Edinburgh, Scotland | 18 – 20 October 2016
JOIN US AT THE 2016 EUROPE COMMUNITY MEETING
Join your industry colleagues for three days of networking and one-of-a-kind partnership opportunities. Whether you want to learn more about updates in the payment card industry or showcase a new product, you’ll find it all at the 2016 Community Meetings.
Jeremy King
International Director
PCI Security Standards Council
Troy Leach
CISSP, CISA
Chief Technology Officer
PCI Security Standards Council
Ken Munro
Partner and Founder
Pen Test Partners LLP
Stephen W. Orfei
General Manager
PCI Security Standards Council
AGENDA
| Tuesday, 18 October | ||
|---|---|---|
10:00 | 18:30 | Registration Open |
13:00 | 13:15 | Welcome Remarks |
13:15 | 14:00 | State of the Council Keynote Stephen W. Orfei, General Manager, PCI Security Standards Council |
14:00 | 14:30 | Fireside Chat with PCI Security Standards Council |
14:30 | 15:00 | Networking Break and Vendor Showcase |
15:00 | 15:45 | Building the Payment Security of Tomorrow by Learning from our Past: A Reflection on Ten Years of PCI Standards A reflection on the changes in payment security and our standards over the past ten years and how that will help shape our future. Presented by: Troy Leach, Chief Technology Officer, PCI Security Standards Council |
15.45 | 16:30 | Industry Keynote: Forensics Understanding the Current Data Breach Landscape Presented by: Christopher Novak, Director, Investigative Response Verizon RISK Team |
16:30 | 17:00 | Frequent Questions Answered by the PCI Security Standards Council |
17:30 | 19:30 | Welcome Reception |
| Wednesday, 19 October | |||
|---|---|---|---|
7:30 | 9:00 | Payment Brand and Council Office Hours | |
7:30 | 9:00 | Networking Breakfast and Vendor Showcase | Sponsored by: |
9:00 | 9:30 | Welcome Remarks Jeremy King, International Director, PCI Security Standards Council | |
9:30 | 10:30 | Keynote: Architecting for Success Brian Muirhead, Chief Engineer, Mars Science Laboratory, Caltech/Jet Propulsion Laboratory | |
10:30 | 11:00 | Payment Brand and Council Office Hours | |
10:30 | 11:00 | Networking Break and Vendor Showcase | Sponsored by: |
Track One | Track Two |
||
11:00 | 11:20 | PCI Pin Transaction Security (PTS) Updates Presented by: Leon Fell, CPA, CIA, CMA, CISA, CITP, Director of Solutions Standards, PCI Security Standards Council and Tim Cormier, Manager, Device Standards, PCI Security Standards Council | New PCI Payment Protection Resources for Small Merchants Presented by: Michael Christodoulides, VP, Payment Security (Third Party Risk), Barclaycard and Laura K. Gray, Director of Communications, PCI Security Standards Council |
11:25 | 11:55 | In-depth Look Into PCI DSS v3.2 Presented by: Emma Sutcliffe, Senior Director, Data Security Standards, PCI Security Standards Council | Protecting Yourself from Skimming and Other Attacks Presented by: Tim Cormier, Manager, Device Standards, PCI Security Standards Council |
12:00 | 12:30 | Demystifying Hardware Security Modules and their Role in Enterprise Compliance and Security Programs Presented by: Ben Rafferty, Global Solutions Director, Semafone | Hunting Paper Tigers: A Security-First Approach to Compliance Presented by: Jacob Ansari, Manager, Schellman & Company, Inc. |
12:35 | 12:55 | All Things Mobile Presented by: Emma Sutcliffe, Senior Director, Data Security Standards, PCI Security Standards Council and Leon Fell, CPA, CIA, CMA, CISA, CITP, Director of Solutions Standards, PCI Security Standards Council | Measuring Security and Compliance - a Proactive approach to PCI Score-carding Presented by: Chris Strand, Senior Director, Compliance and Governance Programs, Carbon Black Inc. |
13:00 | 14:00 | Networking Lunch and Vendor Showcase | Sponsored by: |
13:00 | 19:35 | Payment Brand and Council Office Hours | |
14:00 | 14:20 | Cloud Security, Compliance, and Incident Response in the Amazon EC2 Cloud Presented by: Nigel Tranter, Vice President, Payment Software Company (PSC) | Balancing Security and Compliance Presented by: Tim Rohrbaugh, Vice President, CaaS Americas, ControlCase and Kishor Vaswani, CEO, ControlCase |
14:25 | 14:45 | EMVco 3D Secure Presented by: Rosemary O’Neill, EMVCo 3-D Secure 2.0 Task Force and Troy Leach, Chief Technology Officer, PCI Security Standards Council | Setting Them Up For Failure Presented by: Joseph Pierini, Director of Technical Services, Security Assessor - Penetration Tester, CISSP, GCIH, PCI: QSA, PA-QSA, PFI, QAE |
14:50 | 15:10 | Protecting Telephone-based Payment Card Data Presented by: Jeremy King, International Director, PCI Security Standards Council | Fire doesn't care that you planned on patching the smoke detector tomorrow Presented by: John Elliott, Head of Payment Security, easyJet |
15:15 | 15:45 | Application Security At Scale Presented by: Jake Marcinko, Standards Manager, PCI Security Standards Council and Berny Goodheart, Standards Manager, PCI Security Standards Council | PCI DSS Training Overview Presented: Gareth Bowker, Director of Training Programs, PCI Security Standards Council |
15:50 | 16:20 | Networking Break and Vendor Showcase | Sponsored by: |
