View the video as seen on ABC Contact 13 News in Las Vegas.

Real Security Summit 2007 - Overview

*** IMPORTANT NOTE: THIS EVENT HAS ALREADY TAKEN PLACE ***

Please join us for a second security summit. Our first summit in October 2005 was a great success and this one is slated to be even better. This year's summit, Real Security 2007, not only addresses the latest industry security buzz and how compliance effects merchants, but also focuses on real security, beyond compliance.

Below is a summit session overview and preliminary speaker list. Please check back here for revised sessions and speakers...

KEYNOTE PRESENTER

Chuck Whitlock
Chairman, Crimeline and Whitlock Training Group - www.crimeline.com

Chuck is one of the nation�s top experts on fraud and white-collar crime. As an author, investigative reporter, trainer and speaker, Chuck has devoted his career to educating the public and supporting law enforcement in their fight against multiple types of fraud.

Join Chuck for an insider�s look at exactly how merchants are ripped off for billions of dollars every year. You won�t believe the undercover investigative video where Chuck steals the identity of the Chief of Police and then poses as a retail auditor allowed to simply walk out the door with cash, checks and charge receipts from a retail merchant! Chuck and Shift4 have joined forces to create the only on-line document authentication program available today! This demonstration will give you the tools you need to reduce fraud, protect your customers and defend your brand.

THE LEGAL LIABILITY LANDSCAPE

Attorney Dana Taschner
www.danataschner.com

Dana is a highly regarded plaintiff lawyer, practicing before numerous courts throughout the country as well as the World Intellectual Property Organization in Switzerland. He has been involved in many of the largest product, privacy and financial loss cases in history, including Microsoft software security litigation and pharmaceutical litigation including Fen-Phen and Vioxx where more than $10 billion was at stake. Dana brings unique insight into the potential liability issues and legal trends that arise in the fast moving world of developing technologies. He is a sought-after guest on CNN, CNBC, MSNBC, as well as professional gatherings such as the American Bar Association and the Intellectual Property Owners Association.

Legislators are creating laws, and lawyers are going to court to make corporations pay for breaches in financial and credit card transaction security. Some lawyers are actively pursuing new cases. Advertising by Class Action Lawyers asks consumers, �Do you suspect that a large corporation has released your private information?� When highly experienced, aggressive and well funded lawyers file a lawsuit against your company or financial partners, how long will it take, how intrusive will the process be, how will it affect your share value, your operations, and ultimately your brand? Are you ready? Learn how to forecast and prepare for the dangerous and evolving liability landscape.

A LOOK INSIDE THE MIND OF A HACKER

D.J. Vogel
CISSP, CISA, QSA
403 Labs, LLC - www.403labs.com

D.J. is a principal of 403 Labs and works closely with the regulatory agencies and card associations to help define and strengthen industry security standards, including Payment Card Industry Data Security Standard (PCI DSS), Payment Application Best Practices (PABP) and forensic procedures. D.J. has experience in information security, vulnerability management, Internet architecture, networking and software design. He also manages security assessments, forensic examinations and penetration testing of application and networked computer solutions. D.J. regularly speaks at national conferences and conducts training sessions for corporations and compliance agencies. D.J. is a Certified Information Systems Security Professional (CISSP), a Certified Information Systems Auditor (CISA) and a Payment Card Industry Qualified Security Assessor (QSA).

D.J. will provide a dramatic account of how easily an attacker can breach a network and access sensitive payment information. This session will examine new attacks and techniques in a NEVER BEFORE SEEN LIVE DEMONSTRATION (not a slide show with screen shots). You will be amazed by what you learn as you are led by a professional, ethical hacker with real life examples. Learn from inside the mind of a hacker how you should �think like a hacker� when you implement your security measures. Anything can happen, and when it comes to question and answer time, anything goes! If you think �they will never target me,� this session is a must for you.

THE BUSINESS VALUE OF PABP

Chris Konrad
Fortrex - www.fortrex.com

Chris is Sr. Vice President of Client Services for Fortrex Technologies. He is responsible for the overall execution of the Fortrex brand as well as lead researcher for near and long term business and development trends. With over seventeen years experience in the information technology industry, he has spent the past nine years directly focused on information security. Chris brings extensive knowledge on various programmatic and technological assessment methodologies, organizational and IT-based policies, procedures, security tools, managed services, and industry best practices knowledge in ISO/IEC 17799, ITIL cobiT, COSO and Payment Card Industry Data Security Standard (PCI DSS). In addition, Chris is very knowledgeable on federal regulations, such as, but not limited to, GLBA and HIPAA.

Join Chris for a lively discussion centered on the business value of Visa�s Payment Application Best Practices. The discussion will include a proper definition of what it is, how it can be used as a business enabler, common pitfalls, impact if you don�t conform, solutions and how to prepare for an audit.

WHAT IS YOUR BRAND WORTH?

Bill Field
President, Mintz & Hoke - www.mintz-hoke.com

Founded in 1971, Mintz & Hoke is a leading full service communications group with over $65 million in annual billings. Bill and his hand picked staff of 55 industry experts help clients win by providing Advertising, Interactive, Public Relations, Strategic Services, Media Only, Design and Direct Marketing. Bill�s personal mission: �Make the agency�s services worth more than the client is paying and everyone benefits.� Clients include: Mass Mutual Financial Group, Prudential Financial, CIGNA Corporate, Praxair, Aetna Retirement Services, Mohegan Sun, Turning Stone Resort & Casino, Rockwell Collins, Connecticut Department of Economic Development, General Electric, James River Commercial Products, Electric Boat, United Technologies Corporation, and Fisher Controls. Industry honors and achievements include: Publicity Club of New England Bell Ringers, EFFIEs, and Inroads Program Mentor of the Year.

