Justin Leapline

Practice Lead, PCI


Justin Leapline has over twenty (20) years of experience involving system administration, software development, and information security. His core skills include regulatory and contractual compliance within the information security realm, security program management, and general governance practices and frameworks. Before joining TrustedSec, Justin consulted with numerous Fortune 1000 companies in the areas of information systems, audit, governance and information security. He has also led the governance and security practices for leading eCommerce and large financial services companies. Additionally, Justin has spoken at numerous conferences concerning risk management, payment card industry (PCI), and general information security practices.

Education & Certifications

Certified Informational Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified ISO 27001 Auditor, PCI Qualified Security Assessor (QSA), and Certified Ethical Hacker (CEH), AWS Certified Cloud Practitioner.

Recent Blog Posts

Big Changes in Store for PCI DSS v4.0, and More!

This week I attended the PCI North American Community Meeting. If you are in the payment security space and haven’t been to a community meeting, I would recommend that you put this on your conference schedule. It’s great to connect with like-minded individuals, including card brands, banks, large customers, vendors, and yes, assessors – both internal (ISAs)...
TrustedSec Blogs + Articles logo

How to Choose a PCI QSA

As of writing this article, there are currently 378 PCI QSA Companies worldwide that are certified by the PCI Council. That is quite a selection to narrow your choices. So what do you look for in good qualities to partner with? What attributes do you form that basis on? Throughout this blog, we are going...
TrustedSec Blogs + Articles logo

New PCI Controls and What You Should Know

It is finally here: the forward-dated controls that have been in existence since the release of version 3.2 of the PCI Data Security Standard, from April 2016. Hopefully, by now, you have had a chance to review them, but if you haven’t we are going to take a deep dive on each of the new...
View all posts from Justin

Recent Webinars

Resilience in the Middle of the Storm—Preparing Security Teams for Disaster

This webinar was recorded on 3/19/20. As populations are affected by disaster, what can you and your organization do now to mitigate security risk? Preparing for the worst For those who aren’t fully prepared, what are the major areas that...

Ask Me Anything with PCI Practice Lead Justin Leapline

Join Justin Leapline for a live webinar in which he’ll answer your questions about the Payment Security Industry. Want to know what the biggest issues others are having with complying? Are you wondering what potential changes to the standard could...

Blockchain Security—Aligning to upcoming digital business initiatives

This webinar was recorded on Wednesday, October 16th Blockchain technology has been out for a while and has advertised many benefits over various transactions, including transparency, security, and speed. With these promises, several organizations have exploratory projects looking to take advantage...
View all webinars from Justin
Justin Leapline

Want to work with Justin Leapline or someone like him?

The TrustedSec team is comprised of experienced and qualified security professionals. Contact us to learn more about our services, our team, and how we can help you.
Contact Us