The excitement is building as we get closer to this year’s Europe Community Meeting! To add to the anticipation, we’re giving you a sneak peek of some of the amazing sessions that will be featured in Barcelona, 8-10 October.
Don't pass up the chance to collaborate and gain knowledge into the latest developments in payment security. The PCI SSC Community Meetings are open to all in the payments industry. Register to attend today!
Catch a Sneak Peek of Our Exciting Speakers Including:
Your Journey Through the Key New PCI DSS v4.x Requirements - Get
Started Now!
Wednesday, 10:40 – 11:00
Presented by: Kandyce Young
Join us to walk through key new requirements in PCI DSS v4, from stored account data protection and authentication, to e-comm skimming and phishing prevention, and more, to learn about how they’re intended to strengthen your organization’s evolving security posture right now – don’t wait until their 31 March 2025 effective date.
> Watch the preview
Setting Moonshot Goals
Wednesday, 11:30 – 11:50
Presented by: Michael Aminzade and Chelsea Lopez
We have somewhat lost that drive, especially when it comes to cyber security. We need to get back to the days of moon-shot goals, we need to invent, and we need to look far ahead to go on the offensive in cyber security.
> Watch the preview
Ace Your PCI DSS v4.0 Assessment: QSA Secrets for Success
Wednesday, 11:55 - 12:15
Presented by: Gary Glover
PCI DSS v4.0 has new, challenging requirements. Learn from Gary Glover, SecurityMetrics VP of Assessments, on how to approach a successful PCI DSS v4.0 assessment.
> Watch the preview
What Are the Implications of Infrastructure as Code and PCI DSS?
Wednesday, 12:20 – 12:40
Presented by: Lauren Holloway, John Bloomfield, and
Peter O'Sullivan
Wondering how to handle Infrastructure as Code and cloud deployments for PCI DSS? This session explores secure systems, software development, scope, and assessment processes. Topics include documenting environments, immutable infrastructure, short-lived systems, and code repositories.
> Watch the preview (Lauren Holloway and John Bloomfield)
> Watch the preview (Peter O’Sullivan)
Challenges with PCI P2PE Solutions While Building Resilience in the
European Payments Landscape
Wednesday, 12:20 – 12:40
Presented by: Josef Huff and Marlany Naidoo
This presentation explores some of the key challenges faced by Schwarz as a retailer in the European payment market, as well as the implications of the new Point to Point Encryption (P2PE) data standard on those wanting to build resilience models.
> Watch the preview
P2PE Program Enhancements
Wednesday, 12:45 – 13:05
Presented by: Mike Thompson
The Council highly values stakeholder feedback, and we have heard you! We’ve made value-add changes based on what we've heard to enhance the P2PE Program to benefit stakeholders and help contribute to even greater market adoption.
> Watch the preview
You Dropped a "BOM" on me, baby...
Wednesday, 16:35 – 16:55
Presented by: Jake Marcinko
Please join Jake Marcinko, Senior Manager Solution Standards at PCI SSC for a detailed look at the concept of software Bill of Materials (BOM), and how the PCI Software Security Framework is to leverage them now and in the future.
> Watch the preview
Digital Fire Doors: The Frontline Defenders Against Ransomware and For
Maintaining Secure & Resilient Operations
Thursday, 09:35 – 09:55
Presented by: Ian Robinson and Jim Seaman
Although it is only a recommendation for PCI DSS v4.0, effective network segmentation is a must to protect your digital realm from cyber threats like ransomware. Firewalls, routers and switches must be appropriately placed for network security control. Though far more complex than physical fire doors, these devices act similarly, as digital barriers that keep attacks at bay and prevent full-scale network disaster by stopping the spread of fires.
> Watch the preview (Ian Robinson)
Let’s Address the AI and ML Elephant in the Room
Thursday, 11:30 – 11:50
Presented by: Christopher Mawby
Join this session to learn how AI and ML might affect PCI compliance. This will take the form of an abstract study in two parts. The first part is for the PCI Merchant and Service Provider. How AI and ML can influence the business's PCI compliance. The second part will look into how the bad actor can use AI and ML to break down the defender's security layers quickly and through playing the long game where enough reconnaissance will lead to the inevitable breach.
> Watch the preview
We Invite the Entire Payment Card Industry to Join Us
We look forward to seeing you in Barcelona!