Welcome to my blog - the purpose of this blog is to document issues, news, information, and philosophy around PCI and information security in the retail / hospitality ‘universe.’

Personally, I have roughly 15 years of experience working with large, national organizations to implement business-focused technology and finance solutions that are driven by the unique requirements of retail and are focused on solving complex business issues (such as customer interaction, payments solutions, change management in technology, etc.)

I am not a security consultant (although I work for a highly-accomplished information security consulting firm) - my focus is the business of retail/hospitality and how information security affects our clients and the industry…

Given my background with payments technology and the role that I have had played in the marketplace in helping organizations understand how to align financial strategy to manage to the changing situation in retail, I have had a lot of PCI exposure and have decided to concentrate on addressing PCI with retailers and hospitality organizations directly.

PCI is a journey and so is this blog. I am putting this ‘out there’ primarily for myself - to help me understand and centralize the broad range of issues affecting information security in the retail environment; however, if it proves useful or valuable for the community, all the better.

If you are reading this and want to provide feedback regarding this blog or it’s content, please register and comment. I’m going to add a feedback form, but haven’t done so yet. Thanks.

Alex