WELCOME / Summit Overview

ISMG’s annual Fraud Summit will address topics ranging from Authentication, New Account Fraud, Biometrics, Payments Fraud, Investigations, Phishing and Email Fraud, Employee Access, Blockchain Applications, Insider Fraud, Analytics Applications and much more.

All content will be driven by our global editorial team including executive editors from publications like DataBreachtoday, BankInfoSecurity, GovInfoSecurity and HealthcareInfoSecurity. These events will provide the opportunity to learn from industry influencers, earn CPE credits, and meet with leading technology providers.

Details

New York, NY

$595

Registering For a Group?
Call + 1 (609)-356-1499

Event Gallery

Diana Kelley

Cybersecurity Field CTO, Microsoft

Keith Carlson

General Manager, Payments and Fraud Prevention, Amazon Web Services

Gen. Greg Touhill, Ret

First CISO

Ed Amoroso

Founder and CEO, TAG Cyber; former Senior Vice President and CISO, AT&T

Matthew Maglieri

CISO, Ashley Madison's parent company Ruby Life Inc.

Avivah Litan

VP and Distinguished Analyst, Gartner Research

Stephen Katz

World's First CISO, former CISO, Merrill Lynch, Citi

David Pollino

Chief Cybersecurity Officer, Bank of the West

Call for Speakers is Now Open!

Interested in addressing ISMG’s global audience of cybersecurity, information security, fraud, risk and compliance professionals? Click here to learn more!

PAST SPEAKERS / Featured Speakers For Our New York Fraud Summit

Art Coviello

former CEO, RSA Security; Venture Partner, Rally Ventures

Keith Carlson

General Manager, Payments and Fraud Prevention, Amazon Web Services

Jim Cunha

Senior Vice President of Bank Administration, Federal Reserve Bank of Boston

Troy Leach

Chief Technology Officer, PCI Security Standards Council

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

David Houlding

Principal Healthcare Program Manager, Microsoft

Kevin M. McCleary

Assistant to the Special Agent in Charge, Criminal Investigative Division, US Secret Service

Shirley Inscoe

Senior Analyst, Aite Group

Sam Kassoumeh

COO and Co-Founder, SecurityScorecard

Kevin Donovan

Vice President of Sales for the Americas, BioCatch

Sam Elliott

Director of Security Product Management, Bomgar

John Petrie

Global CISO, NTT Security

Shaked Vax

Trusteer Products Strategist, IBM Security

Tom Field

Senior Vice President, Editorial, ISMG

Dan Hoffman

Global Director of Solutions Architects, Agari

Chris Eng

Vice President of Research, CA Veracode

Dan Woods

VP of Attack Forensics, Shape Security

Evan O'Regan

Global Director, Product Management, Authentication & Fraud, Entrust Datacard

Alexis Castellani

Senior Vice President - Cyber Fraud Prevention, Citi

Agenda / Session Date & Times

Tuesday, March 19^th

Hall A
Hall B
Hall C
Hall D

8:00 am - 8:45 am

Registration, Breakfast & Exhibit Browsing

8:45 am - 9:00 am

Opening Remarks

9:00 am - 9:45 am

Finding Fingerprints of Fraud with Machine Data

Organizations and people’s security hygiene can be poor, and criminals know it. Fraudulent activity costs are in the billions worldwide across industries, and over 16 million consumers in the US were victims of identity theft or fraud in 2016. Learning to analyze data at the speed of the business will ensure your fraud and security teams can detect and investigate data to quickly find anomalies and reduce loss of resources, reputation and organizational efficiencies.

In this session we will discuss:

How to recognize and approach fraudulent activities in your environment;
How to get started detecting fraudulent patterns and securing your infrastructure;
How to use machine data, machine learning and analytics-driven security platform to help you onboard new data at the speed of the business to ensure that your fraud and security teams can detect and investigate quickly.

9:50 am - 10:20 am

Compromise in the Cloud; How to Prevent, Detect and Remediate

Protecting customers and company resources in the cloud is a constant struggle and balancing act. Fraudsters are aided by new techniques and technologies while unknowing customers support their efforts. In this session, fraud prevention experts from Amazon Web Services will outline the compromise problem and discuss strategies to address, specifically covering the following topics:

The key problems and constraints you need to consider as you are tackling this problem;
Approaches and techniques to prevent, detect and remediate this fraud exploit;
Key monitoring and measurements necessary to ensure fraud prevention strategies are performing and legit customer impact is minimized.

