Speakers
Jeremy King, VP, Regional Head for Europe, PCI Security Standards Council
Mr. King leads the Council’s efforts in increasing adoption and awareness of the PCI Security Standards internationally. In this role, Mr. King works closely with the Council and representatives of its policy-setting executive committee from American Express, Discover, JCB International, Mastercard and Visa, Inc. His chief responsibilities include gathering feedback... from the merchant and vendor community, coordinating research and analysis of PCI SSC-managed standards through all international markets, and driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification and testing programs. more
Rashmi Nadig, DPO, Crisis
Rashmi Nadig is a seasoned legal professional with over a decade of experience specializing in data privacy, protection, and compliance. In her current role at Crisis, she is dedicated to safeguarding the organization's data integrity and ensuring adherence to the Data Protection Act 2018, UK GDPR, and PECR. Rashmi plays a pivotal role in aligning data management... strategies with the organization's values and culture, offering diverse insights and enriching the team with her robust legal acumen. Recently, Rashmi has led the organization's data protection strategy, managed Data Protection Impact Assessments, and ensured that privacy policies are current. A significant aspect of her work involves vendor management, where she meticulously reviews Data Processing Agreements to guarantee third-party compliance with stringent data protection standards. Her expertise in navigating complex legal frameworks and fostering collaborative partnerships with stakeholders has been instrumental in enhancing the organization's compliance posture.
more
Katie Cowman, Senior PCI Assurance Manager, Barclaycard
Katie is the Senior PCI Assurance Manager at Barclaycard where she leads the PCI Technical Standards compliance programme across the Barclaycard Payment Gateways and the team supporting level 1 & 2 acquired merchants with their own PCI DSS compliance. Katie also provides SME consultancy in relation to Payments Security to the wider bank and consults on new products... and initiatives ensuring that Payment Security requirements are built in by design. With a complex career journey from fashion and teaching via cyber security to PCI compliance, Katie uses all her skills to help bring Payment Security to life for her colleagues and clients. more
Kevin Burns, PCI Compliance Lead, NMI
Kevin has over 30 years of Retail and Payments experience, 15 of the last 20 years working with the PCI DSS. Kevin helped to implement PCI DSS at BT’s merchant and banking customer base, dealt with PCI Compliance from an Issuer, Acquirer and Merchant perspective as an Internal Security Assessor at NatWest Group and is now PCI Compliance Lead at NMI, working with... PCI P2PE, PCI PIN, PCI 3DS and PCI DSS.
more
Mark Osborne, BISO & Regional CISO UK, EU & ANZ, Corpay
Mark Osborne is the BISO & Regional CISO UK, EU & ANZ for Corpay. He previously headed up the KPMG security practice for many years and subsequently built several security businesses. He has held many security leadership and CISO positions including Interoute, HP, Cognizant and Jones Lange LaSalle and is a veteran of numerous successful remediations,... turn-arounds and security transformations. He has researched and published Zero-Day security vulnerabilities (most notably Fatajack) and designed the world’s first open-source wireless IDS/IPS (WIDZ) and developed it’s widely used detection algorithms. and has published numerous other software tools. Mark is the author of many security books including “How To Cheat at Managing Information Security” which reached the Global Amazon.com Top-500 and he is regularly referenced by Universities, IEEE, IETF, ISACA, GIAC and FIRST — most importantly referenced in “Wireless for Dummies".
more
Graham Dawson, Cyber Security Architect, Naked Wines
Graham Dawson is from at Naked Wines in Norwich, where he has worked for 4 years, initially as a Security Analyst, latterly a Security Architect. He has worked in IT for 30 years, and spent the past 10 years in Security and Compliance. One of the hats he wears at NakedWines is PCI compliance officer. In his last role at a software service provider, he implemented... ISO27001.more
Mike Somers, PCI DSS Consultant and Specialist
Mike is an accomplished Senior Security Professional with over 15 years of experience in the fields of IT and Security. Formerly a PCI DSS Qualified Security Assessor (QSA), Mike has been involved in numerous projects relating to compliance and implementing best practice for cyber security. His expertise spans risk assessment, vulnerability management, and security... architecture. Mike has worked with several retailers over the past 2 years on PCI v4 projects, assisting them in reducing and streamlining compliance efforts, while ensuring the safeguarding of PCI data. more
Natasha Harries Roebuck, PCI Compliance Specialist, Sky UK
Natasha is a PCI Compliance Specialist and ISA at Sky, where she plays a pivotal role in supporting teams across the organisation to uphold and enhance payment security standards. With a diverse career spanning travel, customer service, operational compliance, and cybersecurity, Natasha brings a wealth of experience and a practical, solution-oriented approach to her... work.
Passionate about demystifying compliance, Natasha excels at simplifying complex requirements for her colleagues and embedding PCI standards into new products and processes from the outset. Her expertise ensures that payment security remains an integral part of Sky's innovation and operational strategy.
more
Laura Morgans, Security Risk and Compliance Manager, Dr Martens, Airwair International Ltd
Laura Morgans is an Information Security Risk and Compliance Manger at Dr Martens, Airwair International Ltd. (CRISC, CISM, CDPSE, ISO 27001 & PCI DSS Internal Security Assessor). Laura has a Law degree and is studying part-time for an MSc in Software, Systems and Security and Oxford University.
Laura specialises in leading Information Security Governance... Risk and Compliance functions with experience of creating entry level roles in organisations with diverse candidates, including recruiting female candidates into the security industry. Laura won the Rising Star leadership award in the Women in Governance Risk and Compliance World Forums
PCI DSS and information security experience; includes roles at Cancer Research UK, Which? Consumers’ Association and Dr Martens.
more
Dr Sam De Silva, Partner & Global Co-Head of Commercial Practice Group, CMS Cameron McKenna Nabarro Olswang LLP (CMS)
Dr Sam De Silva is a Partner and Global Co-Head of the Commercial Practice Group at the Top 10 global law firm CMS Cameron McKenna Nabarro Olswang LLP (CMS), based in London, UK. Sam specialises in complex and strategic technology and outsourcing projects and regularly advises on PCI DSS, AI, data protection, privacy and cyber-security issues. At an international... level Sam is the former UK representative on the EU Commission’s Expert Group on Cloud Computing Contracts, the current UK representative on the IT Law Committee of the Bars and Law Societies of Europe (CCBE) and is on the Board of the Information Technology Law Association (iTechLaw).
Sam is an expert in legal risk management and was the Co-convenor on an ISO Working Group which led the development of the first ISO Standard on the Management of Legal Risk (ISO 31022) and in 2019 won a BSI Standards Makers Award for the category of “Representing the UK” for his work on developing ISO 31022. In 2020 at the 11th annual CIR Risk Management Awards Sam was judged winner of the Risk Management Champion Award and at the Global Sourcing Association UK Awards for Best Practice in Strategic Sourcing 2020/21 Sam’s work was recognised by being named winner of the ‘Social Programme of the Year’ category. Sam was also the winner of the Governance Champion of the Year at The Chartered Governance Institute Awards 2021. Sam is named in the Who’s Who of Information Technology 2025, Who’s Who of Data Privacy and Protection 2025, and the Who’s Who of Data Security 2025 as both a Global Leader and Thought Leader in those areas of law. Sam was also the winner of Lexology’s Client Choice Awards 2021, 2024 and 2025 for Data Privacy & Protection in the UK.more
Stephen Cavey, Co-Founder and Chief Evangelist, Ground Labs
Stephen is a co-founder of Ground Labs, leading a global team empowering its customers to discover, identify and secure sensitive data across their organizations. As the company’s Chief Evangelist, he leads its worldwide product development, sales and marketing and business operations and was instrumental in extending Ground Labs’ presence with enterprise customers.
