
PCI Standards
The Payment Card Industry Data Security Standard (PCI) is a set of security standards created by the major credit card companies (American Express, Discover Financial Services, JCB, MasterCard Worldwide, and Visa International) to protect their customers from increasing identity theft and security breaches.
The Payment Card Industry Data Security Standard (PCI) is a set of security standards created by the major credit card companies (American Express, Discover Financial Services, JCB, MasterCard Worldwide, and Visa International) to protect their customers from increasing identity theft and security breaches.


Joel Rising
Solutions Architect, Bit9
Joel Rising has 25 years' experience with information technology. After 10 years as an IT Guy at university, where he was consider a security innovator and good neighbor, he transitioned to enterprise security startups, focused primarily on information and endpoint. Joel leads the Solutions Architects Team at Bit9, assigned to major enterprise accounts, and responsible for technical best practices. He cares about connecting people and technology through the medium of process, believing that technology can win the day but that the human element is what changes the game.

Christopher Strand
Sr. Director, Compliance and Governance Programs, Carbon Black
Strand leads Carbon Black's IT governance, audit and compliance programs. With more than 20 years of information technology and compliance experience, he oversees the development of enterprise network and application security solutions that help organizations deploy positive security to maintain and improve their compliance posture. Previously, Strand held security/compliance positions at Trustwave, Tripwire, EMC/RSA, and Compuware. A PCI Professional (PCIP) and trained Quality Security Assessor (QSA), he also has been certified on and is proficient with other regulatory disciplines including HIPAA, North American Electrical Reliability Corporation (NERC) and Gramm-Leach-Bliley Act (GLBA). Strand regularly speaks about security and compliance issues and best practices on webinars and at industry conferences. He has authored several white papers, published articles in security industry journals, and is frequently quoted by leading media outlets.

Sanjay Raja
Director - Product Marketing, HP Enterprise Security
Sanjay Raja is responsible for Marketing of TippingPoint Network and Cloud Security solutions. He has over 12 years of experience in various Product Marketing, Product Management, and Alliances roles in IT Security, Servers and Storage and has been in the IT industry for the last 18 years. In addition he has authored several papers and presented at various industry events on security, compliance and network stress testing.

John Rostern
Managing Director - Northeast/Southeast Region, Coalfire Systems
John Rostern has more than 29 years of experience in audit, information security and technology. His areas of expertise include IT audit, technology risk assessment and management, IT strategic planning, architecture, information security, operations, applications development, telecommunications, networking, data center design and business continuity planning. He is a subject matter expert in the areas of data loss prevention, intrusion detection, encryption and incident response.

Alisdair Faulkner
Chief Products Officer, ThreatMetrix
Faulkner is a technology entrepreneur who has nearly two decades of experience building products and delivering mission-critical technologies that are run by the world's most trusted brands. Faulkner is a noted industry expert in issues relating to online fraud, cybercrime, identity theft, information security and networking technology. As chief products officer and co-founder at ThreatMetrix, he is responsible for product management and strategy. Prior to ThreatMetrix, Faulkner was a founder and head of products and business development for NetPriva, a leading network performance software provider, acquired by Expand Networks, now Riverbed. Prior to NetPriva, he was a senior consultant at Accenture in their e-commerce practice.

Andre Bakken
Director - Product Management, Ipswitch
Andre Bakken is Director of Product Management of Ipswitch's Level 5 Products. His secured and encrypted Managed File Transfer applications have helped companies comply with PCI for more than four years. Mr. Bakken is responsible for the roadmap, strategy and requirements for Ipswitch's enterprise-class applications.
Before joining Ipswitch, Mr. Bakken was Director of Product Management for secured Managed File Transfer products at Axway and Tumbleweed. Mr. Bakken comes to Ipswitch with over 16 years of successful product management and product marketing experience at secured, enterprise-class and consumer companies like Macrovision, Alphablox, Hyperion and Microsoft (Great Plains Software). Mr. Bakken holds a bachelor's degree in computer engineering from the University of Arizona

