In today's episode, I am excited to announce that the Council will open the nomination period for the next Brazil Regional Engagement Board next month. Regional Engagement Boards serve as advisors to PCI SSC on payment data security issues in specific geographies and markets. Joining me to discuss what this all means and how you can participate is the Council's own Guilherme Scheibe, Regional Director of Brazil and LAC.

Welcome to this very special edition of the Coffee with the Council podcast. This podcast will be in Japanese only. For non-Japanese-speaking audience, this podcast will be transcribed and translated to English on the PCI SSC webpage. 

Today, I am so excited to bring you a sneak peek interview with PCI SSC's Asia-Pacific Community Meeting keynote speaker, Sharon Gai. Sharon Gai is a global expert in e-commerce, digital strategy, and cross-cultural innovation. After nearly a decade at Alibaba, guiding global brands through China's digital market, she authored E-Commerce Reimagined and now helps companies bridge east and west. Sharon, it's a pleasure to have you with us today.

Today, I am so excited to bring you a sneak peek interview with PCI SSC's Europe Community Meeting Keynote Speaker, Bernie Collins. Bernie Collins is a Formula One Strategy Analyst and former Race Strategist, who has worked at the highest levels of motorsport, including Aston Martin. She specializes in decoding the complex world of F1 strategy, from tire choices and pit stops to race day decision making and translating it into insights fans can truly understand. You might recognize her from her expert commentary on Sky Sports F1, where she breaks down the fast-paced world of Formula One with clarity and precision. With a background in mechanical engineering and years on the pit wall, Bernie brings both technical expertise and real-world racing experience to everything she does. 

Today, I am so excited to bring you a sneak peek interview with PCI SSC's North America Community Meeting Keynote Speaker, Reed Timmer. Dr. Reed Timmer is an extreme meteorologist and storm chaser, who specializes in intercepting the most powerful storms on the planet to collect valuable scientific data. You might know him from the Discovery Channel reality television series, Storm Chasers, as well as from the documentary film, Tornado Glory, and in the television series, Tornado Chasers. Graduating with a PhD in meteorology from the University of Oklahoma, Timmer is not only a hardcore storm chaser, but also a scientist driven to unravel the mysteries behind these destructive storms and how they are changing over time.

In today's episode, I'm excited to announce that the Council is launching a new Regional Engagement Board for India and South Asia. Regional Engagement Boards serve as advisors to PCI SSC on payment data security issues in specific geographies and markets. This will be the Council's second REB, as it's commonly referred to, after launching in Brazil in 2018. Joining me to discuss what this all means and how you can participate is the Council's own Nitin Bhatnagar, Regional Director of India, South Asia, and the Middle East.

In this episode of Coffee with the Council, we’ll hear from Megan Shamas, Chief Marketing Officer at the FIDO Alliance as she discusses a solution to reducing the world’s reliance on passwords with the Council’s own Andrew Jamieson, VP, Distinguished Standards Architect. Together they will explore phishing-resistant authentication through the use of passkeys and a future where account takeover is no longer a threat.

As many of our listeners are aware, we are quickly approaching the deadline to adopt the future-dated requirements of PCI DSS version 4.0.1 on March 31st, 2025. Over the course of the last year, the Council has received feedback that more guidance was needed to properly implement some of the e-commerce security requirements in the standard, particularly Requirements 6.4.3 and 11.6.1. As such, the Council has released several pieces of guidance this year, including updates to Self-Assessment Questionnaire A, an FAQ related to SAQ A eligibility criteria, and of course, the highly anticipated guidance developed by our E-commerce Guidance Task Force. Joining me today to walk through all this new guidance is Lauren Holloway, Director of Data Security Standards at PCI SSC. 

It is time once again to elect the Council's next Board of Advisors for the 2025 - 2027 term. Every two years, the Council invites its Principal and Associate Participating Organizations, as well as Affiliate Members to nominate and elect those companies who will serve as strategic leaders for the organization. Joining me today to talk all about what's new in this year's election process is PCI SSC's Head of Engagement, Diana Greenhaw. 

Recently, PCI SSC published a new information supplement called PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures. This document was produced by the 2023 Special Interest Group, also called a SIG, who spent a year collaborating on this project, which was led by the Council's own Kandyce Young, Manager of Data Security Standards. I am joined by Kandyce today to help walk us through what made this particular Special Interest Group and topic so special. 

