SUMMARY / Security

Geetha Nandikotkur

Managing Editor, Asia & the Middle East, ISMG

ISMG’s Global Summit Series will take place across four continents focusing on global security topics such as fraud and breach prevention and on many key industry verticals such as finance, government, retail, energy and healthcare.

All content will be driven by our global editorial team including executive editors from publications like DataBreachtoday, BankInfoSecurity, GovInfoSecurity and HealthcareInfoSecurity. These events will provide the opportunity to learn from industry influencers, earn CPE credits, meet with leading technology providers and be a part of the ISMG community of over 700,000 subscribers.

Details

Mumbai, Maharashtra

December 10th & 11th, 2019

₹12000 + Tax

Registering For a Group?
Call + 1 (609)-356-1499

Event Gallery

Bithal Bhardwaj

Chief Information Security Officer and Principal Risk Advisor, GE Africa & GE South Asia

Geetha Nandikotkur

Managing Editor-Asia & Middle East, Information Security Media Group (ISMG)

Lt. Gen. Arun Kumar Sahni

Pres., Info. Security Council of IN, and Former Gen. Officer Commanding in Chief, Indian Army

Brijesh Singh

Special Inspector General of Police - Cyber, Maharashtra Police

Pavan Duggal

Advocate, Supreme Court of India and President, Cyberlaws.net

Ruud Grotens

Principal Consultant, Financial Crime Risk Management

Sundar Ramaswamy

Partner, KPMG

Shivakumar Sriraman

Chief Risk Officer - India & South Asia, Visa

PAST SPEAKERS / Featured Speakers For Our Past Summits

Sameer Ratolikar

CISO, HDFC Bank

Brijesh Singh

Inspector General of Police (Cyber) and CISO, Maharashtra

Ashutosh Jain

CISO, Axis Bank

Dr. N. Rajendran

CTO, National Payments Council of India

Anuj Tewari

CISO, HCL Technologies

Ravikiran Avvaru

CISO, Toyota Kirloskar

Geetha Nandikotkur

Managing Editor, Asia & the Middle East, ISMG

Shivkumar Pandey

CISO, Bombay Stock Exchange LTD

Japjit Singh Sandhu

General Manager, Security and Continuity, Bharti Airtel Ltd.

Venkatesh Subramaniam

Global CISO, Ocwen Financial Corp.

Vishal Salvi

CISO, Infosys Ltd

Varun Haran

Global Director of Programming - Editorial, and Senior Editor, ISMG

Prashant Mali

President & Founder, Cyber Law Consulting (Attorneys & Advocates)

Amit Sharma

Additional Director at Office of Scientific Advisor to Defence Minister, Ministry of Defence

K. K. Mookhey

Founder & CEO, NII Consulting

Cdr. Mukesh Saini

Fmr National Information Security Coordinator, Government of India

Suparna Goswami

Principal Correspondent, ISMG

Balsing Rajput

Superintendent of Police, Cyber Division, Maharashtra Police

Apurva Jain

Regional Sales Manager, Darktrace

Shivangi Nadkarni

Co-Founder & CEO, Arrka Consulting

Mannan Godil

CISO, Edelweiss

Y.V. Ramana Murthy

GM & Group CISO, State Bank of India

S.V. Sunder Krishnan

Chief Risk Officer, Reliance Nippon Life Insurance

Vivek Chudgar

Senior Director, Mandiant Consulting, FireEye

Krishna Sastry Pendyala

Exec. Dir., Cyber Security Incident Response & Digital Forensic Service, PwC

Vicky Shah

Advocate, Data Privacy Professional

Shivakumar Sriraman

Chief Risk Officer-India & South Asia, VISA

Ashish Sud

Head, Western Region, Sophos

Rajnish Gupta

Regional Director, RSA

Cameron Church

Director, Solutions Consulting, ThreatMetrix

Harshil Doshi

Security Strategist, Forcepoint

Ankur Kushalka

CISO, Worldline Merchant Services

Robert Levine

COO, Uniken

Meet Our Speakers

The Case for Model-Driven Security

Aetna CSO Jim Routh on Why We Need a Whole New Approach to Cybersecurity

The Challenge of Fighting Identity Fraud

IBM's Shaked Vax on Emerging Technologies to Assure Digital IDs

Vendor Risk Management: Conquering the Challenges

Mark Eggleston of Health Partners Plans Discusses Best Practices for Ensuring Security