10:25 am - 10:55 am Track A

DDoS: Updates from the Battlefield

What is the state of DDoS, as observed by network and security professionals directly responsible for operating and securing global networks?

This session covers a range of issues, from threat detection and incident response to managed services, staffing and budgets. Hear about the daily operational challenges, as well as strategies adopted to address and mitigate them, including the latest attack techniques and current best practices for defense. Attendees will:

Gain insight on how IoT botnets are built and weaponized;
Understand the newest threats to enterprise networks;
Learn how to defend your network from these attacks.

10:25 am - 10:55 am Track B

Fight Fraud and Improve Customer Experience

Traditional Authentication is not a standalone fraud killer. One Time Passwords, Biometrics, Mobile Authentication via PUSH or SMS, these technologies by themselves are being subverted by new attacks. 15 years ago, with FFIEC guidance, One Time Passwords reduced fraud by themselves by over half. Today, new forms of front end user authentication are being adopted by more users than ever, but yet Fraud is still increasing.

Risk Based Authentication is not a standalone fraud killer. Leveraging risk engines to identify fraudulent activity is only as good as the data being given to the engine and the rules applied to the data. In some banks there are risk engines with hundreds of rules, making it a nightmare to manage and impossible to adjust for new attacks. Manually adjusting these rules has to come to an end and users are requiring real-time decisions and real-time protection from fraud and attacks.

Combining the appropriate level of authentication at the right time is key to new authentication needs. Artificial Intelligence and Machine Learning combined with data gathers on multiple end-points for multiple channels increases the overall visibility of fraud happening at a user level. Adding in the ability to challenge and address the attacks and fraud in real-time by asking users to provide the correct level of authentication when a problem is detected is paramount.

This session will look at the past technologies of authentication and risk analysis and offer a new perspective on where these technologies are headed and how to make use of them immediately.

10:55 am - 11:10 am

Exhibit & Networking Break

11:10 am - 11:50 am

Post-EMV: The Present and Future of Retail Fraud

With the adoption of the EMV standard for payment cards, the associated card fraud has increasingly gone down. This has resulted in cyber criminals shifting focus to other forms of fraud such as gift card fraud and fraud related to online retail purchases which are processed as Card Not Present (CNP) transactions. This has opened up new avenues for cyber defense and mitigation techniques. This presentation takes a look at:

The evolving state of fraud in the retail industry
New cyber defense techniques being utilized, including bot protection, device fingerprinting and advanced machine learning to detect fraudulent transactions.

11:55 am - 12:30 pm Track A

Technology Spotlight

Hear from some of the most trusted names in fraud prevention and detection. Find out what’s new and how to combat the multi-faceted fraud threats that have become commonplace in business today.

11:55 am - 12:30 pm Track B

Executive Forums

These forums are invitation-only small group discussions led by distinguished thought leaders and are targeted to the interest/specialties of their participants.

12:30 pm - 1:15 pm

Lunch

1:15 pm - 2:00 pm

Fraud and Cyber Risk: How Banks Should Divide and Conquer Resources and Focus

Card fraud, account takeovers, business email compromises and emerging cybersecurity regulations and risks have kept, and continue to keep, plenty of CEOs and CISOs up at night. While it’s impossible to focus time, energy and resources on all of today’s fraud and cybersecurity risks, wise banking executives have mastered how to effectively identify their most pressing fraud risks and cybersecurity worries, in order to budget and properly allocate resources.

During this panel discussion, we will review how banks and credit unions of all sizes are addressing everything from EMV rollouts and FFIEC cybersecurity compliance, to ransomware and extortion attacks, and review how they are addressing emerging merchant risks associated with payment card data.

2:05 pm - 2:35 pm Track A

Securing Data: Lessons from the Payment Card Frontlines

In an increasingly digital world, where players from virtually all sectors are racing to innovate, the risk of data theft is very real. The payment card industry has defined standards for protecting cardholder account data. But what about other data types? And what can be learned from payment card industry standards? As recent, high-profile breaches have shown, personal data is increasingly being targeted by cyberattackers and must be protected. Even email addresses, if left unprotected, can be valuable resources for attackers interested in waging socially engineered attacks against customers and consumers.

