Skip to main content
logo

2012 MRC Annual eCommerce Payments and Risk Conference

March 27–29, 2012

Las Vegas, NV

Merchant Risk Council Annual Conference
March 27-29, 2012
Wynn, Las Vegas 

Benchmarking Online Payments and Risk Organizations

Tuesday, March 27, 2012 at 9:15 AM–9:45 AM PDT
Target Audience

Payments and Risk Professionals interested in understanding how other merchants organize and staff their payments and risk functions

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Payments and Risk managers are constantly trying to figure out the optimal organization structure and staffing levels to best get their jobs done. In this presentation, Glenbrook's Jay DeWitt will present and analyze the results of an online survey conducted prior to the meeting which will help merchants understand what other merchants are doing with their payments and risk organizations. Questions that will be answered include:
- How do other merchants organize their payments and risk groups? What are best practices for my type of business?
- What types of jobs are in each group? What are appropriate staffing levels for each?
- How do different merchant verticals organize and staff? How different are physical/digital/virtual merchant models?

Learning Objectives

Attendees will:
- Learn what other merchants are doing regarding organizational structure and staffing
- Hear about industry best practices
- Interactively discuss the issues with other merchants to generate additional thinking

Audience Takeaway

This presentation will not only provide merchants with solid information on which to execute an organization and staffing plan, but will provide the appropriate benchmarks to plan for (and defend!) future staff needs.

Submitters

Jay DeWitt, Glenbrook Partner

Presenters

Jay DeWitt, Glenbrook Partners
Title

Partner

Presenter Biography

With more than 30 years experience in the payments industry, Jay brings a pragmatic approach to issues confronting Glenbrook clients in the rapidly changing world of payments.
Before joining Glenbrook, Jay headed Global Payments at Amazon.com where he was responsible for this prominent e-tailer’s payments business. Prior to Amazon.com, he held product and operations jobs at eCash Technologies and eFunds, and spent a significant part of his career at Visa, leading implementation of several strategic projects and having operational responsibility for the acquirer services that Visa offered via Merchant Bank Services.

Co-Presenters

Protecting Mobile: How to Beat the Bad Guys

Tuesday, March 27, 2012 at 9:45 AM–10:30 AM PDT
Target Audience

Fraud prevention executives and managers

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Mobile is the new battleground. While the vast proliferation of mobile devices makes it more difficult for cybercrime to effectively target mobile, it also makes mobile more difficult to protect. Already a variety of pernicious malware strains are actively targeting mobile, and the trendline is expected to rapidly escalate. The good news is that there are a variety of mitigation techniques that can be effectively brought to bear against the threat. This presentation will be based on recent Aite Group research, surveying multiple stakeholders in the financial services and ecommerce communities regarding mobile threats and successful mobile fraud mitigation techniques.

Learning Objectives

--An overview of current mobile threats, and how they will evolve
--Lessons from the financial services industry
--Successful mitigation tactics

Audience Takeaway

The audience will come away from the session with an understanding of the threat environment, and a game plan for effectively mitigating the mobile threat with minimal disruption of the end user experience.

Submitters

Presenters

Ms. Julie Conroy McNelley, Aite Group
Title

Research Director

Presenter Biography

Julie Conroy McNelley is a Research Director at Aite Group, covering fraud and risk management. Ms. McNelley brings to Aite Group more than a decade of hands-on product management experience working with issuers, payments processors, and risk management companies. She managed the product group at Early Warning Services for a number of years. where she was responsible for a suite of fraud prevention services that provided clients with more than US$1 billion per year in loss avoidance. She has been quoted in numerous media outlets, including The Wall Street Journal, U.S News and World Report, American Banker, and NPR.

Co-Presenters

Fraud Roundtable with Fraud Survey Results from

Tuesday, March 27, 2012 at 10:45 AM–12:00 PM PDT

Submitters

Presenters

Sheryl Pinto, Travelocity
Title

Head of Global Credit Card Risk Management

Presenter Biography

Heads global credit card risk management team at Travelocity.com and lastminute.com. Expertise in building global operations for credit card risk and chargeback management as well as delivering innovative risk management solutions to scale for multiple ecommerce sites and processes.
Thought leader on fraud management best practices within the industry and passionate about finding solutions to complex fraud problems.

Mr. Andrew Naumann, Visa
Title
Presenter Biography

Andrew Naumann, Director of Product Management and Global Solutions at CyberSource, a Visa company.
Andrew Naumann has focused on using systematic and operational analyses to solve complex fraud prevention issues across a wide variety of industries for two decades. He is responsible for the vision and strategy for CyberSource’s market-leading fraud management and payment security solutions.
Prior to his role at CyberSource, Mr. Naumann led the Risk Analytics team at Microsoft Corporation, designing and implementing risk management strategies and multi-factor screening solutions for that company’s eCommerce portfolio. Prior to Microsoft, he oversaw all analytics, software development, and operations to advance Amazon.com’s global fraud prevention capabilities.
Mr. Naumann has held leadership roles focusing on analytics and forecasting at leading companies such as Time Warner, J. Crew, and Sony Music. He holds a BSE from Princeton University in Operations Research and an MBA in Finance from Columbia University. He serves as a consultant for the Merchant Risk Council’s America’s Advisory Board and was a member of MRC’s Board of Directors (2003-2004).

Doug Schwegman, CyberSource Corporation
Title

Director, Market and Customer Intelligence

Presenter Biography

Since 2000 Doug has managed CyberSource’s market intelligence programs including CyberSource’s annual North American merchant benchmark survey on internet fraud. Doug has presented on eCommerce trends and merchant fraud management practices to a variety of organizations, including the U.S. intelligence community, the Merchant Risk Council, NACHA, the Electronic Payments Association, Brazilian eCommerce Summit, and the International Conference on Operations and Fulfillment.

Prior to CyberSource, Doug was a senior consultant at International Planning and Research, an international marketing consulting firm, supporting clients such as IBM, HP, and Microsoft, with market intelligence and analysis on the Asia Pacific region. Prior to IPR he worked in worldwide market intelligence for Apple Computer for 13 years both in the U.S. and in Europe. He holds a BA and MBA from Southern Illinois University and a Masters of International Management from the Garvin School of International Management – Thunderbird.

Co-Presenters

Payments Roundtable

Tuesday, March 27, 2012 at 10:45 AM–12:00 PM PDT

Submitters

Presenters

Evelyn Martin, Chase Paymentech
Title
Presenter Biography
Rene Pelegero
Title
Presenter Biography

René founded Retail Payments Global Consulting Group LLC (RPGC Group – www.rpgc.com), as a specialized consultancy practice in the “card/customer not present” payments and cross-border/international payments. René brings to his Clients all the experiences accumulated from working for PayPal and Amazon.com. At PayPal, René was responsible for managing PayPal's relations with the financial services industry and defining payment strategies whereas at Amazon.com, he was head of Global Payments and responsible for all aspects of payments processing, managing relationships with banks, processors, credit card companies and for driving the adoption of new forms of payment. In his consultancy, René has advised companies like Google, PayPal, Symantec, Cybersource, First Data, Visa International, American Greetings, Netgiro in Sweden and Pago in Germany.
Additionally, René has held senior management positions at Electronic Payment Services, Inc., a leading electronic funds transfer (EFT) processor; GE Capital, an international consumer lending group; and Tandem Computers, a hardware manufacturer of fault tolerant systems heavily used by the payments industry worldwide.
Quoted and published in many industry related publications, René's opinions are highly sought. He has been quoted in publications such as the Wall Street Journal, American Banker, Credit Card Management, USA Today, The Green Sheet, Digital Transaction, and many more. He has also contributed to specialized payment publications such as Association for Finance Professional's "The Exchange", the Canadian Payments Association "Forum", and Wiley Financial Series book "The Future of Finance after SEPA". During his tenure at eBay/PayPal, René filed for patents with the US Patent and Trademark Office for "Unified Identity Verification" and for "Payments Using Funds Pushing".
René received a B.A. in Business Information and Computing Systems and a M.B.A. from San Francisco State University.

Co-Presenters

Security Roundtable with Data Security Results from Trustwave

Tuesday, March 27, 2012 at 10:45 AM–12:00 PM PDT
Summary of Topic

Breaches in data security are on the rise. As are the compliance requirements for PCI DSS. Have you ever wondered how other merchants are protecting their payment data? What are some of the best practices around PCI DSS compliance? Recently the Ponemon Institute conducted a survey sponsored by CyberSource and Trustwave. This session discusses results of the survey and helps you benchmark your payment security strategy in the following areas:

• PCI DSS Compliance
• Payment Security Ownership
• Technology Deployment
• Budgets
• Staffing

Submitters

Presenters

Ms. Julie Fergerson, Ethoca
Title
Presenter Biography

Julie Fergerson is one of the industry’s foremost experts on internet payments fraud. Fergerson has 20 years of experience in the online payments and fraud management industry and holds patents for secure transaction order management processing and preventing fraudulent electronic transactions. She joined Ethoca in 2010 to help drive adoption of its collaborative ecommerce fraud prevention platform. Before joining Ethoca, Fergerson was Vice President of Emerging Technologies at Debix and Co-Founder and Vice President of Emerging Technologies at ClearCommerce. She is a co-founder and board member emeritus of the Merchant Risk Council (MRC) and a board member of the Identity Theft Resource Center, where she created and lead the Victim Assistance Program. Fergerson contributes to industry journals, books, websites, and government publications; and speaks at such events as the International Association of Privacy Professionals, National Retail Federation, Electronic Transaction Association, Economic Crime Summit, Mastercard University, Merchant Risk Council, NACHA, NRF Loss Prevention and the National White Collar Crime Conference.

David Glaser, CyberSource
Title

Vice President - Global Services

Presenter Biography

As Vice President, Global Services, Mr. Glaser leads the CyberSource Global Services organization, which provides consulting, design, integration, optimization and managed services to businesses and organizations worldwide. He is a leading authority on eCommerce payment, reconciliation, security and fraud management process design and implementation. Glaser joined CyberSource in April, 2000. He was named Manager of consulting project management in 2001. In 2003 he was promoted to director of professional services. In January 2006, Dave was named Vice President, Worldwide Professional Services. In 2008, his role expanded to that of Vice President, CyberSource Global Services where he oversees both the Professional Services and Managed Services divisions.

Manu Namboodiri, Trustwave
Title
Presenter Biography

Co-Presenters

All Internets are Not Created Equal: Mitigating Country Specific Business Risks for International Companies

Tuesday, March 27, 2012 at 1:00 PM–1:45 PM PDT
Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

The composition of the Internet varies widely from country to country. In the U.S., the millions of networks that comprise the Internet are fairly commonly structured with readily decipherable naming conventions that enable high confidence in understanding location and connection details. Outside the U.S. every country has a unique construct that can impact the effectiveness of your fraud prevention efforts. Understanding these differences is extremely beneficial to opening new markets both for marketing effectiveness and fraud prevention. This presentation will deliver some concrete examples of Internet composition in several countries and specific lessons learned by merchants.

Learning Objectives

1) Understanding of the internet composition variation from country to country
2 )How to apply these variations to fraud prevention
3 )Interoperability between fraud prevention and marketing programs based on enhanced understanding of network composition

Submitters

Jean-Louis Casabonne, Quova

Presenters

Jean-Louis Casabonne, Quova
Title

Strategic Evangelist

Presenter Biography

Jean-Louis Casabonne, Strategic Evangelist, Neustar Enterprise Services Division (formerly Quova). In his role, Jean-Louis is currently responsible for the development of expanded IP intelligence data services for fraud and compliance applications, leveraging the extensive data resources that Neustar has available for these purposes. He was previously the Chief Financial Officer of Quova, working closely with many MRC merchants and solution providers and has been involved with MRC since 2004.

Nate Grassman, Neustar
Title
Presenter Biography

Nathan Grassman manages Neustar IP Intelligence’s Data Analytics Group where he is responsible for overall data quality, research initiatives, and professional services. Nate has been with Neustar (Quova) for four years; prior to this he worked at PricewaterhouseCoopers as an Information Technology Auditor. Nate is currently pursuing a master’s degree in statistics from San Jose State University.

Co-Presenters

Lessons Learned: Combatting Email Channel Fraud

Tuesday, March 27, 2012 at 1:00 PM–1:45 PM PDT
Target Audience

Those familiar with Internet email technologies including SMTP, DNS and TCP/IP, and an understanding of modern email abuse including spam, phishing, viruses, blended threat. Additionally, an audience with knowledge of basic public key cryptography.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

1982 brought us Internet email (SMTP) but 30 years and 500 trillion messages later the spam, phishing, malware and targeted attack plague remains. Join Google, Netflix and leading financial institutions as they share real-world experiences deploying new technologies that secure their email channel at more than 1 billion mailboxes worldwide.

The presentation shares current threats and inadequacies of existing technologies, and how these threats continue to evolve. Google, one of the top senders in the world, will reveal their current status of authenticated and unauthenticated mail, and discuss with the audience how audience members can block unauthenticated mail. Netflix, the world's leading Internet movie subscription service, provides insights into their current email threats and how unauthenticated email enables these breaches.

Further discussion will detail threats to financial services via phishing and targeted attacks with the corresponding fraud impact, support costs and brand damage. The benefit of enhanced cyber-intelligence will be shared along with best practices for creating metrics and integrating with internal infosec teams and external vendors.

Both Google and Netflix provide real world experience showing the success of a protected, authenticated email channel. The presentation shows the next chapters for the new model including enterprise protection against targeted attacks and integration with end-user email clients to increase user trust and enable active content in email.

Learning Objectives

The presentation offers insights into the leading financial institutions and social networks which have reached the promised land of an authenticated, secure email channel. The experience of these organizations help the audience learn and understand:
• The real-world email security issues facing banks, social networks and ISPs including spam, phishing, targeted phishing and social engineering and how existing technologies including IP reputation, PKI and content filtering are limited.
• How to assess these technologies in their own environments based on real-world examples of deployments of the Email Authentication technologies SPF, Sender ID and DKIM from the sender (bank and brand) and receiver (ISP) perspective.
• The global ISP and vendor ecosystem that powers the new model
• Emerging technology standards
• The 'bits and bytes' of the technical solution as well as the real-world implications
• Organizational impediments in implementing this new technology and how each panelists' overcame them

Submitters

Patrick Peterson, Agari

Presenters

Patrick Peterson, Agari Data, Inc
Title

CEO & Founder

Presenter Biography

Pat is Agari’s visionary leader and a pioneer in the email business. Pat joined IronPort Systems in 2000 and defined IronPort’s email security appliances. He invented IronPort’s SenderBase, the industry’s first reputation service. In 2008, after Cisco’s acquisition of IronPort, Peterson became one of 13 Cisco Fellows. In 2009, Peterson spun-out email security technologies he developed at IronPort/Cisco into a company he founded, Agari, which secures the email channel. He is currently CEO at Agari, formerly Authentication Metrics, Inc. (AMI), and consults for Cisco as a Cisco Fellow. Peterson chairs the technical committee for the Messaging Anti-Abuse Working Group (MAAWG) and holds B.S. and M.S. degrees in electrical engineering from Stanford University.

