Speakers

Carlos Caetano
Associate Regional Director – Brazil, PCI Security Standards Council

 Mr. Caetano is responsible for driving awareness and adoption of PCI Standards within Brazil, working closely with merchants, acquirers, financial institutions, security practitioners, law enforcement and other key stakeholders across the Brazilian payment eco-system.

Mr. Caetano brings into the Council a wealth of experience, from having spent the last 13 years working in information security including much of the last 10 years working directly on PCI programs. Most recently as the Information Security & Risk Officer for First Data in Brazil, he was responsible for the information security vetting of the strategic projects, information security and data privacy risk management, and managing the PCI certification program for Latin America. Prior to joining First Data, Mr. Caetano worked for Trustwave, holding the position of Delivery Director for Latin America, responsible for providing security services, including the full suite of PCI Standards, to more than 50 enterprises in several countries and industry verticals, including issuing banks, acquiring banks, issuer processors, acquirer processors, call centers, data centers, payment gateways and merchants. Prior to joining Trustwave, Mr. Caetano worked for Cielo, holding the position of Information Security Specialist, being responsible for several fronts on Cielo’s security strategy, including the PCI Compliance Program, incident response, vulnerability management, advanced security tests and application security.

Marcos Eurico
CISO, SKY Brazil

Mr. Eurico is the CISO of SKY Brazil. He has thirteen years of experience in the area of security and audit. Mr. Eurico graduated with a decree in Information Security and holds an MBA people management.

Jeremy King
International Director, PCI Security Standards Council

Mr. King leads the Council’s efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through all international markets, and driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification, and testing programs.

Mauro Lance
Chief Operating Officer, PCI Security Standards Council

Mr. Lance is responsible for the day to day operations, business strategy, investments and growth of the Council. He leads the creation and implementation of programs and world-class processes for certification, assessor quality management and training, critical to the Council’s mission of increasing payment card security globally through adoption of the PCI Security Standards.  Most recently, Mr. Lance held leadership positions at the MIT Media Lab and the World Wide Web Consortium, and was a founding director of the Web Foundation. He is a Fulbright Scholar and holds a Master’s degree in Business Administration from Suffolk University, and a Bachelor’s degree in Business Administration from the Pontificia Universidad Católica de Valparaiso. Mr. Lance has lived and worked in Chile, China, France, and the United States.

Troy Leach
CISSP, CISA, Chief Technology Officer, PCI Security Standards Council

Mr. Leach partners with Council representatives, Participating Organizations and industry leaders to develop comprehensive standards and strategies to secure payment card data and its supporting infrastructure.

He is a subject matter expert on payment security and has testified on several occasions before various House and Senate Congressional committees.  Mr. Leach also provides guidance and security expertise to a multitude of U.S. and international government entities as well as law enforcement.  Mr. Leach serves on several advisory boards such as ANSI X9, Merchant Acquirer Committee and contributes to online communities such as BankInfoSecurity and CSO Online.  Mr. Leach is often quoted in cybersecurity news stories and has been quoted by news organizations including the Washington Post and Wall Street Journal.

Mark Meissner
VP, Public Relations, PCI Security Standards Council

Mr. Meissner works closely with the Council’s leadership team to develop communications strategies that promote the PCI Security Standards and the priority initiatives of the Council globally and with a wide range of stakeholders. Mr. Meissner brings more than two decades of experience in helping Fortune 500 companies, elected officials, trade associations and high profile individuals navigate a myriad of communications challenges in the global marketplace. Over the years Mark has worked with many high-profile clients in engaging with major news organizations such as USA Today, The Washington Post, 60 Minutes, The New York Times, The Wall Street Journal, CNN, and The Times of London.

Before joining the PCI Security Standards Council, Meissner was the Founder and President of MJM Strategies, a strategic communications consulting firm.

Meissner began his career in the world of politics working on the staffs of  U.S. Senator Evan Bayh (D-IN) and U.S. Representative Tim Roemer (D-IN). Meissner served as Campaign Manager for Representative Roemer’s successful 1994 re-election campaign. Mark was a candidate for U.S. Congress in 2002, finishing second among a crowded field of five better known candidates for Indiana’s 2nd Congressional District.