Future-Proof Against Fraud

Keith Carlson of Amazon Web Services on Making Smarter Investments in Skills, Technologies

Former Federal CISO on Cyber State of the Union

Gregory Touhill Reflects on Challenges for New Administration

Ashley Madison: The Breach Recovery

Ruby CISO Matthew Maglieri on How to Bounce Back From a High-Profile Breach

‘Original Internet Godfather’ Opens Up on Crimes

Brett Johnson on Why He Turned From Committing Fraud to Fighting It

Ratings’ Role in Vendor Risk Management

SecurityScorecard's Sam Kassoumeh on How to Improve Vendor Assessments and Results

Security Readiness: How Do You Stack Up?

Intel's David Houlding on the Value of Benchmarking Tool and Data

A Common Sense Guide to Mitigating Insider Threats

Randy Trzeciak of CERT Reviews the Latest Research

Past Schedule / Session Date & Times

Tuesday, December 10^th
Wednesday, December 11^th

Hall A
Hall B
Hall C
Hall D

8:30 am - 9:30 am

Registration, Breakfast & Exhibit Browsing

9:30 am - 9:45 am

Opening Remarks

9:45 am - 10:25 am

Keynote: Breach and Incidence Response Planning to Fight New Age Threats - Bridging the Legal, Business and Technology Gaps

At a time when the nation’s critical information infrastructure is seeing a big overhaul, the potential for crippling critical services through cyber means is becoming a real and present danger. What are the shortcomings of security when it comes to protecting critical, operational technology in India? As the rate of breach incidents continues to escalate, the magnitude of related brand, reputation, and fiscal impact is driving organizations to address cybersecurity risk.

It is very critical to become more resilient to new attacks and threats and compete more safely in the digital age as most cybercriminals are not fussy about who they steal from. While you could be the next target, making your defences as resilient as your digital ambitions is of utmost importance. What needs to be done to ensure that the recovery is seamless and the damage minimal? How must Indian and Asian organizations rise to the incident response challenge to help protect their organization? It’s critical that the scope of a breach response plan goes beyond technical operations, covering all interested parties, such as legal, finance and media relations, that may have greatly different priorities at crunch time and ensuring everyone is on the same page.

This session will look at:

Security gaps in the existing breach response mechanism;
The nuances of protecting critical infrastructure in the Indian context;
The role of multi-stakeholder in crafting and testing the plan;
What changes when the breach is real and it’s time to put the plan in action?

10:30 am - 11:00 am

Panel: Breach Response - Effective Ways to Operate a Breach Response Unit

Most organizations in Asia continue to address breach response in reactive mode – having a crude disaster recovery plan in place in case something “does” happen, rather than accepting that something “will” happen and proactively preparing for it.

Once breached, the post breach investigation and response is most critical, followed by building resilient defenses within a short span. Given the technological advancement and the technology sprawl, the practitioners are in a state of chaos. Against this backdrop, what do organizations need to unlearn and relearn about incident response? The session will include:

Enhancing forensic capabilities in detecting the breach;
Assessing the cost of a breach;
Why is it important to have a specialized response once an attack/breach is discovered;
Should incident response be outsourced or should it be led from the front by the security team?
Investigating security incidents and assessing compromise levels.

11:05 am - 11:20 am

Exhibit and Networking Break

11:20 am - 11:50 am

Ransomware Trends: Is the End in Sight?

Ransomware became an even bigger threat in 2016, and the organized criminals behind it got bolder. Fraudsters are now aiming at bigger targets, seeking even bigger payoffs. For a variety of end goals, be it hacktivism, nation-state revenge or financial gain, the methodology is simple. Quite often the first you’ll hear of an attack is: “We have encrypted your systems, pay us x amount and we will give you the key.”

In this session, we’ll discuss the scope of this current threat as well as the best available concepts for prevention and recovery.

11:55 am - 12:25 pm

A Practitioner's Approach to Effective Patch Management Framework Against Malware Attacks

The global WannaCry ransomware epidemic reveals that in the aftermath of the attacks include poor patching hygiene. Why so slow to patch? Security teams and CISOs may want to patch immediately, but many business owners demand patches be thoroughly tested to avoid any potential business downtime – usually taking weeks of testing and compliance clearances and the result, some patches are never made. Why does it take months to roll out patches for organizations?

