PCI Security Standards Council®


Day-to-day management of the Council activities is led by an eight-member Senior Team, which reports to the Council’s Executive Committee.

PCI SSC Senior Team

Lance Johnson
Executive Director

Mr. Johnson is responsible for driving and implementing the Council’s strategic direction. For the past five years, he served as the Chief Operating Officer at Sequent Software, Inc. where he led all corporate administration and operations. Prior to Sequent, Johnson spent more than twenty years at Visa Inc., as a senior leader directing Visa’s efforts in global risk management and security, fraud detection and control, and global payment data and device security. As an expert in payment security, Mr. Johnson holds several patents, served in the U.S. Navy, and has a Bachelor’s degree in Business Administration and Management from the University of Central Florida.

Mauro Lance
Chief Operating Officer

Mr. Lance is responsible for the day to day operations, business strategy, investments and growth of the Council. He leads the creation and implementation of programs and world-class processes for certification, assessor quality management and training, critical to the Council’s mission of increasing payment card security globally through adoption of the PCI Security Standards.

Most recently, Mr. Lance held leadership positions at the MIT Media Lab and the World Wide Web Consortium, and was a founding director of the Web Foundation. He is a Fulbright Scholar and holds a Master’s degree in Business Administration from Suffolk University, and a Bachelor’s degree in Business Administration from the Pontificia Universidad Católica de Valparaiso. Mr. Lance has lived and worked in Chile, China, France, and the United States.

Troy Leach
Chief Technology Officer

Troy Leach is the Chief Technology Officer for the PCI Security Standards Council. In his role, Mr. Leach partners with Council representatives, Participating Organizations and industry leaders to develop comprehensive standards and strategies to secure payment card data and the supporting infrastructure.

He is a congressional subject matter expert on payment security and the current chairman of the Council's Standards Committee. Prior to joining the PCI Council, Mr. Leach has held various positions in IT management, software development, systems administration, network engineering, security assessment, forensic analytics and incident response for data compromise. Mr. Leach holds a Master of Science in Telecommunications & Network Management as well as a graduate degree in Information Security Management from Syracuse University.

Mark Meissner
VP, Public Relations

Mr. Meissner leads the Council’s public relations efforts. In this role, Mr. Meissner works closely with the Council’s leadership team to develop communications strategies that promote the PCI Security Standards and the priority initiatives of the Council globally and with a wide range of stakeholders. Mr. Meissner brings more than two decades of experience in helping Fortune 500 companies, elected officials, trade associations and high profile individuals navigate a myriad of communications challenges in the global marketplace. Over the years Mark has worked with many high-profile clients in engaging with major news organizations such as USA Today, The Washington Post, 60 Minutes, The New York Times, The Wall Street Journal, CNN, and The Times of London.

Before joining the PCI Security Standards Council, Meissner was the Founder and President of MJM Strategies, a strategic communications consulting firm.

Meissner began his career in the world of politics. He honed his political skills working on the staffs of two fellow Hoosiers– U.S. Senator Evan Bayh (D-IN) and U.S. Representative Tim Roemer (D-IN). Meissner served as Campaign Manager for Representative Roemer’s successful 1994 re-election campaign. Mark was a candidate for U.S. Congress in 2002, finishing second among a crowded field of five better known candidates for Indiana’s 2nd Congressional District. His underdog campaign was hailed by the media as “relentless” and “impressive”.

Meissner teaches as an Adjunct Professor at The George Washington University Graduate School of Political Management (GSPM) where he has served on the faculty for more than a decade. Meissner holds a Master’s Degree from The American University and a Bachelor’s Degree from Indiana University.

Jeremy King
International Director - Europe

Jeremy King leads the Council’s efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through European markets, driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification, and testing programs.

Gill Woodcock
Senior Director, Certification Programs

Ms. Woodcock is Senior Director of Certification Programs for the PCI Security Standards Council. Her role encompasses operational management of the Council’s existing programs (including QSA, PA-QSA, ISA, ASV, PFI, PCIP and QIR) as well as developing new certifications programs. Ms. Woodcock works closely with the Standards Development, Training and Assessor Quality Management teams within the Council. Ms. Woodcock has been with PCI SSC since February 2010 and has over 20 years of experience in payment cards and information security.

Emma Sutcliffe
Senior Director, Global Head of Standards

Ms. Sutcliffe oversees a number of PCI security standards, including the PCI DSS and PA-DSS. Ms. Sutcliffe chairs PCI SSC’s Technical Working Group (TWG) and the Tokenization Working Group, where she works closely with the Payment Brands and Affiliate members to develop standards, supporting documentation, and guidance papers. Ms. Sutcliffe has over 15 years’ information security experience and is a current CISSP, CISM, and CISA.

Laura Gray
Senior Director, Communications

Ms. Gray develops and executes integrated communications strategies that inform, educate and help PCI Security Standards Council stakeholders take advantage of PCI SSC programs, resources, research and initiatives.

PCI SSC Executive Committee

Robin Trickel
American Express

Robin Trickel is Vice President, Industry Engagement, Regulation, Marketing, & Global Network Policy for the American Express Global Network. Ms. Trickel leads a team of professionals who create and maintain payment standards, manage regulatory impacts, support marketing and develop policy (operating rules) for American Express’ network business. She leads American Express’ relationships with important industry organizations, including U.S. Payments Forum, EMVCo, PCI Security Standards Council and W3C.