Meissner teaches as an Adjunct Professor at The George Washington University Graduate School of Political Management (GSPM) where he has served on the faculty for more than a decade. Meissner holds a Master’s Degree from The American University and a Bachelor’s Degree from Indiana University.

Flavia Murgades

Project Manager, Information Security, Despegar.com / Decolar.com

Ms. Murgades is in charge of Compliance and their PCI Compliance program. She works in the area of Information Security, but when she started to lead and manage the PCI project in 2015 she was part of the Regional Operations team. She has experience in automating collections, regional support of the company’s processes and mapped processes of all tasks involved (Billing, Collecting, Reimbursements, Financial reconciliation, duplicated tasks), implementation of several applications for example: online ticket emission control that spots errors. Analysis and Reengineering of processes. Flavia also oversaw IT equipment for the automation of collection and emissions processes at the regional level. Ms. Murgades also has several years’ experience working on consultancy firms on the development of custom projects for clients in various verticals of countries like Brazil, Chile, México, Colombia and USA. Flavia has an Information Systems degree from University of Buenos Aires – School of Economics.

Thiago Musa

Director, SpiderLabs in Latin America and Carribean

Thiago Musa is the Director for SpiderLabs in Latin America and Caribbean. He has been in the network and IT security market for over 15 years, and has participated in large-sized strategic projects for the public and private sectors. Before joining Trustwave, Musa worked as the CSO at M4U, a mobile payment and recharge company, a division of the largest acquirer of Latin America. He was also a senior advisor at Módulo Security and a sales engineer at Cisco Iron Port. As a speaker, Musa presented at RSA Asia Pacific, Cartes, ETA Transact, Mind The Sec, Black Hat, H2HC, Sacicon, Roadsec, among others.

Certifications

CISSP, CISM, PCI QSA

Bruno Napolitano
Security Manager, Cielo

Mr. Napolitano has served as Chief Security Officer at Cielo since 2015. Prior to this, Mr. Napolitano  worked at Bank ITAU Unibanco Group for 8 years as CSO and Treasury Compliance Processes Lead. He has also been a member of EY for 8 years, where he is responsible for auditing of investment companies. Mr. Napolitano holds a master‘s degree in Capital Markets from FIPECAFI, and a bachelor’s degree in Accounting from PUC/SP.

Christopher Novak
Director, Investigative Response, Verizon RISK Team

Mr. Novak is a co-founder and the Director of the Verizon Investigative Response Unit – a division of the Verizon RISK Team. He is an internationally recognized expert in the field of Investigative Response and Computer Forensics. He has been involved with information security for over 15 years. Christopher has assisted corporations, government agencies, and attorneys with all matters involving computer forensics, fraud investigations, and crisis management. He has testified as an expert witness in various matters and before such bodies as the Supreme Court of the State of New York. He has also briefed United States congressional committees such as Senate Banking, House Financial Services, Senate Commerce, House Energy & Commerce, Senate Judiciary, House Homeland Security and Senate Homeland Security & Government Affairs.

He has been an advisor on dozens of high-profile intrusion and data breach investigations around the globe. He works closely with local, state and federal law enforcement agencies as well as joint investigative operations coordinated with foreign law enforcement.

Christopher has worked in various consulting positions within Verizon; from individually contributing to a larger tactical response team to his current position, where he manages a global team of highly skilled consultants. Each of these teams around the world maintains experts in various fields of study and practice, such as forensic analysis, malware reverse engineering, threat intelligence analysis and threat actor attribution, among others… Christopher specializes in high-level crisis and emergency response matters and is regularly consulting with executives from Fortune 500 companies with regard to pre-planning for such situations as well as leading active crisis response matters and liaising with external partners.

Christopher is an active public speaker, discussing various topics ranging from high-level best practices to executive-level crisis management. He has been a contributing member of the Verizon Data Breach Investigations Report since its first publication in 2008 and has been featured in such media outlets as The Wall Street Journal, ABC News, American Banker, and many others. Christopher is an active member among multiple industry trade groups and a frequent guest lecturer at universities. He also serves as an advisor for many industry-related associations in an effort to further promote cybersecurity awareness and education as well as working closely with organizations as it relates to various policy initiatives on the topic of cybersecurity.

