Discover the latest in cybersecurity trends at SecurityMetrics Summit

Watch SecurityMetrics Summit and learn how to improve your data security and compliance.

Register to: 

  • Learn more about PCI compliance, Penetration testing techniques, Ransomware, Security and compliance technologies, and more
  • Hear from the brightest minds in the industry. 
  • Improve your job skills with the latest cybersecurity strategies.

Intro To Threat Intelligence Center

Brad Caldwell and John Bartholomew (JB)

Scoping: What You Really Need To Know (Roundtable)

Matt Halbleib, Mark Miner, and Michael Simpson, facilitated by Jen Stone

How To Prevent Formjacking And Ecommerce Skimming

Aaron Willis

Security Year Review

Matt Heffelfinger, Gary Glover, and David Ellis, facilitated by Lee Pierce

What To Expect When You're Expecting To Be PCI Compliant (Roundtable)

Trevor Hansen, David Page, and Ben Christensen, facilitated by Jen Stone

Ransomware: Don't Panic—Prepare

Gary Glover and David Ellis

Questions To Ask When Choosing An MSSP (Roundtable)

Matthew Heffelfinger and Forrest Barth, facilitated by Greg Steffen

Penetration Testing FAQs

Chad Horton

PCI DSS 4.0: The Future of PCI Compliance

Gary Glover
VP Security Assessments

How to Conduct a Remote PCI Assessment

Matt Halbleib
Director of Security Assessments

COVID-19 Lessons For A Secure Remote Workplace

Michael Simpson
Principal Security Analyst

Healthcare Problems, Security Solutions

Jen Stone
Principal Security Analyst

What I've Learned From 10 Years In PCI Compliance Programs

Scott Robinson
Director of Customer Success

5 Acquirer Tips For PCI Program Success

Kelly Rodriguez
Program Manager

Top 10 Fatal Flaws In SMB Networks

Greg Steffen
Director of Managed Security Operations and Support

Panel Discussion: Current Cyber Threats And Why You Should Care

Matt Heffelfinger (Director of SIEM Operations) and Forrest Barth (Security Operations)

GDPR & CCPA: Privacy Changes And Your Role In Data Protection

Brittany Woodard
Product Manager

HITRUST Assessment Basics

Trevor Hansen
Security Analyst

Save Money On Your PCI Audit: How Scoping Boosts Your Budget

George Mateaki
Principal Security Analyst

What to Expect When You're Expecting A Penetration Test

Chad Horton (Senior Director Penetration Testing) and Terrill Thorn (Pen Test Project Manager)

PCI Myth-Busters: 10 Misconceptions About Security Audits

Lee Pierce
Director of Sales Operations

Easy, Breezy PCI Compliance Validation

Sam Strong (Product Manager)

Why Partner with SecurityMetrics for Data Security and Compliance?

Jason Leland
Director of Enterprise Sales

Meeting Merchant Needs: Balance Value And Simplicity

Robbi Watson
Director of Business Development

Panel Discussion: Ecommerce Skimming Attacks And Solutions

Robert Reid (Director Product Management), Aaron Willis (Forensic Analyst), and Dave Ellis (VP Investigations)


Georgi Kirov, CEO of SWICS Ltd.

By relying on SecurityMetrics as your PCI assessor partner guarantee that you can achieve your compliance surely and effectively. You will got great service from a great team from experts in any area of the compliance, security awareness and the standard that you need to be compliant with. In addition, their site provide various options and information like articles, videos, webinars that can help you stay best informed and secure.

2020 Attendee

It was a good presentation, thank you to all the hosts who conducted this event also thank you to all sponsors. Thank you for providing this awesome summit event.

Gene McMurtrey Merchant Services Compliance Manager Brigham Young University

Summit was excellent. Knowledgeable presenters, sharing real time examples of fraud and how that fraud could have been prevented. A great reminder that securing sensitive information requires attention on daily basis, not just once a year to remain compliant.

Otega Ebinum, ICT Security Manager, Cyber1 Systems Network Int. Ltd.

Nice Summit with awesome professionals dedicated to solving security problems.

