|
2010 Agenda
|
| 08:00 - 09:00 | Registration
| | 09:00 - 09:25 | Lamp Lighting Ceremony
| | 09:25 - 10:15 | Plenary Session One: MANAGING ONLINE AND COMMERCIAL RISK
Presentations to include:
'Web 2.0 Attack Vectors'
Mr. Sameer J. Ratolikar, Chief Information Security Officer, Bank of India - How are current attack vectors on the e-crime landscape -- including phishing, crimeware, botnets, trojans and man-in-the-middle attacks -- presenting us with new challenges to overcome?
- What has been the impact of these attack vectors on the banking industry?
- How can these threats be contained and neutralised?
- From current trends, what shape will the Web attacks of the future take? What is coming over the horizon?
'Where in the World is Conficker?: Securing physical and virtual environments against sophisticated and targeted threats'
Mr. Abinav Karnwal, Product Marketing Manager APEC, Trend Micro - Things have been relatively quiet in the DOWNAD/Conficker front. Does this mean that the world is now safe from similar massive number of infections that it previously experienced.
- The movement toward virtualisation: Where does this IT trend create the opportunity for more robust IT Security, and how can it lead to greater risks?
- Time for change: Where is content security failing, and what does this mean for the vendor community's traditional methods?
- Lessons learned: How should organisations be preparing to protect their physical and virtual environments against sophisticated and targeted threats that exploit new technology trends?
| | 10:15 - 10:55 | Education Seminar Programme - Session One
Trustwave - Global Security Report 2010 Mr. Marc Bown, Managing Consultant, Trustwave Websense - Securing the Borderless Enterprise Mr. Vasant Kumar, Consultant Engineer, Websense | | 10:55 - 11:20 | Networking Break | | 11:20 - 12:10 | Plenary Session Two: KEY TRENDS ANALYSIS IN e-CRIME
Presentations to include: 'Current Trends of India's Internet Usage and Cyber Crime Threats'
Mr. Naresh Ajwani, Secretary, Internet Service Providers Association of India (ISPAI) and President, Cyber Café Association of India (CCAOI) - How is the average user accessing the internet in India and what risks are the likely to be unaware of?
- India has seen massive growth in internet users since 2007, what can be done by ISPs to mitigate the risks of so many new users coming online?
- What are the main ways in which new users are targeted by cyber criminals? Which threats present the greatest dangers?
- How can organisations ensure they are using the right ISPs and software to maximise their security?
'Understanding Who Is In Your IT Systems - Delving into detection scenarios to catch malicious "insiders"'
Mr. Paul Granier, Worldwide Director of Sales Engineering, ArcSight - How is the definition of "insiders" evolving?
- What are the most prevalent use cases discovered at customers around the world?
- Why is it important to collect security events, identity information, as well as transactional information, to gain a clear threat picture?
- How does the use of advanced correlation improve security and compliance?
| | 12:10 - 12:40 | Special Address
'Cyberlaw in India: The State of Play'
Mr. Pavan Duggal, Advocate, Supreme Court of India, and President, Cyberlaws.Net - On 27th October 2009, there were major amendments to India's Cybercrime laws, what were they and what are the key things to know about them?
- What will be the impact of these changes on cyber crime investigations, law enforcement and bringing e-criminals to justice?
- In fifteen years, there have only been three convictions of corporate cyber crime, why is this the case and will these recent amendments serve to remedy or exacerbate this problem?
- How do new cases of cyber crime since the amendments shed light on their impact on investigations, law enforcement and legal processes?
| | 12:40 - 13:15 | Education Seminar Programme - Session Two
Microfocus - Test Data - Recognising and removing the Achilles' heel in your security Mr. Peter Anderton, Product Solutions Director, Micro Focus
Mr. Nav Saini, Technical Services Director - India, Micro Focus RSA - Fraud Eco System | | 13:10 - 14:00 | Networking Lunch
| | 14:00 - 14:30 | Keynote Presentation
'Banking on your Customer's Desktop'
Mr. Vishal Salvi , Chief Information Security Officer, HDFC Bank - Who are e-criminals really targeting and exploiting today, the multinational or the customer?
- How can banks and other large organisations help to protect their most vulnerable customers from cyber crime attacks?
