Second Information Security Workshop for Financial Sector




Second Information Security Workshop for Financial Sector

  • From:

    04-Mar-2014

    To:

    05-Mar-2014

     

     

     

     

     

     

     

     

    1st Panel: Governance and Regulation in Information Security
    This panel will cover the following topics of interest:

    • Updates on international regulation related to Information Security for Banking sector.
    • Information Security Governance framework.
    • PCI regulations framework. Update and Global statistics on PCI compliance.
    • Developing an effective Information Security Strategy.
    • New Information Security compliance programs.
    • Upcoming international regulation in Information Security.
    • What would be the key strategies for an effective implementation of Security programs/controls/standards?
    • How accountable is Executive Management and what is their role in an effective security program.
    • What would be mature Information Security org chart/roles/responsibilities (high level).

    2nd Panel: Mobile Security
    This panel will cover the following topics of interest:

    • Current and future threats that may impact Mobile Channel Services.
    • Information Security considerations while dealing with Mobile Channel Services.
    • Recommendations and best practice to protect Mobile Services.
    • Successful experience form one of the organizations from Mobile Security perspective.  
    • Future direction of Mobile security technologies.


    3rd Panel: Cybercrime
    This panel will cover the following topics of interest:

    • Current and future Cybercrime threats for Banking Sector.
    • Sharing an updated/recent/trusted statistical information about Cybercrime on banking industry.
    • Cybercrime impact on global enterprises.
    • Incident response and Incident Management.
    • Current/new digital forensics capabilities that can help in improving forensic analysis and techniques.  
    • Recommendations and new best practice when dealing with cybercrime.  
    • Latest research results in the field of digital forensics.
    • Key strategies to mitigate cybercrime.

    4th Panel: Information Security Trends in KSA
    This panel will cover the following topics of interests:

    • Latest Information Security initiatives in KSA.
    • Updates on information Security initiatives in KSA.
    • Successful experience for one of the organizations in KSA from Information Security perspective.
    • Information Security awareness in KSA.
    • Information Security research initiatives and accomplishments in KSA.
    • National incident response and incident management.

    5th Panel: Emerging Security Risks
    This panel will cover the following topics of interests:

    • Current and future threats Information Security risks on banking industry.
    • Bring together the research accomplishments provided by researchers and industry.
    • Sharing experiences across different industries.
    • New trends across the globe that may introduce new information security risks.
    • Information security issues become more international.
    • Social media impact on organizations from Information Security perspective.
    • New Malware threats and trends.

 

 

 

Mr.Eugene Kaspersky is the Chairman and Chief Executive Officer of Kaspersky Lab, the world’s largest privately-held vendor of endpoint protection and cybersecurity solutions. In 1997 Kaspersky Lab was founded, with Eugene heading the company’s antivirus research. In 2007 he was named Kaspersky Lab’s CEO. Today Kaspersky Lab is one of the fastest growing IT security vendors worldwide, operating in more than 200 countries and territories worldwide. The company employs approximately 3,000 professionals and IT security specialists in dedicated regional offices across 30 countries and its cybersecurity technologies protect over 300 million users worldwide. Eugene has earned a number of international awards for his technological, scientific and entrepreneurial achievements. He was voted the World’s Most Powerful Security Exec by SYS-CON Media in 2011, awarded an Honorary Doctorate of Science from Plymouth University in 2012, and named one of Foreign Policy Magazine’s 2012 Top Global Thinkers for his contribution to IT security awareness on a global scale.

Presentation

 

 

 

Mr. Raymond Kleijmeer has worked for the central bank of the Netherlands since 2004. As a senior policy advisor he is working on innovations and new developments in the payments system and cyber security. He graduated in Economics at the University of Amsterdam and had the opportunity to study and do research on mobile and internet developments at three universities in both Japan and Korea as well. On a number of occasions Raymond has given presentations on innovations and cyber security issues.

Presentation

 

Mr. Jeremy King, International Director, PCI Security Standards Council, He leads the Council's efforts in increasing adoption and awareness of the PCI security standards internationally. In this role, Mr. King works closely with the Council's General Manager and representatives of its policy-setting executive committee from American Express, Discover, JCB International, MasterCard, and Visa, Inc. His chief responsibilities include gathering feedback from the merchant and vendor community, coordinating research and analysis of PCI SSC managed standards through all international markets, and driving education efforts and Council membership recruitment through active involvement in local and regional events, industry conferences, and meetings with key stakeholders. He also serves as a resource for Approved Scanning Vendors (ASVs), Qualified Security Assessors (QSAs), Internal Security Assessors (ISAs), PCI Forensic Investigators (PFIs), and related staff in supporting regional training, certification, and testing programs.

