Welcome to PaySec

I’m Gareth Bowker, and I provide payments security and information security consulting. I’ve worked in information security for over 20 years, and in payments security for the last 18 of those years.

Services

Struggling with PCI DSS?

Are you struggling to implement PCI standards such as PCI DSS, or aligning those requirements with other BAU processes? I trained many of the PCI assessors out there today, and led the implementation of online payments in a PCI DSS-compliant manner for the PCI Council itself.

Want to Improve your QSA Company?

Perhaps you’re an assessor company, looking for someone with extensive experience of the various PCI standards, to help transform your team of assessors? I was one of the very first PCI-trained assessors in Europe, way back in 2006, and I’ve been helping assessors and companies implementing PCI standards in various ways since then.

Need Developer Training?

Maybe your developers need training on best practices for securing personal data and/or payment data on the web or in databases, so that you don’t become the next breach statistic? I’ve developed training, and led training teams, delivering information-dense multi-day content in a way that keeps people engaged.

Having Cloud Security Issues?

Maybe you’re moving your infrastructure from on-premises to a cloud-based infrastructure? I led the PCI Council’s own move to the cloud, back in 2015, and kept it secure.

Other Infosec and Payments Consulting

Or maybe you just need a few hours chatting with someone with a deep understanding of payment systems, payment security, and the associated ecosystem and standards? Get in touch!