Bill Burns, Netflix
Title

Manager, Netflix IT Security

Presenter Biography

Bill is currently the Manager of Information Security and a Security Architect for Netflix Inc., where he oversees compliance and security operations for Netflix's global entertainment service. He established Netflix's information security program including Security Incident Response, a combined SOX/PCI controls framework, cryptographic key management, and is currently implementing trusted infrastructure in the public Cloud. He has 18 years of industry experience in information security architecture and IT operations, specializing in cryptography and networking. He has a CISSP certification, is a member of the RSA Security Conference Program Committee and CISO Executive Forum, and has advised several security startups. Bill also volunteers with his county's Office of Emergency Services where he trains responders to provide coordinated emergency communications during events and natural disasters. He is a graduate of Michigan Technological University, with Electrical Engineering and Business degrees.

Adam Dawes, Google
Title

Product Manager for Mail & Enterprise Products

Presenter Biography

Adam Dawes is Product Manager for mail and enterprise products at Google. He brings over 15 years of technology experience and helps to lead Gmail's anti-spam, anti-abuse, authentication enforcement and email delivery efforts. As Director of Product Management at Postini, Adam has spent years on the front lines of email security, spam fighting, and fraud protection from a business, consumer and technology perspective. Dawes is a graduate of Harvard University and holds a Masters of Business Administration from Stanford.

Co-Presenters

Tiered Fraud Rules to Frustrate the Fraudsters

Tuesday, March 27, 2012 at 1:00 PM–1:45 PM PDT
Target Audience

Risk managers/directors in Mid-market to enterprise level companies

Presentation Technical Level

Advanced - Introduction of complex concepts. For attendees with significant industry experience.

Summary of Topic

Detectors form the foundation of every fraud screen, so the lifeblood of the fraudster is figuring out just what those detectors are. Once they understand the logic of a detector, fraudsters will quickly find a way around it. All by itself, any given detector will eventually be beaten no matter how sophisticated it is. But in this session, CyberSource’s Scott Boding will explore a strategy for layering detectors to obscure how each one works and to keep the fraudsters stumped for far longer. We’ll look at real world examples of such detector suites and how they improve fraud detection yet retain their sensitivity to false positives.

Learning Objectives

• Understand the philosophy and key concepts of layered detectors
• How to build a strategy for designing detectors
• How to organize detectors into suites
• How to analyze the results gathered from a layered approach

Audience Takeaway

Following the presentation, the audience will gain an enhanced awareness of how the detectors determine the efficacy of their fraud screens, and how best to organize those defenses to last longer.

Submitters

Bruce Frymire, Visa

Presenters

Scott Boding, Visa
Title

Director, Order Screening

Presenter Biography

Scott Boding has over 13 years of experience in the development of anti-fraud strategies and rule making. He is a leading authority on the architecture of fraud and fraud abatement. He has played a significant role in CyberSource's growth as an industry leader in fighting online fraud, and has spoken to great acclaim at the Merchant Risk Council for the last two years (2011 and 2010). This will be the first time he has addressed these very advanced topics outside of CyberSource.

Co-Presenters

Cyber Trends and Investigations

Tuesday, March 27, 2012 at 2:00 PM–2:45 PM PDT
Presentation Technical Level

Basic - An introduction to the topic. For attendees new to the industry.

Summary of Topic

The discussion will be focused on the current cyber trends that the US Secret Service is combating and the efforts we are taking to combat them. The presentation will focus on the collection, analysis and dissemination of cyber intelligence, as well as the dissemination of analytical products related to current trends in cyber crimes.

Learning Objectives

A better understanding of the USSS and the current cyber trends they are combating

Submitters

Pam Wolfe, Merchant Risk Council

Presenters

Keith Wojcieszek, US Secret Service
Title

Special Agent - Criminal Investigative Division

Presenter Biography

Co-Presenters

Expanding into LatAm: Why, When, Where & How?

Tuesday, March 27, 2012 at 2:00 PM–2:45 PM PDT
Target Audience

Payments managers, sales and marketing teams, operational teams

Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Summary of Topic

The session is a non-biased perspective from both a payment provider and a merchant on the ins and outs of accepting local payments in the LATAM eMarketplace. What are the benefits to expanding your payment options into local LatAm currencies? When is a good time to make the switch or optimize what you currently have? What countries should you go into first? How is the payment landscape changing? Specific countries to covered are: Argentina, Brazil, Mexico, Venezuela and possibly a few others time permitting.

Learning Objectives

1. Complexity of the latam payment landscape
2. Market size and opportunities
3. opportunities beyond Brazil and Mexico

Submitters

Ron Buchanan, GlobalCollect

Presenters

Juan Pablo D'Antiochia, GlobalCollect
Title

General Manager, Latin America

Presenter Biography

Juan Pablo D'Antiochia is the General Manager for the Latin American region at GlobalCollect; a company specialized in providing payment solutions for e-commerce and CNP.

His responsibilities include providing consultancy and advisory services to companies who choose to internationalize their operations in order to reach new markets, the definition of payment strategies by country and development of new payment methods.

Juan Pablo previously served as Product Manager of Payment Services for Citigroup in South America, responsible for credit cards, debit cards and many alternative payment methods. During his career in this financial institution, he participated in numerous projects related to the launch of new products as well as developing strategies to drive growth of existing ones.

Prior to his experience in Citigroup, he was part of the Marketing team at Petrobras, as head of web and digital media channels for 7 countries in Latin America.

Juan Pablo was born in Buenos Aires, Argentina, is an Industrial Engineer graduated from Universidad Católica Argentina and has a Master in Finance from the same business school.

Co-Presenters

Merchant Fraud Anyalytics: Yesterday, Today & Tomorrow

Tuesday, March 27, 2012 at 2:00 PM–2:45 PM PDT
Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Fraud is an evolving sequence of problems and solutions. Fraudsters
exploit vulnerabilities in merchants' fraud defenses and merchants
bolster their detection to plug the leaks. As technology improves,
fraudsters are able to create more sophisticated fraud attacks.
Merchants are forced to update their tools and processes to adapt to
the shifting fraud landscape.

Over the past 10 years, Apple's fraud shop has changed
dramatically. Both the business processes and technological tools have
improved and changed. I will take you through the evolution of our
fraud shop over the past decade and give you a peak into what we are
developing for the coming decade.

Submitters

Tal Tversky, Ph.D., Apple, Inc.

Presenters

Tal Tversky, Ph.D., Apple, Inc.
Title

Fraud Analytics Manager, Apple, Inc

Presenter Biography

At the age of twelve, Tal Tversky's dream job would have been fighting crime using computers, a cross between James Bond and Matthew Broderick from War Games. Somehow, his dream seems to have come true. Tal is the Fraud Analytics Manager at Apple Computer, where he leads a team of data scientists developing analytic solutions to problems that involve fraud, waste and abuse company wide. Tal received a Ph.D. in computer science from the University of Texas at Austin specializing in artificial intelligence and vision. He lives in Austin with his wife and four kids. Shall we play a game?

Co-Presenters

Advertising Fraud Deepdive: The Lifecycle of a Click Bot

Tuesday, March 27, 2012 at 3:00 PM–3:45 PM PDT
Summary of Topic

In this presentation, you’ll learn about various types of advertising fraud, and learn more about the one thing they all have in common: robotic activity driven by malware infected computers.

Submitters

Presenters

Eric Bozinny, Microsoft
Title

Sr. Program Manager

Presenter Biography

Eric Bozinny has been protecting advertisers and others from danger for over 20 years. Beginning his career as a tour guide in the Canadian Rockies, he more than once led rutting elk away from hapless passengers unaware of the imminent physical threat. Later, Eric worked for Razorfish - born as the online advertising pioneer Avenue A - where his team was responsible for the technical implementation of display advertising. After a short stint as a real estate investor nearly destroyed him, Eric joined Microsoft and since 2007 has been the voice shouting loudly to ensure that all stakeholders in the digital marketing world understand the size of the fraud and malware problem.

Co-Presenters

Data Sharing

Tuesday, March 27, 2012 at 3:00 PM–3:45 PM PDT
Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

This panel will discuss how merchants share data with each other and how a case gets built. The merchant panelists would be Mark Brooks from the Gap, Matt Marcus from BestBuy and Nancy Nguyen from Fandango.

Submitters

Ms. Julie Fergerson, Ethoca

Presenters

Melissa McBee-Anderson, Federal Bureau of Investigation
Title

Management and Program Analyst

Presenter Biography

Melissa has served with the FBI for 17 years in the Cyber, Human Resources, and CJIS Divisions. The IC3's mission is to serve as a vehicle to receive, develop, and refer criminal complaints regarding the rapidly expanding arena of cyber crime. Melissa’s primary focus is working with public and private alliance partners to define growing schemes and coordinate involvement with all levels of law enforcement, to ensure on-line activity continues to be safe for both consumers and industry.

Mr. Jason Thomas Calhoun, Rosetta Stone Ltd
Title
Presenter Biography

Jason Calhoun is the Enforcement Manager at Rosetta Stone, where he is in charge of intellectual property protection and enforcement initiatives, including anti-piracy and anti-fraud programs, copyright and trademark protection and domain enforcement. Jason is also the Co-Chair of the Merchant Risk Council Law Enforcement Committee. Jason previously served as Web Operations and Release Manager, Software Development Manager and Sr. Software/Web Developer at Rosetta Stone and has twice worked at NASA Langley Research Center as a software developer. Jason has a Bachelor’s degree in computer science with a concentration in mathematics from James Madison University.

Todd Petty, LTD Commodities
Title
Presenter Biography

Todd is the Director of Fraud Prevention and Revenue Assurance for LTD Commodities LLC. Todd has led a successful career path in Security, Fraud Prevention and IT Security the past 25 years. Todd has been in challenging positions with firms such as Motorola Cellular Business, National Security Agency, Whittman-Hart, marchFIRST, Divine Interventures, Pinkertons Security Consulting, and ran his own successful computer forensics firm.

Todd has lived and worked in Asia-Pacific, Europe, Middle East and Central and Latin America.

Todd designed and created a wireless crimes training course for law enforcement that was recognized and certified by the CTIA in the early 1990’s. He has trained thousands of law enforcement personnel at all levels on a global scale. Among other international agencies the program was put in place by both the FBI and The United States Secret Service as part of “wireless crimes” training for all field agents.

Todd holds a Master of Science, Management and Leadership, National-Louis University, College of Business. Also a Bachelor of Science, Criminal Justice Sciences, from Illinois State University where Todd was a 4 year NCAA Student Athlete.

During the past 10 years Todd has enjoyed his role as Adjunct Faculty for graduate level courses at Webster University, DeVry University and Northwestern University.

Todd and his family enjoy volunteering their time to a charity in their community called “Home of the Sparrow”. The charity is a safe haven for mothers and their children who are victims of domestic violence and abuse.

Todd is an MRC Platinum member.

Ryan Williams, Consumer and Brand Protection
Title
Presenter Biography

Graduate of West Virginia University with a Masters degree in Political Science. I have been a full time employee of NCFTA since 2007, and prior to that, spent 2 years as an intern and part-time employee of NCFTA. Currently the Manager of the Brand & Consumer Protection Program at the NCFTA. The program has initiatives which focus on the online sale of pharmaceuticals and counterfeit goods, e-Commerce fraud, and mitigation for both individuals and corporations in regards to compromised Personally Identifiable Information (PII).

Co-Presenters

High Profile Security Breaches - A Regulatory & Advocacy Review

Tuesday, March 27, 2012 at 3:00 PM–3:45 PM PDT
Target Audience

Anyone interested in gaining a better understanding of how proposed federal and EU laws and regulations may affect fraud and risk management activities of merchants.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

This presentation will provide an overview of the latest proposals for new federal legislation and regulation in the privacy and data security area with a focus on proposals which could impact merchant fraud and risk management activities (e.g. do not track, opt-in consumer consent and data access requirements). There will also be a discussion of the EU Data Privacy Directive and its implications.

Learning Objectives

Participates will learn about what is going on in Washington and the EU that might affect how merchants conduct fraud and risk management activities in the future?

Audience Takeaway

Participants will be better able to anticipate how changes in laws and regulation might affect their business.

Submitters

Presenters

Evan Henshel, Accertify
Title
Presenter Biography

Mr. Henschel is responsible for providing legal and regulatory advice and counsel to Accertify's senior management team, as well as establishing appropriate contracting, intellectual property protection and data privacy compliance procedures within Accertify.
In June 2011, Mr. Henschel joined as Assistant General Counsel of Accertify, Inc. Prior to joining Accertify, Inc., Mr. Henschel spent four years associated with Latham & Watkins, working in their corporate group with a focus on joint venture, technology, licensing, outsourcing, manufacturing and general commercial contract transactions.
Mr. Henschel was also associated with the New York office of Brown Raysman Milstein Felder & Steiner LLP, again focused on all types of technology and media transactions. He has served as Counsel at MicroStrategy Incorporated, a business intelligence software provider. Mr. Henschel began his career at Wiley Rein & Fielding.

Steve Surdu, Mandiant
Title
Presenter Biography

Steve Surdu has been Mandiant’s Vice President of Professional Services since 2007. In that role he oversees all consulting services performed at Mandiant. Steve also leads selected incident response engagements – both payment card industry breaches and national security events.

Steve has thirty years of consulting experience, thirteen years in security. He has experience in financial services, high technology, healthcare, manufacturing, state and federal government, retail and regulated industry.

Previously, he performed custom application development with Accenture and managed vulnerability assessment and incident response engagements at Foundstone.

Steve has a Bachelors in Business Administration from the University of Michigan.

