PCI DSS Workshop 2017 Presentations

(Click on the session titles to download available presentations)

Monday, April 24, 2017
 

Pre-Conference Optional Session: PCI DSS Workshop Orientation
Glossary Full
Glossary Highlights
Linda Wilson, Finance Systems and Services Manager, Gonzaga University; Robbyn Lennon, PCI Program Coordinator Senior, University of Arizona; Gene Willacker, ISA, PCIP, MSU IT Security, Michigan State University

Pre-Conference Optional Session: PCI DSS Refresh (no presentation)
Ron King, Co-Chair, PCI DSS Workshop, Treasury Institute and Jon Allen, CISSP, EnCE, Assistant Vice President & Chief Information Security Officer, Baylor University

The Song Remains the Same: A Decade of Unchanged Security Vulnerabilities
Greg Johnson,  PCIP, Vice President of Business Development, A-LIGN

BUSINESS TRACK: PCI 3rd Party Management and Compliance
John Layman, Treasury Specialist, University of Missouri System and Nick O’Neil, Security Analyst, University of Missouri System

IT TRACK: Preparing for the Worst: Table Top Testing of Your IRP
S. Dirk Anderson, CRISC, CISA, QSA, ASV, Vice President, Enterprise Risk & Compliance, Coalfire

BUSINESS TRACK: Reality of Implementing P2PE and E2EE (Panel- no presentation)
Jefferson Hopkins, CISA, CISSP, PCI ISA, IT Security Risk Analyst, IT Policy and Compliance, Purdue University and Kim Stringham, Systems Analyst II, Texas State University; Joseph Tinucci, Senior Director, SAQ, Technology: ERC, Coalfire; Dustin Rich, Managing Consultant, A-Lign

IT TRACK: Leveraging Shared IT and Business Resources to Sustain PCI Compliance
Risk Assessment
Shiva Hullavarad, Manager of Compliance Information and Records, University of Alaska and Raaj Kurapati, Vice President for Finance and CFO, Texas A&M, Kingsville

                                          
Tuesday April 25, 2017       
 
                                

Sustaining PCI on Campus
Robbyn Lennon, PCI Program Coordinator Senior, University of Arizona and Gil Salazar, Senior Information Security Analyst- Information Security, University of Arizona

The Politics of PCI in Higher Education
Susan Albonetti, CPA, CTP, Assistant Treasurer, University of Cincinnati and Carole Fallon, JD, CTP, Senior Manager Treasury Operations, The Ohio State University

BUSINESS TRACK: PCI Compliance from an Office of One
Andrea Hendricks, ISA, PCIP, Coordinator eCommerce/PCI, Oklahoma State University

IT TRACK: Guidance for PCI DSS Scoping and Network Segmentation
Kerry Digou, CISSP, ISA, Internal Security Assessor, North Carolina State University and Craig Henninger, CISSP, QSA, Manager Security Advisor Services, Campus Guard

BUSINESS TRACK: Crosswalk Data Security
Control Mapping Excel Doc
Control Mapping PDF
VT Policy
Joseph Goodman, IT Security and Compliance Specialist, Virginia Tech University and Jen Stone, MSCIS, CISSP, QSA, Security Analyst, Security Metrics

IT TRACK: Penetration Testing: Art or Science?
Scott Daley, CISA, PCI QSA, HITRUST CCSFP, Senior Analyst, SecureState and Matt Franko, Senior Associate Management Consultant, SecureState

BUSINESS TRACK: The Fork in the Road and How We Took It
Debbie Wert, Payment Card and E-Commerce Analyst, Purdue University and Jefferson Hopkins, CISA, CISSP, PCI ISA, IT Security Risk Analyst, IT Policy and Compliance, Purdue University

IT TRACK: I’m Attacking Your Network Right Now (And This is Why)
Mark Shelhart, Director, Incident Response & Forensics, Sikich, LLP

PCI DSS QUICK HITS
Linda Wilson, Finance Systems and Services Manager, Gonzaga University and Gene Willacker, ISA, PCIP, MSU IT Security, Michigan State University  


Wednesday April 26, 2017                                              

The State of Data Breaches in Education
Jane Aube, Loan Programs and Compliance Specialist, Student Financial Services, Middlebury College and Ruston Miles, CPP, PCIP, Chief Innovation Officer, SVP, BlueFin Payment Systems

BUSINESS TRACK: Understanding PCI from an Acquirer’s Perspective
James Lock, III, MBA, CTP, CSCIP/P, Executive Director, Higher Education Industry Solutions Specialist, JP Morgan Chase Bank; Andy Goh, Vice President, Information Risk Manager, Merchant PCI Compliance, Chase Merchant Services; and Matt Leman, Executive Director, Business Development Director, Chase Merchant Services

IT TRACK: Deep Dive into PCI Technical Controls
Carlos Lobato, CISA, CIA, CISSP, CPA, IT Compliance Officer, New Mexico State University                     
          
PCI Internal Control and Auditing Requirements
ICQ Program - PCI DSS Business Controls
ICQ Program - PCI DSS Technical Controls
Program - PCI DSS
Risk Assessment
Shiva Hullavarad, Manager of Compliance Information and Records, University of Alaska and Will Finley, Information Systems Auditor, University of Alaska

Survey Results and Workshop Conclusion