PCI Security Standards Council®


Day-to-day management of the Council activities is led by the Leadership Team, which reports to the Council’s Executive Committee.

PCI SSC Leadership Team

Lance Johnson
Executive Director

Mr. Johnson is responsible for driving and implementing the Council’s strategic direction. He is a veteran in payments risk management with nearing 4 decades experience in financial services and FinTech’s. Before joining the Council, he was COO at Sequent Software, Inc. where he led corporate administration, operations and security. Prior to Sequent, Johnson spent more than twenty years at Visa Inc., as a senior leader directing efforts in global risk management and security, fraud control, and payment data and device security. Additionally, Mr. Johnson was instrumental in establishing the PCI SSC and as Visa’s representative, sat on its Executive Committee for the first 5 years. An expert in payment security, Mr. Johnson holds several patents, served in the U.S. Navy, and has a bachelor’s degree in Business Administration and Management from the University of Central Florida.

Mark Meissner
SVP, Education & Engagement Officer

Mr. Meissner leads PCI SSC’s global education and engagement efforts. In this role, Mr. Meissner works to develop education and engagement strategies that promote the PCI Security Standards and the priority initiatives of the Council globally and with a wide range of stakeholders. He leads a team that engages payment industry stakeholders to improve payment security globally by facilitating industry awareness, education, knowledge sharing and participation.

Mr. Meissner brings more than two decades of experience in helping Fortune 500 companies, elected officials, trade associations and high-profile individuals navigate a myriad of communications challenges in the global marketplace. Over the years he has worked with many high-profile clients in engaging with major news organizations such as USA Today, The Washington Post, 60 Minutes, The New York Times, The Wall Street Journal, CNN, and The Times of London.

Before joining the PCI Security Standards Council, Mr. Meissner was the Founder and President of MJM Strategies, a strategic communications consulting firm.

Mr. Meissner began his career in the world of politics. He honed his political skills working on the staffs of two fellow Hoosiers– U.S. Senator Evan Bayh (D-IN) and U.S. Representative Tim Roemer (D-IN). Meissner served as Campaign Manager for Representative Roemer’s successful 1994 re-election campaign. He was a candidate for U.S. Congress in 2002, finishing second among a crowded field of five better known candidates for Indiana’s 2nd Congressional District. His underdog campaign was hailed by the media as “relentless” and “impressive”.

Mr. Meissner teaches as an Adjunct Professor at The George Washington University Graduate School of Political Management (GSPM) where he has served on the faculty for more than a decade. He holds a Master’s Degree from The American University and a Bachelor’s Degree from Indiana University.

Emma Sutcliffe
SVP, Standards Officer

As SVP and Standards Officer, Ms. Sutcliffe leads a team of dedicated payment security specialists to develop and maintain PCI SSC’s global portfolio of security standards. Ms. Sutcliffe joined the Council in 2010 and has held several positions during that time, including chairing the Technical Working Group, 3-D Secure Working Group, and Tokenization Working Group. She works closely with the PCI Payment Brands, Affiliate members, and industry stakeholders to deliver the standards, supporting documentation, and guidance to facilitate understanding and adoption of secure payment practices. Ms. Sutcliffe has over 20 years’ experience in information security, is a current CISA, CISM and CISSP, and holds a bachelor’s degree in Business – Hospitality Management with a Graduate Certificate in Information Security.

Andrew Jamieson
VP, Standards

From his first job building a mobile payment terminal in 1994, through to writing security standards for UL, Andrew Jamieson, Vice President, Standards for PCI Security Council has worked over 25 years of experience in working with payment systems and emerging technologies. Mr. Jamieson has written a number of payments and security based patents, and has spoken at payment and security conferences around the world.

Mr. Jamieson has a B.Eng (EE with honours), M.Sc (InfoSec), and was a Distinguished Member of Technical Staff within UL. He has written a comprehensive book on payment security and compliance, and has worked as an adjunct Professor for NYU to produce content for an online mobile payment course.

Jeremy King
VP, Regional Head for Europe

Jeremy King leads the Council’s efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, UnionPay and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through European markets, driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification, and testing programs.

Patrick Burke
Director, Business Operations

As Director of Business Operations at the PCI SSC, Mr. Burke is responsible for the day-to-day operations of the PCI SSC including development and maintenance of financial, Human Resources (HR) and corporate governance processes.

His background as an accomplished financial executive includes experience in international tax, project management, customer & vendor negotiations and international real estate management. He held a senior leadership role at Charles River, a State Street Corporation where he most recently held the title of Senior Manager of Tax and Corporate Real Estate from 2011 until joining the Council.

Mr. Burke is a Certified Public Accountant and holds a bachelor’s degree in accounting with minors in Finance and English from the University of Connecticut.

Brandy Cumberland
Director, Program Operations

As Director of Program Operations, Ms. Cumberland is responsible for the supervision of the PCI SSC’s Programs Portfolio and chairs the PCI Forensic Investigators (PFI) Working Group. Ms. Cumberland joined the Council in 2011, most recently serving as Director, Assessor Quality Management (AQM) Programs where she led the administration and ongoing operations of the quality management approach for PCI SSC’s Programs, including the Qualified Security Assessor (QSA) Program.

Prior to her work with the AQM team, Ms. Cumberland has held positions in quality assurance in the payment security industry, public education, management, and retail banking.

