Home

Register

Key Themes & Event Format

Sponsors

What the Market Says

Who Attends

Past Events

Congress History

Past Sponsors

How to Sponsor

Contact

26 May 2010


08:00 - 09:00 Registration
09:00 - 09:25

Practical Lessons in Managing Threat Convergence and Attacks Across Multiple Business Channels


Speaker: Hariharan Iyer, Head - Information Security & Business Continuity, Dubai Bank

  • What does the increasing technical sophistication of attacks really mean for organizations in terms of protecting infrastructure and customer-facing platforms?
  • How are differences in risk assessment and security practices across businesses within different industry sectors creating more opportunity for criminal gangs?
  • What techniques are criminal gangs exploiting in order to effectively target multiple services in the same business?
  • What trends are being observed in the blending of technical and non-technical attacks and attack vectors? 
  • As criminals become more effective at manipulating the attack surface, what new strategies are needed to defend the enterprise?
09:25 - 09:50 Exploiting analytics to detect the undetectable: taking a new approach to prevention and detection that mitigates the impact of electronic crime

Speaker: Vishal Marria, Head, Financial Services Solutions, Detica NetReveal

  •  Learning lessons from the evolution of financial crime: what do patterns of criminal behaviour demonstrate regarding the ways in which brands, products, industries and countries are being targeted by organised malicious activity?
  • From insider fraud to account takeovers: how can a new approach to analytics overcome the key challenges for organisations by driving knowledge and creating actionable intelligence from structured and unstructured data sets?
  • Case studies and practical examples: how are businesses using advanced analytics to assist front end prevention, and how does deconstructing related data into its individual composite parts enable complex crime networks to be identified? 
  • Advancing risk management metrics: what strategies are necessary to defend and protect against cross-brand, cross-industry attacks and what do current trends indicate about what the future holds?"
09:50 - 10:15 Managing investigations in the evolving landscape of online crime

Speaker: Harpal Singh, Senior Manager IT Security & Governance, Emirates NBD Group

  • How is online cyber crime evolving and how are international bodies such as Interpol working to deal with the situation?  
  • What steps should be taken by organizations to protect their systems and data assets from the perpetually changing landscape of evolving threats – including botnets, intelligent malware, and application vulnerabilities?
  • A real life example: what are the lessons learned from the latest vulnerability issue affecting Adobe? 
  • What fraud detection and prevention strategies are proving effective in dealing with cyber crime and how should investigations be handled to increase the probability of success?
  • How can the implementation of best practices and regulatory requirements create an IT infrastructure that is close to “secure by design” from vulnerability exploits?
10:15 - 10:45 Refreshments & Networking Break
10:45 - 11:10 How can businesses use early deployment of effective strategies against current e-fraud risks to mitigate future threats?

Speaker: Biju Nair, AVP - Internal Audit & Business Risk Review, Noor Islamic Bank PJSC

  • How are the criminal methodologies used to execute current phishing attacks likely to develop and become more complex?
  • How can we mitigate immediate e-fraud risks to ensure client confidence while also adding long term security value?
  • What combination of technology, compliance, and awareness is most likely to increase detection and prevention capabilities against future email based attacks?
  • What steps can be recommended that will give organisations the capability to protect their reputation, their clients, and the enterprise?
11:10 - 11:35 Identity and Authentication: Preventing e-Fraud and Identify Theft in Real Time

Speaker: Jonathan Gill, Vice President, Arcot Systems, Inc.

  • What is the relationship between Identity and Authentication? 
  • How do authentication technologies compare? What are the strengths and weaknesses of each?
  • What are the barriers and challenges in implementing strong authentication in consumer environments? 
  • What are the most effective strategies for preventing e-fraud?
11:35 - 12:10 Education Seminars

Delegates will be able to choose from the following range of seminars, and select the most appropriate topic for their requirements.

Cryptic : Best practices to manage security threats faced by organisations in the Middle East

Arcot : Online identity protection: trends, technologies, and best practices

Sourcefire : So you think your IPS is intelligent enough to make a decision?

