header-educate-empower-protect

EUROPE COMMUNITY MEETING

Edinburgh, Scotland | 18 – 20 October 2016

JOIN US AT THE 2016 EUROPE COMMUNITY MEETING

Join your industry colleagues for three days of networking and one-of-a-kind partnership opportunities. Whether you want to learn more about updates in the payment card industry or showcase a new product, you’ll find it all at the 2016 Community Meetings.

SPEAKERS

The following industry leaders will present at the meeting:

Jeremy

Jeremy King
International Director
PCI Security Standards Council

troy

Troy Leach
CISSP, CISA
Chief Technology Officer
PCI Security Standards Council

ken-munro

Ken Munro
Partner and Founder
Pen Test Partners LLP

s_orfei

Stephen W. Orfei
General Manager
PCI Security Standards Council

AGENDA

Tuesday, 18 October

10:00

18:30

Registration Open

13:00

13:15

Welcome Remarks
Jeremy King, International Director, PCI Security Standards Council

13:15

14:00

State of the Council Keynote
Stephen W. Orfei, General Manager, PCI Security Standards Council

14:00

14:30

Fireside Chat
with PCI Security Standards Council

14:30

15:00

Networking Break and Vendor Showcase

15:00

15:45

Building the Payment Security of Tomorrow by Learning from our Past: A Reflection on Ten Years of PCI Standards
A reflection on the changes in payment security and our standards over the past ten years and how that will help shape our future.
Presented by: Troy Leach, Chief Technology Officer, PCI Security Standards Council

15.45

16:30

Industry Keynote: Forensics Understanding the Current Data Breach Landscape
Presented by: Christopher Novak, Director, Investigative Response Verizon RISK Team

16:30

17:00

Frequent Questions Answered by the PCI Security Standards Council

17:30

19:30

Welcome Reception

Wednesday, 19 October

7:30

9:00

Payment Brand and Council Office Hours

7:30

9:00

Networking Breakfast and Vendor Showcase

Sponsored by:
SecurityMetrics 160px logo

9:00

9:30

Welcome Remarks
Jeremy King, International Director, PCI Security Standards Council

9:30

10:30

Keynote: Architecting for Success
Brian Muirhead, Chief Engineer, Mars Science Laboratory, Caltech/Jet Propulsion Laboratory

10:30

11:00

Payment Brand and Council Office Hours

10:30

11:00

Networking Break and Vendor Showcase

Sponsored by:
Procheckup

Track One
Sponsored by:

Track Two

11:00

11:20

PCI Pin Transaction Security (PTS) Updates
Presented by: Leon Fell, CPA, CIA, CMA, CISA, CITP, Director of Solutions Standards, PCI Security Standards Council and Tim Cormier, Manager, Device Standards, PCI Security Standards Council
New PCI Payment Protection Resources for Small Merchants
Presented by: Michael Christodoulides, VP, Payment Security (Third Party Risk), Barclaycard and Laura K. Gray, Director of Communications, PCI Security Standards Council

11:25

11:55

In-depth Look Into PCI DSS v3.2
Presented by: Emma Sutcliffe, Senior Director, Data Security Standards, PCI Security Standards Council
Protecting Yourself from Skimming and Other Attacks
Presented by: Tim Cormier, Manager, Device Standards, PCI Security Standards Council

12:00

12:30

Demystifying Hardware Security Modules and their Role in Enterprise Compliance and Security Programs
Presented by: Ben Rafferty, Global Solutions Director, Semafone
Hunting Paper Tigers: A Security-First Approach to Compliance
Presented by: Jacob Ansari, Manager, Schellman & Company, Inc.

12:35

12:55

All Things Mobile
Presented by: Emma Sutcliffe, Senior Director, Data Security Standards, PCI Security Standards Council and Leon Fell, CPA, CIA, CMA, CISA, CITP, Director of Solutions Standards, PCI Security Standards Council
Measuring Security and Compliance - a Proactive approach to PCI Score-carding
Presented by: Chris Strand, Senior Director, Compliance and Governance Programs, Carbon Black Inc.

13:00

14:00

Networking Lunch and Vendor Showcase

Sponsored by:




13:00

19:35

Payment Brand and Council Office Hours

14:00

14:20

Cloud Security, Compliance, and Incident Response in the Amazon EC2 Cloud
Presented by: Nigel Tranter, Vice President, Payment Software Company (PSC)
Balancing Security and Compliance
Presented by: Tim Rohrbaugh, Vice President, CaaS Americas, ControlCase and Kishor Vaswani, CEO, ControlCase

14:25

14:45

EMVco 3D Secure
Presented by: Rosemary O’Neill, EMVCo 3-D Secure 2.0 Task Force and Troy Leach, Chief Technology Officer, PCI Security Standards Council
Setting Them Up For Failure
Presented by: Joseph Pierini, Director of Technical Services, Security Assessor - Penetration Tester, CISSP, GCIH, PCI: QSA, PA-QSA, PFI, QAE

14:50

15:10

Protecting Telephone-based Payment Card Data
Presented by: Jeremy King, International Director, PCI Security Standards Council
Fire doesn't care that you planned on patching the smoke detector tomorrow
Presented by: John Elliott, Head of Payment Security, easyJet

15:15

15:45

Application Security At Scale
Presented by: Jake Marcinko, Standards Manager, PCI Security Standards Council and Berny Goodheart, Standards Manager, PCI Security Standards Council
PCI DSS Training Overview
Presented: Gareth Bowker, ‎Director of Training Programs, PCI Security Standards Council