Stephen... has deep security domain expertise with a focus on electronic payments and data security compliance. He is a frequent speaker at industry events on topics related to data security, risk mitigation and cybersecurity trends and futures.more
Peter O’Sullivan, Principal Information Security Consultant, Blackfoot Cybersecurity
In his career, Peter has spent time in most areas of IT including network support, network management, installation management, and IT training before settling into information security in 2010. Being a QSA since 2017, he’s worked extensively with both global service providers and merchants alike and implemented numerous ISO27001 certified management systems. Peter... is a Principal QSA at Blackfoot and was a serving member of the GEAR from 2020 to 2023 incl.more
Geoff Forsyth, CISO, PCI Pal
Geoff has spent over 28 years engineering internet, telecoms, contact centre and secure payment services. A founding member of PCI Pal, Geoff was the architect in the initial design and build of the PCI Pal cloud platforms. He is a named inventor on several international patents relating to secure payments and telephony systems. In 2019 Geoff moved from a CTO... role to a CISO role within the PCI Pal business and now oversees the overall information security and regulatory compliance of PCI Pal’s global services, including legal compliance, IT systems risk analysis, incident response planning and business continuity management. Geoff serves on the PCI SSC Board of Advisors and is a Fellow of the British Computer Society.more
Sam Greaves, Senior Consultant, CSA Cyber
With over 8 years of experience in information security, Sam brings a wealth of expertise in building and leading security teams, managing services, and driving security-focused projects for clients across diverse industries. Having worked in private cloud providers and financial institutions, Sam’s background combines deep technical knowledge with practical, real-world... solutions. As a newly certified QSA, Sam leverages his technical acumen to deliver innovative, tailored solutions that address complex challenges. His specialties include secure architecture, cloud security, compliance, risk management, and M365, ensuring organisations achieve both robust security and regulatory alignment.more
Parminder Lall, CEO and Founder, 1 Cyber Valley
Parminder Lall is CEO and Founder of 1 Cyber Valley. Having worked on PCI projects from the very first days of the standard’s existence, for British Airways, Parminder knows a thing of or two about the subject matter. Once time had passed and more experiences were gained in other industries, he joined the dark side in 2013 and became a PCI QSA. Not... content with just being a QSA, he decided to throw his own hat in the ring and start a QSA company himself in 2020. Welcome 1 Cyber Valley! Initiative, intuition and drive are only three of the many characteristics Parminder beholds that make 1 Cyber Valley as attractive as it is today. Starting up as a self-funded QSA company, to employing a dedicated team of consultants, 1 Cyber Valley has become a company that partners 150+ clients across the globe more
Billy McDiarmid, Sr Director of Sales Engineering, Red Sift
Billy is the global head of the solutions team at Red Sift, and product specialist for Red Sift ASM and Red Sift Certificates.
Nadav Shatz, Customer Solutions and Advisory Director, Orange Cyberdefense
Nadav is a Cyber Security and technology executive with over 20 years of experience spanning a broad range of disciplines and industries. He has an impressive track record as a strategic consultant, Chief Information Security Officer, advisory board member, and business leader. As a recognised and trusted advisor, Nadav has guided numerous organisations on cyber security... strategy, digital transformation, security governance, and the development of roadmaps and long-term visions.
In his current role, Nadav leads Orange Cyberdefense's Advisory and Consultancy functions, shaping strategy and approach as a leading cyber security player and trusted security partner in the UK.more
Richard Lindsay, Principal Advisory Services Consultant, Orange Cyberdefense
Richard Lindsay has over 25 years of experience across several IT and InfoSec domains. He began his career in IT analysing application performance across wide networks and is now a principal advisory consultant within Orange Cyberdefense and the lead QSA. Richard’s daily activities predominantly revolve around supporting customers with their compliance requirements... using industry recognised frameworks such as the ISO27K family, PCI-DSS, NIST-CSF, and others. With a deep technical understanding and desire to know how things work under ‘the hood’, he provides strategic and solutions-based guidance to help satisfy defined control requirements for clients across various industries.more
Emmanuel Cristofaro, Lead Security Analyst, Orange Cyberdefense
Emmanuel 'stutm' Cristofaro is an Italian hacker working at Orange Cyberdefense. He loves to spend his free time cooking, reading, and hacking things around him. He is particularly passionate about hardware in general, especially if there is a phone system or radio signal emission involved. Also, he has a self-implanted chip in his hand which he uses for managing... his home lighting system.more
Ketan Pyne, Pre Sales Team for UK&I, Thales Group
Ketan is a Pre Sales Consultant with over 40 years of experience in the field of IT/CyberSecurity. Currently employed at Thales, a renowned global leader in advanced technologies, he specialises in providing expert guidance and support to clients in identifying and implementing cutting-edge security solutions.