Anton Chuvakin
Research Vice President, Gartner GTP Security and Risk Management Strategies
As Research VP at Gartner, Chuvakin specializes in projects involving data loss prevention, threat intelligence, vulnerability assessment and vulnerability management, security monitoring of public cloud assets, network forensics and denial of service (DoS/DDoS) protection. Before joining Gartner, his job responsibilities included security product management, research, competitive analysis, PCI-DSS compliance and SIEM development and implementation. He is the author of two books, "Security Warrior" and "PCI Compliance," and was a contributor to other industry resources, including "Know Your Enemy II" and "Information Security Management Handbook."

Tom Field
Senior Vice President, Editorial, ISMG
Field is responsible for all of ISMG's 28 global media properties and its team of journalists. He also helped to develop and lead ISMG's award-winning summit series that has brought together security practitioners and industry influencers from around the world, as well as ISMG's series of exclusive executive roundtables.

Kostas Georgakopoulos
Global CTO & CISO, Mondelez International
Kostas Georgakopoulos is VP & Head of Information Security at the Bank of China, USA and responsible for developing and implementing security standards, procedures and guidelines in order to effectively protect the Bank's information and systems and address compliance with FFIEC & PCI security standards. Previously, Kostas was the VP of Information Security Governance at Deutsche Bank, New York, where he managed the information security governance program and provided senior management with a clear and concise view of IT risks.

Mel Shakir
CTO, NitroSecurity
Mel Shakir serves the office of the CTO at NitroSecurity where he brings over 15 years of experience in software development & management, information security and database technologies. He is responsible for developing and implementing NitroSecurity's overall technology vision and roadmap, including next generation application and database security management solutions. Previously, Mel architected and developed advanced database security solutions as CTO of Rippletech, which was acquired by NitroSecurity in 2008.
Matthew Speare
Executive Vice President & Enterprise CIO, Regions Bank
Speare joined Regions in 2013 and serves as the head of governance and integration. Regions is a top U.S. bank-holding company headquartered in Birmingham, Ala., with $117 billion in assets, operating approximately 1,700 banking offices in 16 states. In this role, Speare has responsibility for information security; check, ATM/debit, and credit card fraud operations; and systems integration for consumer, business and commercial banking groups. Prior to assuming his current role in 2013, Speare was the chief technology officer for M&T Bank, an $82 billion financial institution based out of Buffalo, N.Y.

Preetham Gowda
CIO, SecureNet Payment Solutions
As CIO, Mr. Gowda is responsible for the strategic positioning of SecureNet's products and services as innovative, high value solutions. He leads SecureNet's Team to deliver payment processing solutions that are more convenient, reliable and secure. Over the years with SecureNet, he has implemented a model technology program and managed a host of key technology initiatives that sharpened market and customer focus, added value to product offerings, enhanced corporate performance, and increased organizational efficiency and team effectiveness.

Ken Harris
Vice President, MTXEPS Inc.
Ken Harris leverages 17 years of Electronic Payment Systems knowledge, in a multitude of roles. From Project Management, System Operations, Product Management, Director of Development, Vice President of Retail, Vice President Fraud Solutions and Corporate infrastructure to Vice President at MTXEPS Inc. His experience grew at one of the nation's largest grocery retailers and transitioned into the industry's leading payment switch and fraud solution provider, where he developed expertise in end to end electronic payment systems. He has in depth knowledge of systems, security and process in payments.

Kim Singletary
Director of OEM & Compliance Solutions, Solidcore Systems
Kim has 15 years of Product Management roles with companies that provide IT services for Enterprise and Financial companies including traditional datacenter services, MSSP and SAAS environments. Her expertise has been in developing and growing security, compliance and managed services for the Fortune 500 for companies that include SAVVIS Communications, Frontier Communications, Global Crossing, Dorado and Siemens.