David Fagan, Covington
Title
Presenter Biography

David Fagan’s practice covers national security law, international trade and
investment, and global privacy and data security. Mr. Fagan has represented clients
before federal and state government agencies and Congress in connection with a
range of issues, including regulatory approvals of international investments, national
security-related criminal investigations, high-profile congressional investigations, and
federal and state regulatory and enforcement actions in the data security area.
On investment issues, Mr. Fagan has represented foreign and domestic clients in
various industries (including defense, software, information technology,
communications, energy, aviation, maritime transportation, ports, and
biotechnology/pharmaceuticals) in securing the approval of the Committee on
Foreign Investment in the United States (CFIUS), as well as in connection with
ongoing compliance matters related to mitigation agreements with CFIUS. He also
frequently handles matters related to the mitigation of foreign ownership, control or
influence (FOCI) under applicable national industrial security regulations.
In the privacy and data security area, Mr. Fagan counsels clients on assessing data
security practices, developing and implementing information security programs, and
complying with federal and state regulatory requirements, as well as on transactional
matters involving the transfer of personal data. Mr. Fagan also has been counsel to
companies in dozens of data security breach matters involving millions of affected
consumers.
Mr. Fagan has written extensively on national security, foreign investment, data
security, and cybersecurity matters, and is the author of the chapter on “The US
Regulatory and Institutional Framework for FDI” in the book Investing in the United
States: Is the US Ready for FDI from China?, a leading treatise on Chinese
investment in the United States. Mr. Fagan also is an Adjunct Professor of Law at
Georgetown University Law Center, teaching a seminar on “National Security Law
and the Private Sector."

David Marsh, First Data
Title
Presenter Biography

Changing the world - or at least changing the payments industry - has been the driving force for David since the TransArmor solution was conceived between First Data and RSA Security. David’s deep security domain expertise and passion for applying innovative technology to create new business models made me a natural fit and a key member of the team that brought the solution from concept to market launch within a year.

David is a Director in the Solution Consulting practice at First Data, focused on improving the security and compliance posture of clients globally as he promotes the secure infrastructure pillar of Universal Commerce – secure payments across any form factor, anytime, anywhere.
"Partnering with industry players across the payments value chain has taught me that the payments space is much more complex than anyone outside the industry can appreciate, but adding value by reducing the security and compliance risk for our customers can be extremely rewarding if everyone understands that better payment security protects all of us."

David holds a Global Executive M.B.A. from the Robinson school of business at Georgia State University, and continues to learn daily from colleagues and partners. He lives in Atlanta with his wife, two sons, and a Weimaraner.

Co-Presenters

Mobile Payments – Is the Future Finally Here?

Tuesday, March 27, 2012 at 4:00 PM–4:45 PM PDT
Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

James Anderson will describe MasterCard’s Mobile Payments activities - and how MasterCard sees Mobile changing the customer experience of shopping and paying.

Submitters

Steven Mannarino, MasterCard

Presenters

James Anderson, MasterCard
Title

Group Head and Senior Vice President of Mobile Product Development

Presenter Biography

James Anderson is group head and senior vice president of Mobile Product Development. In this role, he is responsible for developing all mobile payment products, including proximity payments, remote payments, and mobile authentication services. In addition to leading MasterCard’s mobile product development, Mr. Anderson provides support to sales and business development activities around the world.
Mr. Anderson has spent his career at the intersection of mobile, payment, and Internet technologies in the functional areas of Product Development and Business Development. He is Vice Chairman of the NFC Forum.

Co-Presenters

Battling the Persistent Cyber Threat in Today's World

Wednesday, March 28, 2012 at 9:15 AM–10:15 AM PDT
Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

The Internet has evolved over the course of nearly four decades from a remarkable technical achievement supporting a limited set of users to a massive global system that has become an essential element of our daily lives, an engine for global commerce, and a vital component of our national security. However, as the Internet has grown at an exponential rate around the world, so have the number of individuals, groups, and nations who wish to do others harm or take advantage of the information available in cyberspace. How did this happen? The Internet’s defining characteristic was that it was built on such core principles as flexibility, openness, speed, and value. Security was never a driving consideration. With the dramatic rise of threats to a system rife with vulnerabilities, we must now consider not only what protections and security measures are necessary but what we must do in order to ensure we remain resilient and quickly able to recover as a result of any attacks we do face.

Submitters

Presenters

Michael Chertoff, Chertoff Group
Title

CEO

Presenter Biography

As Secretary of the U.S. Department of Homeland Security from 2005 to 2009, Mr. Chertoff led the country in blocking would-be terrorists from crossing our borders or implementing their plans if they were already in the country. He also transformed FEMA into an effective organization following Hurricane Katrina. His greatest successes have earned few headlines – because the important news is what didn’t happen.
At Chertoff Group, Mr. Chertoff will provide high-level strategic counsel to corporate and government leaders on a broad range of security issues, from risk identification and prevention to preparedness, response and recovery. “Risk management has become the CEO’s concern,” he says. “We help our clients develop comprehensive strategies to manage risk without building barriers that get in the way of carrying on their business.”
Before heading up the Department of Homeland Security, Mr. Chertoff served as a federal judge on the U.S. Court of Appeals for the Third Circuit. Earlier, during more than a decade as a federal prosecutor, he investigated and prosecuted cases of political corruption, organized crime, corporate fraud and terrorism – including the investigation of the 9/11 terrorist attacks.
Mr. Chertoff is a magna cum laude graduate of Harvard College (1975) and Harvard Law School (1978). From 1979-1980 he served as a clerk to Supreme Court Justice William Brennan, Jr.
In addition to his role at Chertoff Group, Mr. Chertoff is also senior of counsel at Covington & Burling LLP, and a member of the firm’s White Collar Defense and Investigations practice group.

Co-Presenters

Harvesting Exposed Data on P2P Networks: How Cyber-Criminals use the ‘Wikileaks Technique’ to Commit Fraud and Identity Theft

Wednesday, March 28, 2012 at 10:15 AM–11:00 AM PDT
Summary of Topic

Internet threats are unquestionably well-documented, but lesser know is the fact that unmonitored,
Peer-to-Peer (P2P) file-sharing use presents a broad spectrum risk to organizations of all shapes and
sizes. In the age of Wikileaks and high-profile hackers, data breaches have evolved into a threat of
unparalleled magnitude. Business partners, suppliers, and customers that expose data pose a huge
risk to your organization. Financial data, such as credit cards and bank account numbers, as well as
account credentials, such as usernames and passwords, are highly sought-after by cyber criminals
on file-sharing networks. These factors greatly contribute to increasing fraud costs, cyber-crime,
and online fraud activity.
In this session, you’ll learn how sensitive information is being exposed, harvested, and distributed
across multiple P2P channels commonly unbeknownst to large corporations and law enforcement.
Leveraging P2P cyberintelligence insight will provide greater visibility and a readiness model for
effectively measuring and mitigating exposure, reducing fraud costs, and maintaining brand credibility
among your customer base.

Submitters

Scott Harrer, Tiversa

Presenters

Robert Boback, Tiversa
Title
Presenter Biography

Mr. Boback has become one of the foremost experts on the security and identity theft risks associated with P2P file-sharing networks and the internet threat landscape. Mr. Boback has been featured on various national and international news organizations including CNN, Fox News, NBC’s Today Show, CNBC, USA Today, Wall Street Journal, Washington Post, LA Times, and several others discussing the problems of inadvertent sharing and its consequences. Mr. Boback has also counseled industry leaders in the Global 1000 and government officials both in Europe and the United States as to the best methods to prevent such disclosure from devastating their respective organizations. He has also been sought out numerous times as a panelist and a featured speaker at Global Conferences on Corporate Risk, Corporate Security, and Identity Theft. Mr. Boback graduated from the FBI Citizens Academy and has trained thousands of law enforcement personnel on cyber-crime, identity theft, and medical fraud as a keynote speaker through the FBI Law Enforcement Executive Development Association (FBI LEEDA). In addition to briefing global law enforcement, federal agencies, and defense contractors on national security risks posed by file-sharing exposure, Mr. Boback has testified before Congress on three separate occasions, most recently in 2009 before the House Committee on Oversight and Government Reform.
As Co-founder and Chief Executive Officer of Tiversa Incorporated, Mr. Boback conceptualized the problem and strategic challenges that the industry was facing and structured the development of the cutting edge solution. Under his direction, Tiversa had worked with the many corporations in the Global 1000. He was instrumental in aligning the highly talented management team necessary to fully recognize and address the significant, yet largely unknown, problem. Mr. Boback, along with his executive team, has built Tiversa from a concept of copyright protection and security into a successful corporation providing security services and identity theft solutions to multinational clients spanning across several continents.

Ori Eisen, The 41st Parameter
Title

Founder, Chairman and Chief Innovation Officer

Presenter Biography

Ori Eisen has spent the last fifteen years in the information technology industry, and is respected for his business knowledge and leadership. His background includes an in-depth application of innovative solutions for preventing business to consumer e-commerce fraud.

Prior to launching 41st Parameter, Mr. Eisen served as the Worldwide Fraud Director for American Express focusing on Internet, MOTO and counterfeit fraud. During his tenure with American Express, Mr. Eisen championed the project to enhance the American Express authorization request to include Internet specific parameters.

Prior to American Express, Mr. Eisen was the Director of Fraud Prevention for VeriSign/Network Solutions. By developing new and innovative technologies, he skillfully reduced fraud losses by over 85 percent in just three months.

Mr. Eisen has an extensive background in developing system infrastructure and implemented solutions, and he is highly regarded in the information and payment technologies industry as a noted leader and technology innovator. Based on this reputation Mr. Eisen is often quoted by industry insiders, and receives numerous invitations to appear as a keynote speaker for industry events and conferences. Mr. Eisen is a founding member of the Merchant Risk Council and is currently serving on the Americas Advisory Board.

Co-Presenters

Are you TOO RISKY? Best Practices in Mitigating CNP Fraud Exposure

Wednesday, March 28, 2012 at 1:15 PM–2:00 PM PDT
Target Audience

Risk, fraud, collections and treasury managers are the primary focus of this session. However, anyone looking to improve their fraud practices or lower risk of bad accounts will benefit from the session.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

In a 2011 MRC survey, fraud managers reported that 41% of the time they use telephone number lookups as their primary risk assessment tool. Fraudsters, however, know phone based authentication and other fraud tools can be tricked. Current, TN lookups provide very little identifying information about the type of phone service, its user, spoofing attempts and other common fraud practices. In fact, this lack of data is most prevalent where risk of fraud is highest with wireless, prepaid wireless and VoIP devices. One of the increasing threats for fraud is through spoofing of phone numbers and Caller IDs to misrepresent identity with card issuers. Using telco data sourced directly from the carriers, issuers and merchants can use a layered authentication approach to detect and mitigate phone number spoofing and other threats; ensuring the integrity of mobile, landline, VoIP and cable telephone number reverse look-ups as a primary identity verification technique.

Fraud managers have had challenges with quality and coverage of telco data because, until now, privacy laws severely restricted access to phone company records. However, operators of the national telecom databases are adopting new approaches which maintain privacy laws, yet make it possible to verify identity using their authoritative data. SMEs from TNS will delve into this topic explaining new acceptable use policies as well as merchant case studies help you use mobile phone, VoIP and telco data that is sourced directly from the carrier to increase your verification practices.

Learning Objectives

Education on the best practices for fraud/risk mitigation through mobile and telco carrier sourced data for identity and location verification. The trend of people moving to a mobile only or a mobile primary device model presents a challenge for fraud managers to identify customers with telco data because direct sourced telecommunication data has not been available for use. This situation presents an opportunity for fraudsters to mask their identity from companies using TN verification. This presentation will help you stay ahead of fraudster’s practices and show how attendees can decrease fraud rates with the use of direct carrier sourced mobile and VoIP data to effectively verify customer identity, pin-point mobile phone location and facilitate two factor authentication via mobile SMS.

Audience Takeaway

This session will provide attendees with:
- clear understanding of how fraudsters are using mobile phone and VoIP accounts to mask identity and/or spoof phone numbers and Caller IDs
- direction on how these fraudulent attempts can be mitigated with telco data that is sourced directly from the carriers databases
- ideas on how verification technology can pin-point mobile phone location

Submitters

Travis Lee, Transaction Network Services, Inc.

Presenters

Dan Lyman, Transaction Network Services, Inc.
Title

SVP, Global Products

Presenter Biography

In December 2006, Dan took on the role of Senior Vice President of the Global Products team within the Payments Division.

Formerly the Vice President of Sales Engineering & Product Management within the Telecommunications Services Division of TNS, Dan has been with the company since 2001, holding various positions in consultative solutions engineering and product strategy. Before joining TNS, Dan was the Director of Product Management at Fastcomm Communications (currently Encore Networks) in Dulles, VA.

As the SVP of Global Products, Dan leads a team of 20 plus staff responsible for working with the regional general managers within TNS’ Payments Division to develop and implement product and marketing strategies, equipping the sales teams with messaging, tools, pricing, and contracts, and providing consultative technical support and project management to pre and post-sales customer engagements. As part of his role, Dan enjoys the challenge and responsibility of working with the regional teams and other stakeholders to identify new market opportunities and influence how product development resources are allocated.

Dan received his bachelor’s degree in electrical engineering from Virginia Tech University.

He is based at TNS’ Headquarters in Reston, Virginia and resides in nearby Bristow with his wife and three children. When not at TNS, Dan enjoys watching his kids’ athletic activities, spending time with his family, golfing and travelling.

Travis Lee, Transaction Network Services, Inc.
Title
Presenter Biography

Travis Lee is the Director of Product Marketing For Transaction Network Services Payments Division in North America. He has worked in Product Marketing and Product Management roles with TNS, AOL, LexisNexis and other companies for 15 years.

His emphasis at TNS has been on guiding the product direction and market needs for the payments solutions at TNS which include eCommerce – Card Not Present and Card Present gateway services as well as payment communication security and services. As one of the leading eCommerce gateway providers in the world, he has been involved in understanding the problems merchants and providers face in combating fraud and mitigating risk.

Co-Presenters

Cutting Through the Hype: The Realities of Mobile Payments for Merchants

Wednesday, March 28, 2012 at 1:15 PM–2:00 PM PDT

Submitters

Presenters

Ms. Dayna Ford, Visa
Title

Sr. Director, Product Management

Presenter Biography

Dayna Ford oversees product management for CyberSource’s payment management solutions. Her 20+ years of technology and financial services experience includes positions as Vice President for commercial treasury solutions at Bank of America, and senior product manager for eCommerce payment solutions at Chase Paymentech. Ms. Ford holds a bachelor’s degree in business from Southern New Hampshire University.

Paul Kuykendall, Ticketmaster
Title
Presenter Biography

Paul is a Senior Director at Ticketmaster and has been a technical payment professional for nearly 20 years. Joining the company as a Senior Software Engineer, he expanded and led a highly effective team within the organization, architecting the payment platform and data security initiatives. Ticketmaster’s global operations span 20 countries, processing payment transactions for over 3000 independent merchants and venues. Paul is responsible for payment technology across all of Ticketmaster’s sales channels; eCommerce, phones, retails outlets, venue box offices and mobile platforms. He has been an active member in the MRC and currently serves on the Payments Committee.