Presentation

 

 

Mr.  Mike Maddison is the Partner in Deloitte with responsibility for leading our Information Security and Testing services in UK. He has over 20 years’ experience in the field of technology risk, audit, information and physical security. He has a track record of delivering significant transformation programmers within end user environments as well as developing enterprise risk mitigation strategies and appropriate organizational designs. Mike has provided briefings at the highest level of Government on security and intelligence issues. Mike has regularly provided expert opinion on security matters to the broadsheets such as the Financial Times as well as industry publications.

Presentation

Mr. Rob van Straten is responsible for sales and solution consultant teams globally at BWise. In addition he leads the global alliance partner program for BWise and is a member of the executive team. He is an experienced business leader who brings a wealth of executive experience. Prior to joining BWise, Mr. Van Straten worked for several private and public IT companies such as Koning & Hartman, Qi ict, Landis, Imtech and Avensus, serving as, Executive Vice President and Managing Director. Mr. Van Straten is specialized in the entrepreneurial business management of fast growing sales and delivery organizations in an international environment.

Presentation

Mr. Pierre PETIT is the Deputy Director General – Payments and Market Infrastructure for the European Central  Bank. Prior to this job, he was the Head of the Non-Monetary Policies Division of the Directorate General Economics of the European Central Bank when the latter was created in 1998. In 1999, he became Counsellor to T. Padoa-Schioppa, Member of the Executive Board of the ECB. In 2003 he took the role of Principal Adviser to the Director General - International and European Relations. In July 2005 he took the responsibility of Principal Adviser to the Director General - Human Resources, Budget and Organisation. Mr. Petit has a Master in Law (Catholic University of Leuven, 1973-79) and Master in Economics (Catholic University of Louvain-La-Neuve, 1973-79).

Presentation

 

 

Mr.Shrimant Tripathy is the Enterprise Security Architect for The World Bank Group. As part of the Office of Information Security (OIS) he oversees security architecture, vulnerability management, certification and accreditation, managing security and risk within software development and integration for the entire World Bank Group. Mr. Tripathy leads the World Bank Group’s e-security efforts primarily in four key areas i.e., Identity, Credentials & Access Management, Cloud Adoption, Business Applications Security Architecture and Incident Response. Mr. Tripathy has previous experience working in Latin America and Africa region since joining the Bank in 2000. From 2007, he has overseen large multi-year e-Government projects in Argentina and Chile.


 

 

 

Mr. Onur Gorur leads enterprise marketing for Windows devices and operating systems across Middle East and Africa. He drives commercial tablet strategy and market expansion for new products, leads demand generation activities and partner ecosystem development throughout the region. Mr. Gorur joined Microsoft in 2002.  He studied mechanical engineering at Istanbul University and also has an MBA degree from Sabanci University in Istanbul, Turkey.

Presentation

Mr. bahaa Hudairi ( CISSP) MobileIron, with over 15 years of security technology experience into a variety of security fields including mobile security, IPS, Vulnerability management, DLP, SIEM, and Endpoint security. Mr. Hudairi has extensive experience in the region and has worked with many companies across the GCC to help them secure their environments and assets. Mr. Hudairi has also conducted many educational sessions on the risks and steps required to secure environments. Mr. Hudairi has presented many times at IDC events and has been featured in a number of GCC publications.

Presentation

 

 