Ms. Cumberland is a graduate of the University of Houston and is a PCI Professional (PCIP), an American Society of Quality (ASQ) Certified Quality Improvement Associate (CQIA), and an ISC2 CISSP

PCI SSC Executive Committee

The PCI Security Standards Council is led by a policy-setting Executive Committee, composed of representatives from the Founding Members and Strategic Members.

Sophie Rainford (Chairperson)
American Express

Sophie Rainford currently serves as Vice President, Industry Engagement for the American Express Global Network. Ms. Rainford leads a team of professionals who create and evolve payment standards. She oversees American Express’ relationship with important industry organizations including PCI Security Standards Council, EMVCo, ISO, W3C, and U.S. Payments Forum.

Ms. Rainford has over 13+ years’ experience in payment technologies. She holds a Master of Science in Human Centered Design from the University of Sussex, England and a Bachelor of Arts in Computer Science and Philosophy from the University of Kent, England.

Ed O'Neill

Ed O’Neill is currently Director of Payments Protection and Risk Management for Discover where he leads the emerging payments protection, data security compliance, data compromise investigation, business risk and internal controls and regulatory reporting and risk management functions.

Ed has over 15 years of financial services and risk management experience and has held various positions at the Federal Reserve Bank of Chicago, Discover and PULSE. Prior to re-joining Discover in July 2018, Ed was most recently Vice President of Secure Payments at the Federal Reserve Bank of Chicago where he helped lead the development and implementation of the Federal Reserve’s payment security strategy to reduce fraud risk and advance the safety, security and resiliency of the U.S. payment system.

Ed holds Master of Business Administration and Bachelor of Business Administration degrees from Loyola University of Chicago and is a Certified Information Systems Security Professional (CISSP). Ed represents Discover on the PCI Security Standards Council, LLC as a member of the Executive Committee.

Lib de Veyra
JCB International

Lib de Veyra is responsible for JCB's global security risk management, which includes its security compliance programs, network fraud and response management to account data compromises. Mr. de Veyra is also a contributor to the PCI Security Standards Council in the development of security standards and programs serving in the Executive Committee, Management Committee and several technical and operational working groups.

Mr. de Veyra has more than 27 years of experience in the payment card industry, in various roles and disciplines including security, risk, compliance, card issuance, acquiring, finance and business planning. Mr. de Veyra holds a Bachelor's degree in Economics from the University of California, Los Angeles.

Adam Sommer

Adam Sommer is Vice President, Industry Standards at Mastercard. He is responsible for the evolution and deployment of industry security standards, the Mastercard Site Data Protection (SDP) Program, and the Global Vendor Certification Program (GVCP). Mr. Sommer represents Mastercard on the executive committee and management committee of the PCI Security Standards Council.

Mr. Sommer has over 15 years’ experience in the payments industry with Mastercard. He holds a Master of Arts in International Affairs from Washington University, a MBA from Mayville University, and a BA in Accounting from Fontbonne University. Mr. Sommer holds numerous security certifications including CISSP, CISM, CISA, CDPSE, and CRISC.

Meng (Chris) Ren

Meng (Chris) Ren is Manager, International Standards and Innovations at UnionPay. He is assisting in UnionPay’s drive in technology and specifications development and is engaged in new technology initiatives. His team is responsible for UnionPay’s engagements to various international standard development organizations. Chris is also serving in several PCI SSC working groups. In addition, he is also representing UnionPay on EMVCo Board of Managers.

Chris has worked in the payments industry for around 10 years. Throughout his career, Chris was closely involved in various chip and mobile payment technologies. Chris holds a BS in Computer Software System from the University of Washington.

Chackan Lai
Visa Inc.

Chackan Lai is the Vice President of Global Risk Advisory and Innovation at Visa. He is responsible for leading a surgical risk team with cross functional expertise that provides risk advisory services to internal product and innovation teams. Mr. Lai represents Visa on the executive committee and management committee of the PCI Security Standards Council as well contributes to several PCI, ANSI and ISO working groups.

Mr. Lai has over 20+ years of experience in the financial services, risk management and information security. Mr. Lai holds a Master’s degree in Information Security from Royal Holloway, University of London as well as a Bachelor’s degree in Computer Engineering.

PCI SSC Board of Advisors

The PCI Security Standards Council Board of Advisors is composed of representatives of Participating Organizations. This cross-industry group is chartered to ensure that all voices are heard in the ongoing development of PCI Security Standards, with representation from across the payment chain -- merchants, financial institutions, processors and more -- as well as from around the world.

The 2021-2022 Board Members are listed below and may be contacted at boa@pcisecuritystandards.org

Claus Tepper

Marie-Christine Vittet

Craig Morgan

Peter Stone

Andy White

James Vale

Phil White

Glauco Luiz Cardoso Sampaio

Catherine Gunnell

Josh Knopp

Rodney Farmer

Gert Huizinga

Louis Vale

Walid Barakat

Zeal Somani

Steven Bowles

Michael Johnson

Nancy Zayed

Ashok Misra

Viswanath Krishnamurthy

Jason Hansen

Edward Mao

Lori Van Deloo

Tomás Perlines

Shane Hamilton

Vignesh Karthikeyan

Richard Agostino

Joachim Vance

Mike Cook

Wes Shattler

Various Headshots taken by David Shopper Photography

Our website uses both essential and non-essential cookies (further described in our Privacy Policy) to analyze use of our products and services. By clicking “ACCEPT” below, you are agreeing to our use of non-essential cookies to provide third parties with information about your usage and activities. If you click “DECLINE” below, we will continue to use essential cookies for the operation of the website.

Powered by Translations.com GlobalLink OneLink SoftwarePowered By OneLink