Josh joined the PCI Security Standards Council in January 2020 and brings with him 14 years of overall Information Security experience and 7 years of direct assessor experience. As a former PCI QSA, ISO 27001, 22301 and 9001 Lead Auditor, and a TR-39 (Certified TG-3 Auditor), Josh has performed hundreds of security assessments against internationally recognized industry standards including the aforementioned ISO 27001 (Information Security Management Systems) and ISO 22301 (Business Continuity Management Systems) PCI-DSS, PCI-PIN and ASC X9 TR-39. Prior to his work as an assessor, Josh worked as a technical consultant within the electronic payments industry supporting clients’ secure key management programs through development and support of FIPS 140-2 Level 3 Hardware Security Modules (HSMs) and secure cryptographic key injection/loading, management and distribution solutions.