Community Update (Continued)
Moderated by: Mauro Lance, COO, PCI Security Standards Council
Special Interest Group Update: Shared Responsibilities
Presented by: John Greenwood, Contact centre PCI DSS Director, Compliance 3 and Michael Thompson, Standards Manager, PCI Security Standards Council
Attend this session to hear an update from the Shared Responsibilities Special Interest Group.
Building Returns from PCI DSS Effort: Gaining Both Security and Compliance
Presented by: Tom Evans, CSO, Cognia Cloud
In this session, you will learn how Cognia Cloud’s investment in PCI DSS compliance leveraged itself to build a strong InfoSec culture and serves as a springboard to developing operational cybersecurity across the whole enterprise.
How to Avoid Drowning in the Sea of Data and Retrieve Meaningful Intelligence
Presented by: Susanne Møller-Hansen, Security Management Consultant, nSense Oy / F-Secure
Attendees at this session will hear how to use logs, FIM and IDS/IPS effectively -- not just for being compliant, but for tactical logging and alerting.
Securing Notoriously Difficult Payments Channels
Presented by: Cam Ross, Director of Payments Strategy, Eckoh UK Limited and John Greenwood, Contact centre PCI DSS Director, Compliance 3
Contact centres are complex, hostile places to take card payments. New tokenisation methods can help contact centres de-scope all card data, without changes to IT, telephony or payment processes. Attend this session to see a case study of how this technology has been used to shield contact centres and ecommerce channels from card data.
Building Security in Maturity Model (BSIMM)-V - Measuring Maturity in Software Security Programs
Presented by: Nick Murison, Managing Consultant, Cigital
BSIMM-V is a study of real-world software security initiatives organized so that you can determine where you stand with your software security initiative and how to evolve your efforts over time. The fifth iteration of the model describes 112 activities across 12 practices, as observed across 67 participating organisations. This session will provide a brief introduction to BSIMM, its purpose, and its benefits.
Are You Forensic Ready?
Presented by: Sarah Nicholson, Head of Security Policy & Compliance, British Telecommunications
It's not a matter of if, but of when, the next data breach will happen. Are you prepared if that happens to you? Could your organization effectively manage a data breach? Would you know what to look for and who to go to? Attend this session to get answers and advice.
Education & Awareness: A Key Component to Compliance and Security of CDE
Presented by: Lucas Allen, Managing Director/CEO, LiquidNexxus Limited
Are you overlooking key aspects of cardholder data security? You could be. This session will provide insights into maintaining a well-managed security infrastructure by exploring the common pitfalls made by organizations when it comes to employee education and training on security and compliance.