Training at the Conference
13 – 14 November

Internal Security Assessor Training

15 – 16 November

Qualified Security Assessor Training

17 November

PCI Awareness

20 – 21 November

Payment Application Qualified Security Assessor Training

Day One – 18 November
7:3018:30

Registration Open

7:309:00

Networking Breakfast and Vendor Showcase
Payment Brand and Council Office Hours

9:009:30

Welcome and Introductions

Presented by: Jeremy King, International Director, PCI Security Standards Council

Welcome to the Community Meeting! Attend this session to hear welcoming remarks and to learn what will be covered over the next two days.

9:3010:30

Securing the Future of Payments Together

Presented by: Jeremy King, International Director, PCI Security Standards Council; Lib De Veyra, Executive Committee, JCB International, Chairperson, PCI Security Standards Council; Stephen Orfei, General Manager, PCI Security Standards Council

Join us for an overview of current Council initiatives and what’s in store for 2015.

10:3011:00

Networking Break and Vendor Showcase
Payment Brand and Council Office Hours

11:0012:00

KEYNOTE: From SciFi to Reality: Emerging Technologies — New Attack Vectors for Cyber Criminals?

Presented by: Shara Evans, Technology Futurist

In this keynote speech, leading technology futurist Shara Evans will describe an array of emerging technologies along with their potential for opening up new attack vectors for cyber criminals. By showing how and where sensitive business and personal information may be compromised in the future, from spying drones to connected cards to mobile apps, Ms. Evans will provide you with insights that will help you navigate the new world of ubiquitous connectivity and how these lessons can relate to securing the future of payments.

12:0013:30

Networking Lunch and Vendor Showcase
Payment Brand and Council Office Hours

13:3015:00

The PCI SSC Technology Update

Presented by: Troy Leach, Chief Technology Officer, PCI Security Standards Council; Emma Sutcliffe, Director, Standards Coordination, PCI Security Standards Council; and Gareth Bowker, Trainer, PCI Security Standards Council

This session is an opportunity for all PCI stakeholders to hear the latest technological updates and initiatives from the Council as well as to ask questions. All are welcome.

15:0015:30

Networking Break and Vendor Showcase

Payment Brand and Council Office Hours

15:3016:10

PCI in Practice: The Evolving Nature of IT Risk Management

Presented by: Peter Cooper, IT Risk Manager, GWA Group Limited

What do Tom Cruise, casinos, rock climbers and sky divers know about IT risk management? The answer is plenty. Hear about the lessons those people can share to ensure our futures in IT.

16:1016:50

PCI in Practice: Payment Security in China

Presented by: Yan Liu, Managing Director and Principal Consultant, atsec (Beijing) Information Technology Co., Ltd; Gary Gu, Vice President, 99Bill Corporation; Tao Chen, Project Manager of PCI DSS, Airchina Limited

The presentation will focus on the development of the payment card industry in China. Topics to be covered include PCI implementation and what it means for China’s banks, merchants and service providers; harmonization with other national and international standards, including, but not limited to, Chinese local standards (such as GB 17859, GB/T 20271, GB/T 18336) and regulations (ISO/IEC 27001, FIPS 140, O-TTPS).

16:5017:00

Closing Remarks

Presented by: Jeremy King, International Director, PCI Security Standards Council

17:0018:30

Networking Reception and Vendor Showcase

17:0018:30

Payment Brand and Council Office Hours

Day Two – 19 November
7:3012:00

Registration Open

7:3013:00

Payment Brand and Council Office Hours

7:309:00

Networking Breakfast and Vendor Showcase

9:009:05

Welcome Remarks

Presented by: Jeremy King, International Director, PCI Security Standards Council

Attend this session hear what is in store for the second day of the Asia-Pacific Community Meeting.

9:0510:05

Forensics Presentation

Presented by: Christopher Novak, Managing Principal, Global Investigative Response, Verizon

Christopher Novak will address the evolving threats that organizations face as they seek to mitigate information security risks and protect critical PCI data. Industry best practices for protecting PCI data as uncovered by Verizon’s 2014 Data Breach Investigations Report (DBIR) will be discussed in addition to evolving security challenges in our increasingly complex, global, digital society.

Verizon’s annual DBIR gives a comprehensive view of how cybercrime is impacting organizations in the payment card industry and what those organizations can do to protect themselves and their customers. The 2014 report analyzed 1,300+ breaches, 63,000+ security incidents across 95 countries with data contributed from 50 global security organizations.

10:0510:45

Networking Break and Vendor Showcase

10:4512:00

Measuring the Success of Your PCI Strategy

Presented by: Troy Leach, Chief Technology Officer, PCI Security Standards Council

Wondering how to measure the ROI of your PCI efforts? Attend this session to hear first-hand on how to evaluate metrics around your security efforts.

12:0013:00

Networking Lunch and Vendor Showcase

13:0013:30

PCI DSS Scoping

Emma Sutcliffe, Director, Standards Coordination, PCI Security Standards Council

This session will address common PCI DSS scoping scenarios and misconceptions and provide clarifications and tips for getting it right.

13:3014:00

Participation Opportunity Overview

Presented by: Jeremy King, International Director, PCI Security Standars Council

Attend this session to hear ways to become more involved with the Council.

14:0015:00

Ask the Council Q&A and Closing Remarks

Presented by: Stephen Orfei, General Manager, PCI Security Standards Council; Jeremy King, International Director, PCI Security Standards Council; and Troy Leach, Chief Technology Officer, PCI Security Standards Council

In this closing session, the PCI team will take questions from the PCI community and will complete the meeting with concluding remarks.