Experts argue it is a big issue with unlicensed software being illegally used in enterprises, which prevents these systems from receiving security updates. In this case some organizations saw there wasn’t even a patch available when the attacks started spreading. The list of reasons is endless. But what could be the effective nuances to patch management and best practices CISOs need to follow. A robust patch management strategy is essential for a proactive and preventive security stance.

The session details:

Rewriting the rules of patch management;
Addressing the patch management concerns;
Bug fixing through patches.

12:30 pm - 1:15 pm

InfoSec Conversations/Speed Networking

One of the most valuable ways to learn is through interaction with your peers. Our “Speed Networking” session will provide an opportunity to meet practitioners who have similar challenges in the areas of fraud and breach prevention, and discuss solutions to potential obstacles. Mingle, share and learn in this unique, rapid-fire and interactive environment.

1:15 pm - 2:15 pm

Lunch

2:15 pm - 2:55 pm

A Foundation for Breach Notification in India

Even though India lacks an effective breach notification regime, ad hoc and unofficial efforts to share information and collaborate in the face of increasingly sophisticated and coordinated attackers abound. How can these multi-stakeholder, public-private partnerships be amalgamated into a formalized framework that can support organisations and practitioners with threat defense and incident response in India and throughout Asia? What are some lessons from around the globe?

3:00 pm - 3:30 pm

Malware-as-a-Service Commodity Market: Understanding the Dark Web

The dark web has become synonymous with cybercrime, with a burgeoning underground economy for data, attack tools and malware flourishing in the parts of the internet inaccessible to the World Wide Web. Sophisticated hierarchies and support mechanisms that mimic real world organizations have transformed launching a cyber-attack from an art – the preserve of highly skilled hackers – to a commodity service, available to any script kiddie with minimal skills, who can launch an attack for as low as $5. Contemporary developments include malware-as-a-service or its better known cousin, Ransomware-as-a-service, have successfully evolved in this environment, driven by the potential of massive financial gain and low-risk. The ransomware epidemic around the world is being fuelled by these developments and it behoves the security community to take a moment to walkthrough how we got here, if they are to mount an effective defense against what is yet to come.

The session will discuss:
• What Malware-as-a-Service means to CISOs
• Mapping the risks from the dark web and responding to the challenge
• Building proactive defences

3:30 pm - 3:45 pm

Exhibit and Networking Break

3:45 pm - 4:25 pm

Malicious Insiders - A New Approach to Detecting Insider Threats and Leaks

Recent media attention to high-profile cyberattacks would lead an organization to think external threats are its only concern. Unfortunately, this misconception allows another significant threat to your organization’s critical assets to stay completely under the radar – the threat of malicious and non-malicious insiders.

With so much of an organization’s valuable information digitized today, it may be possible that an insider can steal your information or expose it unintentionally without you knowing it. Every attack witnessed in early 2017 has invariably an insider angle, being the top challenge for security practitioners. What can you do to fight this proactively?

This session will discuss

• Technological possibilities to detect the source and origin of insider breaches and detect anomalous behavior;
• Anti-fraud tools and technology investments that can help detect the origin of insider leaks;

4:30 pm - 5:00 pm

Panel Discussion: Securing the Cashless Payments Infrastructure

With increased impetus toward a cashless economy being driven by the recent demonetization drive by the Govt of India there is an imminent need to look at the security robustness of the cashless payments infrastructure and the potential for fraud, even as the economy steams ahead with encouraging its adoption.

What are the weaknesses in the system and the potential risk for adopters and how can these be mitigated to provide the customers the level of service they are beginning to expect, while keeping transactions secure and wire fraud low.

The session will discuss:

Is the infrastructure robust? What are the weak links in the payments chain?
Where is the oversight lacking, and what are the mechanisms for preventing fraud?
How can the gaps be addressed before they get exploited on a large scale
What are lessons from cashless initiatives around the world?
What are some new innovative authentication techniques that could be applied to the Indian context?

5:00 pm - 5:30 pm

The Ease of Access for the Modern Attack Vectors

The traditional definition of attack vectors has not necessarily evolved. On the other hand, the methods, means and ease of access most certainly have. It is debatable whether it is now easier for exploits to reach the public domain, however their impacts leave little doubts. Ingenuous hackers, each with his own agenda, are constantly sharpening their tools, knowledge and appetite.

