Welcome Reflectiz, a new Principal Participating Organization (PPO) at the PCI Security Standards Council! In this special spotlight edition of our PCI Perspectives Blog, Reflectiz Co-founder and CEO, Idan Cohen, introduces us to his company and how they are helping to shape the future of payment security.
Tell us about your company.
Reflectiz specializes in web exposure management, delivering multi-layered protection for all your web assets. Our platform gives organizations the visibility and control they need to govern the entire web supply chain, with automated continuous monitoring that ensures websites perform exactly as intended – from login to checkout and beyond. Reflectiz's advanced detection capabilities, including eSkimming, go hand in hand with PCI DSS v4.0.1 requirements, helping organizations maintain compliance while protecting customer payment data from sophisticated client-side attacks.
Why did your company decide to become a Principal Participating Organization?
After joining as a Participating Organization, we quickly recognized an opportunity to deepen our impact and contribution at PCI SSC. As a web exposure management specialist, Reflectiz brings critical expertise to the payment community, helping organizations understand how e-commerce transactions are compromised and how to defend against evolving threats across their entire web supply chain.
Our PPO status reflects Reflectiz's commitment to advancing payment security standards. It means we're actively engaged in developing and implementing PCI Security Standards, playing a hands-on role in shaping the future of secure commerce.
Which benefits are you most looking forward to as a Principal Participating Organization?
As a PPO, Reflectiz gains several strategic advantages:
Early access to evolving security standards: Reflectiz stays ahead of new and evolving PCI Security Standards, ensuring our platform addresses compliance requirements before they become mandatory. This proactive approach helps our customers anticipate emerging threats and maintain continuous protection as the threat landscape evolves.
Direct influence on industry standards: As a Principal Participating Organization, Reflectiz contributes directly to shaping PCI security standards. We provide real-world insights from web exposure management to ensure these standards address the actual risks facing e-commerce platforms and the broader payment ecosystem.
Strategic industry connections: Our PPO status connects Reflectiz with other security leaders and payment industry experts, keeping us informed on emerging threats, best practices, and industry trends that directly benefit our customers' security posture.
Why is it important for companies to get more involved with the PCI Security Standards Council, especially at the Principal Participating Organization level?
The PCI Security Standards Council has driven payment security innovation for over two decades. As the payments landscape evolves, the Council's updated governance structure enables organizations across the ecosystem to actively shape future payment security standards, but only through meaningful participation.
PPO status delivers tangible value: early visibility into emerging threats, direct influence on standards development, access to industry leaders, streamlined compliance pathways, and enhanced credibility as a trusted security partner in the payment ecosystem.
What are some payment security topics that you’re interested in collaborating on?
Securing payment transactions from the point of data entry is critical. As the attack surface has shifted from data centers to consumer browsers, Reflectiz is committed to collaborating with the payments industry to protect this evolving threat landscape – the client-side environment where transactions actually happen.