Co-Presenters

Gamer Safety Panel Discussion

Wednesday, March 28, 2012 at 1:15 PM–2:00 PM PDT
Target Audience

digital merchants and mult-channel merchants

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

The Gamer Safety Alliance, an MRC affinitiy group, would conduct a panel discussion comprised of top game publishers during which time they discuss the challenges and success they've had with both fraud and payment strategy. The discussion will have value not only for digital merchants but mult-channel as well. As merchants move from traditional selling models to more robust marketing strategies (electronic gift cards, onsite games, virtual currency), many are now just seeing what the gaming community has been working on for years.

Learning Objectives

TBD

Submitters

Michael Mara, Merchant Risk Council

Presenters

Stephen Levy, NCSoft
Title
Presenter Biography

With more than twenty years of product management and operations experience, Stephen Levy has made an indelible impact as a leader with passion and drive for the online space.
As the Global Director of Publishing at NCsoft West his ample contributions span teams from sales and marketing, to manufacturing, to customer service which all produce sustained profitability in the competitive video-games market. Similarly, he leads Business Development in North America and Europe evaluating strategic partnerships, and franchise development resulting in advantageous alliances for NCsoft West, and its four internal development studios. In addition, as the owner of the ecommerce platform he manages all fraud related activities associated with first party sales.
Prior to joining NCsoft, Levy held senior operations and product management positions at Microsoft’s Xbox and Zune groups as well as Amazon.com where he held P&L responsibilities, drove net revenue, and streamlined processes for multiple consumer brands. Before entering the civilian world, Levy was a Flight Engineer for CH-47D Chinook Helicopters in the United States Army Reserves, and served for nearly a decade.
Levy holds a B.A. in Psychology w/ Business Administration Minor from Western Washington University in Bellingham, Washington and is distinguished with his Project Management Professional Certification (PMP).

Co-Presenters

Tokenization: Lessons from an Early Adopter

Wednesday, March 28, 2012 at 1:15 PM–2:00 PM PDT
Target Audience

Developers, development managers, operations staff and managers, business/compliance leaders and others interested in technical, operational, and business aspects of implementing payment tokenization.

Presentation Technical Level
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Advanced - Introduction of complex concepts. For attendees with significant industry experience.
Summary of Topic

In February 2011, AG Interactive converted their main subscription and ecommerce platform to process payments exclusively via tokenization. This presentation will discuss the challenges they faced in both selling the idea and converting the system, issues that were encountered, the effect tokenization has had on their PCI assessment, and lessons learned.

Learning Objectives

Practical lessons from the frontlines:
- How to sell business leadership on the need for tokenization
- The value and costs of tokenization, and how to minimize risks
- How to manage the backlog of existing cardholder data
- Ongoing operational and technology differences post-implementation

Submitters

Scott Weintraub, AG Interactive

Presenters

Scott Weintraub, AG Interactive (a division of American Greetings)
Title

Manager, Payments and eCommerce Services

Presenter Biography

Scott is an architect, leader, and subject matter expert in the online payment systems space. He has 10+ years of practical experience in large-scale, multi-brand e-commerce and online services environments.

Co-Presenters

Creative investigative Techniques-Case Studies from Microsoft Investigations

Wednesday, March 28, 2012 at 2:15 PM–3:00 AM PDT
Target Audience

Fraud Investigators

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Stirling will walk through several investigations he has led during his time at Microsoft emphasizing the need for creative approaches in order to achieve the investigative goal.

Learning Objectives

1. Examples of multiple investigative techniques.
2. You are only limited by your own creativity
3. Sometimes you have to take risks

Submitters

Stirling McBride, Microsoft

Presenters

Stirling McBride, Microsoft Corporation
Title

Fraud Operations Program Manager

Presenter Biography

A 12 year veteran of Microsoft, Stirling McBride currently manages a team of Investigators and Fraud Specialists who work to protect several of Microsoft’s online businesses. Stirling’s background is strongly rooted in law enforcement serving as both a US Border Patrol Agent in San Diego, California and a Deputy US Marshal in Seattle, Washington. Since arriving to Microsoft in 1999, Stirling has worked hand in hand with Law Enforcement all over the world as he investigated Microsoft software pirates, spammers, phishers, bot herders, malicious software authors and fraudsters. Stirling holds a B.S. in Economic Crime Investigations from Syracuse University and is a Certified Fraud Examiner.

Co-Presenters

Travel Industry Roundtable

Wednesday, March 28, 2012 at 2:15 PM–3:00 PM PDT

Submitters

Presenters

Sheryl Pinto, Travelocity
Title

Head of Global Credit Card Risk Management

Presenter Biography

Heads global credit card risk management team at Travelocity.com and lastminute.com. Expertise in building global operations for credit card risk and chargeback management as well as delivering innovative risk management solutions to scale for multiple ecommerce sites and processes.
Thought leader on fraud management best practices within the industry and passionate about finding solutions to complex fraud problems.

Co-Presenters

Using Analytics to Manage Payment Acceptance Costs

Wednesday, March 28, 2012 at 2:15 PM–3:00 PM PDT
Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Advanced - Introduction of complex concepts. For attendees with significant industry experience.
Summary of Topic

Understanding Visa, MasterCard and Discover interchange fees is supremely complex given 400+ published rates.
For most U.S. merchants the cost of accepting card payments seem to be always rising. Interchange (including dues and assessments) represents 80-96% of the total cost of accepting cards but it is the least understood. This session will present a case study and highlight how attendees can:
• Simplify 400+ interchange rates into five categories
• Gain customer insights based on cards used
• Identify internal process improvement opportunities based on interchange qualification
• Identify best practices in specific channels/stores that can be applied throughout the organization based on optimal interchange qualification
Attendees will take away a framework and increased level of confidence in understanding card network interchange fees.

Learning Objectives

This session will present a case study and highlight how attendees can:
• Simplify 400+ interchange rates into five categories
• Gain customer insights based on cards used
• Identify internal process improvement opportunities based on interchange qualification
• Identify best practices in specific channels/stores that can be applied throughout the organization based on optimal interchange qualification

Audience Takeaway

Attendees will take away a framework and increased level of confidence in understanding card network interchange fees.

Submitters

Monika R Llorens, Optimized Payments Consulting

Presenters

Anand Goel, Optimized Payments Consulting
Title

CEO

Presenter Biography

Anand Goel is the CEO and Founder of Optimized Payments Consulting. Mr. Goel managed the pricing and profitability team at Elavon for four years prior to starting his consulting practice in 2007. Mr. Goel holds a Bachelor of Business Administration degree from the University of Texas at Austin and an MBA with honors from F.W. Olin Graduate School of Business from Babson College.

Co-Presenters

Ilya Umansky, Ratner Companies

Event Ticketing – Benefits of Merchant Collaboration

Wednesday, March 28, 2012 at 3:15 PM–4:00 PM PDT
Target Audience

The target audience is those who are interested to learn how industry collaboration can play a key role in controlling fraud. Additionally, this would be suitable for anyone who is interested in the ticketing industry, in general.

Presentation Technical Level

Basic - An introduction to the topic. For attendees new to the industry.

Summary of Topic

: In 2007, ticketing merchants began seeing extremely large fraud losses stemming from eCommerce transactions. In 2008 merchants in the ticketing industry began collaborating on fraud they had been experiencing. Typically competitors are extremely cautious of sharing internal company information; however, fraud is an area where competitors can substantially benefit from sharing trends. Essentially we are competitors in the ticketing space and partners in the fraud space. In this presentation we will provide a history of our industry collaboration, present cases where collaboration was critical in pursuing criminal prosecution and discuss the challenges we experience in the ticketing space.

Learning Objectives

How to get an industry group started, how to develop relationships with law enforcement, how to manage evidence between different merchants and how to address challenges inherent with fraud.

Audience Takeaway

Industry collaboration makes a huge difference in fraud cases. When fraud stands alone, it might be insignificant, but it becomes significant when you look at the entire landscape of transactions.

Submitters

Presenters

Danielle Nagao, Tickets.com
Title
Presenter Biography

Danielle Nagao has been with Tickets.com since 2004 where she began as Corporate Controller. At Tickets.com she currently manages global credit card processing, fraud, compliance and client settlement. Prior to joining Tickets.com, Danielle was a Manager at Deloitte Consulting. At Deloitte, Danielle focused primarily on ERP Implementations for multiple industries, including Life Sciences, Public Sector and High-tech Manufacturing. Danielle's core competencies include financial reporting, accounting operations and strategic business analysis.

Robert Capps, Stub Hub
Title
Presenter Biography

Robert W Capps II – Senior Manager, Trust and Safety – StubHub, Inc.
Robert has over 15 years of experience in the areas of business strategy, operations, online security, payment processing and anti-fraud – holding a variety of roles with retail, banking and e-commerce organizations across the country. He currently heads StubHub's global Managed Marketplace and Trust and Safety operations.

Carolyn Davis, Ticketmaster
Title
Presenter Biography

Carolyn Davis is the Director, Credit Fraud and Loss Prevention at Ticketmaster / Live Nation. She is responsible for the fraud strategy by managing fraud prevention, chargeback management and fraud investigations. She leads fraud projects to implement new processes to increase fraud detection and reduce chargeback exposure across products. After successfully streamlining the fraud and chargeback process in the US, she is now focused on the global fraud strategy. Carolyn began her career in 1996 at Sears National Bank as a Fraud Analyst, where she quickly moved to Fraud Coordinator and eventually Fraud MIS Manager.

Co-Presenters

Global Expansion: Managing Fraud and Payments in International Markets

Wednesday, March 28, 2012 at 3:15 PM–4:00 PM PDT
Target Audience

Any merchant looking to go global whilst remain local.

Presentation Technical Level

Advanced - Introduction of complex concepts. For attendees with significant industry experience.

Summary of Topic

ReD will provide international fraud and payments data, coupled with perspectives from merchants operating in a range of international markets, to illuminate the challenges faced by merchants looking to expand outside the US.

Learning Objectives

Learn from the experiences of merchants across the globe to develop and enhance your own global strategy. Hear about the issues for fraud prevention and payments and the solutions being adopted in a range of different markets around the world.

Audience Takeaway

Attendees will get unique insight from global merchants and learn how they can safely increase their footprint.

Submitters

Mrs Ciara Shepherd, Retail Decisions

Presenters

Kevin Sprake, Retail Decisions
Title

Regional Director, North America

Presenter Biography

Kevin is the Regional Director of North America for ReD. In this role he is the executive responsible for all customer facing activities including risk management, customer service, account management and sales. Kevin has spent over 15 years serving in key executive management and operational positions, in charge of customer account teams and business development initiatives focused on multinational payment processing and fraud prevention services in the telecommunications and ecommerce retail sectors. Kevin has had full accountability for the development, maintenance and growth of the ReD customer base in North America, as well as responsibility for strategic partner relationships across the region. He is a long time supporter of the Merchant Risk Council and was elected to the US Advisory Board in July 2010.

Co-Presenters

Global Payments Strategy – How to Maximize Payment Acceptance in Europe & LATM

Wednesday, March 28, 2012 at 3:15 PM–4:00 PM PDT

Submitters

Presenters

Ryan Maher, Vistaprint
Title
Presenter Biography

Ryan Maher manages Vistaprint’s global payment processing covering 25 local websites that sell to customers in over 130 countries. In addition to managing Vistaprint’s payment processing relationships Ryan is responsible for creating payment strategies for emerging markets and expanding payment options that help Vistaprint maximize their customer acceptance. Prior to joining Vistaprint Ryan spent five years at Chase Paymentech managing large merchant relationships with an emphasis on international processing.

Ryan received his BS in Public Management from Plymouth State University (NH) and his MS in Organizational Leadership from Southern New Hampshire University. Ryan and his wife Christen live in Manchester, NH with their four children; Cameron, Jordyn, Patrick and Gavin.

William Lambson, Trustvesta
Title
Presenter Biography

William Lambson is the Treasurer at Vesta Corporation. Vesta is a global services company handling close to $3 billion a year in payments. Vesta’s primary clients are telecommunications companys and have recently started to provide similar services for digital goods companies. Vesta’s key markets are North America and Europe with recent expansion into LATAM.

William’s primary focus at Vesta is creating and managing cost effective payment structures to enable and maximize revenue. Prior to joining Vesta, William was the Global Payments Director at Adobe and was very active in the MRC, serving on the Board of Directors and as the Treasurer.”

Co-Presenters

The Evolving Role of Identity Management: Capturing the Changing Face of Identity in e-Commerce

Wednesday, March 28, 2012 at 3:15 PM–4:00 PM PDT
Summary of Topic

During this session, attendees will learn about how identity management capabilities are evolving, how consumer expectations are driving identity management processes and the effects of this in the e-commerce world. We will also share emerging trends and best practices for consumer identity management in other industries such as Financial Services and Healthcare to show how these efforts may impact e-commerce. Topics covered will include multi-factor authentication, identity standards, and the emerging identity management roadmap.

Submitters

Jim Rice, LexisNexis

Presenters

Kim Little, LexisNexis Risk Solutions
Title

Director of Market Planning, Identity Management

Presenter Biography

Kimberly Little is responsible for developing the strategy and guiding product management efforts for the Identity Proofing and Access Management product lines – identity verification and knowledge-based authentication, multi-modal biometrics, and other forms of remote consumer authentication.

With over 15 years of experience leading global business strategy, product management, and technical business and process consulting, Kim’s responsibilities have spanned collaborating on international standards, cross-industry best practices and benchmarking to develop best-of-breed solution offerings.

Kim is a graduate of Vanderbilt University, completing a Doctoral program in Policy Development and Program Evaluation, a Masters Degree in Public Policy, and a BS in Human and Organizational Development. She also holds a MBA from Otterbein College.

Co-Presenters

James Rice, LexisNexis

Finding Simplicity in Conversions

Wednesday, March 28, 2012 at 4:15 PM–5:00 PM PDT

Submitters

Mike Mara

Presenters

Sally Baptiste, McAfee, Inc.
Title

Director, Global Credit Card and Electronic Receipts

Presenter Biography

Having spent over 25 years in various aspects of the payments industry, Sally Baptiste brings a touch of authenticity to her endeavors as she ties together regulation and reality. Strategies for ‘payment processing’ segue into ‘projects on a budget’ in a very deliberate yet delicate manner.
Sally is currently the Director of Global Credit Cards and Electronic Receipts at McAfee, the world’s largest dedicated security technology company. Prior to this posting, she managed payments as Senior Business Manager for AT&T for 9 very acquisitive years as the phone companies re-connected from prior divestitures. Both of these posts in the merchant world saw regulation and security shifts as well as extremely active conversion and CNP growth in general.
Sally started out in the card environment in the 1980’s with Lomas Merchant Services, which later became Chase Paymentech Solutions, and has witnessed decades of industry evolution from both the Acquiring and Merchant perspectives.