Despite all the software and hardware technologies available nowadays, no protection method is totally immune from cyber-attacks. What is effective today, almost inevitably, will not last for long. The role of the security professional has never been so challenging as he or she is the real firewall and intelligence behind protecting the enterprise’s assets.

The presentation will review the worldwide geopolitical influence on attack vectors. Are events on the global scene compounding to the impacts or contributing to the rise of cyber-attacks? Should we be concerned about Hacktivists, Cyberwarriors, Cyberterrorists, Cybercriminals? What can the security professional mitigate against?

5:35 pm - 6:05 pm

Enterprise Immune System: Using Machine Learning for Next-Generation Cyber Defence

From insiders to sophisticated external attackers, the reality of cyber security today is that the threat is already inside. A fundamentally new approach to cyber defense is needed to detect and investigate these threats that are already inside the network – before they turn into a full-blown crisis.

Based on unsupervised machine learning and probabilistic mathematics developed by specialists from the University of Cambridge, new ‘immune system’ technologies are capable of learning the ‘self’ of an organization. By analyzing every network, device, and user, and modeling them as they go about their day-to-day activity, the Enterprise Immune System can establish a highly accurate understanding of normal behavior. It can therefore spot abnormal activity as it emerges, and even take precise, measured actions to automatically curb the threat.

Rules and signatures are not keeping pace with today’s rapidly evolving cyber attacks. The Enterprise Immune System represents a fundamental step-change in automated cyber defense, is relied upon by organizations around the world, and can cover up to millions of devices.

In this session, you will learn about:

How new machine learning and mathematics are automating advanced cyber defense
Why 100% network visibility allows you to detect threats as they happen, or before they happen
How smart prioritization and visualization of threats allows for better resource allocation and lower risk

6:05 pm - 6:15 pm

Closing Remarks

6:15 pm - 7:15 pm

Refreshments & Networking

View Second Day's Schedule

Hall A
Hall B
Hall C
Hall D

8:30 am - 9:15 am

Registration, Breakfast, & Networking

9:15 am - 9:30 am

Opening Remarks

9:30 am - 10:10 am

Keynote: New Age Authentication Technologies & Next Generation Regulatory Perspectives to Prevent Breaches

With increased impetus toward a cashless economy being driven by the recent demonetization drive by the Govt of India. There is an imminent need to look at the security robustness of the cashless and electronics transactions in the country and the potential for fraud, even as the economy steams ahead with encouraging its adoption.

With digitization occurring across all spheres of life, the financial sector needs new forms of authentication technologies to deal with new age threats. Against this backdrop, it would be imperative to know where does the critical infrastructure sectors stand when it comes to securing the underlying technology infrastructure that will be the enablers for digital finance and banking against the new regulatory requirements and standards. The state of the art being followed in this regard in the financial sector also holds best practices and lessons for the entire market.

The session will discuss:
• What are the shortfalls and what needs most attention from policy makers, practitioners and business leaders?
• What are some new innovative authentication techniques that can be used to secure electronic transactions
• Next generation regulatory demands to tackle breaches
• What are lessons from cashless initiatives around the world

10:15 am - 10:45 am

Data Breach Outlook: From its Nation-State Roots to the Next Massive Attack - What Are the Stakes for India?

Born from nation-state espionage, hundreds of tools and services are now available for assembly into custom-built attack suites fit for almost any purpose, at scale. As these attacks are gaining momentum and sophistication, and India being the target for China and other nation states, we need to adapt our defenses accordingly. To do that effectively, we must clearly understand how and why our enemy functions. Drawing parallels from fighting terrorism and emulating the model to apply to the nation’s information security charter.

The session we will discuss:

The current statistical scale and scope of targeted attacks;
The threat actors executing these attacks and their motivations for doing so, including financial gain, personal identity information (PII) and terror;
The types of valuable data and/or critical infrastructure they are now targeting;
Where resources should be focused to defend against these evolving threats.

10:45 am - 11:05 am

Exhibit and Networking Break

11:05 am - 11:35 am

New Approaches to Breach Prevention

Enterprises are pouring billions of dollars into preventing threat actors from infiltrating the organizations. Yet, the rising level of breaches shows that dedicated threat actors will penetrate the organization. This suggests the problem is not a technological one, but rather one of strategy in dealing with cyber threats.

The session will propose a new collective defense approach, and new strategies that focus on addressing the new gaps in the people, process and technology factors in dealing with cyber protection.