Joon Chang Senior Information Security Specialist University of Southern California

SecurityMetrics summit was very informative. It allowed me to navigate easily through various regulation topics such as HIPAA presented by subject matter experts, provided great insights to enhance our existing IRP assessments, and gave good guidance on upcoming PCI 4.0 compliance. Thank you and look forward to next year's summit!

hands reaching

Who Is SecurityMetrics Summit For?

SecurityMetrics Summit has the latest information you need as a PCI Manager, Compliance Officer, Security Officer, Information Officer, IT Administrator, and other security professionals.

Summit is ideal for those working in universities, retail, government, acquiring banks, and the healthcare industry. If your job includes anything related to compliance, payment card data, or cybersecurity, this is a must-attend event.



Brad Caldwell

CEO of SecurityMetrics

Brad founded SecurityMetrics in February of 2000. SecurityMetrics helps businesses around the world keep their data safe from threat actors.

David Ellis

VP of Forensic Investigations        GCIH, QSA, PFI, CISSP

David has over 25 years of law enforcement and investigative experience.

Aaron Willis

Forensic Analyst                                QSA, CISSP, PFI

Aaron has over 15 years of diverse experience in all aspects of IT security, business intelligence, data mining, SaaS consulting, and programming.

Matthew Heffelfinger

Director of SIEM Operations      GSTRT, CyRP, GRCP, SSAP, ITIL4-F, GISF, and more

Heff has over 15 years in a variety of cyber areas including security operations, cyber governance, security training, and awareness.

Trevor Hansen

Principal Security Analyst                  CISSP, CISA, QSA, CCSFP

Trevor also worked as an Auditor for over 8 years performing PCI, HIPAA, and HITRUST assessments.

Jen Stone 

Principal Security Analyst                QSA, CISSP, CISA, MCIS, CCSFP

Jen has completed over 100 security assessments that include PCI, HIPAA, CIC CSC (SANS Top 20), and 23 NYCRR 500.

Mark Miner 

Director of P2PE Assessments              CISSP, QSA, P2PE, QPA, PA-QSA

Mark has over 21 years of experience in network security.

Greg Steffen

Director of Managed Security Services                                                  CISSP, CDCDP

Greg has experience leading 24x7 IT operations teams, programs, and projects. 

Gary Glover

VP of Security Assessments           CISSP, CISA, QSA, PA-QSA

Gary has over 10 years of PCI audit experience and 25 years of Star Wars quoting skills

John Bartholomew

Senior VP of Technology 

John is responsible for growth through leadership, networking, and product innovation.

Chad Horton

Senior Director of Penetration Testing  CISSP

Chad manages a team of eight employees who conduct manual assessments of web applications and corporate networks.

David Page

Principal Security Analyst            CISSP, CISA, QSA

David has over 18 years of experience in network and system engineering, design, and security.

Forrest Barth

SOC Analyst                                      CISSP, CMNO, Security+

Forrest has 14 years of information security and systems administration experience. 

Ben Christensen

Senior Security Analyst                        CISA, QSA

Ben has worked in the IT sector for over 20 years and currently performs security assessments for merchants/service providers looking to become PCI compliant.

Michael Simpson

Principal Security Analyst                QSA, CISSP, CCNP

Michael has over 15 years in the IT Security industry with a demonstrated history of helping large enterprise and higher education entities tackle their compliance challenges.

Matt Halbleib

Audit Director                                  CISSP, CISA, QSA (P2PE), PA-QSA (P2PE), CCSFP

Matt has completed over 100 PCI DSS, PA-DSS, and P2PE security assessments. 

Lee Pierce 

Director of Sales Operations

Lee has 15 years with the company focus on enterprise customers (audits, penetration testing, forensics, larger vulnerability scanning accounts).


close payment gaps

Who Is SecurityMetrics?

SecurityMetrics has helped customers close payment data security and compliance gaps to avoid data breaches for over 20 years. We provide managed data security services and are certified to help customers achieve the highest data security and compliance standards. We help local shops, as well as some of the world’s largest brands, protect their data through managed data security and compliance services (PCI, HIPAA, HITRUST, GDPR).

Watch Summit