June 14, 2012 • Hilton Hotel Singapore
General Manager, PCI Security Standards Council
Bob Russo, the General Manager of the PCI Security Standards Council, works with representatives from American Express, Discover, JCB International, MasterCard, and Visa Inc to drive awareness and adoption of the PCI Data Security Standard. Mr. Russo is responsible for driving the organization's growth and development, as well as meeting its goals to create educational programs, establish pools of certified Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and Approved Scanning Vendors (ASVs), and incorporate feedback from all stakeholders across the payment chain into the work of the Council and the development of new standards. In addition, Mr. Russo oversees the PCI Security Standards Council's training, testing, and certification programs for QSAs, ISAs, PFIs, and ASVs.
Mr. Russo brings more than 25 years of high-tech business management, operations, and security experience to the PCI Security Standards Council. Mr. Russo guides the organization through its crucial charter, focusing on improving data security standards for merchants, banks and other key stakeholders involved in the global payment card transaction process.
Chief Technology Officer, PCI Security Standards Council
Troy Leach is the Chief Technology Officer for the PCI Security Standards Council (SSC). In his role, Leach partners with Council representatives, Participating Organizations and industry leaders to develop comprehensive standards and strategies to secure payment card data and the supporting infrastructure.
Prior to joining the Council, Troy Leach led the incident response program at American Express. In this position, he reviewed more than 300 cases where account data had been compromised. Over the past 16 years, he has held positions in systems administration, network engineering, IT management, security assessment and forensic analytics. Leach holds a Master of Science in Telecommunications & Network Management as well as a graduate degree in Information Security Management from Syracuse University.
Senior Investigator, New South Wales Police Force
Detective Sergeant Ritchie Sim is a Senior Investigator in the field of Major Crime Investigations, and has been attached to the Fraud and Cybercrime Squad, State Crime Command (New South Wales Police Force) for over four years. He is attached to a specialised unit which is known at the ‘Proactive team’, mainly investigating credit card fraud, money laundering and related crimes. He is also responsible for coordinating the surveillance capability of the Squad and heavily involved in training in this field, as well as training in the field fraud investigation generally, both internally and to external stakeholders.
Ritchie has been in the Police for 24 years, working in General Duties in the Sydney metropolitan area before commencing his career in criminal investigation in 1990. During his 22 years in the field of criminal investigation he has worked with the Special Operations Group; Metropolitan Detectives; Regional Crime Squad; State Crime Command (various areas of major crime such as, Organised Crime East Coast; Homicide, Child Protection, Property Crime, Arson, Vehicle Re-birthing, and currently the Fraud and Cybercrime).
During Ritchie’s career he has been involved in and led a wide variety of major crime investigations such as: Complex fraud investigations involving national and international criminal syndicates as well as money laundering; homicide / murder investigations (including multiple victim homicides and child murder); serial sex offenders; paedophile investigations; arson investigations and kidnapping and extortion investigations.
During Ritchie’s career he has completed various courses and certificates, including Certificate of Designation - Detectives Education Program, Certificate in Arson Investigation, Certificate in Homicide Investigation, Certificate in Advanced Criminal Investigation, Certificate IV in Training and Assessment, and the Commercial Crime Course.
Core PFI Investigator
Johan Öman: Johan has been working with PCI-DSS/PA-DSS since 2007. He is a Core PFI investigator and is working hands-on with IT-Forensics, Penetration testing and general security reviews. Johan is a certified QSA, PA-QSA, Forensic Analyst (GCFA) and Malware Analyst (GREM) and he has been a lead investigator in numerous PFI cases in both European and cross continental assignments. Johan is also an accomplished PFI advisor for Cybercom partners worldwide and he is currently the Head of IT-Security for Cybercom International with its HQ in Singapore.