Secure BFSI Event Report

13rd SECURE BFSI CONCLAVE 2015 - Special Issue

APRIL 10, 2015 SWI Security Report Vol 4 Issue - 12

April 10th, 2015, Sofitel, Bandra Kurla Complex, Mumbai

3rd SECURE BFSI CONCLAVE

Special Issue on the occasion of

C

M

Y

CM

MY

CY

CMY

K

NEC_Neoface Watch-May edition_FAp.pdf 1 3/17/15 11:12 AM

C

M

Y

CM

MY

CY

CMY

K


C

M

Y

CM

MY

CY

CMY

K


Introduction: Pg 5

Key Speakers: Pg 6-18

Bank Security:Securing Banks in the 21st Century Pg 21-25

10 Best Practices for Cyber Security in 2015 Pg 29-30

Tackling the Cyber Threat- Way Forward Pg 51-52

Technology News Segment : G20 Summit in Queensland Secured by Telestes Video Surveillance Solutions Pg 31

Videonetics bags Best R&D effort of the year award by SECONA in association with Pg 32-33Secutech India

News Briefs: Pg 36-48 Cyber SecurityFraudsCity Security and Police ModernisationSmart Cities

Lead Writer: Pathikrit PayneContributors: Shelly Bhasin, Shivani LalCopyright Security Watch India 2015 Security Watch India (SWI) is a non-partisan, not-for-profit organization that addresses issues in the space of the relatively new homeland security sector. SWI works towards a secure tomorrow by enhancing security awareness and consciousness in Indian industry and civil society. SWI also guides and facilitates potential investors interested in the Indian homeland security business. Security Watch India is not responsible for the facts, views or opinion expressed by the author(s) in this report. Republication or re-dissemination of the contents of this document are expressly prohibited without the written consent of Security Watch India. You can avail these reports for a year by joining Security Watch Indian Membership program or independent annual subscription for just Rs. 2500 (50USD).The subscription will afford you latest and most relevant information on Indian Homeland Security situation that will help you make right decisions for your business.

For advertisement related queries please contact:Write for more information please contactAmit Siddhartha E: [email protected] Mob: +91 9953685326Aniket Gupta E: [email protected] Mob: +919811319236

www.securitywatchindia.org.in

CONTENTS

4 3rd SECURE BFSI CONCLAVE 2015 - Special Issue

April 10th, 2015, Sofitel, Bandra Kurla Complex, Mumbai

3rd SECURE BFSI CONCLAVE

Organised By:

Exhibitors

Associate Sponsors:

Lead Sponsor:

Knowledge PartnerCyber Security PartnerLanyard Sponsor:


Following the overwhelming success of previous events, Security Watch India is proud to present 3rd Secure BFSI Conclave on 10 April 2015 at Hotel Sofitel, BKC, Mumbai. PwC is the knowledge partner for the event. The key themes of the event are Cyber/Information security and Fraud Risk Management.

Secure BFSI Conclave will traverse yet another milestone in presenting quality content, ensuring high level of deliberations matching the expectations and aspiration of security and privacy professionals. While doing so it will also host a comprehensive exhibition, showcasing cutting edge technologies and service innovations.

The one day conclave will bring together cyber/information security and fraud prevention experts from across the financial sector to discuss security vulnerabilities as well as bring forward effective strategies and solutions to effectively mitigate them. For more details please visit www.banksecurityindia.com

The event offers a unique one day, interactive thought leader forum full of relevant topics gleaned from extensive research, market intelligence and feedback from industry leaders, influencers and senior executives. In addition to expert panels, case studies and keynote addresses, the conference will integrate new session formats that encourage audience participation, including: Unconference

Some of the discussions points include:

CriticalSecuritySolutionsforregulationsandeffectivecyberdefense

Next-Gensolutionsonregulationforaneffectiveanddynamicinformationtechnologyframework

UsingAnalyticsforAdvanceSecurity

Utilisingsoftwareandtechnologyforincreasedcybersecuritydefence

Rethinkingfundamentalsofexistingcybersecurityapproach

LeveragingActionableSecurityIntelligencetoDefendAgainstTargetedAttacks

Insight,Investigation&Analysis-SecuringthePerimeters

AuthenticationTechnologyToDriveInnovationinIdentityManagement

Some of the key speakers at the event include:

INTRODUCTION


Mr. Agnelo DsouzaChief Information Security Officer, Kotak Mahindra Bank

AgneloDsouzaisaPostGraduateinBusinessAdministration.HehastwentyyearsofindustryexperiencehavingworkedwithIndianExpressNewspapers,GlobalTeleSystemsand3iInfotechpriorto joiningKotakMahindraBank.At Kotak, he has worked in ITsecurity Operations before taking on the role of Chief Information Security Officer. He is responsible for formulating the

Information Security strategy and driving its implementation at the Bank. Agnelo has built a robust Information Security framework and received several industry accolades.

