Title Image


Security & Compliance Training

Delap training covers various facets of retail payment security. With a focus on protecting the cardholder authentication, the classes cover TR-39 concepts and controls for symmetric and asymmetric encryption as outlined in current ANSI Standards and PCI PIN Security Requirements.  See course descriptions for more information.

We can provide custom training classes to assist companies in assessing compliance with PCI DSS requirements and other cyber security related risks. Our training helps customers evaluate risks related to security as they seek to comply with industry requirements and prioritize their cyber security strategy.

Meet Your Instructors

David - Bio Photo_r2_c1

David Buchanan, Partner

David has over 10 years of extensive experience in information technology (IT) systems across multiple industries, including healthcare, banking, and retail payments. David leads Delap’s PCI DSS and SOC reporting practices, providing domestic and international clients with information security services including risk assessments, internal control reviews, network security analysis, and information security consulting.

Mr. Buchanan holds the following certifications: CPA, QSA, CEH, CCNA & Security, CTGA, PCIP

Andrea Beatty, Principal

Andrea has spent over 20 years in the financial services industry, cultivating and narrowing her technical expertise to focus in PIN Security and Key Management related to POS and ATM transactions. Ms. Beatty developed and implemented the most extensive Processor‑driven PIN Security and Key Management compliance reporting program in the retail banking industry. As a subject matter expert, she has provided risk review and consulting services to banks, processors, merchant processors, device manufacturers, certificate authorities, remote key delivery hosts, and key injection facilities in the US and internationally.

Outside of work, Andrea enjoys spending time with her family and friends, as well as hobbies such as sewing and crocheting, riding along enjoying the scenery, and being outside in the garden.

Ms. Beatty is vice chairperson of the ASC X9F6 Working Group, serving as the Technical Editor for the extensive rewrite of ANS X9.24 Part 1, published in 2017. Andrea also serves as a X9 board member and US Expert to ISO TC68 SC2 WG13, involved in development of international versions of security standards.

Other Services:

•ANSI TR-39 and PCI PIN v3.0
•PCI DSS Assessments
•SSAE 16 (SOC reports)
•PCI PIN Readiness and Remediation
•Cryptographic Key Management Consulting —
Symmetric and PKI

National Association of State Boards of Accountancy

Delap LLP is registered with the National Association of State Boards of Accountancy (NASBA), as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through their website:

Ready, Let's Talk

When you engage Delap Cyber, you open the door to a collaborative partnership where the focus is on helping you achieve the best possible outcome for your business. You share information, challenges, concerns, etc. and we provide you with situational analysis, independent assessments, and fact-based guidance tailored to your environment, and ongoing subject matter expertise empowering your business to reach the next level. Isn’t it great having someone to rely on?