16:20 | 16:40 | Learning to Eat Soup with a Fork - How Enterprises Need to Get Ahead of the Curve When Under Attack Presented by: Mark Stevens, Senior Consultant, Mandiant | Case Study: How a Layered Approach in PCI DSS can Prevent a Breach Presented by: Dharshan Shanthamurthy, CEO and PFI Core Forensic Investigator, SISA Information Security and Renju Varghese Jolly, Principal Consultant and PFI Core Forensic Investigator, SISA Information Security Middle East |
16:45 | 17:15 | Achieving PCI Compliance for Cloud-hosted Applications Presented by: Frank Simorjay, Director Azure Compliance, Microsoft | As CNP Fraud Increases, How Can Merchants More Easily Secure MOTO Payments? Presented by: Cameron Ross, Director of Payments Strategy, Eckoh |
17:20 | 17:40 | PCI Point-to-Point Encryption (P2PE) Updates Presented by: Mike Thompson, Standards Manager, PCI Security Standards Council and Andrew Henwood, CEO, Foregenix PCI, Time to Clarify not Simplify |
Presented by: Giles Witherspoon-Boyd, Founder, Protocol |
17:45 | 18:05 | How did you get in? Managing Failed Penetration Tests Presented by: Stacy Hughes, Vice President, IT Governance, Risk and Compliance and Kevin Simmonds, Director, Cybersecurity and Privacy Practice, PricewaterhouseCoopers | 2016 SIG Update: Best Practices for Securing E-commerce Presented by: Elizabeth Terry, Advanced Research Manager, PCI Security Standards Council, Matt Hegarty, PCI Business Partner, Royal Phillips and Wayne Murphy, Senior Security Consultant Sec-1 Ltd |
18:05 | 19:35 | Networking Reception and Vendor Showcase | |
| Thursday, 20 October | |||
|---|---|---|---|
7:30 | 12:30 | Payment Brand and Council Office Hours | |
7:30 | 9:00 | Networking Breakfast and Vendor Showcase Breakfast with the Council: Come and meet members of the Council. Enjoy breakfast while discussing hot topics and industry trends with Council members from the Standards, Certification and Training teams | Sponsored by: |
9:00 | 9:15 | Welcome Remarks Jeremy King, International Director, PCI Security Standards Council | |
9:15 | 10:15 | Keynote: From Payment to Ransomware, via the Internet of Things Presented by: Ken Munro, Partner and Founder, Pen Test Partners LLP | |
10:15 | 10:45 | Networking Break and Vendor Showcase | |
10:45 | 11:30 | The Real Life Story Behind Credit Card Hacks Presented by: Brian Hussey, Global Director of Incident Response & Readiness for Trustwave SpiderLabs | |
11:30 | 12:00 | PCI's Quality Assurance Program: Then and Now Presented by: Brandy Cumberland, Director of Assessor Quality Management (AQM) Programs, PCI Security Standards Council | |
12:00 | 12:30 | Q&A with PCI Security Standards Council and Closing Remarks | |
12:30 | 15:30 | Assessor Lunch and Session (QSAs, ASVs, and ISAs only) Join your peers for an interactive session and Q&A with the PCI SSC team to discuss what is new for assessors and tips for ensuring your assessments get great feedback | |
SPONSORS
GOLD SPONSOR
SILVER SPONSORS
BRONZE SPONSOR
General Sponsors
Sponsorship Opportunities
An exclusive opportunity to position your company as a leader in the global payment security industry.
TESTIMONIALS
TRAINING
Employee Education is the Best Defense for Protecting your Organization’s Data Assets.
In conjunction with the Europe Community Meeting, four instructor-led training classes are available, allowing attendees to make the most of their travel time and budgets. The trainings will take place at the Sheraton Grand Hotel & Spa.
Internal Security Assessor Training | 13-14 October
The Internal Security Assessor (ISA) Program provides large merchants, acquiring banks and processors the opportunity to build their internal PCI Security Standards expertise and strengthen their approach to payment data security, as well as increase their efficiency in compliance with the PCI Data Security Standards. The program trains, tests and certifies organizations and individuals to assess and validate adherence to PCI Security Standards.
Qualified Security Assessor Training | 13-14 October
Qualified Security Assessor (QSA) training provides instruction on how to conduct assessments of merchants, institutions and service providers who must be compliant with the Payment Card Industry Data Security Standard (PCI DSS). Sponsored by their employer to attend this training, a QSA is equipped to audit processes and systems and generate and submit appropriate compliance reports on behalf of their clients. Through this QSA training course, you will become an expert on the requirements for PCI compliance and have an impact on the consistent and proper application of security measures and controls for your clients.
PA-QSA Training | 15-16 October
PA-QSA training provides you the tools to become an expert on the requirements for PA-DSS compliance and have an impact on the consistent and proper application of security measures and controls for your client’s payment applications. Enrollment is restricted to existing QSAs only.
P2PE Training | 15-16 October
The Point-to-Point Encryption Qualified Security Assessor (P2PE QSA) and Payment Application Point-to-Point Encryption Qualified Security Assessor (P2PE PA-QSA ) training programs prepare candidates to perform validation of Point-to-Point Encryption solutions and applications against the latest standard in order for those solutions and applications to be listed on the PCI Council website.
VENDOR SHOWCASE
Get the latest updates on the 2016 Europe Community Meeting by joining our mailing list.