As hackers and thieves continue to damage and destroy many leading national brands, you need to ask yourself a very difficult question: �What is your brand worth?� In almost every case, the answer will be�.EVERYTHING! Bill will give us an inside look at exactly what is involved in building a winning brand and then examine what would happen in the event of a security breach. Get first hand expert information on the anatomy of a brand, how to manage your brand in the channel, how to defend against brand assassins� and � in the worst case � what is involved in reconstructing a brand following a breach. Every business owner, stakeholder, investor, partner or manager needs to understand the potential loss of value, trust, and brand equity that results from a single breach.

NEGOTIATING THE PCI MAZE

Mike Dahn
MSIA, CISSP
Executive Vice President and co-founder, The Aegenis Group - www.aegenis.com

Mr. Dahn is an experienced information security professional and PCI expert. Mr. Dahn has performed hundreds of PCI security assessments for merchants, service providers, acquirers, and payment application vendors. He worked with Visa and MasterCard on the continued development of the PCI DSS and PABP standards. Most recently he developed and delivered training of all PCI qualified security assessors (QSA) globally in the US, UK/Europe, Asia-Pacific, and Latin America. In addition to performing the first PABP assessment, he has also delivered training on PCI to merchants, acquirers, and payment application vendors in the UK, Australia, Japan, and Korea. Prior to this work he led the internal rollout of the Discover Information Security Compliance (DISC) program for Discover Network.

During his tenure Mr. Dahn has given numerous speaking engagements for a variety of security and commercial associations, the FDIC and NCUA, and information security groups on topics including compliance, auditing and network security, and hackers and forensic investigation. Mr. Dahn holds the CISSP certification, membership in the High Technology Crime Investigation Association (HTCIA), Board of Director for the National InfraGard Members Alliance, and has a Masters in Information Assurance and a BS in Computer Science.

Compliance is one of the leading buzzwords in business today. Compliance with the Payment Card Industry Data Security Standard is a major driver affecting almost every aspect of business from the call center to the data center. Yet, it is not uncommon for companies to go through the compliance process without considering security. This session will discuss how to use a robust information security program as a foundation for compliance.

INTO THE BREACH: DATA BREACH TRENDS

Mike Dahn
CISSP, CIPP
Principal, The Aegenis Group - www.aegenis.com

Mr. Dahn will also examine how and why data compromises are increasing at such an alarming rate. This session will discuss the trends in data compromises, and answer the question as to what is behind the increased frequency of these breaches. Finally, it will explain the risk to which merchants are exposed and discuss the best methods to mitigate that risk.

THE CROSSROADS OF PRIVACY AND SECURITY

Dr. Heather Mark
PhD, CISSP, CIPP
Principal, The Aegenis Group

Dr. Mark is an experienced information security and privacy professional who is both well known and respected within the Payment Services Industry. Prior to joining The Aegenis Group, Dr. Mark co-founded a Qualified Security Assessment Company and worked at various technology companies supporting PCI efforts. Dr. Mark helped to develop a variety of assessment methods and practices that assisted companies in achieving compliance in a cost-effective, timely manner. Dr. Mark has spoken at numerous industry events on topics of information security, privacy and the intersection between the two. In addition, Dr. Mark is an experienced instructor and taught for two years at Auburn University while a Doctoral Candidate. Dr. Mark writes a monthly article for Transaction World Magazine and has a PhD in Public Administration and Public Policy from Auburn University. Her knowledge of public policy and the ability to analyze the impact of that policy on day-to-day business practices gives her a unique insight into the compliance landscape. Dr. Mark holds a certificate in Marketing Research from the University of Georgia, is a Certified Information Systems Security Professional (CISSP), and a Certified Information Privacy Professional (CIPP).

In today�s business environment, the ideas of privacy and security are frequently used interchangeably. Unfortunately, that indicates the concepts are still somewhat confusing to many people. This session will attempt to clarify the differences and dependencies between privacy and security and provide some best practices for managing both. Topics will include discussions of SB1386, as well as other regulations, and the concepts of privacy, security and the interdependence between the two.

THE FUTURE OF TRANSACTION SECURITY

J.D. Oder II
CTO/CIO Shift4 Corporation - www.shift4.com

J.D. is a founder of Shift4 Corporation and chief designer of the DOLLARS ON THE NET gateway system. He leads Shift4's systems operation and development efforts. He holds degrees in Cognitive Science and Computer Science with numerous networking and information security credentials. J.D. became an early adopter/member of the PCI Security Standards Council and was recently named as a 2006 Mover and Shaker by Transaction World Magazine. J.D. is responsible for many innovations, including Tokenization technology, which revolutionized the payments industry when it was released in 2005. Following the release of Tokenization, J.D. and his development team are very excited to exhibit 4Go SecureSuite�, which represents the final mile in Shift4�s race to create �Real Security�, an environment wherein no cardholder data exists at the POS at all.

Join J.D. for what will be an enlightening session about 4Go technology and how it is shaping the future of payment transaction security. He will discuss the challenges merchants face with when attempting to become compliant and will introduce concepts regarding the scope of systems and when and if compliance is even necessary. This is a test. This is only a test!!!

CREDIT CARD FRAUD AND TERRORIST FUNDING

Dennis Lormel
Corporate Risk International

FIGHTING THE GLOBAL SECURITY EPIDEMIC

Jonathan Rusch
Special Counsel for Fraud Prevention - United States Department of Justice, Washington, D.C