a bachelor’s degree from Indiana University.


Riotaro Okada
Executive Researcher, Asterisk Research, Inc.

Mr. Okada has been the co-leader of OWASP Japan since its founding, and a contributor to the Japanese edition of the OWASP Top 10 and OWASP Proactive Controls. Mr. Okada holds an MBA from Business BreakThrough University (2009).


Thanut Pimhataivoot
PCI ISA, ISMS Provisional Auditor, SANS Lethal Forensicator
Team Leader, IT Compliance & Audit, NTT Data (Thailand) Co., Ltd.

Mr. Pimhataivoot is a security professional currently leading and managing a compliance and audit program and has been working closely with several QSAs spanning multiple QSA companies. Leading the company through multiple PCI DSS and PCI PIN security audits at a relatively young age, Mr. Pimhataivoot brings a fresh perspective into the compliance program. Mr. Pimhataivoot has a wide hand-on experience in various fields including audit, compliance, incident response, cyber forensics, and risk management.


Swati Sharma
Senior Specialist Security/PCI QSA, BT Plc.

Ms. Sharma is an Information Security professional with over a decade of experience in Compliance, PCI DSS, HIPAA, Privacy & Risk Management. Ms. Sharma is always keen to explore solutions to complex problem areas and has dealt with critical compliance issues in cloud and large global environments. Ms. Sharma has authored articles in many security magazines and speaks on IS platforms. She holds a Masters degree in Information Security from IIIT and has many IS audit certifications.


Hiroshi Shirai


Raymond Simpson
Regional Director – APAC, Foregenix

Mr. Simpson has close to 20 years Information Security experience and has spent the last 12 years working in the Payment Card Industry. Having performed PCI-related consultancy in 35 countries, he’s assisted scores of clients to meet the PCI requirements in a pragmatic and practical way. Mr. Simpson a firm advocate of PCI DSS and sees it as an “essential practice”.


Naoaki Suda
Security Consultant, NRI SecureTechnologies, Ltd.

Mr. Suda joined NRI SecureTechnologies in 2014. Before that, he spent more than 8 years as an Account Manager at Hewlett-Packard and migrated various Mission Critical Systems including Japan’s largest payment system as a project leader. Mr. Suda has very deep knowledge of cryptographic key management. On top of that, Mr. Suda was the first Japanese certified as P2PE QSA. Now as a top P2PE expert in Japan, he is responsible for developing P2PE/TSP/3DS businesses in NRI SecureTechnologies.


Yoichi Ueno
Representative Director President, International Certificate Authority of Management System Co., Ltd.

Mr. Ueno is a QSA professional assessment expert with over 9 years Information Technology engineering experience and over 15 years recognition around the Information/Payment Security industry. Since 2008, Mr. Ueno has made significant contributions to PCI enlightenment activities with domestic major Payment Service Provider (PSP) in Japan.