Security & Compliance Training
Delap training covers various facets of retail payment security. With a focus on protecting the cardholder authentication, the classes cover TR-39 concepts and controls for symmetric and asymmetric encryption, an introduction to EMV, E2E, and payment tokenization.
We can provide custom training classes to assist companies in assessing compliance with PCI DSS requirements and other cyber security related risks. Our training helps customers evaluate risks related to security as they seek to comply with industry requirements and prioritize their cyber security strategy.
Meet Your Instructors
David Buchanan, Partner
David has over 10 years of extensive experience in information technology (IT) systems across multiple industries, including healthcare, banking, and retail payments. David leads Delap’s PCI DSS and SOC reporting practices, providing domestic and international clients with information security services including risk assessments, internal control reviews, network security analysis, and information security consulting.
Mr. Buchanan holds the following certifications: CPA, QSA, CEH, CCNA & Security, CTGA, PCIP
Andrea Beatty, Principal
Andrea has spent over 20 years in the financial services industry, cultivating and narrowing her technical expertise to focus in PIN Security and Key Management related to POS and ATM transactions. Ms. Beatty developed and implemented the most extensive Processor‑driven PIN Security and Key Management compliance reporting program in the retail banking industry. As a subject matter expert, she has provided risk review and consulting services to banks, processors, merchant processors, device manufacturers, certificate authorities, remote key delivery hosts, and key injection facilities in the US and internationally.
Outside of work, Andrea enjoys spending time with her family and friends, as well as hobbies such as sewing and crocheting, riding along enjoying the scenery, and being outside in the garden.
Ms. Beatty is vice chairperson of the ASC X9F6 Working Group, serving as the Technical Editor for the extensive rewrite of ANS X9.24 Part 1, published in 2017. Andrea also serves as a X9 board member and US Expert to ISO TC68 SC2 WG13, involved in development of international versions of security standards.
•ANSI TR-39 and PCI PIN v3.0
•PCI DSS Assessments
•SSAE 16 (SOC reports)
•PCI PIN Readiness and Remediation
•Cryptographic Key Management Consulting —
Symmetric and PKI