Christopher holds a Bachelor of Science Degree in Computer Engineering from Rensselaer Polytechnic Institute.

Adam Perella
CISSP, QSA, PA-QSA, P2PE (QSA, PA-QSA), Manager, Sikich LLP

Adam is a Manager at Sikich and is passionate about information security. He began his career learning switching, networking, computer systems and cryptological operations in the U.S. Air Force. His diverse career has included the installation of global networks and the evaluation of communications personnel. In a quality assurance role, he gained an appreciation for the large scope of information security. After the military, he moved on to slice and dice information as a data analyst with a not-for-profit organization. Five years ago, Adam started his career within the payment card industry, performing PCI DSS assessments and, later, PA-DSS validations. In the past few years, Adam has centered his focus on becoming a subject matter expert and thought leader in the area of application security.

Adam is a Certified Information Systems Security Professional (CISSP), Payment Card Industry Qualified Security Assessor (QSA), Payment Application Qualified Security Assessor (PA-QSA), QSA Point-to-Point Encryption (QSA (P2PE)) and PA-QSA Point-to-Point Encryption (PA-QSA (P2PE)). He also holds the CompTIA Security+ certification.

Jorilson Rodrigues
Federal Criminalist, Computer Forensics Unit, Brazilian Federal Police

Experiences include: General coordinator of IT – Ministry of Justice; division chief of IT – Federal Police; head of Brazilian mission to OAS 2010; OEA 2004 and 2009; head of Mercosul IT Group from 2004 to 2011, international e national wide panelist. His education is in computing; law degree; specialist on public safety management by National Police Academy.

Leonardo Scudere
Managing Director Central and South America, SSIC

Leonardo Scudere serves as SSIC’s Managing Director for Central and South America. He has more than 30 years’ experience in innovative cyber risk and cybersecurity technologies. Prior to joining SSIC, Leonardo held senior positions with many Fortune 500 corporations. This includes: Latin America Executive Director for Narus (a Boeing subsidiary); Business Development Consultant for The Boeing Corporation; Vice President, Latin America at CA; Senior Director of IBM Latin America. He is also the Founder and past President of Internet Security Systems (ISS) for Brazil and Mercosur and Executive Director for Oracle and Banco BBVA.

He earned a Masters in International Business Management from Thunderbird, and holds certifications by Carnegie Mellon University, from SEI (Software Engineering Institute) and US-CERT (Command and Control of Emergence and Response Teams), OCTAVE (Operationally Critical Threat, Asset and Vulnerability Evaluation) and Gathering Evidence and Forensics Investigations.

Leonardo is an accomplished speaker and published author in the field of advanced cyber security and risk management topics.

Andre Uchoa
Chief Enterprise Architect, VTEX

Andre was a Solutions Architecture consultant since 2001 and was responsible for technical assessments, architecture design and technological advisory in e-commerce solutions for Grupo Pão de Açúcar (Extra.com.br and PaoDeAcucar.com.br), Walmart Brasil and Polishop. He has worked with VTEX since 2008 and is one of its shareholders. Andre formerly directed the company’s Research & Development investments, and now is the Chief Enterprise Architect, with a focus on Global Expansion and he heads the VTEX Compliance initiative.

Paulo Veloso
Business Development Director
Hewlett Packard Enterprise Latin America

Paulo Veloso is the Security Business Development Director for Latin America at Hewlett Packard Enterprise, running the Data Security division, a leading tecnology and security company. He was also a member of the security consultants team for the Brazilian Senate, besides having served as a consultant on some of the largest companies in the country.

With over 12 years of experience in Information Security and Telecom, with great international experience working in defense and security areas for large corporations and governments, Paul has acquired a great knowledge of the Latin America and the U.S. markets, gaining a more comprehensive view of the topic and an extensive market experience.

Renato Wada, CISSP-ISSAP, ISSMP, CISM
Information Security Director – LATAM
FIS Risk, Information Security and Compliance (RISC)

Executive with more than 20 years experience in the Information Technology and Information Security fields.  Renato has a degree in Business Administration (Managerial Processes) at Fundação Getúlio Vargas (FGV) and made his career in leading companies in Brazil such as UOL (Universo Online), TIVIT and EY.  Renato currently occupies the Information Security Director role at FIS with oversight for the entire Latin America region.