15:50

16:20

Networking Break and Vendor Showcase

Sponsored by:
Procheckup

16:20

16:40

Learning to Eat Soup with a Fork - How Enterprises Need to Get Ahead of the Curve When Under Attack
Presented by: Mark Stevens, Senior Consultant, Mandiant
Case Study: How a Layered Approach in PCI DSS can Prevent a Breach
Presented by: Dharshan Shanthamurthy, CEO and PFI Core Forensic Investigator, SISA Information Security and Renju Varghese Jolly, Principal Consultant and PFI Core Forensic Investigator, SISA Information Security Middle East

16:45

17:15

Achieving PCI Compliance for Cloud-hosted Applications
Presented by: Frank Simorjay, Director Azure Compliance, Microsoft
As CNP Fraud Increases, How Can Merchants More Easily Secure MOTO Payments?
Presented by: Cameron Ross, Director of Payments Strategy, Eckoh

17:20

17:40

PCI Point-to-Point Encryption (P2PE) Updates
Presented by: Mike Thompson, Standards Manager, PCI Security Standards Council and Andrew Henwood, CEO, Foregenix
PCI, Time to Clarify not Simplify
Presented by: Giles Witherspoon-Boyd, Founder, Protocol

17:45

18:05

How did you get in? Managing Failed Penetration Tests
Presented by: Stacy Hughes, Vice President, IT Governance, Risk and Compliance and Kevin Simmonds, Director, Cybersecurity and Privacy Practice, PricewaterhouseCoopers
2016 SIG Update: Best Practices for Securing E-commerce
Presented by: Elizabeth Terry, Advanced Research Manager, PCI Security Standards Council, Matt Hegarty, PCI Business Partner, Royal Phillips and Wayne Murphy, Senior Security Consultant Sec-1 Ltd

18:05

19:35

Networking Reception and Vendor Showcase

Thursday, 20 October

7:30

12:30

Payment Brand and Council Office Hours

7:30

9:00

Networking Breakfast and Vendor Showcase



Breakfast with the Council: Come and meet members of the Council. Enjoy breakfast while discussing hot topics and industry trends with Council members from the Standards, Certification and Training teams
Sponsored by:
SecurityMetrics 160px logo

9:00

9:15

Welcome Remarks
Jeremy King, International Director, PCI Security Standards Council

9:15

10:15

Keynote: From Payment to Ransomware, via the Internet of Things
Presented by: Ken Munro, Partner and Founder, Pen Test Partners LLP

10:15

10:45

Networking Break and Vendor Showcase

10:45

11:30

The Real Life Story Behind Credit Card Hacks
Presented by: Brian Hussey, Global Director of Incident Response & Readiness for Trustwave SpiderLabs

11:30

12:00

PCI's Quality Assurance Program: Then and Now
Presented by: Brandy Cumberland, Director of Assessor Quality Management (AQM) Programs, PCI Security Standards Council

12:00

12:30

Q&A with PCI Security Standards Council and Closing Remarks

12:30

15:30

Assessor Lunch and Session (QSAs, ASVs, and ISAs only)

Join your peers for an interactive session and Q&A with the PCI SSC team to discuss what is new for assessors and tips for ensuring your assessments get great feedback

SPONSORS

GOLD SPONSOR

verizon_300_rgb_p

SILVER SPONSORS

securitymetrics320

BRONZE SPONSOR

procheckup

General Sponsors

Carbon-Black-Tag-CMYK-full-color
CoalfireLogo4_Vertical_grey_bkg_dk_orange_hex
mslogo300
NCCG Logo [Spot]
protocol_2-_logo-01
cardeasy300
VIGITRUST_logoPNG

Sponsorship Opportunities

An exclusive opportunity to position your company as a leader in the global payment security industry.

TESTIMONIALS

TRAINING

Employee Education is the Best Defense for Protecting your Organization’s Data Assets.

In conjunction with the Europe Community Meeting, four instructor-led training classes are available, allowing attendees to make the most of their travel time and budgets. The trainings will take place at the Sheraton Grand Hotel & Spa.

PCI-ISA

Internal Security Assessor Training  | 13-14 October  

The Internal Security Assessor (ISA) Program provides large merchants, acquiring banks and processors the opportunity to build their internal PCI Security Standards expertise and strengthen their approach to payment data security, as well as increase their efficiency in compliance with the PCI Data Security Standards. The program trains, tests and certifies organizations and individuals to assess and validate adherence to PCI Security Standards.

PCI-qsa-rib

Qualified Security Assessor Training  |  13-14 October 

Qualified Security Assessor (QSA) training provides instruction on how to conduct assessments of merchants, institutions and service providers who must be compliant with the Payment Card Industry Data Security Standard (PCI DSS). Sponsored by their employer to attend this training, a QSA is equipped to audit processes and systems and generate and submit appropriate compliance reports on behalf of their clients. Through this QSA training course, you will become an expert on the requirements for PCI compliance and have an impact on the consistent and proper application of security measures and controls for your clients.

pa-qsa

PA-QSA Training  |  15-16 October 

PA-QSA training provides you the tools to become an expert on the requirements for PA-DSS compliance and have an impact on the consistent and proper application of security measures and controls for your client’s payment applications. Enrollment is restricted to existing QSAs only.

P2PE

P2PE Training  |  15-16 October 

The Point-to-Point Encryption Qualified Security Assessor (P2PE QSA) and Payment Application Point-to-Point Encryption Qualified Security Assessor (P2PE PA-QSA ) training programs prepare candidates to perform validation of Point-to-Point Encryption solutions and applications against the latest standard in order for those solutions and applications to be listed on the PCI Council website.

VENDOR SHOWCASE

Get the latest updates on the 2016 Europe Community Meeting by joining our mailing list.