Top leaders in the financial sector convened at the exclusive "PCI DSS 4.0 Compliance" roundtable discussion at the Four Seasons Hotel - Qatar, co-hosted by KPMG, Fortanix and Gulf IT. The event brought together C-suite executives from the banking sector, providing them with crucial insights and strategies to navigate the forthcoming updates to PCI DSS standards and emerging cybersecurity challenges.

The roundtable served as a vital platform for addressing the dynamic digital landscape impacting cybersecurity strategies. Leaders explored regulatory updates, cutting-edge cryptographic solutions, and future-proof strategies to proactively mitigate cyber threats in an engaging morning, filled with productive high-level discussions.

Throughout the event, participants delved into current and important topics, ranging from the challenges in horizon scanning to structuring a sound compliance program that meets the various relevant standards. Notable highlights included insights on new requirements tailored to combat and mitigate financial fraud and an exploration of the ever-evolving digital landscape shaping today’s cybersecurity strategies.

Marwan Zalloum, Director of Cyber Services at KPMG in Qatar, commented on the significance of this exclusive session "Our focus at KPMG in Qatar is to empower seamless compliance journeys and programs to enable regulatory and industry compliance requirements as well as enhance security posture to meet the evolving threat landscape in the digital era. The adoption of PCI DSS 4.0 is a critical element in the commitment to enhance the security posture of the financial sector against sophisticated cyber threats. This roundtable has been an essential platform for leaders to converge and shape the security strategies that will safeguard the future of banking.”

Andy Buckland, EMEA VP and General Manager at Fortanix stated "Our discussions underscored the critical role of robust cybersecurity measures in establishing trust in today’s digital banking era. At the roundtable, Fortanix showcased how our innovative data-first security solutions can significantly bolster a bank's competitive edge while securing critical assets."

Nitin Bhatnagar, India, South Asia and Middle East at PCI DSS Security Council also remarked “Securing payment data with data security standards in an evolving payment ecosystem is critical to build robust payments infrastructure keeping security at the centre of everything. PCI DSS v4.0 is a unique example of how the Council is evolving security standards and validation programs to support.”

The roundtable session was a resounding success, fostering valuable collaborations and insightful exchanges among the leaders in attendance. It highlighted the importance of proactive approaches in compliance and cybersecurity to navigate the complexities of the modern financial landscape.


About KPMG:  

KPMG is a global organization of independent professional services firms providing Audit, Tax and Advisory services. KPMG is the brand under which the member firms of KPMG International Limited (“KPMG International”) operate and provide professional services. “KPMG” is used to refer to individual member firms within the KPMG organization or to one or more member firms collectively.

KPMG firms operate in 143 countries and territories with more than 273,000 partners and employees working in member firms around the world. Each KPMG firm is a legally distinct and separate entity and describes itself as such. Each KPMG member firm is responsible for its own obligations and liabilities.

KPMG International Limited is a private English company limited by guarantee. KPMG International Limited and its related entities do not provide services to clients.

Additional information about KPMG, including our privacy policy, can be found at

For media inquiries, please contact:
Huda Ibrahim:
Bassel Abou Ayash:

About Fortanix

Fortanix is a global leader in data security. We prioritize data exposure management, as traditional perimeter-defence measures leave your data vulnerable to malicious threats in hybrid multi-cloud environments. Our unified data security platform makes it simple to discover, assess, and remediate data exposure risks, whether it’s to enable a Zero Trust enterprise or to prepare for the post-quantum computing era. We empower enterprises worldwide to maintain the privacy and compliance of their most sensitive and regulated data, wherever it may be. For more information, visit

About Gulf IT

Gulf ITNetwork distribution is a leading provider of IT and Cybersecurity solutions to business in the Gulf region and offer a wide range of products and services, including identity governance, data security and software solutions.

About the PCI Security Standards Council

The PCI Security Standards Council (PCI SSC) leads a global, cross-industry effort to increase payment security by providing industry-driven, flexible, and effective data security standards and programs that help businesses detect, mitigate, and prevent cyberattacks and breaches. Connect with the PCI SSC on LinkedIn. Join the conversation on X (formerly Twitter) @PCISSC. Subscribe to the PCI Perspectives Blog. Listen to the Coffee with the Council podcast.