Middle East and Africa Forum

Location: Cape Town, South Africa | 29 March 2017

Join Us at the 2017 Middle East and Africa Forum

Don’t miss THE data security event of the year for the payment card industry. Join us for: Networking opportunities, updates on industry trends, insights and strategies on best practices, engaging keynotes and industry expert speakers.


The PCI Security Standards Council’s  2018 Middle East and Africa Forum (MEAF) is THE place to be. We provide you the information and tools to help secure payment data. We lead a global, cross industry effort to increase payment security by providing industry-driven, flexible and effective data security standards and programs that help businesses detect, mitigate and prevent criminal attacks and breaches. Don’t miss out!


The following industry leaders will present at the meeting:


Christopher Novak
Investigative Response, Verizon RISK Team


Andrew Henwood
Foregenix South Africa


Walter Volker
Payments Association of South Africa (PASA)


Join us for a day of discovery, updates and insights from members of the Council and regional community figures and merchants.


* Subject to change – Continue to check back for agenda updates


Wednesday, 29 March
7:30 Registration Open
8:00 – 9:00Networking Breakfast and Vendor Showcase
9:00 - 9:15Welcome Remarks
Presented by: Jeremy King, International Director, PCI Security Standards Council
9:15 - 10:15

State of the Council Keynote
Presented by: Stephen W. Orfei, General Manager, PCI Security Standards Council
10:15 - 11:00

Africa : The Digital Revolution – Opportunity or Threat
Presented by: Ambassador (Retired) Malcolm Grant Ferguson (OMAA)
11:00 – 11:30Networking Break and Vendor Showcase
Sponsored by:
11:30 – 12:15
PCI Roadmap for Next Generation of Secure Payments
Presented by: Troy Leach, Chief Technology Officer, PCI Security Standards Council
12:15 – 13:00Local is Lekker: PCI Perspectives and State of the “Nation"
In this session, the audience will review global PCI intentions meshed with regional perspectives and flavours from the vast experience Foregenix has within region. We will provide real-world insights, drivers for PCI, practical strategies for reducing risk and thought provoking predictions on trends for remainder of the year.

Presented by: Andrew Henwood, CEO, Foregenix South Africa
13:00 – 14:00 Networking Lunch and Vendor Showcase
14:00 - 15:00Keynote Industry Forensics: Understanding the Current Data Breach Landscape
This session will take the audience through real world examples of data breaches and how they have had a lasting impact on their victims and the payment industry community. Attendees will also learn how to prevent becoming the next victim of a data breach as well as how to quickly identify and mitigate an incident should it happen to you.

Presented by: Christopher Novak, Director, Investigative Response, Verizon RISK Team
15:00 - 15:30Insider Threat Breach - A Case Study
A breach of the confidentiality, integrity or availability of data is now referred to in terms of ‘when’ rather than ‘if’. The consequences of a breach of cardholder data can be particularly damaging, exposing organisations to liability for both first and third party damages. Fines passed down to merchants and service providers by the brands, civil and criminal penalties imposed by regulatory authorities, in addition to brand damage and the erosion of customer trust can heavily impact affected organisations.

Cyber Incident Response Retained Services involve contracting a Payment Forensic Investigator(PFI) to minimise the likelihood and impact of a breach of cardholder data. This is achieved through a consultant lead on-boarding process involving a review and testing of current incident response planning, policies, procedures, access protocols, first responder training as well as creating a library of information about the client’s logical and physical infrastructure, underpinned by an SLA and pre-agreed commercial and contingency provisions.

David Martin-Woodgate, Commercial Director of Risk-X LLP, a leading Payment Forensic Investigator (PFI) will be sharing with the audience how an organisation might make use of Cyber Incident Response Retained Services from a Payment Forensic Investigator to proactively underpin a PCI-DSS compliance program and minimise the likelihood and impact of breach of cardholder data.

Presented by: David Martin-Woodgate, Risk-X
15:30 – 16:00Networking Break and Vendor Showcase
Sponsored by:
16:00 - 17:00PCI within the Context of Broader Payments Challenges
This session explores PCI related measures in the context of the broader payments eco-system. The ever changing nature of the card payment system, combined with broader domestic and international challenges, creates an environment where there is no silver bullet, no lasting solution and where agility is key to staying ahead.

Presented by: Walter Volker, CEO, Payments Association of South Africa (PASA)
17:00 - 17:30Making a Global Impact with PCI SSC: How You Can Get Involved
Presented by: Jeremy King, International Director, PCI Security
17:30 – 19:00Networking Reception and Vendor Showcase

Register for FREE today to secure your spot at the 2017 Middle East and Africa Forum.







Employee Education is the Best Defense for Protecting your Organization’s Data Assets.

In conjunction with the Middle East and Africa Forum three training courses are available, allowing attendees to make the most of their travel time and budgets. The trainings will take place at The Westin Cape Town.

Qualified Security Assessor Training | 22-23 March

The two-day Qualified Security Assessor (QSA) class provides instruction on how to conduct assessments of merchants, institutions and service providers who must be compliant with the PCI DSS.

Get the latest updates on the 2017 Middle East and Africa Forum by joining our mailing list.