- Why is this issue so crucial in the context of India and its rapid online growth?
- Based on trends from 2009, what can we forecast for 2010 and what should we be planning now?
| | 14:30 - 15:15 | EXECUTIVE ROUNDTABLE of CISOs chaired by Mr. Burgess Cooper, Chief Information Security Officer, Vodafone
Participants include: Patrick Kishore, State Bank of India; Sameer J. Ratolikar, Bank of India; Vishal Salvi, HDFC Bank; Kavita Tavare, HSBC - What is the future of the head of information security?
- Who should the head of information security be reporting to?
- What are the benefits and drawbacks of the increased focus on security compliance projects such as, for example, PCI DSS?
- What are the challenges in defining and enforcing a sound data privacy policy?
| | 15:15 - 16:00 | Education Seminar Programme - Session Three
Hardcore Security in Software
Mr. Raj Gopalakrishna, Vice President, Arcot | | 16:00 - 16:20 | Networking Break at High Tea | | 16:20 - 17:10 | Plenary Session Three: STRATEGIES TO PROTECT MULTIPLE DIGITAL ASSETS
Presentations to include:
'Protecting Sensitive Customer and Business Data'
Mr. Patrick Kishore, General Manager and CISO State Bank of India - What are the risks to customer and business data and are we protecting this data now?
- How do e-criminals extract value from data and how can organisations gain a better understanding of their data assets?
- What are the emerging threats and how can we guard against them?
- What's in it for the customer and how does customer protection represent business value?
'Managing Commercial Risk at an Enterprise Level'
Ms. Kavita Tavare, Head of Security, Fraud & Risk, HSBC - Why is it important to take a holistic view of commercial risk and which different business functions need to be involved?
- What are the key areas of risk that organisations need to consider and which teams are responsible for each one?
- What should the structure and internal processes of an organisation that is prepared for e-crime and fraud at an enterprise-wide level look like, from Business Continuity Planning through to prevention, investigation and recovery?
- Where is the overlap between the different security and risk functions, and how do you balance their responses to multiple threats to ensure maximum efficiency?
|
|
| 08:00 - 09:00 | Registration
| | 09:00 - 10:15 | Plenary Session One: WORKING WITH LAW ENFORCEMENT
Presentations to include:
'The Problem of Unreported e-Crime'
Mr. Brijesh Singh, Deputy Commissioner Mumbai, Indian Police Service - Reporting e-crime: what is supposed to happen and what happens in reality?
- The number of reported cases corporate e-crime in India is almost zero, why is this the case and what can be done to solve this problem?
- What is the role of the police in investigations? At what stage should they be notified and at what stage is the investigation handed over to them?
- What are the legal challenges that law enforcement officers must overcome when working on cyber crime cases?
'Defining a Model of Public and Private Partnership'
Mr. Pretap Reddy, Director, Cyber Security, NASSCOM - What does the working relationship between corporate security and law enforcement currently look like?
- What are the key 'gap areas' in the public and private sectors when it comes to fighting e-crime?
- How can understanding security as a goal in itself help to raise the bar for public-private cooperation?
- What would a neutral information security platform for corporate security professionals and law enforcement officers to collaborate look like?
| | 10:15 - 10:55 | Education Seminar Programme - Session One
Trustwave - Anatomy of Data Compromises Mr. Marc Bown, Managing Consultant, Trustwave Websense - Securing the Borderless Enterprise Mr. Vasant Kumar, Consultant Engineer, Websense | | 10:55 - 11:20 | Networking Break | | 11:20 - 12:10 | Plenary Session Two: REDUCING FRAUD
Presentations to include:
'Financial Crime Prevention: Searching for Panacea'
Mr. Nandkumar Saravade, General Manager Financial Crime & Reputation Management, ICICI - Since fraud exploits the gaps in the security preparedness of organisations, and since investigations are costly and tedious, how can emphasis on the prevention of crime help to eliminate security gaps and reduce investigations?
- How can taking an holistic and integrated view, including process, people and technology, help to prevent fraud? And how can the effectiveness of fraud prevention be appropriately measured?
- What is the importance of working with external stakeholders in trying to prevent e-crime?
- Since fraud trends mutate and scale up rapidly, what timescales should the responses from various stakeholders be working to?
