Please check back for ongoing updates.


Marc Bayerkohler
Standards Trainer

Mr. Bayerkohler has been with the PCI Security Standards Council since 2015 and brings with him 25 years of IT and IT security experience. Prior to joining, he held a number of PCI certifications, including QSA, PA-QSA, P2PE QSA, and P2PE PA-QSA. His professional background includes roles as system administrator, penetration tester, security consultant, helpdesk resource, and forensic investigator. Marc has performed hundreds of assessments worldwide for clients as small as “mom-and-pop” shops to large international financial corporations. Marc also has created and presented webinars, internal training, and spoken at conferences.


John Crossley
Chief Risk Officer, VISA Japan

Mr. Crossley is the Chief Risk Officer for Visa in Japan, reporting to the Asia Pacific Regional Risk Officer. As CRO, he is responsible for maintaining trust in Visa’s payment system and leading the Japan market in payment security.


John joined Visa in 2007 as the Japan Head of Emerging Products & Innovation, responsible for EMV, contactless, mobile payments, and e-commerce. From 2010 to 2015 John was the General Manager of Visa’s CyberSource subsidiary in Japan, overseeing all aspects of the CyberSource payment gateway and fraud management business.


Before joining Visa John held various roles at an IT security services company, based in Japan, Malaysia, Hong Kong, and the US. John holds a B.S. in Computer Science, with a minor in Japanese.


Laura K. Gray
Senior Director of Communications, PCI Security Standards Council

Ms. Gray develops and executes integrated communications strategies that inform, educate and help PCI Security Standards Council stakeholders take advantage of PCI SSC programs, resources, research and initiatives.

Hiroaki Ibayashi (002)

Hiroaki Ibayashi
Senior Director of Cyber Security, The Tokyo Organising Committee of the Olympic and Paralympic Games

Mr. Ibayashi has been assigned to The Tokyo Organising Committee of the Olympic and Paralympic Games since November 2014. Before the assignment, Mr Ibayashi was engaged in building cyber security solutions at NTT Communications.

Kazunori Iida

Kazunori Iida
General Manager, Card Security Center, Japan Consumer Credit Association (JCA)

Mr. Iida joined JCA in June 1993. Since then, he has responded to industry-related legislation, as well as provided various training for members. From 2002, he has been involved in creating a variety of industry guidelines related to credit card transactions, and has been working on countermeasures against credit card misappropriation. He has been at the current position since April 2016.


Sajal Islam
Audit Manager, UL

Mr. Islam has worked over 11 years as a security consultant in the payment industry at UL. Mr. Islam is responsible for managing various PCI assessment services. Before joining UL he worked as an academic at Monash University and Central Queensland University in Australia. He holds a Ph.D. in Information Technology from Monash University as well as an engineering degree in Computer Science and Engineering from Bangladesh University of Engineering and Technology (BUET).


Lance J. Johnson
Executive Director, PCI Security Standards Council

Mr. Johnson is responsible for driving and implementing the Council’s strategic direction. For the past five years, he served as the Chief Operating Officer at Sequent Software, Inc. where he led all corporate administration and operations. Prior to Sequent, Johnson spent more than twenty years at Visa Inc., as a senior leader directing Visa’s efforts in global risk management and security, fraud detection and control, and global payment data and device security. As an expert in payment security, Mr. Johnson holds several patents, served in the U.S. Navy, and has a Bachelor’s degree in Business Administration and Management from the University of Central Florida.]


Jeremy King
International Director, PCI Security Standards Council

Mr. King leads the Council’s efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council’s General Manager and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through all international markets, and driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification, and testing programs.