Co-Presenters

Implementing the Durbin Amendment: How Consumers and Organizations Are Accommodating an Historic Change

Wednesday, March 28, 2012 at 4:15 PM–5:00 PM PDT
Target Audience

All attendees will benefit from understanding the effect of the Durbin Amendment and potential future regulation.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Following more than a year of heated industry debate, the Durbin Amendment – which affects debit card positioning and significantly limits interchange – was implemented in October 2011. This timely session incorporates recent survey responses from thousands of consumers, as well as feedback from merchants, affected financial institutions, and from merchant acquirers documenting the initial outcomes and responses to Durbin. Learn how stakeholders are responding and what to expect as the Durbin Amendment and future regulation continue to force market change.

Learning Objectives

Attendees will learn:
• How the Durbin Amendment fits contextually with other regulations and what future changes it may influence.
• How consumers perceive and are reacting to environmental changes driven by the Durbin Amendment.
• Whether merchants, financial institutions, acquirers and other stakeholders are benefiting from the Durbin Amendment and, if so, how.

Submitters

Ms Beth Robertson, CCM, Javelin Strategy & Research

Presenters

Ms Beth Robertson, CCM, Javelin Strategy & Research
Title

Director of Payments Research

Presenter Biography

Beth Robertson, CCM is the Director of Payments Research at Javelin Strategy & Research. With nearly 30 years of experience in financial services, she has expertise in payments networks, services and strategies, including ACH, card, check and alternative payment systems. Beth serves on the Steering Committee of NACHA’s Council for Electronic Billing and Payment, and she is a permanently Certified Cash Manager. She has delivered numerous executive presentations for clients and at major financial services industry conferences and has been quoted in a wide array of news services and journals.

Co-Presenters

Statistical Modeling in Fraud Fighting

Wednesday, March 28, 2012 at 4:15 PM–5:00 PM PDT
Target Audience

Fraud risk professionals

Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Summary of Topic

TBD fighting fraud presentation

Learning Objectives

- Educate attendees
- Illustrate trends
- Enable action as an industry to preventing and reducing fraud

Audience Takeaway

- Actions to prevent and reduce fraud

Submitters

Kristin Hoyne Gomes, Accertify

Presenters

Kristin Hoyne Gomes, Accertify
Title

SVP Account Management

Presenter Biography

Kristin has over 15 years experience in risk management and payments. In her current role, she is responsible for enabling Accertify Client success. Prior to Accertify, Kristin led American Express’ Fraud Risk Consulting team responsible for working with Merchants to help reduce and prevent fraud while enabling business growth. Kristin also served as Assistant Vice President in Deposit Risk Analysis for Wells Fargo and as Manager of Risk Management for Sprint.

Kristin is a Merchant Risk Council Americas Advisory Board Member, Co-chair of the MRC Education Committee and serves on the Electronic Transaction Association Risk Management committee. She has a Bachelors degree in business from University of Kansas and a Masters degree in Statistics from California State University.

Robert Capps, Stub Hub
Title

Senior Manager, Trust and Safety

Presenter Biography

Robert has over 15 years of experience in the areas of business strategy, operations, online security, payment processing and anti-fraud – holding a variety of roles with retail, banking and e-commerce organizations across the country. He currently heads StubHub's global Managed Marketplace and Trust and Safety operations.

Co-Presenters

Time to ‘Like’ Payments? – Trends and Developments in Social Network Payments and Virtual Currencies

Wednesday, March 28, 2012 at 4:15 PM–5:00 PM PDT
Target Audience

Director of Payments, Business Development, Product Managers

Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Summary of Topic

Linden Dollars. World of Warcraft Gold. Facebook Credits. These names represent just some of the virtual currencies that exist today, though not all consumers would recognize them, let alone understand how to acquire them. The world of virtual currencies, and the even more nascent universe of social network payments, is one that is tantalizing to many merchants, appearing to offer the potential of new customer bases and the power of social networks. Further, they are a potential threat to the entrenched payment brands such as MasterCard and Visa.

Nevertheless, most of these currencies are still relatively young, and important questions remain as to how they will develop and what they will grow into. For instance, many early virtual currencies existed only within a particular game or a particular virtual world. Now, social networks and gaming systems are deploying their own currencies to leverage the power of their platform. What is the next evolution of these currencies?

This presentation will share the latest trends and developments in social network payments and virtual currencies, including profiles of some of the most popular virtual currencies, some of the latest news, and perspectives on where these currencies may be headed. Additionally, we will discuss some of the issues that merchants will need to consider prior to accepting these virtual currencies, including cost of payment and fraud risk. Finally, we will also discuss potential competitive reactions to these emerging payment methods.

Learning Objectives

1. Understanding of what a virtual currency is.
2. Perspective on the universe of virtual currencies and social network payments.
3. Issues to consider when deciding whether to accept virtual currencies.

Audience Takeaway

1. Historical perspective on the evolution of virtual currencies.
2. Overview of current state of virtual currencies and social network payments, and how merchants might consider responding to this trend.
3. Perspective on where virtual currencies and social network payments may head in the future.
4. Understanding of the questions businesses should ask when considering whether to accept social payments.

Submitters

David Whitelaw, Edgar, Dunn & Co.

Presenters

David Whitelaw, Edgar, Dunn & Co.
Title

Manager

Presenter Biography

David Whitelaw is a Manager in Edgar, Dunn & Company’s San Francisco office. David has provided strategic guidance to clients throughout the payments value chain, including card brands, issuers, and merchants. He has worked with geographically diverse clients, including those based in the US, Canada, Europe, Asia, and Latin America, affording him a global perspective on unique characteristics of disparate payment markets. His experience spans multiple payment types and product areas, including credit cards, debit cards, prepaid cards, online payments, and mobile and other emerging payments, and covers critical issues in payments, including EMV deployment and merchants' payments acceptance challenges.

Co-Presenters

Extending into International Markets: A Data-Driven Approach

Thursday, March 29, 2012 at 9:00 AM–9:45 AM PDT
Target Audience

The goal of this session is to provide a market-driven methodology for evaluating International markets based on a merchant’s product mix, consumer demographics and risk profile. Any Payment Professional who is involved with planning global expansion of their eCommerce (card-not-present) business will be able to take-away a quantitative approach which can be used to guide country-by-country prioritization and execution.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Card-not-Present merchants are continually evaluating strategies for extending their eCommerce business internationally. Yet, even the most sophisticated companies are challenged to find reliable market analysis to guide their decision-making.

This session will present a market-driven approach to planning and prioritizing new market expansion based on cross-referenced, quantitative data for online consumer purchase behavior. In addition, data will be presented identifying the key payment methods in each country. This session will cover all regions with an emphasis on the European Union (EU).
The presentation will begin with a concise review of online commerce statistics for each region globally. This will enable attendees to gauge the potential revenue growth opportunity presented in markets outside North America. From there, the session will focus on the EU region and present more detailed data on key European markets. Case studies will be presented providing examples of how other eCommerce companies have practically put to use a data-driven model for prioritizing and executing market-by-market expansion based on their product mix, consumer demographics and the Company’s risk management objectives.

The session will wrap-up with some practical approaches for entering new markets as well as testing and analyzing results before committing to a full launch. In this, the presenter will share a short list of key readiness factors that attendees should assess before launching into a new online market.

Learning Objectives

- Attendees will take away a proven methodology for evaluating International markets based on cross-referenced data sources. Using the tools presented, attendees will be able to more fully evaluate new markets and present data supporting their recommendations. - The session will also provide insight into the most important payment methods by country and explain how they work for the local consumer as well as the merchant.

- The presentation will review fraud challenges presented when entering new markets as well as specific requirements for processing payments outside the US including evolving 3D Secure mandates in certain countries.

- The presenter will share tips for evaluating readiness to enter new markets as well as practical steps for launching online in new markets. This will include lower cost methods for testing new online markets before committing to a full launch.

Audience Takeaway

Payment professionals can present data-driven recommendations to management as well as concrete steps for getting started.

Submitters

Domonique James, First Data Corporation

Presenters

Phil Levy, First Data Corporation
Title

Vice President, eCommerce Solutions

Presenter Biography

Phil Levy is Vice President, Product Management in the eCommerce Solutions group at First Data Corporation. In this role, Phil is responsible for product strategy and commercialization of First Data’s suite of Card-not-Present payment processing solutions.
Prior to joining First Data, Phil led the eCommerce businesses for Fidelity National Information Services (FIS) and eFunds/ClearCommerce. In these positions, Phil was responsible for delivery of payment and risk management solutions to the Retail and Government markets.
Phil has more than 20 years experience in the payments industry and related technology businesses

Co-Presenters

Extreme Fraud Fighting on the Edge with GoPro Sports Cameras

Thursday, March 29, 2012 at 9:00 AM–9:45 AM PDT
Target Audience

Business owners, analysts and website engineers responsible for fighting online fraud.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

GoPro helps people capture and share their active lives from extreme sports to common activities like surfing, skiing and mountain bike riding. Unfortunately their rapid growth in popularity and global market has also caught the eye of fraudsters due to their high resale value. Join with GoPro's CTO Stephen Baumer about the unique and common fraud challenges they face, best practices they have learnt along the way and the technology they use. Peter Liske will also provide an overview of how new and existing customers can take advantage of newly released features to better attack fraud.

Learning Objectives

Learn about the types of fraud an online retailer of high-end electronics was experiencing, and how they are fighting it.
Gain understanding of how one cybercrime prevention vendor identifies suspicious online visitors and stops fraud in real time.

Audience Takeaway

Anonymous website visitors leave a digital trail on your site that -- if collected and analyzed correctly — can indicate anomalous behavior often correlated with fraud.

Submitters

Dan Rampe, ThreatMetrix

Presenters

Stephen Baumer, GoPro
Title

CTO

Presenter Biography

Stephen Baumer manages the strategic technology investments, infrastructure and e-commerce platforms of GoPro, the world’s leading activity image capture company. Stephen’s experience prior to GoPro includes both a background in technology and marketing. Starting at Apple Computer after graduating from Georgetown University with a degree in Linguistics, Stephen went on to build technology and business development strategies for growing companies in the SaaS marketplace including Pandora Networks and OpSource UK.

Peter Liske, Threatmetrix
Title

VP Product Management

Presenter Biography

Peter Liske is vice president of product management at ThreatMetrix. He first served in a customer service role, helping dozens of customers to implement the ThreatMetrix solution. Liske currently collaborates with customers, partners, and product engineering to continually enhance the ThreatMetrix Cloud-Based Fraud Prevention Platform. He has held services and product management roles with several data security and information technology companies and has a CISSP certification.

Co-Presenters

How Device Associations Helped Law Enforcement Tie Multiple ID Theft Cases Together

Thursday, March 29, 2012 at 9:00 AM–9:45 AM PDT
Target Audience

Mid-sized and Large online merchants and credit issuers
VPs and Directors of eCommerce initiatives, Fraud Analysts

Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Summary of Topic

A case that began with one identity theft victim and $5,000 of losses ended up with multiple victims and hundreds of thousands of dollars in fraud losses – after iovation’s device reputation technology tied together what otherwise looked like unconnected cases – across multiple counties, victims and retailers.

In January 2011, a Northwest detective was assigned a case on a resident who received mail that multiple retail accounts were opened in his name, and little did he know that $5,000 had already been charged to those accounts.

Meanwhile, a criminal and his girlfriend, working out of a hotel room, had been commissioning runners to steal mail out of residential mailboxes. They bought public records and ran credit checks and when they had enough personal information, applied for credit at major retailers. When accepted, they printed soft copies of the credit approval and manufactured fake state IDs right out of their hotel room. The IDs produced contained the victim’s real address, but the criminal’s photo. Having the credit approval printout and fake ID allowed them to make purchases at multiple major retail stores, that they would later sell for cash or advertise on Craigslist to fund further illegal activities.

Hear how law enforcement used the power of device reputation to bring these criminals to justice, all while saving time, effort and resources and greatly broadening the scope of the existing case.

Learning Objectives

* How efficiently sharing information between retailers, credit issuers and law enforcement connects unrelated cases together and solves them much faster.
* How connecting different types of data can be important to thwarting criminals. Linking the device used online with transaction details and in-store video footage helps law enforcement tie it all together.
* How to work effectively with local law enforcement to track down online fraudsters.
* How cross-subscriber visibility helps your fraud prevention vendor help you help law enforcement
* How recognition-in-depth maximizes transaction visibility and facilitates law enforcement forensics
* How vendor understanding of law enforcement needs aids investigations

Audience Takeaway

What might look like a single fraud case at first, may very well be tied to a much bigger web of fraudulent activities across multiple industries and geographies. These can be uncovered leveraging the power of device reputation.

Submitters

Mrs. Connie J Gougler, iovation Inc.

Presenters

Robert Siciliano, IDTheftSecurity.com
Title

CEO

Presenter Biography

ROBERT SICILIANO, CEO of IDTheftSecurity.com is fiercely committed to informing, educating, and empowering Americans so they can be protected from violence and crime in the physical and virtual worlds. His “tell it like it is” style is sought after by major media outlets, executives in the C-Suite of leading corporations, meeting planners, and community leaders to get the straight talk they need to stay safe in a world in which physical and virtual crime is commonplace. Siciliano is accessible, real, professional, and ready to weigh in and comment at a moment’s notice on breaking news.

Detective Adam Haas, Kirkland Police Department
Title

Detective

Presenter Biography

A true native to the Northwest, Detective Adam Haas was not only born and raised in the Greater Seattle area, but he has also spent most of his professional career serving the community he was raised in.
Haas studied Sociology and Society and Justice at the University of Washington. Shortly after receiving his degree in 2001, Haas was hired by the Kirkland Police Department where he worked uniformed patrol for the following 6 years. In 2008, he was selected to join the Pro Act Unit where he worked plain-clothes property and narcotics crimes for two years.
After his tenure in the Pro Act Unit, he was appointed Detective in the Investigations Unit where he currently works alongside 12 other detectives. Detective Adam Haas continues to serve and protect his community.

Co-Presenters

Jon Karl, iovation Inc.

Preventing payment chain vulnerabilities with tokenization: 1 Year Later (Facilitated Panel)

Thursday, March 29, 2012 at 9:00 AM–9:45 AM PDT
Target Audience

The ideal audience member for this presentation is any merchant organization professional interested in understanding the current state of tokenization as a data loss prevention technology, as well as professionals from those organizations that already have begun a process of implementing tokenization.

Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Advanced - Introduction of complex concepts. For attendees with significant industry experience.
Summary of Topic

Last year, this panel discussion, including merchant- and industry-pulse observers from Internet Retailer and Digital Transactions, looked at the interest in and value of still-evolving tokenization technologies and approaches. The far-ranging conversation focused on understanding the role of tokenization in reducing the scope of PCI compliance, eliminating certain insurance costs and protecting merchant brands in the event of data loss. Fast-forward one year. Recently-issued PCI Council guidelines on tokenization and continued merchant concerns about the portability and usability of tokenized card data still stands in the way of broader understanding and adoption, even in the face of historic events such as the card data breach at Sony. This panel will look at the ongoing data security imperative in the context of tokenization. The panel will also serve the merchant’s interest in framing and promoting the broader conversations still needed to make tokenization more approachable and relevant as payment processing infrastructures become more complicated and more customer-data dependent.

Learning Objectives

Principal learning objectives for audience members include:
- Current interpretations on PCI Council guidelines
- Understanding operational and customer-data interdependencies of an implemented solution
- What you should know about the portability and usability of tokenized card data

Audience Takeaway

The audience should takeaway a clear understanding of the current state of tokenization as a data loss prevention technology, particularly as it relates to PCI relevance and tokenized data portability. In addition, this session should be considered interactive to the extent that merchants should inform panelists of the ongoing challenges and obstacles associated with the implementation of tokenization solutions and other data loss prevention technologies.

Submitters

Presenters

Jason Pavona, Litle & Company
Title

Executive Vice President, Sales & Marketing

Presenter Biography

Jason brings more than 15 years of product development, direct marketing, sales and entrepreneurial experience to Litle & Co. Jason leads Litle’s Sales & Marketing strategy, which includes business development and sales; product strategy and development; brand awareness marketing and communications; and, partner communities and initiatives. Before joining Litle, Jason served as a Partner of Enflect, LLC which developed several product companies in the payment, loyalty, financial services and software industries. Prior to Enflect, Jason developed Wallaware, Inc., a wireless router company, where he drove the company’s first U.S and International sales, raised several rounds of private equity capital and opened operations in the US and internationally. Before Wallaware, Jason was Director of Wireless and Personalization at Terra Lycos, a top three visited Internet destination. At Terra Lycos he created some of the first wireless portal solutions under the brand Lycos Anywhere® in 30 countries. He also managed Terra Lycos’s Network Personalization products, including MyLycos®, the award winning personalization destination with 20 million registered users. Before Terra Lycos, Jason was instrumental in building INPHO, Inc. (including domania.com, which today is part of IAC’s LendingTree) a pioneer in the Internet real estate space. Jason is a board member of the (MRC) Americas Advisory Board for the Merchant Risk Council. Jason received a BS in Finance and Entrepreneurial Studies from Babson College.

Walter Conway, 403 Labs
Title
Presenter Biography

Walt Conway is a Payment Card Industry Qualified Security Assessor (QSA) and e-commerce consultant with 403 Labs applying his 30-years of electronic payments and technology management experience to helping organizations plan, implement, and manage their credit card and e-commerce programs including achieving PCI compliance. Walt spent 11years with Visa, and two years as president of an Internet-based payment processor. He works with a wide range of merchants, payment gateways, and software providers, helping them plan, implement, and manage their payment card and e-commerce programs, including achieving PCI DSS compliance.
In addition to his QSA duties, Walt is PCI columnist for StorefrontBacktalk.com, focusing on issues facing retailers, and he conducts PCI training workshops nationwide. He is a frequent speaker on PCI DSS, security, and ecommerce topics at professional conferences and webinars. Walt writes extensively on PCI compliance for industry and trade publications, most recently completing the Tokenization Buyer’s Guide to help retailers and payment processors implement tokenization to reduce their PCI scope.
Walt and his wife live in San Francisco.

Co-Presenters

Fraud Engineering: Implementing a Cross-Functional Risk Strategy

Thursday, March 29, 2012 at 10:00 AM–10:45 AM PDT
Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Fraud is an interdisciplinary attack that targets multiple points in the organization. Fraud Engineering counters this by taking the best practices from engineering, operations and quality assurance to fright fraud and reduce risk. By using these techniques one gains visibility into attacks, and using these insights to build systems to reduce fraud. Additionally this presentation covers how to leverage various groups in the organization to more effectively detect and respond to attacks. This is a technical talk providing samples of these systems in action.

Learning Objectives

An overview of risk, where it comes from, and an effective organization structure to combat it
Techniques to move from a reactive to a proaction approach in handling threats
Best practices from engineering, operations and qa as applied to fraud prevention

Submitters

Nick Galbreath, Etsy

Presenters

Nick Galbreath, Etsy
Title

Director of Engineering

Presenter Biography

Nick Galbreath is a director of engineering at Etsy, overseeing groups handling fraud, security, authentication and internal tools. Over the last 18 years, Nick has held leadership positions in number of social and e-commerce companies, including Right Media, UPromise, Friendster, and Open Market, and has consulted for many more. He is the author "Cryptography for Internet and Database Applications" (Wiley), and was awarded a number of patents in the area of social networking. He holds a master's degree in mathematics from Boston University.

Co-Presenters

Fundamentals of Device Management

Thursday, March 29, 2012 at 10:00 AM–10:45 AM PDT
Presentation Technical Level

Basic - An introduction to the topic. For attendees new to the industry.

Summary of Topic

An introduction based course outlining and comparing common, but overlapping technology tools such as geolocation, cookies, proxy detection, proxy piercing, device identification and tagging. Learn how these tools are best used, how they overlap and what you can expect to achieve with them.

Learning Objectives

1. Be able to define and describe common device management technologies; geolocation, proxy detection, proxy piercing, GEO-locating (GPS), device identification, cookies, tagging.
2. Discuss how these device management technologies overlap, extend and otherwise complete a picture of consumer.
3. Discuss key limitations of these technologies.

Submitters

Mr. David Montague, The Fraud Practice LLC

Presenters

Mr. David Montague, The Fraud Practice LLC
Title

President, Executive Consultant

Presenter Biography

Mr. Montague is the founder and President of The Fraud Practice. He has spent the last fourteen years working in the eCommerce space. Prior to founding The Fraud Practice he held positions as the Director of Risk Solutions at CyberSource Inc and National Principal at IBM Global Services. Mr. Montague is a published author, having written "Fraud Prevention Techniques For Credit Card Fraud" (published 2004) and “Essentials of Online Payment Security and Fraud Prevention (published 2010), and speaks regularly about eCommerce fraud at such events as the MRC, DRF, NRF, Retail Week, CyberSABOTOGE and Microsoft TechEd.

Co-Presenters

New Global Data and Persepectives on Alternative Payments

Thursday, March 29, 2012 at 10:00 AM–10:45 AM PDT
Target Audience

Intended for a range of stakeholders from merchants who are interested in alternative payments - from the CEO to payments professional professionals. Risk professionals may also be interested to understanding some of the risk mitigation experiences of other MRC members.

Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Summary of Topic

Two-part session split between
- review of new data on scale and distribution of alternative payments - split by geography/sector with trend analysis
- on-stage Q&A with 5 merchants
Data:
- Split of alternatives payments by type and market
- Split of alternatives by sector
- Growth trends & comparisons
- Relative size of individual alternatives
- The most important alternatives in 15 major markets
Q&A:
- Which forms of alternative payment they accept and why
- The good, the bad and the ugly experiences merchants have had
- How to benchmark different forms of payment
- Refunds and payouts with alternatives
- The best ways to mitigate fraud in different categories of alternative payment
- Views on future trends in alternatives globally

Learning Objectives

- Inside knowledge of a range of payment options
- Risk issues related to specific types and categories of type (eg Realtime bank transfer, direct debit)
- Future trends in alternatives
- Benchmarking techniques and experience
- Experience of making payouts & refunds with alternatives

Audience Takeaway

White Paper On Alternative Payment Methods Including Full Global Data

Submitters

Mr Gabriel Hopkins, WorldPay
Ms Ellen Morgan, WorldPay

Presenters

Mr Gabriel Hopkins, WorldPay
Title
Presenter Biography

Gabriel Hopkins is VP Product & Proposition at WorldPay, Europe’s leading e-Commerce payments provider.
Gabriel joined WorldPay in 2005 and is currently responsible for the management and development of the company’s range of online payment services, which includes: payment processing, acquiring and risk management services.
His previous experience includes a mixture of technical and commercial roles in eCommerce and payments. In 1995, he worked on the development of one of the first internet portals - The London Mall. Later, at earthport.com, he was the chief architect of an early eWallet solution, which was launched by Egg bank in 2000. He is an active member of the MRC and serves on the Payments Committee.

Cyndi Hoddinott, Expedia
Title
Presenter Biography

Cyndi Hoddinott is Director of Global Payment Operations at Expedia, Inc. She has been employed with Expedia for 9 years and has managed Risk Operational Excellence and Chargeback Operations, and currently manages Global Payment Operations and Relationship Management for all Expedia, Inc. brands. Prior to joining Expedia, she was in Credit and Collections Management and Distributor Chargeback Management. She is the current co-Chair of the MRC Payments Committee.

Jeffrey Thaler, BillTech
Title

Global Head Business Development

Presenter Biography

Jeffrey Thaler is a seasoned business development executive with 11 years of experience in the payments industry. He began his career as an attorney representing entertainment companies such as Fox, Warner Brothers and Time Warner Cable. Today he heads BillTech's business development efforts, providing legal advice as the company's senior in-house counsel, collaborating as a member of the company's senior executive team, working on product development and drafting strategic business agreements.

Nathan Blecharczyk, Airbnb
Title

CTO and Co-Founder

Presenter Biography

Nathan is the technical architect behind Airbnb. A pragmatist who translates vision and design into tangible product through fast iterations, Nathan uses data to identify and pursue high-growth opportunities. Under his leadership, the engineering team has developed a robust, secure marketplace which now facilitates a massive amount of commerce each day.
Nathan got an early start in business and technology when he founded an online marketing company while still in high school. Since then he has worked as a program manager at Microsoft, engineer at OPNET Technologies, and lead developer at Batiq. Nathan graduated with a degree in Computer Science from Harvard University.

Paul Kuykendall, Ticketmaster/Live Nation
Title
Presenter Biography

Paul is a Senior Director at Ticketmaster and has been a technical payment professional for nearly 20 years. Joining the company as a Senior Software Engineer, he expanded and led a highly effective team within the organization, architecting the payment platform and data security initiatives. Ticketmaster’s global operations span 20 countries, processing payment transactions for over 3000 independent merchants and venues. Paul is responsible for payment technology across all of Ticketmaster’s sales channels; eCommerce, phones, retails outlets, venue box offices and mobile platforms. He has been an active member in the MRC and currently serves on the Payments Committee.

Co-Presenters

The new frontier...ID Checks & Screening for New Geographies

Thursday, March 29, 2012 at 10:00 AM–10:45 AM PDT
Target Audience

This presentation will be for online retailers who wish to connect their front end fraud screening with a more robust identity verification process, or who are currently moving into markets outside US borders, or whose next step is to target new global markets.

Summary of Topic

Hear from leading fashion retailer, American Eagle, who will discuss their journey into global markets with the help of online ID verification. American Eagle will demonstrate how effective risk modelling and ID and address verification have enabled them to transact confidently with the UK and Europe.

The co-hosted presentation with 192business will cover improved risk management, ID authentication, referral queue performance, and fraud screening when dealing with customers both inside and outside US borders. The benefits of improved operational efficiencies and the increased sales seen as a result of connecting the front-end fraud screening with better tools for verification of identity will also be discussed.

Learning Objectives

Learn about:
- Using ID checks to transact confidently in the UK, Europe and other global markets
- Effective management of transactions in the review queue and improving operational efficiencies
- Using online authentication to identify legitimate customers and increase sales
- Improving the ROI through convergence of the front end process with identity verification services

Audience Takeaway

The session will demonstrate that although fraudsters continually adapt their tactics, retailers can do more to screen for fraud and verify identities, enabling them to confidently move into new markets and increase revenues with reduced risk from fraud.

Submitters

Presenters

David Walker, 192business
Title

Agent for US and Canada

Presenter Biography

David Walker is an experienced payments and fraud executive with a specialty in business development for Global merchants seeking improved results in Fraud screening and Identity verification solutions. Primary focus is on risk management, fraud and reducing costs in the CardNotPresent industry, International Money transfer and the Pre-paid card market.

David has been involved in a number of payment and fraud initiatives over the past 17 years with extensive experience in Fraud Management for the CardNotPresent industry. With his current position with 192Business, David is the US/Canadian Agent for 192Business, with a primary role to offer Strategic Consulting, including formulating plans for fraud prevention and risk mitigation through the Global services of the market leader in global identity verification solutions. With the personal knowledge and extensive experience gained in the fraud and risk management industries, it is his strong belief that the need to add value and improved efficiencies through Identity verification and validation has never been greater for the CNP and card issuing industries.

Candace Mitchell, American Eagle
Title

Sr Manager-Customer Relations

Presenter Biography

Candace Mitchell has been with American Eagle Outfitters for 12+ years with focus and responsibility for corporate customer relations. In 2004, the role was expanded to include American Eagle’s ecommerce online customer experience. As the Senior Manager for Corporate Customer relations, Candace is responsible for the management of corporate and store customer relations, call center customer experience and fraud process management.

Co-Presenters

Beyond Fraud: Connecting the organizational dots

Thursday, March 29, 2012 at 11:00 AM–11:45 AM PDT
Target Audience

This session will be directed to Fraud and Payment Managers who work in organizations where payment and fraud responsibilities are spread across several departments. Topics will cover the different approaches and techniques used by other successful managers to improve efficicencies and communication, resulting in lower fraud losses and lower payment costs. Building working relationships with both internal stakeholders as well as external vendors, processors and partners will be covered. Learn how to enlist key contributors such as developers, program managers, finance and operations into a unified team to propel your projects ahead. Attendees will also take-away ideas that will help them shape their management careers in payment and fraud.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

As the ecommerce segment of retail continues to grow at double digit rates, fraud and payment managers are seeing an increasing demand on their resources. At the same time there is an increase in the need to connect with other groups and departments within the company and outside the company, as the market opportunities continue to develop. This session will explore the trends and successful techniques used by fraud and payment managers along with other payment professionals to “connect” the dots across the key touch points affecting ecommerce payments. Learn the benefits of creating and supporting a cross functional teams within your organization including finance, treasury, operations, IT development and revenue assurance. This session will combine a presentation of key objectives and techniques followed by a panel discussion and Q&A with experienced fraud and payment professionals with real world examples. You will take away important information that can be shared within your organization, including an evaluation process that will help you build a solid roadmap and plan for the future.

Learning Objectives

1.ID the key stakeholders within the organization and how they relate to vendors, loss prevention and payments
2. Take away information to created and customize a unique action plan for your organization, to help evaluate the current situation, identify strengths and weaknesses as well as problem areas to address immediatly
3. Gain an understanding of each stakeholders challenges, objectives and controls along with how to collaboratively maximise resources in the most efficient way to successfully reach beyond your goals

Audience Takeaway

Attendees with take away a step by step approach they can share with their team and organization. Important tips that can be used to evaluate the current situation and how to build an action plan to address the assessed needs. All of this culminating in reducing cost, redcuing fraud losses and providing the organization with a more agile and adaptable fraud and payment strategy.

