Speaker:
Hector Monsegur, Chief Researcher, Rhino Security Labs - former hacktivist

Formerly known by his online alias "Sabu," Hector Monsegur was once the technical expert behind the Anonymous/LulzSec hacker collectives. As a blackhat, he highlighted critical vulnerabilities in numerous organizations, including governments, military organizations and cybersecurity firms.

Since his arrest in 2011, Monsegur has worked with the US Government, helping to identify key vulnerabilities - and potential attacks - against major federal infrastructure, including the US military and NASA. Now an internationally recognized expert on global cybersecurity issues, Monsegur is a proven offensive security researcher and industry leader. In this keynote session, Monsegur will:

• Detail his transition from black hat to white;
• Discuss his work today as a security researcher, where he helps public and private sector entities avoid being victims of hacks and fraud;
• Participate in an on-stage interview where he will take questions from attendees.

Speaker:
Ron Green, Executive VP & CSO, Mastercard

Ron Green leads a global team that ensures the safety and security of the Mastercard network, as well as internal and external products and services, including business continuity.

In this exclusive Summit appearance, Green will sit for a "fireside chat" interview in which he will address top fraud trends and payment card security, as well as take questions from attendees.

Coverage will include:

• The evolution of the threat landscape;
• Functions of Mastercard's fusion center;
• 2019 initiatives, including next-generation identity management solutions.

Speaker:
Tim Bedard, Director, Security Product Marketing, OneSpan

Fifty-four percent of survey respondents say their institutions' digital authentication measures are average or below when compared to their peers. And 55 percent rate themselves at average or below when it comes to their institution's current ability to apply the right amount of security to the right transactions at the right time. These are among the key results of The State of Adaptive Authentication in Banking survey.

Attend this session to learn more about the survey results and receive live, expert analysis about:

• How to benchmark where your organization is on the road of adaptive authentication;
• Business benefits to be gained;
• Tools, skills and partnerships to get you there.

Speaker:
Shaked Vax, Trusteer Products Strategist, IBM Security

The digital transformation is well underway, with new market entrants and established players deploying new digital services that enable digital-first consumers to open new accounts and access services. With the volume of personal information publicly available in social networks and in the cyber underground, cybercriminals can bypass traditional identity verification and authentication methods based on utilizing static data points.

In this session, Shaked Vax from IBM Trusteer reviews:

• The challenges involved in assessing new digital identities;
• How to transparently assess users digital identity assurance, without impacting the customer experience;
• A holistic approach to fraud and identity with artificial intelligence and global visibility to help address these challenges for organizations.

Speaker:
Ondrej Krehel, Cybersecurity & Digital Forensics, LIFARS LLC

When a total of $580 Million left two Cryptocurrency exchanges after a sophisticated compromise, LIFARS team was engaged in an investigation that involved FBI, US Secret Service, Europol, DHS, IRS and DOJ. This session will take you exclusively inside that investigation and discuss:

• Cryptocurrency fraud schemes, including real stories from the trenches;
• AML issues with bankers, hidden assets, payments by drug lords and ransomware;
• Blockchains role in tracking the transactions - and its limits.

Speaker:
Roger Piqueras Jover, Research Scientist and Senior Security Architect, CTO Security Architecture team, Bloomberg LP

Mobile communication networks and, by extension, smartphones, have become an inherent and necessary platform for most enterprises. However, despite the general consensus of staying away from unprotected WiFi access points, there is a mainstream misconception that cellular networks are fully secure.

But the security research community has identified a number of vulnerabilities in both GSM and LTE that can be exploited with popular open-source implementations of the cellular stack and under $2000 worth of hardware.

This talk will explore:

• The main protocol vulnerabilities in mobile networks, from GSM to LTE, and how can they be leveraged by hackers and fraudsters.
• The impact of these network vulnerabilities in the context of fraud and privacy.
• Preventive measures to consider against these threats.

Speaker:
Debra J. Geister, Financial Crimes Strategist, NICE Actimize

With the increasing speed of payments comes more pressure on financial institutions to not only compete but to ensure they have appropriate fraud controls in place to keep pace. Risk is inevitable with a growing faster payments environment, but there are many benefits and technology advancements that provide safeguards for you and your customers.

Join Deb Geister, NICE Actimize Fraud SME, as she discusses:

• How to manage the risk that comes with faster payments, while still providing a competitive, profitable solution
• Balancing risk detection, fraud mitigation and governance
• Internal steps to support fraud operations in a faster payments environment

Speaker:
Franklyn Jones, Chief Marketing Officer, Cequence

Malicious bot attacks now account for nearly one-third of all Internet traffic. These attacks specifically target the web, mobile and API applications that power today's hyper-connected organizations that rely on the Internet to connect with customers and support business processes. The goal of these bad actors is to disrupt your business for their financial gain. Although their intent is malicious, their content is benign, which makes these attacks very difficult to detect and defend.

Attend this session to learn:

• The basic components of these attacks
• Insights from new research gathered from 200+ large organizations that have experienced bot attacks
• Security strategies for stopping these attacks before they achieve their objectives.

Speakers:
Brett Beranek, Vice President & General Manager, Security Line of Business, Nuance Communications, Inc.
Jason Costain, Head of Fraud Strategy and Relationship Management, Royal Bank of Scotland

While banks are undergoing digital transformations, one of the ways they communicate is decidedly analog. Because not every customer wants to engage through apps or websites, contact centers still need to answer the phone.

Fraudsters know this too: Armed with personal information, PINs and passwords exposed by data breaches, they're specifically targeting contact centers' voice-based services because they're easier targets than digital channels. They also know that agents trained to be helpful are highly susceptible to social engineering attacks.

Join us as our presenters show how one of the world's largest banks is responding to these challenges. By implementing voice biometrics in the telephony channel, Royal Bank of Scotland has screened more than 18 million inbound calls and produced over 23,000 alerts. About one in every four calls investigated is found to be from a fraudster and, in some cases, RBS has been able to get suspects arrested by providing law enforcement with the information they've collected.

Speaker:
JP Blaho, Market Insights Leader, Arbor Networks

What is the state of DDoS, as observed by network and security professionals directly responsible for operating and securing global networks?

This session covers a range of issues, from threat detection and incident response to managed services, staffing and budgets. Hear about the daily operational challenges, as well as strategies adopted to address and mitigate them, including the latest attack techniques and current best practices for defense. Attendees will:

• Gain insight on how IoT botnets are built and weaponized;
• Understand the newest threats to enterprise networks;
• Learn how to defend your network from these attacks.

Speaker:
Randy Trzeciak, Director, CERT Insider Threat Center, CMU

The CERT Insider Threat Center at Carnegie Mellon University is one of the world's leading authorities on detecting insider fraud, and it has just released Version 6 of its Best Practices to Mitigating Insider Threats.

As part of this research, the center addresses how to detect and prevent insider fraud, as well as how to map insider threat programs to existing standards such as the NIST Cybersecurity Framework.

Attend this session to learn:

• The latest research on insider fraud
• How "accidental insiders" are enabling fraud schemes
• How to map your insider fraud/threat program against industry standards, including the NIST Cybersecurity Framework.