Tim Thomas • Product Management, ControlScan

Tim Thomas oversees the product management function for ControlScan. Tim is focused on enhancing the company’s product and service deliverables to guide businesses through the complexity of the Payment Card Industry Data Security Standard (PCI DSS) as well as other security and privacy compliance processes.

Prior to joining ControlScan, Tim built and led technical support teams for TeleMate.Net software, a network monitoring and security solutions company, as well as ServiceCentral Software and CipherTrust, an email security and anti-spam software company that is now part of McAfee/Intel. Tim is a member of the PCI Security Standards Council’s SMB Task Force. He tweets at @tethomas_99.

Chris Bucolo • Director of Market Strategy, ControlScan

Chris Bucolo has over 30 years’ experience in the financial technology and payments industries. In his current role as Director of Market Strategy for ControlScan, Chris is responsible for enhancing the company’s payments industry partnerships by identifying and delivering data security and compliance solutions that maximize the relationship between merchant service providers and their customers. Previously he managed business development for the company’s security consulting and security engineering services.

Chris possesses a wealth of knowledge in payment security best practices and merchant relationships, having built and sold his own Independent Sales Organization (ISO), which was one of the first in the country to embrace Payment Card Industry (PCI) security standards and include related services among its core merchant offerings. He is a regular speaker at payments and security industry events, and his commentary has appeared in several notable publications as well as AP stories and live television interviews.

PCI Compliance Support: It’s a Big Deal!

March 16, 2016 • Published by Joan Herbig Acquirer ProgramsAcquirers, PCI Risk

No one ever said complying with the PCI DSS was easy. In fact, it can be a real headache for businesses that don’t have access to an IT professional, let alone a payment card security expert at their beck and call. Today most merchant acquirers … Read more

October is National Cyber Security Awareness Month!

October 7, 2015 • Published by Joan Herbig Industry TopicsCyber Security, Cybersecurity, National Cyber Security Awareness Month, NCSAM, Phishing, Security Awareness

October is a month of awareness for many causes, one of which is cyber security. National Cyber Security Awareness Month (NCSAM) is a growing global effort among colleges and universities, businesses, government agencies, associations, nonprofit organizations and individuals to promote online safety awareness. People are … Read more

Does PCI Compliance Equal Security? [Video]

September 22, 2015 • Published by Joan Herbig PCI 101Data Breaches, Data Security, Managed Security

Companies are innovating all the time, which means new platforms and devices are constantly coming into play. These emerging technologies often generate, transmit and/or store vital business and customer data. At the same time the bad guys are also innovating. These hackers are organized, agile … Read more

A Fresh New Start Means a Fresh New Look at your PCI Status

January 8, 2014 • Published by Joan Herbig Best PracticesASV, New Year's Resolution, SAQ, Security Awareness, Small Business, SMB

Happy New Year! It’s the time of year when many of us celebrate a fresh start and make new resolutions. Your resolution may have been one of the common ones: get to the gym more, stress less, actually use those vacation days this year. And … Read more

Holiday POS Security: A Quick Reference for the SMB Retailer

December 10, 2012 • Published by Joan Herbig Best PracticesHolidays, Merchants, PCI Risk, POS, Security Awareness, Small Business, SMB

Shoppers move past many stores brimming with lots of sales, luring them in for big savings at Woodland Mall. (T.J. Hamilton | The Grand Rapids Press)

SMB retailers are now in the throes of the holiday season. While the focus is (understandably) on making sales, it is not a time to let your guard down when it comes to POS security. That’s because data thieves are relying upon the holiday hustle … Read more

Helping SMB Merchants Cross the Chasm of PCI Compliance [Infographic]

November 13, 2012 • Published by Joan Herbig Acquirer ProgramsAcquirer Survey, Ecommerce, Infographic, level 4, Merchants, Security Awareness, Small Business, SMB

The last four years have been marked by continued growth in Level 4 merchant data compromise, yet a recent study report from ControlScan and Merchant Warehouse reveals that many SMB merchants are still not receiving—or effectively responding to—messages about cardholder data security. How ISOs and Acquirers can … Read more