Submitters

Michael Pierce

Presenters

Michael Pierce, Sony Network Entertainment
Title

Manager, Fraud and Risk Strategy

Presenter Biography

Michael Pierce is an industry veteran and subject matter expert in the payments and fraud arena. Currently he heads the fraud and risk strategy department for Sony Network Entertainment, a global online entertainment hub servicing millions of customers.
His talents are lent to this division of Sony which provides downloadable games, movies, music and other digital content to PC’s and proprietary devices such as PlayStation, mobile phones, and portable gaming systems.
Prior to joining Sony, Michael has held executive positions with Blizzard Entertainment , MySpace, Fox Entertainment Group, Bank of America and has assisted in cases with the F.B.I and Navy J.A.G.
In short…he solves problems.

Jay DeWitt, Glenbrook
Title
Presenter Biography
Stephen Levy, NCSoft
Title
Presenter Biography
Steve Bauer, Vortex Payments
Title
Presenter Biography

Steve Bauer is an independent consultant at Vortex Payments that has applied 17 years of merchant, B2B, and Issuer payments experience to provide Business and IT services for six (6) years to Global Software Manufacturer, Online Retailer, and Coffee companies, a National mobile location-based services company, and a local yoga studio. Steve has designed and delivered online, mobile, subscription, incentive, instant debit and gift card issuance, and payment and fraud solutions from concept through production in senior and individual contributor roles of director, program, product, process, project, developer, tester, and implementation manager at Washington Mutual, Clearwire, Motorola/4thpass, Amazon.com, eCharge, AOL/Sprynet, Steve is a certified PMP and continues to be a Licensed Professional Engineer in applied Mechanical Engineering where he spent 10 years working in product development delivering solutions from concept through production in Commercial Aerospace, Space, and Interplanetary programs at Boeing.

Co-Presenters

China E-Payments: How to Take Advantage of the Growing B2C E-Commerce Market in China

Thursday, March 29, 2012 at 11:00 AM–11:45 AM PDT
Target Audience

E-merchants in all industry verticals, Global Brands, Payment professionals, International e-commerce managers

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

E-commerce in China is experiencing rapid increases in consumer adoption and business investment. As online consumers in China become more familiar with online shopping sites, they are also more confident in conducting transactions online.
And the potential is immense: eMarketer estimates 530 million Chinese are online—a number larger than the total population of the US.

Digital River's international payments expert will share knowledge and experience in this educational session. The session will also include specific merchant experiences around localizing the payments user experience and how business challenges have been addressed when entering the Chinese market.

Learning Objectives

• China E-commerce today – a snapshot overview of the market size, the most important players, and key success factors.
• Chinese online shoppers – who they are and how to reach them.
• E-payments in China – an overview of available payment options, key payment considerations, and best practice experiences.
• How merchants have faced the challenges of entering the market and how they overcame them.

Audience Takeaway

1. An overview of the Chinese e-commerce and e-payments landscape.
2. An understanding of the opportunities and challenges facing merchants who wish to enter this growing e-commerce market.
3. Experiences from a merchant who has entered the Chinese e-commerce market

Submitters

Jenny Andreasson, Digital River World Payments

Presenters

Albert Drouart, Digital River World Payments
Title

Global Product & Business Development

Presenter Biography

Albert Drouart heads up the Digital River Product Management team for Emerging Market Payment solutions. Currently he’s managing Digital River's solutions in Brazil, Russia, India and China among others. Since joining the company in 2006, Albert has lead efforts to extend Digital River’s global reach in payments and to build comprehensive e-commerce solutions for Digital River clients. Prior to joining Digital River, Albert held various development and management positions at Merrill Lynch and various start-up companies working in global transaction, trading/analytics and financial services.

Co-Presenters

Crafting a PCI Solution: A Case Study in System Architecture with Etsy

Thursday, March 29, 2012 at 11:00 AM–11:45 AM PDT
Presentation Technical Level

Advanced - Introduction of complex concepts. For attendees with significant industry experience.

Summary of Topic

Etsy reached a point in volume where PCI was mandated by their financial institution. Etsy's existing infrastructure and open culture prevented bolting on a traditional PCI solution. With a new architecture developed by a team including member from business, engineering and operations, a payment system went from concept to passing audit in less than 3 months. This talk will discuss the systems architecture as well as the technical and business challenges it imposed at Etsy.

Learning Objectives

* Technical discussion on the novel system architecture
* Managing PCI scope and preparing for a formal assessment
* Handling organizational challenges in engineering and business groups

Submitters

Nick Galbreath, Etsy

Presenters

Isaac Oates, Etsy, Inc.
Title
Presenter Biography

Isaac Oates is the director of payments at Etsy. He is responsible for all business and product development related to payments risk management and processing. Isaac came to Etsy through the acquisition of Adtuitive, a contextual advertising startup which he co-founded. He has held product management and software development positions at Amazon.com, Yahoo!, NCSA and Lucent Technologies. In addition, he served as an intelligence officer in the National Guard and Army Reserve. Isaac holds an MBA from Cornell University and a BS in Computer Science from the University of Illinois at Urbana-Champaign.

Co-Presenters

Help! I Need a New Payment Processor

Thursday, March 29, 2012 at 11:00 AM–11:45 AM PDT
Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

Creating a Request For Proposal (RFP) is a daunting task. In the payments world a well crafted RFP can ensure that the project is successful, completed on time and on budget. A poorly written one can delay the project, increase costs and cause a multitude of problems during and for years after the project completion. This session will be presented by a MRC merchant member experienced in writing RFP's and a vendor with 6+ years of experience responding to RFP's and a consultant who assists merchants duringthe RFP process. The purpose of this session is to educate members on how to write an RFP that identifies their needs and expectations, what to expect from the vendor and how to select the winning RFP. The vendor will present information from the vendor perspective that will assist vendors in responding to RFPs and help merchants to produce excellent RFPs.

Learning Objectives

Prepare RFP to answer the questions Why, Who, What, How and When
1. WHY (why are you doing the RFP/High level information of your wants/needs): Statement of purpose, scope, high-level expectations
2. WHO (Who you are): Background Information
3. What (Identify the details of what you want): Detailed scope of the project, identify the needs/the problem to be solved. Set the expectations of the vendor
4. HOW (How will the vendors meet the criteria): Identify the expectations
5. WHEN (List the due dates of the deliverables): time line of deliverables
6. WINNING BID: How to select the winning vendor
7. Vendor perspective: How to respond to the RFP
This session will provide information that will answer these questions and more to assist attendees in writing a successful RFP and for vendors responding to an RFP.

Audience Takeaway

The keys to a successful RFP from both the merchant and vendor perspective
Understand the value of a well written RFP
How to establish the structure of an effective RFP
Answer the questions of Who, What, When, Why and How
Know what to expect during the RFP process
This session will help merchants learn how to select the best vendor
Vendors will have guidelines for responding to RFPs that are successful business propositions and a win-win solution for the merchant and the vendor.

Submitters

Jill Thomsen, Corbis

Presenters

Rich Brower, Digital River
Title

VP Global Sales

Presenter Biography

Rich is responsible for Digital River World Payment's commercial activities on a global basis. Digital River World Payments is a leading payment service provider to merchant’s like Expedia, PayPal, VistaPrint, MaryKay and other leading, internationally oriented eCommerce merchants.
Rich has been involved as a merchant in eCommerce since 1997 and responding to RFP’s as a vendor for 6+ years. Rich’s expertise includes in depth understanding of the payment methods that dominate the global marketplace, the financial institutions that sit behind them, sharing merchant best practices on integrating payment methods into checkout & fulfillment processes, providing consumer insights from multiple markets, and the operations required to support merchants on an ongoing basis.

Jill Thomsen, Corbis
Title
Presenter Biography

Jill Thomsen is responsible for the global online payments operations at Corbis, located in Seattle, Washington. Corbis provides digital images, for advertising and publishing on the Internet, magazines, newspapers, books, television and films. For the past 7 + years, Jill has been responsible for expanding the global credit card operations to over 17 countries. Jill is also responsible for adding payment methods, handling chargebacks, fraud prevention, PCI DSS compliance and other regulatory requirements and leads training classes. Jill was on the MRC Chargeback Committee from 2006-2009 and the MRC Education Committee from 2009 to the present and currently is the co-chairperson

Co-Presenters

Paul Larsen, Paul Larsen Consulting

The Impact of the Global Economic Crisis on the European e-Commerce Payments & Risk Landscape

Thursday, March 29, 2012 at 11:00 AM–11:45 AM PDT
Target Audience

Merchants who sell to the European e-commerce market, or wish to do so in the future

Summary of Topic

The Global Economic crisis has had many impacts on European e-commerce Payments & Risk, and there is much more to come. Everything from how consumers pay Merchants, to what fraud tools will be available to consumers, and what impacts this will have on their success and their costs

Audience Takeaway

Merchants will understand the continuing shift in European consumer e-commerce/ CNP payments behavior and will know what they do to prepare for the future
Merchants will understand how to interpret shifts in their declines and chargebacks trends and what steps they can take to minimize impact
Merchants will know what steps they need to take to support changes in fraud risk tools and what the relationship is to the tools they themselves deploy, and any associated impacts
The impact on SEPA and the EU desire to create a single payments market
Merchants will understand what is required of them for their payment processors to fulfill their regulatory requirements in relation to KYC and AML
Merchants will understand how the economic crisis impacts their credit risk profile

Submitters

Presenters

Gabe McGloin, Chase Paymentech Europe
Title

VP Client Services & Association Relations

Presenter Biography

Gabe McGloin is VP Client Services & Association Relations at Chase Paymentech, Europe. With over 11 years experience in European customer-not-present billing and payments, Gabe has spent the majority of his career on the Merchant side of the business, working for US multinational CNP and Ecommerce organisations. This experience is proving to be very beneficial in his role at Chase Paymentech where he is responsible for determining the products that need to be developed to support Merchants who sell goods and services to European consumers. It also ensures a Merchant oriented approach when working with the European Card Associations and Financial Services community. Gabe is a founding member of DRF Europe, and currently sits on the advisory board. Gabe holds a B.A. in Mathematics from the University of Dublin, Trinity College.

Jennie Verduzco, Symantec Corporation
Title

Manager, Payment & Risk Strategy, Worldwide eCommerce

Presenter Biography

As Manager of Payment & Risk Strategy at Symantec, Jennie leads a team responsible for increasing retention and managing costs to optimize subscriber billings and build lifetime value for Symantec’s Norton-branded consumer products. Jennie joined Symantec in 2011, bringing 9 years payment processing experience.

Prior to joining Symantec, Jennie was the Director of Compliance & Chargebacks at Litle & Co, managing Association Compliance Programs, ensuring merchant compliance with Rules and Regulations and assisting merchants with PCI Compliance. Jennie also worked as the Director of Online Payments at Spark Networks, a leading provider of online personal services, whose online dating sites include Jdate for Jewish singles, responsible for all aspects of payments management.

Co-Presenters

Building Better Risk Detection From Your Data

Thursday, March 29, 2012 at 1:00 PM–1:45 PM PDT
Presentation Technical Level

Advanced - Introduction of complex concepts. For attendees with significant industry experience.

Summary of Topic

Your application is generating lots of potentially useful data, and plenty of it isn't looked at or used effectively. Learn how to capture and analyze this data to detect risks to your organization and users in a cost effective manner. Many of the techniques presented use your existing data without requiring any changes to your application architecture. This presentation will provide examples of detecting and visualizing real-world attacks including account takeovers, being probed for web application vulnerabilities, and others.

Learning Objectives

* Best practices in operational data collection
* Using existing data to detect risks and threats
* Effectively adding and augmenting data sources
* Generating alerts based on real-time analysis or on historical trends

Submitters

Nick Galbreath, Etsy

Presenters

Zane Lackey, Etsy, Inc.
Title

Engineering Manager, Security

Presenter Biography

Zane Lackey leads the application security group at Etsy, the world’s handmade marketplace. His research has been featured in notable media outlets such as the BBC, Associated Press, Forbes, Wired, CNET, SC Magazine and in 2010 he was named as one of 12 prominent security researchers by Network World magazine. He is a contributing author of Mobile Application Security (McGraw-Hill), a co-author of Hacking Exposed: Web 2.0 (McGraw-Hill), and a contributing author/technical editor of Hacking VoIP (No Starch Press). He holds a Bachelor of Arts in Economics with a minor in Computer Science from the University of California, Davis.

Co-Presenters

How to Find Hidden Fraud with Momentum Analysis

Thursday, March 29, 2012 at 1:00 PM–1:45 PM PDT
Target Audience

This presentation targets fraud prevention, chargebacks and payments professionals in engineering, fraud ops and finance

Presentation Technical Level
Basic - An introduction to the topic. For attendees new to the industry.
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Summary of Topic

Losses in payments generally come from two types of chargebacks, fraud and friendly-fraud. While fraudulent chargebacks are associated with intentional crime, friendly fraud comes from consumers who charge back to avoid paying for goods and services they find unsatisfactory. These two types of chargebacks are difficult to distinguish because, in practice, processors generally use the same codes for both types of chargebacks. This talk will describe a case study at online ticketing provider Eventbrite, where we analyze chargebacks to classify them as fraud vs. friendly fraud. We use a form of velocity analysis that is inspired by the concept of "momentum" from the field of physics. This type of analysis can help payments teams identify hard fraud among chargebacks previously identified as friendly fraud.

Learning Objectives

Attendees will learn:
- the different roles fraud and friendly fraud plays in preventing loss
- why it is important to distinguish fraud and friendly fraud
- how to use Momentum Analysis to discover fraud

Audience Takeaway

The audience will take away tools to help minimize losses in payments. Specifically, the audience will learn about the different roles fraud and “friendly fraud” play in minimizing losses. Audience members will be able to benefit from a case study that demonstrates how to identify chargebacks associated with fraud hiding among “friendly fraud” chargebacks. This case study demonstrates how use to use Momentum Analysis to more effectively prevent losses.

Submitters

Presenters

Pat Poels, Eventbrite
Title
Presenter Biography

Pat has over 20 years of experience in e-commerce, event ticketing, and software engineering. He is currently the Director of Data Engineering at Eventbrite, a self-service ticketing platform, where he leads the Fraud/Risk, Data Discovery, and Business Analytics teams. Prior to Eventbrite, Pat was Vice President of Software Development for Ticketmaster, one of the world's largest e-commerce transaction companies. At Ticketmaster, Pat was responsible for host system development, where he engineered numerous innovations in the live event ticketing industry. Pat was responsible for creation and implementation of Ticketmaster's ticket barcoding algorithm, the backbone of their secure access control system.