Websense : Security moving at the speed of business - securing you against modern threats

For details on education seminars please click here
12:10 - 13:10 Lunch and Networking
13:10 - 13:35

Protecting organization’s services against e-crime related threats through proactive service based security  monitoring


Speaker: Ali Mukrid, Director - Security Operations, du

  • An in-depth view of how proactive security monitoring adds value in minimizing threats associated with ecrime
  • What are the challenges of relying mainly on security technologies for preventing or minimizing realizations of ecrime threats?
  • How can a service based approach for proactive security monitoring be adopted to effectively minimize ecrime threats?
  • A walkthrough of a real life example
13:35 - 14:00 Data Protection: Establishing Data Loss Prevention (DLP) solutions

Speaker: Tariq Ajmal, Partner, Deloitte Enterprise Risk Services

  • Defining data leakage: what immediate measures can help a business to understand the sensitive information it holds, how it is controlled, and how to prevent it from being leaked
  • Data leakage business challenges: protecting sensitive data to meet the expectations of customers, business partners, regulators, shareholders and the Board 
  • Reducing business impact risks: understanding the impact of regulatory intervention combined with the potential for negative publicity and public perception from a data breach
  • A data protection framework: implementing a solution path from risk assessment to remediation and implementation of appropriate controls / technologies
14:00 - 14:25 Data Loss Prevention - protecting valuable information from internal and external threats

Speaker: Chris Forgan, Business Consultant, Allpoint Security

  • Endpoint security : from policy to security what are the priorities for enforcing and integrate endpoint solutions with existing network infrastructures in view of the current threat matrix
  • Protecting and securing email : the dangers of messaging and communications platforms
  • The role of end-to-end encryption in securing information on devices and portable hardware in a mobile workforce
  • The value of authentication : leveraging access control and identity management to enhance protective and monitoring capability
  • How does the mitigation of Data Loss Prevention threats correspond to Payment Card Industry compliance  requirements
14:25 - 15:00 Education Seminars

Delegates will be able to choose from the following range of seminars, and select the most appropriate topic for their requirements.

Deloitte : The balancing act of data protection and privacy

Proofpoint : End-to-end email security: ensuring data privacy and compliance from the desktop to the gateway and beyond

RSA : Trends in online fraud, and how to protect your online applications

Websense : Security moving at the speed of business - securing you against modern threats

For details on education seminars please click here
15:00 - 15:20

Refreshments & Networking Break


15:20 - 15:45 Effective e-Crime Response: what is needed in order for the UAE to stay one step ahead of the cyber criminals?

Speaker: Dr. Ibrahim Baggili, Assistant Professor & Director of Cyber Forensics Laboratory, Zayed University

  • What gaps have been revealed by the approach at judicial level to cyber crime in terms of the disconnect between how the public andprivate sector deal with e-Crime response?
  • What are the commercial, business, and legal drivers for organisations to create a dedicated cyber crime response team? 
  • How should such a team be structured to ensure that digital crimes can be successfully investigated and prosecuted by the courts? 
  • How can in-house digital forensic capabilities compliment existing departments such as information assurance and information security? 
  • How can technology assist e-crime investigators, and what are the key governance requirements when conducting investigations and gathering evidence?
15:45 - 16:10

Mission Impossible? Delivering business critical web applications to the Internet while avoiding the major risks of data loss and reputation damage


Speaker: Edward Blake, Head of Enterprise, Barracuda Networks

  • What are the key challenges related to the security of custom web applications, and why do they typically have so many security weaknesses?
  • Why are public facing websites an easy target for cyber criminals, and why are over 75% of all attacks are focused on this vector?
  • Real life web application security breaches: the lessons all organizations should learn
  • Why does PCI DSS compliance requirements specifically recommend a Web Application Firewall over traditional Network Firewalls and Intrusion Prevention Systems?
16:10 - 16:35 e-Crime prevention and preparedness: a practical checklist of how to close the gap against emerging threats to the enterprise

Speaker: Illyas Kooliyankal, IT Security Officer, Abu Dhabi Securities Exchange

  • What are the limits of technology and security tools in ensuring e-Crime prevention and preparedness, and what does this mean in practical terms for information security management strategy?
  • What are the technical and process driven controls which should be implemented to defend against the emerging threat of targeted attacks, such as those reported against Google?
  • Which areas across the IT infrastructure is technology least able to protect, how should these areas be monitored, and what should they be monitored for to ensure that attacks can be identified in a timely manner and responded to?
  • A practical checklist: what are the controls and technologies that can help reduce exposure to vulnerability, and what are the factors that will dictate how effective they are in enhancing enterprise defence capability?
16:35 - 17:10 Education Seminars

Delegates will be able to choose from the following range of seminars, and select the most appropriate topic for their requirements.

Sourcefire : So you think your IPS is intelligent enough to make a decision?

For details on education seminars please click here
17:10 - 18:10 Drinks Reception and Networking

In Association With

What the Market Says

Register

Our Next Event

Twitter Updates

     

follow me on Twitter

Strategic Sponsor




Download 2009 e-Crime Survey Report

Conducted in partnership with 


Access the 2009 survey report

Our Next Regional Event
designed and
created by
revenue+		   top of page | previous page | Home | Register | Key Themes & Event Format | Sponsors | What the Market Says | Who Attends | Past Events | Congress History | Past Sponsors | How to Sponsor | Contact

last updated 14 June 2010    © AKJ Associates