Peter Lane, Managing Cyber Security Consultant, Cyro Cyber
Peter is an Intelligence, Risk and Security specialist with over 17 years’ experience in defence and enterprise. With experience across a broad range of industries, he is a consultant and auditor for various standards demonstrated by his qualifications as a PCI DSS Qualified Security Assessor (QSA) and ISO 27001 Lead Auditor. He has experience in operational, training,... delivery and leadership roles throughout physical and technical security. Peter is highly experienced in project and stakeholder management, risk and resilience, with a strong passion for change enablement, leadership and influence.more
Martin Petrov, CTO - PCI, Integrity360
Martin is a senior executive with more than 20 years of technical, consulting and leadership experience, with a proven track record of establishing and developing high performance Professional Services teams.
Martin is a widely respected information security professional having successfully assisted financial institutions, retailers and service providers... achieve and maintain continuous compliance by embedding information security within the very fabric of their organisation’s culture while ensuring that their method of operation is verifiably secure. Martin has a pragmatic approach to distilling complex problems into easy to execute tasks coupled with the ability to communicate clearly with both business and technical stakeholders.
Martin has been at the forefront of the Payment Card Industry starting with PCI DSS version 1.0 back in 2005, helping organisations build cyber security resilience, providing vendor agnostic consulting services adopting best-practices in the areas of compliance, data protection and information security.
Martin established and leads the PCI DSS practice at Integrity360 - Europe’s premier and most preferred Qualified Security Assessor (QSA).
more
Kris Olejniczak, CEO, Patronusec
Kris Olejniczak is the CEO and Founder of Patronusec, a next-generation security services company that blends cutting-edge cybersecurity expertise with a unique approach to compliance and security solutions. With over a decade of experience in managing PCI and IT compliance in-house, Kris has led numerous engagements as the lead QSA for various PCI standards, including... PCI DSS, PCI P2PE, PCI SSF, PCI 3DS, and PCI PIN Security. His work has seen him collaborate with leaders from Fortune 100 companies, major UK-based acquirers, and service providers, gaining invaluable insight into the intricacies of global security and compliance. Driven by a vision to provide tailored, affordable security services, Kris made the decision (together with his team) to found Patronusec, offering a comprehensive suite of managed security services to small and medium-sized businesses. Patronusec specialises in delivering flexible security solutions alongside a wide range of compliance certifications, helping clients navigate the complexities of the ever-evolving cyber landscape.
With a passion for creating bespoke security solutions, Kris and his team ensure that clients are equipped to face today’s ever-evolving cyber challenges, all with a touch of Patronusec magic to protect them from threats lurking in the shadows.
more
Mark Phillips, VP, Sales and Solutions Engineering EMEA, Human Security
Mark is a highly experienced IT leader with 25+ years in the industry, including two decades specialising in cybersecurity. He has a proven track record of success, having led global and regional teams across sales, presales, and account management. Mark contributed to the growth at industry leaders like FireEye and Trend Micro, as well as spearheading success at... innovative startups such as Malwarebytes. Most recently he served as Vice President of Global Sales Engineering at Bitdefender, where he oversaw worldwide technical sales initiatives.In his current role at HUMAN as VP, Sales and Solutions Engineering EMEA, Mark leads the sales and presales teams, whilst shaping the go-to-market strategy for the EMEA region. With deep expertise and a commitment to innovation, Mark is dedicated to advancing cybersecurity and delivering impactful solutions that protect organisations across the globe.
more
Richard Fridge, Director, Enterprise Sales, HUMAN
Richard Fridge brings over a decade of cybersecurity sales expertise, specialising in cyber and anti-fraud solutions. Throughout his 13-year career, he has established a strong track record in understanding the diverse challenges faced by businesses in various industries. Richard excels in providing tailored solutions to strengthen their defences against digital threats,... with a distinct focus on application security and bot management strategies. more
John Elliott, Security Advisor, Jscrambler
John Elliott is a specialist in regulated security and data protection. His fascination is the way that people engage with security directives: whether that’s a company following external regulations, an information security team developing policies, an IT team following them, or a colleague who is just trying to do their job securely. John has led aviation and... financial services information security and data protection functions. He’s represented both Visa Europe and Mastercard on the PCI Security Standards Council and contributed to many of the PCI standards including most recently PCI DSS v4. He is a consistently top-rated speaker and author of online video training courses for Pluralsight. John is a Fellow of BCS, the Chartered Institute for IT, and holds an LLM in Information Rights Law along with multiple information security certifications. He has recently embraced the role of Security Advisor at Jscrambler. more