Today we'll meet one of the Council's newest employees, our Head of Product and Technology, Deanne Zettler. Deanne comes to the PCI SSC with more than 25 years of experience leading product and technology strategies, solutions and operations in financial services, including stops at Discover Financial Services and Silicon Valley Bank. Thank you for joining us today, Deanne, and welcome to the team.

Today, I am so excited to bring you a sneak peek interview with PCI SSC's Europe and Asia Pacific Community Meeting keynote speaker, Dr. Bruce McCabe, Global Futurist. Bruce has explored emerging technologies and how innovation happens for 30 years. He began his career at IBM in 1988 and went on to hold senior roles at IBM, WordPerfect, Novell, and Gartner. In 2002, he founded S2 Intelligence, a think tank to support organizational innovation through grounded research. He served as an independent advisor to a long list of multinationals, state and federal governments, universities, and science labs. When not speaking, he writes novels about the near future.

Today, I am so excited to bring you a sneak peek interview with PCI SSC's North America Community Meeting Keynote Speaker, Tom Koulopoulos. Mr. Koulopoulos is Chairman and Founder of Delphi Group, a 30-year-old Boston-based Think Tank, named one of the fastest growing private companies by Inc. magazine, and the founding partner of AcroVantage Ventures, which invests in early-stage technology startups. He is also the author of 13 books, an Inc. .com columnist, the past executive director of the Babson College Center for Business Innovation, the past director of the Dell Innovation Lab, and a professor at Boston University.

In this episode, we'll meet three Qualified Security Assessors, or QSAs. A QSA company is a data security firm certified by the Council to perform on-site assessments of a company's PCI Data Security Standard compliance. This ensures that robust policies and procedures are in place to protect cardholder data. The QSA Program plays a critical role in the adoption of PCI security standards. 

Today we'll meet one of the Council's newest team members, our Head of Engagement, Diana Greenhaw. Diana comes to the PCI SSC after a successful 20-year career in payments that included stops at WorldPay, Visa, and Block. Thank you for joining us today, Diana, and welcome to the team.

At our Community Meetings in 2022, the Council announced a significant change to its Participating Organization program. Today, I am joined by the Council's Senior Vice President of Education and Engagement, Mark Meissner who has been spearheading this effort, and is going to talk about some of these changes over the past couple of years, and how the PO program has evolved. 

Today, I am joined by Lance Johnson, who has been the Executive Director of The Council for more than six years and a member of the payments industry for more than 40 years. In light of your recent retirement announcement, we're here to reflect on all the moments that have defined your distinguished career, Lance, and to of course, thank you for all of the contributions you've made to our industry. 

Today I am thrilled to introduce the Council's new Executive Director, Gina Gobeyn. Gina joins PCI SSC following the announcement of Lance Johnson's retirement this year. As Executive Director, Gina will drive the organization's strategic direction, its operations, and oversee the PCI SSC senior leadership team and staff. I'm delighted to have you join us today, Gina.

Today I'm joined by three very amazing guests, and we will share a brief update of Asia-Pacific.

First, we have Aileen Liu, who is the director of PAX Technology’s Payment Technology Department. Now, PAX Technology is one of the largest POS solution providers in the world, and PAX is also a PCI Principal Participating Organization. They are a PCI Board of Advisor member as well. Aileen is the primary point of contact representing PAX in both groups.

Next, we have Gilbert Chu, who is the Chief Operating Officer for LGMS. They are a regional QSA and ASV or PCI Approved Scanning Vendor for short. It's based out of Malaysia. Gilbert is a QSA professional, and an expert in IT security with more than 15 years of experience.

And last, and certainly not the least, we have Stuart Campbell, who is the Head of Customer Success and a key leader for Quasar Scan, a solution provider based in New Zealand. And they provide a tool that is able to discover sensitive data that is stored within your environment. Quasar Scan is also a PCI Associate PO.

Today I'm joined by my co-host for the day, Director of Communications, Simon Kleine, at EMVCo. And we're having a conversation with Arman Aygen, Director of Technology at EMVCo, and PCI Security Standard Council's VP of Solution Standards, Andrew Jamieson. Today, we're going to be talking about the valuable partnership and collaboration between EMVCo and PCI SSC. We're going to take a deeper dive into mobile payments, including Tap to Mobile, and also PCI SSC's MPoC standard. Let's kick off by taking a moment to explain the relationship between our two organizations, EMVCo and PCI SSC.