Implementing security controls in compliance with PCI in an eCommerce platform is difficult enough, but try it in a multi-billion dollar business with over a dozen different products taking payments in different ways without a central security team. A tale of my learnings and Trade Me’s PCI successes over the past couple of years.

$ whoami⌗

Ex-auditor, now security and compliance manager based in Wellington. Favourite part of her job is making audits less scary and stressful for the teams involved. Plays healer in video games . Struggles to keep houseplants alive.