Speaker:
DR AS Ramasastri, Director, IDRBT

The present government’s move to demonetize currency has given an increased impetus to cashless and electronic transactions in the country. With digitization occurring across all spheres of life, the common citizen is being increasingly incentivized to go digital with their financial transactions which can rationally be assumed will approach much greater volumes in the coming years. With this in mind, where does India stand when it comes to securing the underlying technology infrastructure that will be the enablers for digital finance and banking? What are the shortfalls and what needs most attention from policy makers, practitioners and business leaders?

Speaker:
Manish Sinha | Senior Consultant, Arbor Networks

A DDoS attack is sometimes a smokescreen to cover up much more damaging activity such as theft or fraud. While you’re working frantically to mitigate the DDoS attack and get critical applications back online, cybercriminals could be working under the radar to break into your systems and conduct more malevolent activities. Learn to listen to your network activity:

Session will cover:

• Clues from DDoS attacks that will help you investigate threats
• Why organizations like FFIEC warn banks about the use of DDoS
• Best practices for DDoS protection

Speaker:
Shivakumar Sriraman | Chief Risk Officer – India & South Asia | Visa

With the current demonetization move and the emphasis on cashless transactions in India, the chances of cyber risk to the payments infrastructure are higher than ever before. What then will be India’s stance going forward and how do business and practitioners need to respond to this risk? What is a resilient approach in the context of a country like India and What are the unique challenges that need to be surmounted? This session focuses on sharing a ‘risk’ perspective of data security, and risk management trends in the payments industry today. Speaker proposes to address:

• Scope of cyber risk in the Indian payments landscape today
• The impact of new age technologies to the payments landscape
• Common challenges and pain points for financial institutions
• Recommendations and insight towards a resilient framework

Speaker:
Sunil Varkey |CISO | Wipro

Organizations can no longer afford to remain in denial that they are under siege from cyberattacks. Legacy security thinking focusing on blanket protection of all assets has failed as a doctrine, and organizations find themselves helpless to mitigate the sophisticated intrusions that slip through the chinks in their armor. With paradigm shifts in technology like the cloud, pulling the plug is no longer an option. What do organizations need to unlearn and relearn about incident response? What do they need to do in the first 24 hours, 1 week, 30 days and so forth to mitigate and recover in a resilient manner?

Discussion points:

• Why incident response require different approaches
• Why is it important to have a specialist response once an attack/breach is discovered
• Should incident response be outsourced or should it be led from the front by the security team?
• How can a robust incident response mechanism result in increased security resilience?

Panelists:
Ravikiran Mankikar | CIO & CISO | SVC Bank
K Suresh |Head – IT | Tata AIG General Insurance Company Ltd
Dinesh Bareja | COO – OpenSecurity Alliance | Founder – IndiaWatch

Moderator:
Varun Haran, Associate Editor, ISMG Asia

The growth of the cybersecurity risk has given impetus to the cyber insurance market in India. But this space remains nascent and poorly understood. How effective is cyber insurance cover in the event of a data breach and what are some common criteria that are being used for evaluating an organizations level of risk? What are the current practices in the Indian market and what kind of traction can be expected in 2017?

Suggested takeaways/Discussion points:

• The growth trajectory for cyber insurance in India
• The relevance and effectiveness of cyber insurance
• Common practices and parameters for evaluating organization
• Lessons from more mature markets around the world

Speaker:
Sundar Ramaswamy | Partner | KPMG

Cloud has now established widespread presence in the enterprise technology landscape. Security has matured and there are new innovations like CASBs that are expected to really take off in 2017, with adoption peaking in 2018, according to analyst research. What is the current landscape for cloud security in India? What is the risk perception Indian practitioners have of it and how is it changing? What are some of the data residency and legal challenges and how are they being dealt with?

Discussion points:

• The state of cloud security and what has changed
• Maturity levels viz. North America and Europe
• The threat landscape for could in 2017 and how this affects Indian Organizations
• Roadmap for cloud security in 2017

Speaker:
Mannan Godil | CISO | Edelweiss

With more data being moved out of on-premise environments, data needs to be classified and secured to an appropriate level to prevent it from being compromised. This embraces the practice of assessing the risk of data loss and mitigating those risks; and applying adequate resources towards securing the data, both on-premise and in the cloud. Cyber incidents are a fact of contemporary life, and significant cyber incidents are occurring with increasing frequency, impacting infrastructure no matter its physical location. Mitigating the loss of data is therefore a priority. And not all data is equal, some data needs to have a higher levels of security; other much lower; the cost in fact may be 10x different. What are some data strategies that practitioners can adopt to achieve this?