São Paulo, Brazil 15 August 2019

Europe Community Meeting

London, England

16 – 18 October 2018


Don’t miss THE data security event of the year for the payment card industry. We provide you with the information and tools to help secure payment data. We lead a global, cross industry effort to increase payment security by providing industry-driven, flexible and effective data security standards and programs that help businesses detect, mitigate and prevent criminal attacks and breaches. Don’t miss out!


Join us for a day of networking opportunities and educational sessions from payment and cyber security experts who will discuss challenges and opportunities for data security in Brazil and provide updates on the latest standards and solutions for protecting payments.



 Continue to check back for updates.

THURSDAY, 15 August
8:00-9:30Networking Breakfast and Vendor Showcase
Welcome Remarks and Regional Update
Presented by: Carlos Caetano, Associate Regional Director, Brazil, PCI Security Standards Council
Keynote: State of the Council
Presented by: Lance J. Johnson, Executive Director, PCI Security Standards Council

Join this session for an extensive look into some of the PCI SSC’s current and global affairs and how, collaboratively, we help secure payment data.
REB Case Study and Regional Insights - A Panel Discussion
Moderated by: Carlos Caetano, Associate Regional Director, Brazil, PCI Security Standards Council
Panelists: Atilla Duarte, Compliance Manager, Braspag and Flavia Murgades, Compliance Manager, Information Security, Despegar.com / Decolar.com and Renato Wada, Information Security Director - LATAM, FIS Risk Information Security and Compliance (RISC), Fidelity Processadora e Serviços S.A. (FIS)
11:30-12:00Networking Break and Vendor Showcase
Industry Keynote: Digital Forensics to Unveil Payment Industry Crimes
Presented by: Marco Wanderley, Head of Digital Forensics and Incident Response Services, Matrix Cyber Consulting Inc.

Join this keynote session to hear about case studies that have been done for different kinds of fraud and crime in the payment industry. Learn about evidence that shows how cybercrime criminals can organize themselves and get funds through online frauds to support their actions. You will hear about security measures that combat and prevent crime campaigns. You will takeaway from this session the understanding of the importance of payment industry awareness and fighting these criminal actions.
PCI Standards and Programs Update
Presented by: Carlos Caetano, Associate Regional Director, Brazil, PCI Security Standards Council

During thie session you will hear insights on what is new within PCI SSC's Standards and Programs. Learn about the latest updates that help your organization secure payment data.
13:30-14:30Networking Lunch and Vendor Showcase
Case Study: PCI Promoted by the Regulator of Banking in Bolivia
Presented by: Israel Rosales, PCI-P, CISSP, CISA, CISM, Project Manager, COSIM TI SRL

The year 2011 was a milestone for data security in Bolivia. The regulator of the financial system (ASFI) issued the regulations that required compliance with PCI-DSS for all entities working with payment cards. This undoubtedly meant that all the financial systems as a whole (Banks, microfinancial), are subjected to an analysis of gaps regarding PCI-DSS. The interesting thing is that the main providers of data processing in the country were not prepared for PCI-DSS and were not governed by the ASFI.
Panel: Data Privacy Concerns and How PCI DSS Can Help
Moderated by: Paulo Poi, PCI QSA, CIS, Governance, Risk and Compliance Director, Cipher S/A
Panelists: Renato Opice Blum, Data Protection and Digital Law Programs Professor Coordinator, INSPER; Fernando Fonseca, CISSP-ISSAP, CISM, DPO, Director, Antebellum and Fabio Noronha, Sr. Manager Information Security, Elo

The panelists will discuss how Data Privacy regulations are affecting Latin America. In addition, how the PCI DSS awareness is helping companies to not only achieve compliance as required by the payment brands, but also how it is now required by the government. We want people to understand how PCI DSS can aid their companies to protect not only cardholder data, but also use the knowledge acquired to protect other sensitive information in their organizations.
16:00-16:30Networking Break and Vendor Showcase
PCI DSS Compliance: A Look from Both Sides of the Table
Presented by: John Cartwright, QSA, CISA, CISM, Senior Associate, Schellman & Company, LLC and Renato Wada, Information Security Director - LATAM, FIS Risk Information Security and Compliance (RISC), Fidelity Processadora e Serviços S.A. (FIS)

You've passed your first PCI DSS assessment and can now move on. But what does that mean? There's more to maintaining a compliant posture than just passing your assessment. What do companies need to do to remain compliant throughout the year while balancing the needs of both the business and its security? We will talk from both the assessor and business side of the table, going over common items that companies should be doing on a regular basis to maintain a compliant posture.
Observatore (observatore.org) - Fraud Management Observatory - Blockchain Hub for eCommerce Group Fraud Prevention
Presented by: Ligia Pires, Trust & Safety Manager, OLX Brasil and Gerson Rolin, Director and Payments and Antifraud Steering Committees Coordinator, camara-e.net

Learn more about the service designed to be a collaborative information hub to be used by members to validate information for fraud prevention on eCommerce. It’s a pioneer initiative in Brazil and being adopted by camara-e.net members, which comprises of the biggest eCommerce and Payment ecosystem companies in Brazil.
Making a Global Impact: PCI SSC Participation Opportunities and Resources
Presented by: Jeremy King, International Director – Europe, PCI Security Standards Council

Attend this sesion to learn about everything that PCI SSC has to offer you and your organization so you can help secure payment data. We will also share all the ways you can be more involved with PCI SSC.
Closing Remarks
Presented by: Carlos Caetano, Associate Regional Director, Brazil, PCI Security Standards Council
18:05-19:30Networking Reception and Vendor ShowcaseSponsored by

Secure your spot at the 2019 Latin America Forum.












Please continue to check back for updates on our Sponsors.


Sponsorship Opportunities

An exclusive opportunity to position your company as a leader in the global payment security industry.



Employee Education is the Best Defense for Protecting your Organization’s Data Assets.

In conjunction with the Latin America Forum, three training courses are available, allowing attendees to make the most of their travel time and budgets. The Internal Security Assessor training will be conducted in Portuguese while the Qualified Security Assessor and Qualified PIN Assessor trainings will be conducted in English. All trainings will take place at Hotel Unique – São Paulo.

Internal Security Assessor Training | 6-7 August

The two-day Internal Security Assessor (ISA) class provides large merchants, acquiring banks, and processors the opportunity to build their internal payment data security expertise, as well as increase their efficiency in complying with PCI Standards.

Qualified Security Assessor Training | 8-9 August

The two-day Qualified Security Assessor (QSA) class provides instruction on how to conduct assessments of merchants, institutions and service providers who must be compliant with the PCI DSS.

Qualified PIN Assessor Training | 12-13 August

The two-day Qualified PIN Assessor class provides instruction on how to perform assessments of entities in accordance with the PCI PIN Security Requirements. This training will provide you with an understanding of the requirements for the secure management, processing, and transmission of personal identification number (PIN) during payment card transaction processing at ATMs and attended and unattended point-of-sale (POS) terminals.

Get the latest updates on the 2019 Latin America Forum and other PCI events by joining our mailing list.