Mauro Lance
Chief Operating Officer, PCI Security Standards Council

Mr. Lance is responsible for the day to day operations, business strategy, investments and growth of the Council. He leads the creation and implementation of programs and world-class processes for certification, assessor quality management and training, critical to the Council’s mission of increasing payment card security globally through adoption of the PCI Security Standards.  Most recently, Mr. Lance held leadership positions at the MIT Media Lab and the World Wide Web Consortium, and was a founding director of the Web Foundation. He is a Fulbright Scholar and holds a Master’s degree in Business Administration from Suffolk University, and a Bachelor’s degree in Business Administration from the Pontificia Universidad Católica de Valparaiso. Mr. Lance has lived and worked in Chile, China, France, and the United States.


Troy Leach
CISSP, CISA, Chief Technology Officer, PCI Security Standards Council

Mr. Leach partners with Council representatives, Participating Organizations and industry leaders to develop com­prehensive standards and strategies to secure payment card data and its supporting infrastructure.


He is a subject matter expert on payment security and has testified on several occasions before various House and Senate Congressional committees. Mr. Leach also provides guidance and security expertise to a multitude of U.S. and international government entities as well as law enforcement. Mr. Leach serves on several advisory boards such as ANSI X9, Merchant Acquirer Committee and contributes to online communities such as BankInfoSecurity and CSO Online. Mr. Leach is often quoted in cybersecurity news stories and has been quoted by news organizations including the Washington Post and Wall Street Journal.


David McGregor
Laboratory Manager, UL

Mr. McGregor has worked in development and evaluation of payments and embedded systems for over 20 years. He has had various roles, including PTS, FIPS 140-2, DSS, PA-DSS, embedded software/ architecture. Mr. McGregor started working on PTS evaluation in 2008 and has been involved in the requirement changes from v1 through to v5. Mr. McGregor holds a double degree in Engineering and Computer science from Monash University.


Mark Meissner
Vice President, Public Relations, PCI Security Standards Council

Mr. Meissner leads the Council’s public relations efforts. In this role, Mr. Meissner works closely with the Council’s leadership team to develop communications strategies that promote the PCI Security Standards and the priority initiatives of the Council globally and with a wide range of stakeholders. Mr. Meissner brings more than two decades of experience in helping Fortune 500 companies, elected officials, trade associations and high-profile individuals navigate a myriad of communications challenges in the global marketplace. Over the years, he has worked with many high-profile clients in engaging with major news organizations such as USA Today, The Washington Post, 60 Minutes, The New York Times, The Wall Street Journal, CNN, and The Times of London.


Before joining the PCI Security Standards Council, Mr. Meissner was the Founder and President of MJM Strategies, a strategic communications consulting firm. He began his career in the world of politics. He honed his political skills working on the staffs of two fellow Hoosiers – U.S. Senator Evan Bayh (D-IN) and U.S. Representative Tim Roemer (D-IN). He served as Campaign Manager for Representative Roemer’s successful 1994 re-election campaign. Mr. Meissner was a candidate for U.S. Congress in 2002, finishing second among a crowded field of five better-known candidates for Indiana’s 2nd Congressional District. His underdog campaign was hailed by the media as “relentless” and “impressive.”


Mr. Meissner teaches as an adjunct professor at The George Washington University Graduate School of Political Management (GSPM), where he has served on the faculty for more than a decade. He holds a master’s degree from The American University and a bachelor’s degree from Indiana University.


Daigo Mori
Secretariat, Japan Card Data Security Consortium (JCDSC) (NIPPON OFFICE SYSTEMS LTD.)

Mr. Mori has been in charge of the secretariat since 2009 when JCDSC was founded. JCDSC consists of more than 220 companies(QSA, ASV, Acquirer, PSP, POS vendor, solution provider, merchant and so on).Questions and consultations on PCI DSS come into JCDSC from merchants as everyday, and he sends answers. In addition, He plans and operates many seminars.


Riotaro Okada
Executive Researcher, Asterisk Research, Inc.

Mr. Okada has been the co-leader of OWASP Japan since its founding, and a contributor to the Japanese edition of the OWASP Top 10 and OWASP Proactive Controls. Mr. Okada holds an MBA from Business BreakThrough University (2009).