'Identity and Authentication: Preventing e-Fraud and Identify Theft in Real Time
Mr. Jim Reno, Chief Technology Officer, Arcot Systems - What is the relationship between Identity and Authentication?
- How do authentication technologies compare? What are the strengths and weaknesses of each?
- What are the barriers and challenges in implementing strong authentication in consumer environments?
- What are the most effective strategies for preventing e-fraud?
| | 12:10 - 12:40 | Keynote Presentation
'Management and Employee Fraud from a Digital Perspective'
Dr. Vishnu Kanhere, Practising Chartered Accountant - Which areas of an organisation present the greatest risks of insider fraud?
- How have advances in IT made digital fraud easier and what can be done to prevent it?
- What lessons can be drawn from the Enron case study, which was a high-profile incident of management fraud?
- What steps can be taken to reduce frontline-level employee fraud?
| | 12:40 - 13:15 | Education Seminar Programme - Session Two
Microfocus - Test Data - Recognising and removing the Achilles' heel in your security Mr. Peter Anderton, Product Solutions Director, Micro Focus
Mr. Nav Saini, Technical Services Director - India, Micro Focus RSA - How to Fight the Fraud Eco System | | 13:15 - 14:00 | Networking Lunch
| | 14:00 - 14:30 | Special Address
'Going to Bed Hungry in the Indian Security Ecosystem'
Mr. Vijay Mukhi, Managing Director, The Computer Institute - Why are companies not spending more money on security when India has seen such massive growth in internet usage and rates of cyber crime?
- What impact does the attitude of 'outsourcing security to God' have on the security ecosystem?
- Why does corporate e-crime not get reported to police cyber crime teams and what is the impact of India's legal system on this process?
- What steps can be taken to overcome these problems and invigorate the security ecosystem?
| | 14:30 - 15:20 | Plenary Session three: e-CRIME CASE STUDIES; PREVENTION, DETECTION, & RESPONSE
Presentations to include:
'e-Crime: Case Studies'
Mr Anil Sagar, Additonal Director, CERT-In - What is the buisness model of fraudsters?
- How can we gain a better understanding of botnet infrastructure?
- How are fast-flux botnets and DNS techniques utilised bys?
- What methods are being used currently in context aware and content aware attacks?
'Understanding e-Crime at a People Level'
Mr. Satyam Das, Associate Vice President - Risk Management, AXA Business Services Pvt. Ltd. - Why is preventing e-Crime more than just an "IT problem" and what else
apart from technology needs to be considered? - Why is it important to build trust in "people" and how is that best achieved?
- Why should anti-money laundering and insider trading controls be considered in achieving this aim?
- What is the concept of a "Trusted Location" and how does it relate to both security and people?
| | 15:20 - 15:50 | Networking Break at High Tea | | 15:50 - 16:45 | Plenary Session Four: OPTIMISING ENTERPRISE e-SECURITY STRATEGY
Presentations to include: 'Understanding e-Crime at a Business Level'
Mr. Sunder Krishnan, Chief Risk Officer, Reliance Life Insurance - Why is it important to understand e-crime as a business problem rather
than an IT problem? And why does a focus on e-crime need to be a part of board briefings? - What lessons can be drawn from the Soc Gen (Societe Generale) Case Study?
- How can technical risks from multiple stakeholders be translated to be
easily understandable by the board? - Why has risk management at a holistic level become the need of the
hour?
'Defining Organisational Security Policies and Regulations in India'
Dr. Krishnashree Achuthan and Raj Mudaliar, TIFAC CORE, Amrita University - Taking a single case study such as Indian healthcare, what can we learn about the current threat profile?
- What are the implications of stolen data for an organisation that has been compromised?
- How can common viruses such as Conficker and the 2003 Blaster Worm exploit vulnerabilities to steal records?
- Why is it important to develop a risk ranking system and governance cycle?
| | 16:45 - 16:50 | Forum Close |
|
|
In Association With
What the Market Says
Our Next Event
Twitter Updates
2010 Strategic Sponsors
Education Seminar Sponsors
Download 2009 e-Crime Survey Report
Conducted in partnership with
Access the 2009 survey report
Our Next Regional Event
|