Agenda

Pre-Conference – Tuesday, 29 October 2013
7:00 – 19:00 Registration open
13:00 - 17:00 Assessor General Session
(QSAs, ASVs, and ISAs only)

Join your peers for an interactive session with the PCI SSC team to discuss what is new for assessors and tips for ensuring your assessments get great feedback.
17:00 - 19:00 Welcome Reception
Wednesday, 30 October 2013
7:00 – 18:30 Registration open
7:30 – 18:00 Payment Brand and Council Office Hours
Take advantage of this opportunity to have your specific questions addressed and to connect one-on-one with payment brand and Council representatives
7:30 – 9:00 Networking Breakfast and Vendor Showcase
9:00 – 9:15 Welcome Remarks
Jeremy King, European Director, PCI Security Standards Council
Rob Tourt, Chairperson, PCI Security Standards Council; Chief Risk Management Officer, Payment Services, Discover
9:15  – 10:30 The Future of the PCI Security Standards Council
Jeremy King, European Director, PCI Security Standards Council
Join Jeremy for a preview of the future of PCI and what to anticipate during the next three years. Jeremy will put the future in context of the past: how we got here and why PCI matters more than ever. This information will help your organization to set strategy for using PCI DSS 3.0 to protect cardholder data and related networks and systems - and for keeping your skills honed to ensure the effectiveness of standards and security guidance anticipated for release by the Council.
10:30 – 11:00 Networking Break and Vendor Showcase
11:00 – 12:00 Keynote Address: The Struggle for Control of the Internet
Misha Glenny, Journalist and Author

The Struggle for Control of the Internet contains unique footage and recordings from inside the world of cybercrime as well as exclusive material from governments and intelligence agencies as to the real nature of the threats. As well as providing a gripping insight into this dark world, the talk is peppered with humor and surprises.
12:00 – 13:00 Fireside chat on the State of Card Security
Moderator: Misha Glenny, Journalist and Author
Troy Leach, CTO, PCI Security Standards Council
Christian Delporte, EMVCo, Board of Managers representative

The emergence of new technologies and payment systems is impacting how we secure payments. Join these panelists for a lively discussion on the the implications of EMV chip and mobile for the future of payment security.
13:00 – 14:30 Networking Lunch and Vendor Showcase
14:30 – 15:30 PCI DSS and PA-DSS 3.0 - What you need to know
Attend this session for the latest updates on PCI Standards, including key changes coming with PCI DSS and PA-DSS 3.0, P2PE and PTS updates, and insights into other key focus areas such as tokenization, and mobile.
15:30 – 16:00 Networking Break and Vendor Showcase
16:00 – 17:00 Open Forum
This session is designed to give attendees the opportunity to address members of the Council staff with questions on the standards and technical updates. Attendees can drop in at any time to ask their questions.
16:00 – 17:00 PCI in Practice Case Studies
16:00 – 16:30 Successful Acquirer Collaboration on PCI – A Nordic case study
Mats Henriksson, Project Manager, Pan-Nordic Card Association

One way for the merchant to comply with the PCI requirements is to use validated products (card readers, terminals, electronic cash registers, etc.) that do not handle or cannot release cardholder data, for example card number, name of the cardholder, expiry date, and security codes (CVV/CVC), to the merchant. Attend this session to hear how Nordic acquirers have worked together with vendors and merchants in the region to enable these pre-validated products and drive PCI DSS adoption in the Nordic markets.
16:30 – 17:00 QSAC Engagement – Tracing the PCI compliance journey of a multi-national corporation
Sarah Nicholson, Security Policy & Compliance, BT PLC
Candice Pressinger, Head of Group PCI-DSS Compliance, BT PLC

How do you select and co-ordinate the activities of the QSAC auditing your PCI services? Attend this session to hear how one multi-national corporation, with many and varied PCI services, moved from using many QSACs across the organization through the selection process to employing one QSAC and maturing that working relationship.

If you are interested in participating, click here
17:00 – 18:30 Networking Reception
Please join the Council for a networking reception to reconnect with colleagues, making new connections and talk with exhibitors in the Vendor Showcase.
Thursday, 31 October 2013
7:00 – 13:30 Registration open
7:30 – 13:30 Payment Brand and Council Office Hours
8:00 – 9:00 Networking Breakfast and Vendor Showcase
9:00 – 9:15 Welcome Remarks
Jeremy King, European Director, PCI Security Standards Council
9:15 – 10:30 Forensics Update
Jacob A. Ansari, CISSP, MSIA, QSA, PA-QSA, Director of Technical Services, 403 Labs

Merchants face significant cost challenges after experiencing a breach of payment data. Taking into account the forensic investigations, remediation efforts and potential fines and penalties, the financial burden can be devastating. This session will outline ideas for a more complete solution focused on better breach prevention and recovery methods to help merchants avoid substantial drains on their resources.
10:30 – 11:00 Networking Break and Vendor Showcase
11:00 – 12:30 PCI Updates: Insights on PCI Standards and Guidance
This session will discuss the latest information on Council initiatives including point-to-point encryption, mobile payment acceptance, tokenization, PIN Transaction Security, ATM security and card production.
12:30 – 13:30 Networking Lunch and Vendor Showcase
13:30 – 14:30 Open Forum
This session is designed to give attendees the opportunity to address members of the Council staff with questions on the standards and technical updates. Attendees can drop in at any time to ask their questions.
13:30 – 14:30 2013 Special Interest Group Updates
Hear a high-level overview of Special Interest Groups (SIGs) activity and what was accomplished in 2013. Presented by SIG chair persons.
14:30 - 16:30 2014 Special Interest Group Proposal Session
Make an informed decision in this year’s Special Interest Group election by joining your peers to hear them present firsthand their Special Interest Group (SIG) proposals for 2014.