Preventing payment chain vulnerabilities with tokenization: 1 Year Later (Facilitated Panel)
Target Audience
The ideal audience member for this presentation is any merchant organization professional interested in understanding the current state of tokenization as a data loss prevention technology, as well as professionals from those organizations that already have begun a process of implementing tokenization.
Presentation Technical Level
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Advanced - Introduction of complex concepts. For attendees with significant industry experience.
Summary of Topic
Last year, this panel discussion, including merchant- and industry-pulse observers from Internet Retailer and Digital Transactions, looked at the interest in and value of still-evolving tokenization technologies and approaches. The far-ranging conversation focused on understanding the role of tokenization in reducing the scope of PCI compliance, eliminating certain insurance costs and protecting merchant brands in the event of data loss. Fast-forward one year. Recently-issued PCI Council guidelines on tokenization and continued merchant concerns about the portability and usability of tokenized card data still stands in the way of broader understanding and adoption, even in the face of historic events such as the card data breach at Sony. This panel will look at the ongoing data security imperative in the context of tokenization. The panel will also serve the merchant’s interest in framing and promoting the broader conversations still needed to make tokenization more approachable and relevant as payment processing infrastructures become more complicated and more customer-data dependent.
Audience Takeaway
The audience should takeaway a clear understanding of the current state of tokenization as a data loss prevention technology, particularly as it relates to PCI relevance and tokenized data portability. In addition, this session should be considered interactive to the extent that merchants should inform panelists of the ongoing challenges and obstacles associated with the implementation of tokenization solutions and other data loss prevention technologies.
Submitters
Presenters
Jason Pavona, Litle & Company
Title
Executive Vice President, Sales & Marketing
Presenter Biography
Jason brings more than 15 years of product development, direct marketing, sales and entrepreneurial experience to Litle & Co. Jason leads Litle’s Sales & Marketing strategy, which includes business development and sales; product strategy and development; brand awareness marketing and communications; and, partner communities and initiatives. Before joining Litle, Jason served as a Partner of Enflect, LLC which developed several product companies in the payment, loyalty, financial services and software industries. Prior to Enflect, Jason developed Wallaware, Inc., a wireless router company, where he drove the company’s first U.S and International sales, raised several rounds of private equity capital and opened operations in the US and internationally. Before Wallaware, Jason was Director of Wireless and Personalization at Terra Lycos, a top three visited Internet destination. At Terra Lycos he created some of the first wireless portal solutions under the brand Lycos Anywhere® in 30 countries. He also managed Terra Lycos’s Network Personalization products, including MyLycos®, the award winning personalization destination with 20 million registered users. Before Terra Lycos, Jason was instrumental in building INPHO, Inc. (including domania.com, which today is part of IAC’s LendingTree) a pioneer in the Internet real estate space. Jason is a board member of the (MRC) Americas Advisory Board for the Merchant Risk Council. Jason received a BS in Finance and Entrepreneurial Studies from Babson College.
Walter Conway, 403 Labs
Title
Presenter Biography
Walt Conway is a Payment Card Industry Qualified Security Assessor (QSA) and e-commerce consultant with 403 Labs applying his 30-years of electronic payments and technology management experience to helping organizations plan, implement, and manage their credit card and e-commerce programs including achieving PCI compliance. Walt spent 11years with Visa, and two years as president of an Internet-based payment processor. He works with a wide range of merchants, payment gateways, and software providers, helping them plan, implement, and manage their payment card and e-commerce programs, including achieving PCI DSS compliance.
In addition to his QSA duties, Walt is PCI columnist for StorefrontBacktalk.com, focusing on issues facing retailers, and he conducts PCI training workshops nationwide. He is a frequent speaker on PCI DSS, security, and ecommerce topics at professional conferences and webinars. Walt writes extensively on PCI compliance for industry and trade publications, most recently completing the Tokenization Buyer’s Guide to help retailers and payment processors implement tokenization to reduce their PCI scope.
Walt and his wife live in San Francisco.