Maintaining Sustainable PCI DSS Compliance and Incident and Breach Response, Darden Restaurants, Thursday, 18. October 2018

Please join us for a full day of CPEs!!!
Lunch will be provided.
7 CPEs
Location: Darden Restaurants, 1000 Darden Center Drive, Orlando, FL  32837
Date: Thursday, October 18, 2018
Time: 8:00 AM - 5:00 PM; Doors open at 7:30 AM

* Maintaining Sustainable PCI DSS Compliance: In the past few years we have seen massive breaches at organizations such as Target and Equifax. In many cases, these organizations were compliant to standards such as the Payment Card Industry Data Security Standard (PCI DSS). Yet, breaches happened and in most cases the breach was notified to the impacted company by an outside agency. Investments in complying to these standards are in addition to technology investments made by companies in anti-viruses, firewalls, security incident and event management systems, etc. The traditional checkbox approach to cybersecurity no longer works.
It is important that organizations realize that the cybersecurity journey goes far beyond just compliance to any given standard. Organizations should also recognize that even after significant investments breaches can still occur.
This talk addresses the following aspects:
1. Going beyond PCI DSS compliance and improving security levels through the year2. Building a PCI DSS compliance calendar3. Effective ongoing implementation and monitoring of key controls – CISO dashboard4. Handling the aftermath of a breach
* Incident and Breach Response: Lessons learnt from Global Cyber Security Incidents:
The recent breaches exposed highly sensitive data of more than 150 million US citizens. While breaches have begun to become commonplace, what was most striking about this case was the way Equifax handled its response. From news that its senior executives sold stock prior to the news becoming public, to Equifax asking affected customers to waive rights to a class-action lawsuit, the response was bungled in epic proportions. Equifax says it learned about the mega-breach at the end of July, and took roughly six weeks to disclose it. During that time, the company could have planned and executed a much better way of assuring affected customers and reducing the impact to them. This talk covers the mistakes that organizations have made and provides suggestions on how we should prepare before a breach and then how best to respond in case a breach does occur.

Presented by: K. K. Mookhey, QSA, CISSP, CISA, CISM, CRISC, ACFE 
KK is one of the pioneers of cybersecurity.  Having begun his firm as a one-man show in 2001, it has now grown to a team of over 400 consultatns spread across offices in New York, Dubai, India, and Singapore.  He is a trusted conculstant and trainer to organizations across the blove on carious aspects of cybersecurity.  He is well-versed with the security challenges of various indusry verticals, and also with international standards and frameworks such as ISO 27001, PCI DSS, COBIT, HPAA, etc.
He is the author of two books (on Linux Security and on the Metasploit Framework) and of numerous articles on information security.  He was the first secruity researcher from India to present at Blackhat in 2004 (on "Detection and Evasion of  Web Application Attacks") and since then has spoken at numerous global conferences.
He is currently overseeing the research activities witin the Network Intelligence focused on use of big data in security, building various automation solutions, and security impact of the Internet of Things.

Thursday, 18. October 2018, Darden Restaurants, Maintaining Sustainable PCI DSS Compliance and Incident and Breach Response

Find more interesting events
Get event recommendations based on your Facebook taste. Get it now!Show me the suitable events for meNot now