Ed Rarick
PCI Evangelist at Tripwire, Inc.
With decades of industry experience working hand in hand with retailers, payment card processors, hoteliers and restaurateurs, Ed has an enterprise-wide understanding of the issues facing businesses that must comply with the PCI standard.

Dave Taylor
Founder, PCI Knowledge Base
Dave Taylor founded the PCI Knowledge Base and before that the PCI Alliance. He has worked with many leading edge companies as an analyst for Gartner for 14 years. The PCI Knowledge Base is a Research Community which shares information and knowledge to help merchants, banks and other organizations achieve PCI compliance.

Tom Wills
Director, Ontrack Advisory Group
Wills is a Fintech architect and strategist specializing in payments, security and digital identity. For more than two decades, he has guided organizations such as Visa, Bank of America, Wells Fargo Bank, UnionBank of the Philippines, VeriFone, Intuit, Richemont, Ping Identity and multiple startups to build and secure their digital platforms. Career highlights of Wills include leading the development, launch and operation of Visa's core transaction fraud management services and VeriFone's digital wallets, merchant e-commerce platforms and payment gateways, as well as secure platform/product design for Visa's prepaid card management system, national mobile payment networks in the Dominican Republic (tPago), Bangladesh (bKash), a Philippines' major credit card issuer and the Manila public transit network. He has also served as a CISO for CrossCheck and Intuit subsidiary PayCycle.com, and as a mentor for StartupBootcamp FinTech and four Asian payment startups. In addition, he is a tenured speaker and media commentator on security in digital transactions. He holds both CISSP and CFE certifications. A resident of Singapore, Tom has also lived and worked in the US, UK, UAE, Philippines and Dominican Republic.

John Earl
CTO and Vice President, The PowerTech Group
John Earl is Vice President and Chief Technology Officer, as well as a co-founder, of The PowerTech Group, a Seattle area software company that specializes in System i (AS/400) security. He has over 25 years experience with IBM midrange systems and security, has published numerous articles and columns for industry magazines, and serves as the Subject Matter Expert (SME) for Security for the IBM System i user group COMMON. A highly regarded speaker on OS/400 security, Earl has presented hundreds of System i security sessions at industry conferences and user groups all over the world. He is a three time winner of COMMON's Speaker Excellence award, and has also served on the board of directors of COMMON U.S.

Chris Peterson
Founder/CTO, LogRhythm
Chris Petersen brings a unique and diverse background in information security, audit, product development, and product management to his role as Chief Technology/Founder of LogRhythm. As a Senior Consultant with Price Waterhouse (now PriceWaterhouseCoopers), he provided information assurance services to Fortune 500 clients and developed the Price Waterhouse Enterprise Security Architecture System. At Ernst & Young, Chris led an engineering group in developing one of the first managed security services and eSecurityOnline.com, a leading information assurance portal. Chris was also among the first twenty employees at Counterpane Internet Security, where he made significant contributions to the technical and business aspects of Counterpane's pioneering managed security monitoring service. Prior to founding LogRhythm, Chris was responsible for product marketing at Enterasys Networks, helping to drive the Dragon Intrusion Detection System to a market leading position. Chris has spoken at numerous conferences, been quoted in numerous publications and was a faculty member with the Institute for Applied Network Security.

Kevin Gillis
VP - Product Management, Ipswitch
Gillis joined Ipswitch in 2003 and brings over 16 years of product management experience in software technology companies. Gillis is responsible for setting worldwide product strategy and overseeing the development of the secure file transfer product lines. Prior to joining Ipswitch, Gillis held senior product management positions at both public and venture funded software companies including IBM, Lotus, The Learning Company, Trellix and Into Networks. Gillis has a B.S. degree in Industrial Systems Engineering, with Honors, from the Georgia Institute of Technology. Kevin is a member of HIMSS, PCI Security Vendor Alliance and PCI Security Standards Council. He co-authored the Ipswitch File Transfer Compliance Series.