Thanut Pimhataivoot
PCI ISA, ISMS Provisional Auditor, SANS Lethal Forensicator
Team Leader, IT Compliance & Audit, NTT Data (Thailand) Co., Ltd.

Mr. Pimhataivoot is a security professional currently leading and managing a compliance and audit program and has been working closely with several QSAs spanning multiple QSA companies. Leading the company through multiple PCI DSS and PCI PIN security audits at a relatively young age, Mr. Pimhataivoot brings a fresh perspective into the compliance program. Mr. Pimhataivoot has a wide hand-on experience in various fields including audit, compliance, incident response, cyber forensics, and risk management.


Swati Sharma
Senior Specialist Security/PCI QSA, BT Plc.

Ms. Sharma is an Information Security professional with over a decade of experience in Compliance, PCI DSS, HIPAA, Privacy & Risk Management. Ms. Sharma is always keen to explore solutions to complex problem areas and has dealt with critical compliance issues in cloud and large global environments. Ms. Sharma has authored articles in many security magazines and speaks on IS platforms. She holds a Masters degree in Information Security from IIIT and has many IS audit certifications.

Hiroshi Shirai_pic (1)

Hiroshi Shirai
Manager, Promotion Section1
Customer Care & Operation Division
SoftBank Corp

Mr. Shirai is mainly engaged in development of policies for merchant shop locations. He is responsible for overall promotion of PCIDSS compliance projects and developing procedures for shop locations and call centers.


Satoshi Shoda
Director, Commerce Supervisory Division, Japan’s Ministry of Economy, Trade and Industry (METI)

Satoshi Shoda serves as Director, Commerce Supervisory Division, Commerce and Service Industry Policy Group, for Japan’s Ministry of Economy, Trade and Industry (METI). He has served in a variety of departments within METI for more than 20 years, including roles in the Agency for Natural Resources and Energy; Small and Medium Enterprise Agency; and Manufacturing Industries Bureau. Mr. Shoda is a graduate of the University of Tokyo’s Faculty of Law.


Raymond Simpson
Regional Director – APAC, Foregenix

Mr. Simpson has close to 20 years Information Security experience and has spent the last 12 years working in the Payment Card Industry. Having performed PCI-related consultancy in 35 countries, he’s assisted scores of clients to meet the PCI requirements in a pragmatic and practical way. Mr. Simpson a firm advocate of PCI DSS and sees it as an “essential practice”.


Naoaki Suda
Security Consultant, NRI SecureTechnologies, Ltd.

Mr. Suda joined NRI SecureTechnologies in 2014. Before that, he spent more than 8 years as an Account Manager at Hewlett-Packard and migrated various Mission Critical Systems including Japan’s largest payment system as a project leader. Mr. Suda has very deep knowledge of cryptographic key management. On top of that, Mr. Suda was the first Japanese certified as P2PE QSA. Now as a top P2PE expert in Japan, he is responsible for developing P2PE/TSP/3DS businesses in NRI SecureTechnologies.


Yoichi Ueno
Representative Director President, International Certificate Authority of Management System Co., Ltd.

Mr. Ueno is a QSA professional assessment expert with over 9 years Information Technology engineering experience and over 15 years recognition around the Information/Payment Security industry. Since 2008, Mr. Ueno has made significant contributions to PCI enlightenment activities with domestic major Payment Service Provider (PSP) in Japan.


Gill Woodcock
Senior Director of Certification Programs, PCI Security Standards Council

Ms. Woodcock is Senior Director of Certification Programs for the PCI Security Standards Council. Her role encompasses operational management of the Council’s existing programs (including QSA, PA-QSA, ISA, ASV, PFI, PCIP and QIR) as well as developing new certifications programs. Ms. Woodcock works closely with the Standards Development, Training and Assessor Quality Management teams within the Council. Ms. Woodcock has been with PCI SSC since February 2010 and has over 20 years of experience in payment cards and information security.