Agenda

Monday, 23 September 2013
12:00 p.m. – 6:00 p.m. Registration open
Pre-Conference – Tuesday, 24 September 2013
7:00 a.m. – 8:30 p.m. Registration open
1:00 p.m - 5:00 p.m. Assessor General Session
(QSAs, ASVs, and ISAs only)

Join your peers for an interactive session with the PCI SSC team to discuss what is new for assessors and tips for ensuring your assessments get great feedback.
5:45 p.m. - 8:30 p.m. Welcome Reception
House of Blues, Mandalay Bay.
Sponsored by Shift4
Wednesday, 25 September, 2013
7:00 a.m. – 6:30 p.m. Registration open
7:30 a.m. – 6:30 p.m. Payment Brand and Council Office Hours
Take advantage of this opportunity to have your specific questions addressed and to connect one-on-one with payment brand and Council representatives
7:30 a.m. – 9:00 a.m. Networking Breakfast and Vendor Showcase
Sponsored by FireHost
9:00 a.m. – 9:15 a.m. Welcome Remarks
Bob Russo, General Manager, PCI Security Standards Council
Rob Tourt, Chairperson, PCI Security Standards Council; Chief Risk Management Officer, Payment Services, Discover
9:15 a.m. – 10:30 a.m. The Future of the PCI Security Standards Council
Bob Russo, General Manager, PCI Security Standards Council
Join Bob Russo for a preview of the future of PCI and what to anticipate during the next three years. Bob will put the future in context of the past: how we got here and why PCI matters more than ever. This information will help your organization to set strategy for using PCI DSS 3.0 to protect cardholder data and related networks and systems - and for keeping your skills honed to ensure the effectiveness of standards and security guidance anticipated for release by the Council.
10:30 a.m. – 11:00 a.m. Networking Break and Vendor Showcase
Sponsored by Security Metrics
11:00 a.m. – 12:00 p.m. Keynote Address: The Struggle for Control of the Internet
Misha Glenny, Journalist and Author

The Struggle for Control of the Internet contains unique footage and recordings from inside the world of cybercrime as well as exclusive material from governments and intelligence agencies as to the real nature of the threats. As well as providing a gripping insight into this dark world, the talk is peppered with humor and surprises.
12:00 p.m. – 1:30 p.m. Networking Lunch and Vendor Showcase
Sponsored by Cisco
1:30 p.m. – 2:30 p.m. Fireside chat on the State of Card Security
Moderator: Misha Glenny, Journalist and Author
Troy Leach, CTO, PCI Security Standards Council
Brian Byrne, Director of Operations, EMVCo

The emergence of new technologies and payment systems is impacting how we secure payments. Join these panelists for a lively discussion on the implications of EMV chip and mobile for the future of payment security.
2:30 p.m. – 3:00 p.m. Networking Break and Vendor Showcase
Sponsored by Security Metrics
3:00 p.m. – 4:00 p.m. PCI DSS and PA-DSS 3.0 - What you need to know
Attend this session for the latest updates on PCI Standards, including key changes coming with PCI DSS and PA-DSS 3.0, P2PE and PTS updates, and insights into other key focus areas such as tokenization, and mobile.
4:00 p.m. – 5:00 p.m. Open Forum
This session is designed to give attendees the opportunity to address members of the Council staff with questions on the standards and technical updates. Attendees can drop in at any time to ask their questions.
4:00 p.m. – 5:00 p.m. PCI in Practice Case Studies
4:00 p.m. – 4:30 p.m. PCI in Practice: Secure Payment Systems implementation (QIR in Practice)
Mark Weiner, Managing Partner, Reliant Security

Secure installation, integration and maintenance of payment applications and systems continues to be a challenge for merchants. By attending this session, hear how the Qualified Integrators and Resellers (QIR) program provides the industry with a long-needed framework for secure payment systems implementation, including review of core components of QIR framework for secure deployment of payment applications; tools for analysis, design, and management of complex payment system implementations; and best practices and lessons learned for secure implementation.
4:30 p.m. – 5:00 p.m. PCI in Practice: Merchant-Acquirer Relations: from Processing to Partnership
David Wallace , Vice President, Global Merchant Compliance, Chase Paymentech
Shawn Irving, Senior Manager, Information Security Services, Southwest Airlines
Erika Root, Director, Internal Controls Compliance department, Time Warner Cable (TWC)
Dennis E. Maria Jr., CTP Merchant Services Manager, Delaware North Companies

There are many reasons why merchants should maintain an ongoing relationship with their Acquirer’s compliance team, and many befits to be derived from this. Chase Paymentech will facilitate a joint acquirer/merchant presentation representing a broad range of industries spanning traditional brick-and-mortar and ecommerce merchants to provide concrete examples of situations where ongoing communication and collaboration have benefitted the merchant, the acquirer, and the greater security of the payment system.
5:00 p.m. – 6:30 p.m.

Networking Reception
Please join the Council for a networking reception to reconnect with colleagues, making new connections and talk with exhibitors in the Vendor Showcase.

Thursday, 26 September, 2013
7:00 a.m. – 1:30 p.m. Registration open
7:30 a.m. – 3:00 p.m. Payment Brand and Council Office Hours
8:00 a.m. – 9:00 a.m. Networking Breakfast and Vendor Showcase
Sponsored by NCC Group
9:00 a.m. – 9:30 a.m. Welcome Remarks
Bob Russo, General Manager, PCI Security Standards Council
9:30 a.m. – 10:30 a.m. Forensics Update
Jacob A. Ansari, CISSP, MSIA, QSA, PA-QSA, Director of Technical Services, 403 Labs

Merchants face significant cost challenges after experiencing a breach of payment data. Taking into account the forensic investigations, remediation efforts and potential fines and penalties, the financial burden can be devastating. This session will outline ideas for a more complete solution focused on better breach prevention and recovery methods to help merchants avoid substantial drains on their resources.
10:30 a.m. – 11:00 a.m. Networking Break and Vendor Showcase
Sponsored by Security Metrics
11:00 a.m. – 12:30 p.m. PCI Updates: Insights on PCI Standards and Guidance
This session will discuss the latest information on Council initiatives including point-to-point encryption, mobile payment acceptance, tokenization, PIN Transaction Security, ATM security and card production.
12:30 p.m. – 1:30 p.m. Networking Lunch and Vendor Showcase
Sponsored by Identity Finder
1:30 p.m. – 2:30 p.m. Open Forum
This session is designed to give attendees the opportunity to address members of the Council staff with questions on the standards and technical updates. Attendees can drop in at any time to ask their questions.
1:30 p.m. – 2:30 p.m. 2013 Special Interest Group Updates
Hear a high-level overview of Special Interest Groups (SIGs) activity and what was accomplished in 2013. Presented by SIG chair persons.
2:30 p.m. - 4:30 p.m. 2014 Special Interest Group Proposal Session
Make an informed decision in this year’s Special Interest Group election by joining your peers to hear them present firsthand their Special Interest Group (SIG) proposals for 2014.

North American Community Meeting

24-26 September 2013
Mandalay Bay Convention Center

Las Vegas, Nevada