Greg Shields
IT consultant
Greg Shields, Microsoft MVP in Terminal Services, is an independent author, speaker, and IT consultant based in Denver, Colorado. With nearly 15 years of experience in information technology, Greg has developed extensive experience in systems administration, engineering, and architecture specializing in Microsoft, Citrix, and VMware technologies. Greg is a Contributing Editor for both Redmond Magazine, Microsoft Certified Professional Magazine, and Virtualization Review Magazine authoring three regular columns along with numerous feature articles, webcasts, and white papers. He is also Resident Editor for Realtime Publishers' Windows Server Community. Greg is a highly sought-after instructor and speaker, teaching system and network troubleshooting curriculum for TechMentor Events, a twice-annual IT conference, and producing computer-based training curriculum for CBT Nuggets on numerous topics. Greg is a triple Microsoft Certified Systems Engineer (MCSE) with security specialization.

Geoff Hogan
SVP - Business Development & Product Management/Marketing, Imprivata
Geoff Hogan has 20 years of extensive business development, marketing, sales and general management experience in the storage, data management, and software infrastructure market segments with both large organizations and start-ups.
Prior to joining Imprivata, Geoff was the Executive Vice President of Corporate Development and Alliances at Princeton Softech, where he was instrumental in defining and executing the company's strategic database archiving business strategy.
Prior to Princeton Softech, Geoff has held senior level positions with HighGround Systems (acquired by Sun Microsystems), Quantum Corp, and Digital Equipment Corp.

Bob Flinton
VP Product Marketing, netForensics
Mr. Flinton has over 15 years experience in IT and information security marketing. Prior to netForensics, Bob held product management and marketing positions at Sterling Software, Symantec, Cybertrust and most recently at Novell, in that company's Identity and Security Management business unit.
Bob has a Bachelor of Science degree from West Virginia University, and earned his MBA at Marymount University in Arlington, Virginia.

Paul Reymann
CEO, The Reymann Group
Reymann is one of the nation's leading financial institution regulatory experts and co-author of Section 501 of the GLBA security rule. He guided Technology Risk management activities at the Department of Treasury's Office of Thrift Supervision (OTS) in Washington D.C., where he authored several key regulatory directives on emerging risk management issues, including the industry's first regulatory directive on "Transactional Internet Banking."
Reymann is recognized in the prestigious 2006 Heritage Registry of WHO's WHO. He is also the author of numerous articles and papers on technology risk, transactional web sites, customer information, network security and other technology and safety and soundness topics.

Tom Kellermann
Chief Cybersecurity Officer, Carbon Black
Prior to joining Carbon Black, Tom was the CEO and founder of Strategic Cyber Ventures. On January 19, 2017 Tom was appointed the Wilson Center's Global Fellow for Cyber Policy in 2017. Tom previously held the positions of Chief Cybersecurity Officer for Trend Micro; Vice President of Security for Core Security and Deputy CISO for the World Bank Treasury. In 2008 Tom was appointed a commissioner on the Commission on Cyber Security for the 44th President of the United States. In 2003 he co- authored the Book "Electronic Safety and Soundness: Securing Finance in a New Age."

Michael Yaffe
Director - Product Marketing, Core Security Technology
In his role at Core Security Technologies, Michael is responsible for driving the company's marketing efforts. His responsibilities include strategic alliances, partnerships and public and analyst relations. He is an industry veteran with over 13 years of experience in product marketing and sales. Michael has a record of achievement in developing marketing strategy, communications, branding and demand-generation programs for emerging companies.
Prior to joining Core Security Technologies, Michael was Director of Marketing / Communications at NTRU, an information security company providing cryptographic solutions to enterprises worldwide. Prior to NTRU, he held senior marketing management positions involving strategic planning, product positioning and partnership development. Michael has also worked as a full time TV reporter as well as a direct sales representative.
Michael holds a B.S. in Marketing from Bryant College and a Master's Degree in Journalism from Boston University.
Session Contributors
Research Vice President, Gartner GTP Security and Risk Management Strategies
Read Bio