Ms. Trickel joined American Express in 2014 from Heartland Payment Systems, where she led the Product Compliance division. Ms. Trickel has almost 20 years of payment industry experience, holds a BBA in Accounting from Southern Methodist University and is a Certified Information Systems Security Professional (CISSP).

Ed O'Neill

Ed O’Neill is currently Director of Payments Security for Discover where he leads the emerging payments protection, data security compliance, data compromise investigation and fraud prevention programs.

Ed has over 15 years of financial services and risk management experience and has held various positions at the Federal Reserve Bank of Chicago, Discover and PULSE. Prior to re-joining Discover in July 2018, Ed was most recently Vice President of Secure Payments at the Federal Reserve Bank of Chicago where he helped lead the development and implementation of the Federal Reserve’s payment security strategy to reduce fraud risk and advance the safety, security and resiliency of the U.S. payment system.

Ed holds Master of Business Administration and Bachelor of Business Administration degrees from Loyola University of Chicago and is a Certified Information Systems Security Professional (CISSP). Ed represents Discover on the PCI Security Standards Council, LLC as a member of the Executive Committee.

Lib de Veyra (Chairperson)
JCB International

Mr. de Veyra is responsible for JCB's global fraud risk management, which includes its security compliance programs, network fraud and response management to account data compromises. Mr. de Veyra is also a contributor to the PCI Security Standards Council in the development of security standards and programs serving in the Executive Committee, Management Committee and several technical and operational working groups.

Mr. de Veyra has more than 23 years of experience in the payment card industry, in various roles and disciplines including security, risk, compliance, card issuance, merchant acquiring, finance and business planning. Mr. de Veyra holds a Bachelor's degree in Economics from the University of California, Los Angeles.

Bruce Rutherford

Bruce Rutherford is Senior Vice President, Security Standards & Solutions at Mastercard. He is responsible for the evolution and deployment of industry terminal and data security standards including the PCI Standards, tokenization and encryption, card manufacturer security evaluation, security R&D and evaluations through the Mastercard DigiSec Lab, and product management and related operations for Holograms. In addition, he oversees the fraud intelligence, analytics and reporting function for Mastercard. Mr. Rutherford represents Mastercard on the executive committee of the PCI Security Standards Council and also represents Mastercard on the executive committee and tokenization working group of EMVCo. He is also a member of the board of directors of Brighterion, Inc., a San Francisco-based artificial intelligence technology software firm whose products are integrated with MasterCard risk product offerings.

Mr. Rutherford's extensive experience in product management and the development and evolution of industry security standards gives him unique insight into the challenges and opportunities of deploying emerging technologies to help Mastercard customers and merchants reduce their exposure to fraud and other financial risks.

Mr. Rutherford joined MasterCard in 1997 and has had previous roles within the Mastercard Advanced Technology and Payment System Integrity organizations where he managed internet and data security initiatives. His prior experience includes senior management responsibilities associated with the product management and service development of voice telephony initiatives for major telecommunications carriers including AT&T and MCI.

Mr. Rutherford is a graduate of The Pennsylvania State University and holds a Bachelor of Science degree and a Master of Business Administration degree.

Karteek Patel
Visa Inc.

As Senior Vice President of Global Product and Innovation Risk at Visa, Inc., Karteek focuses on the successful ideation, development and implementation of new Visa products and innovation efforts globally, while ensuring the security and safety of the payments ecosystem, and its stakeholders.

Karteek has over 20 years of experience in product management, development and delivery and has contributed to the success of Visa since 2002 in key product areas, including Processing, Commercial, Back Office, Mobile, Loyalty, and Information products and platforms. Additionally, he has been instrumental in developing centralized product development and service support teams for the company.

Karteek is a graduate of Santa Clara University and holds a Bachelor of Science degree in Decision and Information Sciences.

PCI SSC Board of Advisors

The PCI Security Standards Council Board of Advisors is composed of representatives of Participating Organizations. This cross-industry group is chartered to ensure that all voices are heard in the ongoing development of PCI Security Standards, with representation from across the payment chain -- merchants, financial institutions, processors and more -- as well as from around the world.

The 2019-2020 Board Members are listed below and may be contacted at boa@pcisecuritystandards.org

Sandro Bucchianeri

Marie-Christine Vittet

Mike Wadsworth

Andy White

James Vale

Kathleen Patentreger

Glauco Luiz Cardoso Sampaio

Matt Fearin

Amy Zirkle

Josh Knopp

Rodney Farmer

Pierre Chassigneux

Gert Huizinga

Timothy Horton

Stacy Hughes

Eric Brier

Diane Rogerson

Rama Shunn

Mathan Babu Kasilingam

Sam Gabbai

Angel Grant

Erik Pols

Todd Aument

Dave Estlick

Richard Agostino

Amanda Andrews

Dave Faoro

Mike Cook

Tracey Long

Various Headshots taken by David Shopper Photography

Our website uses both essential and non-essential cookies to analyze use of our products and services. This agreement applies to non-essential cookies only. By accepting, you are agreeing to third parties receiving information about your usage and activities. If you choose to decline this agreement, we will continue to use essential cookies for the operation of the website. View Policy