Mr.Shahed K Latifis Senior Principal with KPMG’s Information Protection and
Business Resilience practice and is also an executive member of KPMG’s Global Cloud Computing Steering Committee and leads the global efforts relating to doing business in the cloud which includes addressing information security concerns. Shahed is a member of the Institute of Chartered Accountants in England & Wales and a member of the San Francisco chapter of Information Systems Audit and Control Association. He received a B. Sc. degree in Managerial & Administrative Studies majoring in finance and
computer science from the University of Aston, Birmingham, in the United Kingdom. He has co-authored a book titled” Cloud Security & Privacy, an enterprise perspective” which details all current aspects of information security relating to the Cloud.
Mr.Shahed K Latifis Senior Principal with KPMG’s Information Protection and Business Resilience practice and is also an executive member of KPMG’s Global Cloud Computing Steering Committee and leads the global efforts relating to doing business in the cloud which includes addressing information security concerns. Shahed is a member of the Institute of Chartered Accountants in England & Wales and a member of the San Francisco chapter of Information Systems Audit and Control Association. He received a B. Sc. degree in Managerial & Administrative Studies majoring in finance and
computer science from the University of Aston, Birmingham, in the United Kingdom. He has co-authored a book titled” Cloud Security & Privacy, an enterprise perspective” which details all current aspects of information security relating to the Cloud.
 
Mr.Shahed K Latifis Senior Principal with KPMG’s Information Protection and
Business Resilience practice and is also an executive member of KPMG’s Global Cloud Computing Steering Committee and leads the global efforts relating to doing business in the cloud which includes addressing information security concerns. Shahed is a member of the Institute of Chartered Accountants in England & Wales and a member of the San Francisco chapter of Information Systems Audit and Control Association. He received a B. Sc. degree in Managerial & Administrative Studies majoring in finance and
computer science from the University of Aston, Birmingham, in the United Kingdom. He has co-authored a book titled” Cloud Security & Privacy, an enterprise perspective” which details all current aspects of information security relating to the Cloud.
 
 
 

Mr. Patrick MacGloin is the PwC Cyber Security lead in the Middle East. He recently joined PwC following a 14year career in UK government covering information and cyber security, including four years (2009-2013) as a diplomat posted to Dubai covering North Africa, the Arabian Gulf and the Levant. This coincided with several high-profile APT attacks, the Arab Spring and several large cyber-crimes, around which Patrick provided analysis and support to government and industry contacts. Patrick has previously covered security issues across Europe, the Americas, Africa and mid-Asia. He is a Certified Information Systems Security Professional (CISSP), and holds several technical forensics and penetration testing certifications including SANS GIAC. Patrick holds a first class Masters in Electrical & Electronic Engineering from the University of Manchester, and is a part-time student at Cambridge University studying cyber security with respect to International Relations.

Presentation

 

Mr. Ingo Noka is Head of Country Risk Management, Asia Pacific, Central Europe, Middle East & Africa (APCEMEA) Visa Inc. He joined Visa International in 1998. Based in Singapore, he oversees the Country Risk Management organization APCEMEA. In his role, Ingo is responsible for implementing the Visa Risk Management strategy, which includes the prevention of fraudulent activities involving payment cards, the protection of payment data and the response to incidences of payment fraud, data breaches and illegal transactions. Ingo brings fifteen years of experience in information technology and payment services to the risk management function. He holds degrees in “Kriminalistik” (Criminology/Forensic Sciences) and ”Informatik” (Computer Sciences) from Humboldt University of Berlin (Germany).

Presentation

Mr. Jeremy O’Connor has been in the business of complex systems, projects and managed services for 25 years. Spanning the roles of General Management, Strategy, Project Direction and Sales & Marketing leadership, he has been developing and delivering telecommunications, ICT and more complex systems and services across a range of industries including retail, finance, transportation, defence and security. In the last five years Jeremy has been engaged principally in cyber security, working with industry and government clients in developing effective defensive measures and participating in public fora, maturing industrial strategy related to cyber security for such topics as situation awareness, secure collaboration and cyber intelligence. He now has an international Client Executive leadership role related to complex cyber security services and intelligence solutions.

Presentation

Mr. Saqer Al-Orabi Al-Harthi is the Risk Management & Audit Head SAMA-GDPS. Prior to that, he was the Information Security Manager for SAMA-GDPS. Mr. Al-Harthi established the Banking Committee for Information Security (BCIS) in 2002 and was the chairman of the committee for the first 9 years. In addition, he also chaired the Information Security Awareness Committee and Training Committee. His role over the last 12 years has been pivotal in initiating multiple collaborated InfoSec initiatives for banking community under BCIS. Furthermore, Mr. Al-Harthi also initiated and executed some of the major projects of SAMA like Security for SARIE, Security for SPAN, PKI, PCI and other security related projects. Over the years at SAMA, he has participated and presented in multiple Information Security seminars and events. Mr. Al-Harthi holds Master in Computer and Information System from U.S.A. and he is Certified Information Security Manager (CISM).