Pat has recently returned to the software engineering after pursuing his passion for poker. In his five year professional poker career, Pat accumulated over 1 million dollars in tournament poker prize money, and is one of a select few poker professionals to have won multiple World Series of Poker bracelets.

Co-Presenters

Managing CNP Fraud using EMV - Learnings from Canada and UK

Thursday, March 29, 2012 at 1:00 PM–1:45 PM PDT
Target Audience

E-commerce managers, Fraud managers, Website IT managers

Presentation Technical Level
Intermediate - The next step beyond the basics. For attendees with some industry experience.
Advanced - Introduction of complex concepts. For attendees with significant industry experience.
Summary of Topic

The US payments market is at the beginning of significant change, both as it moves towards EMV (chip and contactless) payments, and the emergence of NFC technology in smart phones. Experience in other EMV markets (UK and Canada specifically) also tells us that criminal activity will move to e-commerce channels. E-commerce transactions have weak authentication processes relative to POS transactions, and this is easy prey for cybercriminals while the merchant is left to absorb the cost of fraud. 3D Secure solutions do reduce fraud, but increased abandonment rates make it an ineffective tool in North America. But - What if we could check the card when the consumer is shopping online, in the same way the merchant checks the card at a POS. If so, the merchant and the bank now knows the card was there for the e-commerce transaction - reducing fraud claims AND reducing the cost of managing fraud. This session will explore the facts and findings on CNP fraud in EMV countries (UK and Canada) and explore some of the hardware, software and mobile solutions adopted in these markets to combad this increase in fraud.

Learning Objectives

1. What to expect as the US market moves to EMV (Chip and contactless cards)
2. New developments in international cybercriminal activity
3. The power of co-operation with Card Issuers
4. New fraud strategies that leverage EMV technology and standards

Audience Takeaway

1. Online fraud will increase dramatically in the US market. As EMV cards enter the market and reduce Card Present Fraud, criminals will move their focus to Card not Present environments.
2. Fraudsters are becoming increasingly savvy, and many virus detection systems can't detect new malware
3. EMV is a very secure payment platform, and it can be leveraged for e-commerce transactions as well

Submitters

Chris Gardner, SecureKey Technologies

Presenters

Greg Wolfond, SecureKey Technologies
Title

Chairman and CEO

Presenter Biography

Greg has a successful track record bringing innovative solutions to the financial industry. His expertise and entrepreneurial skills are evidenced by his founding of Footprint Software Inc., a financial software company which he started in 1983 and later sold to IBM in 1995. Additionally, Greg founded and was CEO of 724 Solutions Inc. from 1997 to 2001, a wireless software infrastructure provider which he took public in 2000.
Greg holds the 1994 award for Canada's Best Managed Private Company for Footprint Software, the 1995 award for Canada's top 40 under 40 and in 2000 was awarded the Entrepreneur of the Year.
Greg holds a Bachelor of Arts in Computer Science from the University of Western Ontario, Deans List and a double major, Biochemistry and Life Sciences at the University of Toronto. Greg sits on the board of the Ontario Cancer Biomarker Network (OCBN), NoNo Inc. specializing in post stroke neuroprotection and YYZ Pharmatech which develops tools, targets and biomarkers for pharma.

Gordon Dolfie, Intel
Title
Presenter Biography

Gordon Dolfie is the General Manager for the Intel® Identity Protection Technology business unit. His team is part of the PC Client Services division, focused on delivering hardware-based security solutions to the eCommerce, Banking, Consumer, and Enterprise markets. Intel IPT provides a more secure, easy-to-use technology that enhances second factor authentication across a wide spectrum of uses, and is built into the hardware that Intel delivers to the PC industry.

Gordon joined Intel in 1982, and has held positions in Finance, Business Operations, Marketing, and General Management during his career. He is based in Folsom, California.

Prior to joining Intel, Gordon earned a BS in Engineering and an MBA in Finance from UCLA.

Co-Presenters

Online Fraud: Beyond the Payment Event

Thursday, March 29, 2012 at 1:00 PM–1:45 PM PDT
Target Audience

Online merchants, particularly digital download merchants, that want to better understand the ways they are being targeted by fraud rings, the ways to unearth motives, and the process and tools available to build a comprehensive anti-fraud strategy that looks well beyond the payment event alone.

Presentation Technical Level

Intermediate - The next step beyond the basics. For attendees with some industry experience.

Summary of Topic

A leading digital download merchant experienced a massive and seemingly inexplicable bout of online fraud. When traditional anti-fraud measures proved only partially effective, the company engaged a consultant to get to the root of the problem.

It became evident that there were multiple motivations for the fraud. The company had an incomplete understanding of its own business and that made it very difficult to develop a complete fraud strategy. Sophisticated rings will exploit any vulnerability in a site and an anti-fraud program may need to look well beyond the payment event.

In conjunction with the solution providers, we’ll discuss the steps we took to uncover the multiple motivations for the uptick in fraud and the process and technology we employed to successfully combat it.

Learning Objectives

1. The importance of understanding your business in developing an anti-fraud strategy.
2. The processes to uncover all the motivations for fraud, identify patterns, and target events where anti-fraud measures will be most effective.
3. Knowledge of the solutions and technologies available to employ in fraud prevention, for online and digital download merchants.

Audience Takeaway

• The importance of understanding their business in combating fraud and of looking at all parts of the customer interaction online, not just the payment event.
• How a digital download merchant employed both process knowledge and technology to combat multiple fraud rings.
• An opportunity for discussion with both other merchants and service providers.
• New connections with other industry leaders for future off line discussions and networking.

Submitters

Tim Murphy, Getty Images

Presenters

Tim Murphy, Getty Images
Title

Vice President, Treasurer

Presenter Biography

Tim Murphy is the Vice President and Treasurer of Getty Images, a leading provider of digital media worldwide, creating and distributing a range of assets – from royalty-free stock photography and editorial images to footage, music and multimedia – that help communicators around the globe tell their stories. There he has responsibility, among other things for global payments and risk management. Prior to Getty Images, he held positions at Amazon.com, ProBusiness Services Inc. and KPMG Peat Marwick.

Mr. David Montague, The Fraud Practice LLC
Title

President

Presenter Biography

David Montague is the founder and President of The Fraud Practice. He has spent the last fourteen years working in the eCommerce space, and is well respected for his business knowledge and thought leadership. His background includes an in-depth application of innovative solutions for preventing business to consumer e-commerce fraud. Prior to founding The Fraud Practice he held positions as the Director of Risk Solutions at CyberSource Inc and National Principal at IBM Global Services.

Kjelti Kellough, iStockphoto
Title

Senior Director, Corporate Counsel

Presenter Biography

Kjelti Kellough is the Senior Director, Operations and Corporate Counsel for Getty Images where she is primarily responsible for legal and risk issues for iStockphoto.com, an online digital media licensing site, providing user-generated, royalty-free images, illustrations, audio and videos.

Mr. Jay Boehm, iStockphoto
Title

Vice President, Technology

Presenter Biography

Jay Boehm has been with Getty Images for three years as Vice President of Technology. He is responsible for the application development and operations of iStockphoto.com, the industry-changing microstock website. Prior to joining Getty Images, Jay was CTO of Autonomy's ETalk division and global head of Quality Assurance. He lives in Canada and hates thieves with a passion.

Mr. Jack Alton, Kount
Title

Vice President, Sales

Presenter Biography

Jack joined Kount in 2010 as the Vice President of Sales. He attended the University of Montana earning a Bachelor’s Degree in Communications. He is responsible for business development and sales for Kount. His 15 years of experience in building and leading large account sales organizations has helped several companies accelerate growth and move to leadership positions within their respective industries. Prior to joining Kount, Jack was the Vice President of Sales, North America for CradlePoint, a wireless hardware company, where he directed his team to double-digit growth annually. Before moving to CradlePoint he developed a team of over 70 at Wayport, Inc. (acquired by AT&T) as Vice President of Sales and grew sales from $7M to over $75M annually in less than three years.

Co-Presenters

Your Digital World Compromised: LIVE!

Thursday, March 29, 2012 at 2:00 PM–2:45 PM PDT
Summary of Topic

In today's world, our business and personal data live in many places at the same time. From mobile devices, to our home computers, to our employer's systems we are continuously access and sharing valuable and sensitive information. This presentation will explore how malware can compromise the common technology you use every day. Each method will be demonstrated LIVE. Once the attackers are in your digital world, they also need to get the data out. A demonstration of the common techniques used to extract your data will also be demonstrated including the continuous real-time data exfiltration methods used by the most advanced and persistent cyber adversaries today.

Submitters

Presenters

Nicholas Percoco, Trustwave
Title

Senior Vice President and Head of SpiderLabs

Presenter Biography

With more than 14 years of information security experience, Percoco is the lead security advisor to many of Trustwave¹s premier clients and assists them in making strategic decisions around security compliance regimes. He leads the SpiderLabs team that has performed more than 1300 computer incident response and forensic investigations globally, run thousands of penetration and application security tests for clients, and conducted security research to improve Trustwave's products.

Prior to joining Trustwave, Percoco ran security consulting practices at VeriSign, and Internet Security Systems. In 2004, he drafted an application security framework that became known as the Payment Application Best Practices (PABP). In 2008, this framework was adopted as a global standard called Payment Application Data Security Standard (PA-DSS).

As a speaker, he has provided unique insight around security breaches, malware, mobile security and InfoSec trends to public (Black Hat, DEFCON, SecTor, You Sh0t the Sheriff, IEEE Malware, etc.) and private audiences throughout North America, South America, Europe, and Asia.

Percoco and his research has been featured by many news organizations including: The Washington Post, eWeek, PC World, CNET, Wired, Hakin9, Network World, Dark Reading, Fox News, USA Today, Forbes, Computerworld, CSO Magazine, CNN, The Times of London, NPR, Gizmodo, Fast Company, Financial Times and The Wall Street Journal.

In 2011, SC Magazine named Percoco Security Researcher of the Year. In addition, he was inducted into the inaugural class of the Illinois State University College of Applied Science and Technology Academy of Achievement.

Percoco is a member of the Dean's Advisory Board for The College of Applied Science & Technology at Illinois State University and a co-creator on the planning committee of THOTCON, a hacking and security conference held in Chicago each year. He has a Bachelor of Science in Computer Science from Illinois State University.

Co-Presenters

Ghost in the Wires: The Unbelievable True Story of Kevin Mitnick’s Life as a the World’s Most Wanted Computer Hacker

Thursday, March 29, 2012 at 2:45 PM–3:30 PM PDT
Summary of Topic

Kevin Mitnick was the most elusive computer break-in artist in history. He accessed computers and networks at the world’s biggest companies—and however fast the authorities were, Mitnick was faster, sprinting through phone switches, computer systems, and cellular networks. He spent years skipping through cyberspace, always three steps ahead and labeled unstoppable. But for Kevin, hacking wasn’t just about technological feats—it was an old fashioned confidence game that required guile and deception to trick the unwitting out of valuable information.

Driven by a powerful urge to accomplish the impossible, Mitnick blazed through computer systems and networks at several globally known corporations. But as the FBI’s net began to tighten, Kevin went on the run, engaging in an increasingly sophisticated cat-and-mouse game that led authorities through false identities, a host of cities, plenty of close shaves, and an ultimate showdown with the Feds, who would stop at nothing to bring him down.

Kevin will discuss his adventures as the World’s Most Wanted Computer Hacker and demo some of the tricks that hackers use today to break into computer systems and networks.

Submitters

Presenters

Kevin Mitnick
Title
Presenter Biography

With more than twenty-five years of experience in exploring computer security, Kevin Mitnick is a largely self-taught expert in exposing the vulnerabilities of complex operating systems and telecommunications devices. His hobby as an adolescent consisted of studying methods, tactics, and strategies used to circumvent computer security, and to learn more about how computer systems and telecommunication systems work.

In building this body of knowledge, Kevin gained unauthorized access to computer systems at some of the largest corporations on the planet and penetrated some of the most resilient computer systems ever developed. He has used both technical and non-technical means to obtain the source code to various operating systems and telecommunications devices to study their vulnerabilities and their inner workings.

As the world’s most famous (former) hacker, Kevin has been the subject of countless news and magazine articles published throughout the world. He has made guest appearances on numerous television and radio programs, offering expert commentary on issues related to information security. In addition to appearing on local network news programs, he has made appearances on 60 Minutes, The Learning Channel, Tech TV’s Screen Savers, Court TV, Good Morning America, CNN’s Burden of Proof, Street Sweep, and Talkback Live, National Public Radio, and as a guest star on ABC’s spy drama “Alias”. Mitnick has served as a keynote speaker at numerous industry events, hosted a weekly talk radio show on KFI AM 640 in Los Angeles, testified before the United States Senate, written for Harvard Business Review and spoken for Harvard Law School. His first best-selling book, The Art of Deception, was published in October 2002 by Wiley and Sons Publishers. His second title, The Art of Intrusion, was released in February 2005. Mr. Mitnick’s autobiography was released in August 2011 and is a New York Times best-seller.

Co-Presenters

The Future Is 'Dynamic' -- Transforming Payment System Security

Thursday, March 29, 2012 at 3:30 PM–4:15 PM PDT
Presentation Technical Level

Advanced - Introduction of complex concepts. For attendees with significant industry experience.

Summary of Topic

Ellen will discuss key fraud and security trends in the evolving e-commerce environment, the latest developments in authentication, and the solutions Visa is working on to help card not present merchants manage risk and enable frictionless commerce

Submitters

Christina Hulka, Visa

Presenters

Ellen Richey, Visa Inc.
Title

Chief Enterprise Risk Officer

Presenter Biography

Ellen Richey joined Visa Inc. as the global head of enterprise risk in September 2007, and she is now Visa’s chief enterprise risk officer.
Prior to joining Visa Inc., she most recently worked at Washington Mutual Inc., as senior vice president of enterprise risk management and executive vice president of cards services, from October 2005 to June 2006. Prior to that, she served as vice chairman of Providian Financial Corporation, where she had responsibility for enterprise risk management, legal and regulatory affairs, corporate governance and corporate relations, as well as the compliance and audit functions of the company. Earlier in her career, Richey was a partner in the San Francisco law firm Farella, Brown & Martel, where she specialized in corporate, real estate and financial institution matters.
Richey received a B.A. in linguistics and Far Eastern languages from Harvard University and a J.D. from Stanford Law School. She also served as a law clerk for Judge Charles B. Renfrew of the U.S. District Court for the Northern District of California and for Associate Justice Lewis F. Powell, Jr., of the United States Supreme Court.

Co-Presenters

Loading…