So what lessons can be learned from the data security practices that the payment card industry has introduced over the years? This session reviews the various solutions used to secure cardholder data and describes why ongoing work to devalue data, regardless of the data type, has become increasingly critical.

2:05 pm - 2:35 pm Track B

Detecting and Fighting Fraud with Cognitive and Behavioral Biometrics

As fraudsters continually refine their techniques to steal customers’ credentials, organizations have found new ways to fight back with new tools that use behavioral biometrics and cognitive fraud detection.

It is critical to know how cognitive abilities would help in managing risks, compliance and governance as well as help in maximizing detection, reducing false positives and optimizing strong authentication.

The session describes various models used for behavior pattern analysis and demonstrates how this may be integrated into a real-world SOC to achieve a proactive posture.

The session addresses:

Developing a risk framework with cognitive security;
The technological expertise available to detect these anomalies and patterns.

2:40 pm - 3:10 pm

Fighting Fraud & Cyber-Crime: Business & Legislative Views

Digital commerce is now the business of big data science. To combat cyber threats like the exposure of Personally Identifiable Information (PII), solutions need to keep pace with fraudsters through prevention and quick response when attacks happen.

The application of artificial intelligence and machine learning has transformed security and fraud management strategies by delivering benefits that were previously difficult to manage with yesterday’s methods.

Join us for an informative discussion of how trends in big data, AI and PII data collection continue to affect businesses.

3:10 pm - 3:25 pm

Networking Break

3:25 pm - 3:55 pm

Fighting Cybercrime and Identity Fraud in the Digital Age

The digital transformation is well underway, with new market entrants and established players deploying new digital services that enable digital-first consumers to open new accounts and access services. With the volume of personal information publicly available in social networks and in the cyber underground, cybercriminals can bypass traditional identity verification and authentication methods based on utilizing static data points.

In this session, we review:

The challenges involved in assessing new digital identities;
How to transparently assess users digital identity assurance, without impacting the customer experience;
A holistic approach to fraud and identity with artificial intelligence and global visibility to help address these challenges for organizations.

4:00 pm - 4:30 pm Track A

The Blurring Lines Between Cyber and Business Fraud: A Human Behavior Perspective

Digital automation of all business processes globally is compelling enterprise fraud risk and vigilance teams to leverage cybersecurity tools to predict business fraud. It’s critical to know how human behavioral analytics, machine learning and orchestration can play important roles.

The session addresses:

How human behavior cuts across the fraud spectrum;
How machine learning and predictive analytics help prevent expanding financial and business process fraud;
Using cross-leveraging technology and process intelligence to build behavioral models;
Ways to predict, adapt and orchestrate that help in combating insider threats;
Real-life use cases on the human behavior perspective helping tackle threats.

4:00 pm - 4:30 pm Track B

Blockchain: Enhancing Authentication for Enterprise Security and Fraud Prevention

According to a recent Gartner report, Blockchain distributed ledger technology has reached the peak of its hype cycle and remains at the peak of inflated expectations. It offers enormous promise, but enterprises are unsure how to extract business value from it. The questions raised: What are the applications of a public or private blockchain in their respective domains? Will blockchain technology help cybersecurity or be a hindrance?

Some experts argue that blockchain technology can help enterprises address age-old cyber risk challenges, such as digital identities and maintaining data integrity, by securing and preventing fraudulent/malicious activity through its consensus mechanism. Several proof-of-concept projects are underway in India, and banking is leading the way.

This session offers insights on:

Blockchain’s applicability to the enterprise security and fraud-prevention framework;
How DLT has helped in enhancing authentication and secure applications without the need for any centralized authority or identity management;
The value drivers for the blockchain initiatives underway;
Establishing identity and preventing fraud using blockchain technology

4:35 pm - 5:15 pm

Breaking Down Authentication Siloes & Preventing Account Takeover

In a world of constant data breaches, where all consumer PII data is exposed, financial institutions are seeking innovative ways to authenticate customers, verify identity and prevent account takeover. This is leading to investment in a world of innovative authentication methods but that also means FIs find themselves managing disparate tools without a unified cross-channel management approach.

From this session, you will come to understand the challenges of silo-ed cross-channel authentication strategies, as well as the potential solutions. See the results of an industry survey conducted on omni-channel authentication orchestration to learn: