PCI Security Standards Council®

Return to Newsroom


Global Cybersecurity Leaders Collaborate on Security Standards and Solutions for the Future of Payment Security

Annual meeting emphasizes payments industry participation and cybersecurity knowledge as critical to securing payment acceptance in new and emerging payment channels and increasing payment security globally

VANCOUVER, 19 September 2019 —The new PCI Software Security Framework, soon to be released PCI Standard for contactless payments on commercial off-the-shelf (COTS) mobile devices, and development of PCI Data Security Standard Version 4.0 (PCI DSS v4.0) led the agenda at the PCI Security Standards Council’s annual North America Community Meeting. More than 1,200 PCI SSC stakeholders participated in this week’s event, which provides a forum for industry collaboration, information-sharing, and knowledge-building to help drive understanding and adoption of PCI Security Standards globally. 

Executive Director Lance J. Johnson kicked off the agenda with a keynote address reaffirming the importance of the Council’s mission and the critical role that PCI SSC stakeholders play in achieving it.

“The Council’s mission to enhance global payment account data security by developing standards and supporting services that drive education, awareness, and effective implementation by stakeholders is the same today as it was when the organization was founded. What has changed, is the scope of PCI SSC activities needed to support an increasingly complex and global payments ecosystem,” said Johnson.

Introducing the Strategic Framework that guides the Council’s efforts to ensure they are aligned with its mission and support the needs of the global payments industry, he added, “The Strategic Framework reaffirms the Council’s mission and extends it to include four strategic pillars: increase industry participation and knowledge, evolve security standards and validation, secure emerging payment channels and increase standards alignment and consistency. In a rapidly changing environment, stakeholders can be certain that these pillars will be constants in the Council’s efforts to provide standards and resources for securing payment data.” Johnson talks more about the Strategic Framework in a post on the PCI Perspectives blog: Executive Director Q&A: PCI SSC Strategic Framework.

Chief Technology Officer Troy Leach continued the discussion in his presentation by illustrating examples of the Strategic Framework in action with examples such as next year’s revision to the PCI Data Security Standard (DSS) and recent changes in community engagement. “The updated Request for Comment process exemplifies how critical global industry participation is when developing the next generation of security standards to evolve alongside a quickly changing world of payments.”

Key initiatives discussed at the meeting included:

Additional highlights from the North American Community Meeting in Vancouver are available on the PCI Perspectives Blog.


About the PCI Security Standards Council
The PCI Security Standards Council (PCI SSC) leads a global, cross-industry effort to increase payment security by providing industry-driven, flexible and effective data security standards and programs that help businesses detect, mitigate and prevent cyberattacks and breaches. Connect with the PCI SSC on LinkedIn. Join the conversation on Twitter @PCISSC. Subscribe to the PCI Perspectives Blog.


Our website uses both essential and non-essential cookies (further described in our Privacy Policy) to analyze use of our products and services. By clicking “ACCEPT” below, you are agreeing to our use of non-essential cookies to provide third parties with information about your usage and activities. If you click “DECLINE” below, we will continue to use essential cookies for the operation of the website.