Travis joined the PCI Security Standards Council in April 2016 and brings with him 15+ years of IT and IT Security experience. In addition, he also brings nine years of Point of Interaction (POI) and Host Security Module (HSM) support to the training team. Most recently, Travis worked with a company that specializes in payment terminal encryption where he provided consulting services to merchants and acquirers on their HSM encryption domains to process secure transactions. Travis has also been a PCI QSA since 2011. In addition to performing audits, he has worked with clients to perform gap assessments, assist with their prioritized approach, and provide remediation consulting to assist them in achieving PCI DSS compliance.
Marc has been with the PCI Security Standards Council since 2015 and brings with him 25 years of IT and IT security experience. Prior to joining, he held a number of PCI certifications, including QSA, PA-QSA, P2PE QSA, and P2PE PA-QSA. His professional background includes roles as system administrator, penetration tester, security consultant, helpdesk resource, and forensic investigator. Marc has performed hundreds of assessments worldwide for clients as small as “mom-and-pop” shops to large international financial corporations. Marc also has created and presented webinars, internal training, and spoken at conferences.
Scott joined the PCI Security Standards Council early 2018. Prior to joining the SSC he spent 18 years working within the Information Security field working for several blue chip technology companies before becoming Chief Information Security Officer (CISO) for a UK police force. Scott then decided to leap the proverbial fence and become a Security Assessor specializing in risk management, payment card production, 3D Secure, and over the air provisioning processes. Most recently, Scott was responsible for the compliance programs associated with some of these areas within one of the large Payment Brands before moving to the PCI SSC.
Josh joined the PCI Security Standards Council in January 2020 and brings with him 14 years of overall Information Security experience and 7 years of direct assessor experience. As a former PCI QSA, ISO 27001, 22301 and 9001 Lead Auditor, and a TR-39 (Certified TG-3 Auditor), Josh has performed hundreds of security assessments against internationally recognized industry standards including the aforementioned ISO 27001 (Information Security Management Systems) and ISO 22301 (Business Continuity Management Systems) PCI-DSS, PCI-PIN and ASC X9 TR-39. Prior to his work as an assessor, Josh worked as a technical consultant within the electronic payments industry supporting clients’ secure key management programs through development and support of FIPS 140-2 Level 3 Hardware Security Modules (HSMs) and secure cryptographic key injection/loading, management and distribution solutions.
Elizabeth has been with the PCI Security Standards Council since 2011. She has 28+ years’ experience in the payment card industry and information security. Her professional background includes installation and management of mission critical systems including ongoing maintenance, SOX, FDIC and PCI compliance programs and user training programs. Over the last decade, her Council career covers several roles including standards development, project management and PMO creation, chairing the Mobile Working Group and Task Force and several Special Interest Groups and most recently, developing strategic community engagement efforts across the organization. Elizabeth also manages and contributes to the webcasts as well as being a conference speaker.
Tom joined the PCI Security Standards Council in July 2015. He brings over 15 years of IT training and payment industry experience. He started his career as a qualified teacher then moved into the eLearning sector, developing training and resources for virtual learning environments. Most recently, Tom spent five years with a company specialising in electronic card payments. He built and managed their training and eLearning programme and qualified as an Internal Security Assessor (ISA). He has worked on-site with well over a hundred diverse merchants delivering training on PCI DSS, card payment security, and a range of payment systems.
Our website uses both essential and non-essential cookies (further described in our Privacy Policy) to analyze use of our products and services. By clicking “ACCEPT” below, you are agreeing to our use of non-essential cookies to provide third parties with information about your usage and activities. If you click “DECLINE” below, we will continue to use essential cookies for the operation of the website.