Mr. Saud Alzeer is the head of Information Systems Internal Audit section at MOI-NIC Security & Control department. He lead the execution of establishing an internal audit function initiative at NIC; and worked there for 5 years. Prior to that, he worked in information Security at NIC for 10 years in control,  polices, and procedures;  And participated in a number of projects developed for MOI customers.  Mr. Alzeer presented and participated in a number of workshops and presentation for MOI sectors. He holds a Bachelor degree as a Systems Analyst from King Saud University computer science college.

Dr. Fahad T Bin Muhaya, Ph.D., is an associate professor at College of Business

Administration, and dean for College of Applied Studies and Community Services and the director for Prince Muqrin Chair for IT Security, PMC, at King Saud University. Bin Muhaya is Information Security Consultant for several organizations and has more than fifteen year experience in the Information Technology field. He has published tens of Journal and conference papers and has won several academic and research prizes. He has authored and translated several Security books. Furthermore, Bin Muhaya is the Project Manager for National Information Security Strategy (NISS). Bin Muhaya has obtained his undergraduate degree in Computer Science at the King Saud University, and has obtained His Master degree in Information System from American University at D.C, and went on to obtain a Ph.D. in Information Technology at George Mason University. Bin Muhaya has Co-founded Center of Excellence in Information Assurances, founded Prince Muqrin Chair for IT Security, PMC.

 

Dr. Stefan Frei, holds the position as research Vice President at NSS Labs where he conducts interdisciplinary research to spot trends, understand the threads from an attacker’s perspective, and support business decisions. With over a decade of security experience he developed key competencies in the areas of penetration testing, security research, and consulting for both technical and management audiences. He is well-known in the industry as a leading speaker at major conferences such as BlackHat, DefCon, FIRST, and RSA and as a contributor to numerous security publications.

 

 

 

Mr. Eric Paulak, is a managing vice president in Gartner Research, where he leads the Infrastructure Protection Team, which includes research on network and mobile security, application security, and security services. In prior roles as a manager and analyst, he has been responsible for network infrastructure, global communications services, and next-generation and value-added services, including voice and data convergence, IP VPNs, and remote and mobile worker solutions.

Presentation

 

Mr. Peter Davies is a Director of Thales e-Security. Mr Davies’s career has spanned both commercial and government sectors. Mr Davies has been a frequent speaker at conferences and contributor to journals concerned with Protection of Critical National Infrastructures, Law Enforcement and Commercial security. He has presented papers covering the paradigm shift in security models that must accompany a more connected and less controlled environment advising both commercial and government agencies on strategies and concerns for the protection of a network centric environment. Mr Davies is currently specialising in solving evolutionary interoperability requirements in information security.

Presentation

MR. Laurence Pitt is an experienced IT leader with over 20 years’ experience in creating solutions and products to deliver value to the market. As Director he has an end-to-end responsibility for development of IT Security Solutions. He also has a wide variety of Programming through Professional Services and Product Management career. Specialties: Product Management & Marketing | End-User Computing | Systems Management | Public Speaking and Presenting | Cloud Computing | Competitive and Market Analysis | Go To Market | Change and Configuration Management | Security Systems | Virtualization | Managed Security Services | Mobility | Best Practice (ITIL)| Analyst Research

Presentation

 

 

 

 

 

Tuesday 4th  MAR 2014 Agenda

8:30AM

Registration

9:00AM

IntroductionSpeech By His Excellency the Governor of Saudi Arabian Monetary Agency Dr.Fahad A. Almubarak.

9:30AM

  • Mr.Eugene Kaspersky, Chairman and Chief Executive Officer of Kaspersky Lab  - Kaspersky

Topic: Cyber Underworld - How It Works

 

10:00AM 

 Coffee Break

10:15AM

1st Panel: Governance & Regulation Information Security

Chairman:

  • Mr. Saqer Alharthi - Risk Management & Audit Head,  SAMA– GDPS.

Speakers

  • Mr. Raymond Kleijmeer,  a senior policy advisor   Central Bank of the Netherlands

Topic:The cyber climate - changes and challenges in our hyper connected world

 

  • Mr. Jeremy King,   International Director  -  PCI Security Standards Council

Topic:The Future of PCI: Securing payments in a changing world

 

  • Mr. Mike Maddison, Partner in Deloitte with responsibility for leading  Information Security and Testing services in    UK  -  Deloitte.

