Join us for a day of networking opportunities and educational sessions from payment and cyber security experts who will discuss challenges and opportunities for data security in Brazil and provide updates on the latest standards and solutions for protecting payments. Simultaneous translation will be available in Portuguese, Spanish and English.

The PCI SSC Latin America Forum Call for Speakers has Closed.

All session times are in BRT

  • Thursday, 20 August

Thursday, 20 August

11:00 - 11:20

Opening Remarks

Presented by: Lance J. Johnson, Executive Director, PCI Security Standards Council

A brief overview on how the community is coming together in many ways on many levels to build a secure future of payments.
11:20 - 11:40

Regional Update

Presented by: Carlos Caetano, Associate Director, LA Region for Brazil, PCI Security Standards Council

Join this session to hear important updates on the region's threat landscape and how your participation within the Council is helping to secure payment data.
11:40 - 12:10

Industry Keynote: A Case Study of the Capital One Data Breach

Presented by: Natasha Malara Borges, Senior Cyber Governance Professional, C6 Bank; Anchises Moraes, Cyber Evangelist, C6 Bank and Nelson Novaes Neto, MIT Affiliated Researcher and CTO, C6 Bank

In an increasingly regulated world, with companies prioritizing a big part of their budget for expenses with cyber security protections, why have all of these protection initiatives and compliance standards not been enough to prevent the leak of billions of data points in recent years? New data protection and privacy laws and recent cyber security regulations, such as the General Data Protection Regulation (GDPR) that went into effect in Europe in 2018, demonstrate a strong trend and growing concern on how to protect businesses and customers from the significant increase in cyberattacks. Does the flaw lie in the existing compliance requirements or in how companies manage their protections and enforce compliance controls? The purpose of this research was to answer these questions by means of a technical assessment of the Capital One data breach incident, one of the largest financial institutions in the U.S. This case study aims to understand the technical modus operandi of the attack, map out exploited vulnerabilities, and identify the related compliance requirements, that existed, based on the National Institute of Standards and Technology (NIST) Cybersecurity Framework, version 1.1, an agnostic framework widely used in the global industry to provide cyber threat mitigation guidelines. The results of this research and the case study will help government entities, regulatory agencies, and companies to improve their cyber security controls for the protection of organizations and individuals.

Sponsored by

12:10 - 12:40

PCI SSC Regional Engagement Board - PCI DSS Case Study Discussion:

Moderated by: Carlos Caetano, Associate Director, LA Region for Brazil, PCI Security Standards Council

Panelists: Fernando Bucelli, Information Security Specialist, Cielo; Joice Silva Mendes, Information Security Coordinator, PicPay and Paulo Sergio de Souza, CSO, CSU Cardsystem S.A.

Join PCI SSC’s Carlos Caetano and Brazil Regional Engagement Board members for a panel discussion about the recently published case studies regarding their success on adopting the PCI DSS and maintaining PCI DSS security controls.
12:40 - 13:45


Vendor Showcase sponsored by:
13:45 - 14:15

PCI SSC Regional Engagement Board - PCI PIN Case Study Discussion:

Moderated by: Carlos Caetano, Associate Director, LA Region for Brazil, PCI Security Standards Council

Panelists: Keren Dantas, Quality Assurance Coordinator, Gertec and Edmar Siqueria, Business Director, First Tech Tecnologia

Learn how Brazil Regional Engagement Board members worked together with PCI SSC to produce case studies demonstrating how they successfully adopted the PCI PIN Security standard and maintained PCI PIN Security controls.
14:15 - 14:45

PCI Standards and Programs Update

Presented by: Emma Sutcliffe, Senior Vice President, Standards Officer, PCI Security Standards Council

During this session you will hear insights on what is new within PCI SSC's Standards and Programs. Learn about the latest updates that help your organization secure payment data.
14:45 - 15:00

Global Learning and Local Leading - Why your Participation is Critical to Payment Security Everywhere

Presented by: Troy Leach, Senior Vice President, Engagement Officer, PCI Security Standards Council

Attend this sesion to learn about everything that PCI SSC has to offer you and your organization so you can help secure payment data. We will also share all the ways you can be more involved with PCI SSC.
15:00 - 15:05

Closing Remarks

Presented by: Carlos Caetano, Associate Director, LA Region for Brazil, PCI Security Standards Council

15:20 - 16:20

Virtual Networking Reception