|
Pre-Conference, Tuesday, September 23, 2008
|
|
|
|
|
1:00pm – 5:00pm
|
QSA and ASV General Session
(QSAs and ASVs only)
This session is open to representatives from QSA and ASV companies only and will focus on compliance, consistency, independence with the audit and remediation efforts, and other important topics. The Council will also detail plans for quality assurance and future program updates such as streamlining the reporting process.
|
|
|
|
|
5:00pm – 6:30pm
|
Welcome Reception
All attendees are invited to join the Council in celebrating its second year. This reception will provide networking opportunities for attendees across global regions and markets.
|
|
|
|
|
Main Session, Wednesday, September 24, 2008
|
|
|
|
|
7:30am – 9:00am
|
Networking Breakfast
|
|
|
|
|
9:00am – 9:30am
|
Welcome remarks
Bob Russo, General Manager
Mr. Russo should also introduce the Board of Advisors members.
|
|
|
|
|
9:30am – 10:30am
|
The State of the PCI SSC
Bob Russo, General Manager
Rob Tourt, Chairman
Please join us for an overview of the Council’s current standards activities, operations & future plans. The presentation will include a summary of the feedback received from Participating Organizations on needs for the Council’s future standards and programs.
|
|
|
|
|
10:30am – 11:00am
|
Networking Break
Please visit the Vendor Showcase during the break
|
|
|
|
|
11:00am – 12pm
|
The Emerging Threats
A leading counter-terrorism expert will provide an overview of emerging threats to data security.
Panel Discussion: Payment brand incident response teams and forensics investigator.
The discussion will focus on the comment threats and trends in the industry.
|
|
|
|
|
12pm – 1:00pm
|
Networking Lunch
Please visit the Vendor Showcase during lunch
|
|
|
|
|
1:00pm – 3:00pm
|
What’s New with DSS 1.2 – Part 1
Join members of the Council’s Technical Working for an overview of the changes in DSS 1.2. This interactive session will provide the opportunity to ask specific questions regarding a requirement, and to clarify any transition issues in moving from v1.1 to v1.2, including sunset dates, effective dates, etc. The session will also cover certain best practices that were not included in v1.2, but will likely be included in the v2.0 two years from now.
|
|
|
|
|
3:00pm – 3:30pm
|
Networking Break
Please visit the Vendor Showcase during the break
|
|
|
|
|
3:30pm – 4:15pm
|
What’s New with DSS 1.2 – Part 2
Join members of the Council’s Technical Working for an overview of the changes in DSS 1.2. This interactive session will provide the opportunity to ask specific questions regarding a requirement, and to clarify any transition issues in moving from v1.1 to v1.2, including sunset dates, effective dates, etc. The session will also cover certain best practices that were not included in v1.2, but will likely be included in the v2.0 two years
|
|
|
|
|
4:15pm – 5:00pm
|
SIG Reports
The Council’s Special Interest Groups will provide a report on their current activities. Topics to be discussed are:
- Wireless
- Authorization
- EMV (TBD)
|
|
|
|
|
5:00pm – 5:30pm
|
Open Forum
This session will provide an open opportunity for questions with the Technical Working Group members and the General Manager.
|
|
|
|
|
5:30pm – 6:30pm
|
Vendor Showcase Open
|
|
|
|
|
6:30pm – 8:00pm
|
Networking Reception
Please join the Council for a reception to refresh old acquaintances and make new connections across the global industry.
|
|
|
|
|
Main Session, Thursday, September 25, 2008
|
|
|
|
|
8:00am – 9:00am
|
Networking Breakfast
|
|
|
|
|
9:00am – 9:15am
|
Opening remarks
Bob Russo, General Manager
|
|
|
|
|
9:15am – 10:15am
|
Security for the Executive Suite
Khalid Kark., Forrester Research
This address will focus on the strategic importance of security for the full enterprise.
|
|
|
10:15am – 10:45am
|
Networking Break
|
|
|
|
|
10:45am – 12:00pm
|
PCI DSS Quality Assurance Programs
The Council has established QA programs for our QSAs, ASVs, and PA-QSAs. This session will address the basic elements of these programs so both merchants and FIS will feel even more confident when dealing with these assessors and vendors.
|
|
|
|
|
12:00am – 1:00pm
|
Lunch
|
|
|
|
|
1:00am – 2:00pm
|
What’s new in the PA-DSS
(Both PA-DSS and PED need to be more transitional and operational. What do acquirers and merchants want to know about these items?)
Launched as a PCI SSC initiative in April 2008, the PA-DSS helps software vendors and others develop secure payment applications that do not store prohibited data, such as full magnetic stripe, other sensitive authentication data or PIN data, and ensure their payment applications support compliance with the PCI DSS. This session will provide an overview of recent changes to the PA-DSS program.
|
|
|
|
|
2:00pm – 3:00pm
|
What’s New in PED
The Payment Card Industry (PCI) has initiated a collaborative effort to address common industry security criteria, including the security-related aspects of PIN entry devices (PEDs). This session will provide an overview of this program.
|
|
|
|
|
3:00pm – 3:30pm
|
Networking Break
|
|
|
|
|
3:30pm – 4:00pm
|
Quick Hits – Feedback Topics and Council Answers
Council subject-matter experts will provide resolution regarding a number of topics submitted via the FAQ process this year
|
|
|
|
|
4:00pm – 4:30pm
|
Conclusion and Wrap Up
Bob Russo, General Manager
The Council will highlight key outcomes identified by meeting sessions along with future global event topics and locations.
|