Topic:Building Robust Cyber Governance

 

  •  Mr. Rob van Straten, responsible for sales and solution consultant teams globally at  BWise

Topic:GRC In Financial Sector  

        

12:30PM

Prayer Break

1:00PM

2nd Panel: Mobile Security

Chairman:

  • Mr. Alrebdi Fahad Alrebdi - Head of Information Security,Saudi Farnsi Bank.

Speakers:

  • Mr. Pierre Petit, Deputy Director General – Payments and Market Infrastructure for the European Central Bank.        

Topic: Security of mobile payments: the European experience

 

  • Mr. Shrimant Tripathy,  Enterprise Security Architect for The World Bank Group - World Bank.

          Topic:Developing an Effective Mobile Security Framework

 

  • Mr. Onur Gorur,  leads enterprise marketing for Windows devices and operating systems across Middle East and  Africa -  Microsoft.

          Topic:Capturing the mobile opportunity and overcoming security challenge

 

  • Mr. Bahaa Hudairi,   Regional Director MENA   Mobile Iron           

          Topic:Unlocking User Potential with Mobility

 

3:30PM

Closing and Buffet Lunch

 

 

 

Wednesday 5th  MAR 2014 Agenda

9:00AM

1st Panel: Cybercrime

Chairman:

  • Mr. Basil Al Ghanim - Head of Security, Saudi British Bank.

Speakers:

  • Mr. Shahed K Latifis,  Senior Principal with KPMG’s Information Protection and Business Resilience practice -  KPMG.  

          Topic:Cyber Security Discussion: The changing landscape

 

  • Mr. Patrick MacGloin,     PwC Cyber Security lead in the Middle East – PwC

          Topic: digital trust in an era of cyber crime

 

  •  Mr. Ingo Noka,  Head of Country Risk Management,  Asia Pacific, Central Europe, Middle  East & Africa (APCEMEA) Visa Inc- VISA.

           Topic: Cybercrime and Payment System Risk Strategy

 

  •  Mr. Jeremy O'Connor,  international Client Executive leadership  –  SELEX SE.

           Topic:Cooperation for a Nation’s financial infrastructure.

 

11:00PM

Coffee Break

11:15AM

2nd Panel: Information Security Trends in KSA.

Chairman:

  • Mr. Ali Alotibi - Head of Information Security Department, Saudi Hollandi Bank.

Speakers:

  •  Mr. Saqer Al Harthi, Risk Management & Audit Head,  SAMA– GDPS.

           Topic: جهود ومبادرات مؤسسة النقد العربي السعودي في امن المعلومات للقطاع المصرفي

 

  •  Mr. Saud Alzeer, head of Information Systems Internal Audit section at MOI-NIC Security & Control department - National Information Center NIC.

           Topic: جهود مركز المعلومات الوطني في مجال امن المعلومات

 

  •  Dr. Fahad Bin Muhaya, Director - Prince Muqrin Chair (PMC) for IT Security, Chairman of    MIS Department, - King Saud University

           Topic: المبادرات الأكاديمية لدعم امن المعلومات في المملكة

 

12:30PM

Prayer Break

1:00PM

3rd Panel: Emerging Security Risks.

 Chairman:

  • Mr. Abdulkareem Al-Sheha. Head of Information Security Department, Bank Albilad 

Speakers:

  •  Dr. Stefan Frei,  Research Vice President -     NSS LABS

            Topic: Defense Evasion Modeling

 

  • Mr. Eric Paulak, Managing vice president in Gartner Research - Gartner

          Topic:Emerging Security Risks: A New Approach to Advanced Threat Protection            

                    

  •  Mr. Peter Davies,  Director of Thales e-Security- THALES

           Topic: The Truth About Attacks


                                             

  • Mr.  Laurence Pitt - Director EMEA, Information Security Symantec.

Topic: Cyber Security and Risk Framework Building a Resilient Cyber Security Program                                                                                                                                                

3:30PM

Closing and Buffet Lunch

* asterisk indicated required field

         
*        
*     *    
*     *    
* *
*
*
*    
*    
sample@iobf.org
*      
+
+

966

5XXXXXXXX
*       +
+

966

1XXXXXXX
+
+

966

1XXXXXXX