This session will discuss:

Real-life, first-person accounts of compromised cases, and how such experiences underscored the need for a new paradigm in cyber protection;
The changing depth and breadth of advanced threats and whether we see the whole picture;
New and effective strategies to combat today’s advanced threats.

11:40 am - 12:10 pm

Fighting the Visibility Challenge with Deception Technology: A Case Study

Visibility has been the biggest challenge for every security practitioner and the exponential increase in volume of incidents, threat intelligence and advisories that a typical security team needs to sift through on a daily basis on the one hand; and the sophistication and stealth employed by advanced targeted attacks on the other; the possibility of detecting an intrusion is like finding a needle in a haystack. Detection and visibility – especially in the case of a stealthy attacker – is always post-facto, if at all, ensuring that the attacker always has the upper hand.

Traditional approaches are failing to effectively scale to address contemporary challenges and a fresh look at visibility is necessary for active threat hunting, which deception technology can provide. By adopting broad military deception strategies from the real world to cybersecurity deception technology puts the narrative squarely back in the hands of the defender in the event of an intrusion.

The session will discuss:

Making incident response and remediation an active, near real-time process;
Detecting early warning system that gives practitioners the chance to determine motives;
Turning the haystack into just needles, focusing on mal-intent, rather than drab IoCs or tools;
How can deception tech be effectively incorporated into the security strategy?

12:15 pm - 12:45 pm

Panel: Apex Court Ruling on Right to Privacy - What Does it Mean to CISOs?

The Supreme Court of India announced that ‘Right to Privacy’ is a fundamental right of Indian citizens. What is its implication on information security and what it means to CISOs given that the digital economy makes it imperative to share the data of the individual?

While a dedicated privacy legislation/mandate doesn’t yet exist in the country With this landmark ruling, companies will have little choice but to improve their data privacy posture. This will not only improve the domestic ecosystem but will also bring India at par with other geographies globally in terms of data protection and privacy.

What are the implications for security functions and what do CISOs need to prepare for?

The panel comprising information security, legal, cyber law and privacy experts will debate on:

How CISOs need to handle organizational privacy;
Impact on security and data privacy policies within enterprises;
Control frameworks and standards for managing data privacy relevant to the Indian context.

12:45 pm - 1:45 pm

Lunch

1:45 pm - 2:15 pm

The Challenges of Account Takeover: Best Practices for Prevention

Enterprises are battling with the challenge of account takeover and cash out with no signs left behind. Despite years of trying to figure out who is liable for corporate account takeover incidents, we are no closer to an answer.

While many of these incidents have been resolved out of court before judges could rule on primary responsibility, the question remains: Who is liable? Is it the business whose credentials were stolen, or the institution that failed to spot and stop anomalous behavior?

Because of the significant pain and losses attached to account takeover fraud, financial institutions need to do more to avoid it in the first place.

2:20 pm - 2:50 pm

Internet of Everything: Please Don't Connect it First and Secure it Later

Is it possible to instill sound SDL (security development lifecycle) practices into device manufacturers as the number of IoT devices proliferate to over one trillion in the next few years? In our rush to connect everything together, secure connectivity and information handling is frequently an afterthought, if ever even a thought at all.

Practices are improving, with more refinements on the way. But hope, as they say, is not a strategy. An alternative to waiting for built-in security to gestate is to bolt it on. Several gatekeeper on boarding solutions exist for brokering the relationship between enterprise and device, limiting connectivity in controlled phases, and managing patch levels, authorization and connectivity to within acceptable limits.

Session will discuss:

Design philosophy for a future-ready secure IoT infrastructure;
Contemporary strategies and technologies for securing IoT;
The evolving attack landscape for IoT;
What enterprise practitioners need to prepare for.

2:55 pm - 3:30 pm

Are You Paying a Huge Premium on Your Data Breach? Evaluate Your Risks for Cyber Insurance

RBI has mandated banks to take cyber insurance against hacking, DDoS and other malware attack. Are there any takers? What are the concerns? Are your risks and liabilities are effectively evaluated to be measured under the cover of cyber insurance?

Is the growth in the cybersecurity breaches not enough to justify acquiring an insurance cover for protecting your crown jewels against attacks?
Against such concerns, the session will discuss:

What are some common criteria that are being used for evaluating an organization’s level of risk in the event of a breach;
How to approach the board special insurance budgets;
Lessons from the western world;
Building a strong case for cyber insurance;
How insurance can mitigate risk for CISOs.