Mr. Ambarish DeshpandeManaging Director INDIA & SAARC, Blue Coat Systems India

AmbarishistheManagingDirectorIndiaSalesatBlueCoatSystemInc,andhas been with the company for the past three years. He brings with him 19 years of experience in building teams, driving market expansion and putting successful channel strategies in place.

Prior to Blue Coat, Ambarish was the director of alliance, channels and mid-market South Asia at McAfee. Prior to McAfee, he spent seven years in Symantec. He also had working stints with IronPort, Samsonite and JVC among others.

AmbarishisagraduateoftheUniversityofMumbai.HeobtainedhispostgraduateinmanagementfromNMIMSinMumbai.

Mrs. Ashalatha GovindGeneral Manager & Group CISO, State Bank of India

MsAshalathaGovind is currentlyGeneralManager&GroupCISO inStateBankGroup.ShejoinedSBIasaprobationaryofficer.SheisanMBAgraduatewith additional qualifications of CISA, CIA(Certified Internal Auditor), Oracle certifiedDBA,CFP,CAIIBetc.

She has handled various assignments in the Bank like Branch Management, Credit management, NPAmanagementetc.ShehasalsobeenafacultymemberintheBanksstafflearningcentre.She

KEY SPEAKERS


joined the IT department (handling the CBS System development) in the year 2003 from where she wasalsodeputedtotheBankofChinaforgivingatrainingonCBS.

Thereafter,shehadastintinI&MAdepttasaCreditAuditoronmobiledutycoveringlargedomesticand international branches. She has also participated in various panel discussions including one on CTSsystemconductedbyNPCI.

Some of her papers are published in the IBA journal.

Mr. Dilip PanjwaniAVP Information Security, DBS Bank

Dilip isahardcore ITprofessionalwith12+yearsof variedexperience intheIT&ISdomains.ACertifiedInformationSystemsSecurityProfessional(CISSP), BS7799 - Lead ISMS Auditor and hands-on manager with expertise and proven record of developing and implementing Information Technology Systems and Information Security controls based on global best practices

that improve and contribute to the organizations efficiency & data security. Dilips experienceencompasses various industry verticals, both in Indian corporate as well as multinationals.

DilipPanjwanicurrentlyistheAVPITandCISOforDBSBankLtd(Indiaregion).Heisaccountableand responsible for strategy, risk management, information security program management and identitymanagement implementation forDBSBank.Headditionally is also responsible forSelfService Banking (SSB) and ATM Management from IT implementation and compliance perspective.

PriortojoiningDBSBank,DiliphasworkedatKotakMahindraBankLtdasInformationSecurityComplianceandGovernanceOfficerwherehewasresponsibleforsecurityoperations,newprojectsevaluation,securitycomplianceandgovernanceacrossthebank.Additionally,Dilipalsomanagedbusiness process security risk assessment, controls implementation and Information Security Awareness and Training across the entire Kotak group of companies.

Mr. G K GuptaVP & Head - Fraud Management Distribution Assurance, Max Life Insurance

A Risk and Audit professional with 22 years of Banking and Insurance sector experience in Max Life Insurance, American Express and Deutsche Bank.Head of FraudRiskManagement andDistribution Assurance. Experiencedin Risk and Assurance Audits, Regulatory Compliance. Enterprise Risk Management, Operations Risk Management, Continuous Controls Monitoring,

DataForensics,AutomationandSystemDevelopmentProjects,FinancialControls,OperationsandControls, Business Excellence and Quality Management.

SPEAKERS


Mr. K. S. NarayananHead Operational Risk Management & Chief Information Security Officer, ING Vysya Bank

K.S.Narayananhas19yearsofindustryexperiencehavingworkedinITServicesandBankingindustry.PriortojoiningINGVysyaBankin2008,hehasworkedatHCLandTechMahindrainavarietyofrolesinITServicedelivery,NetworkSecurity,Information Security, Business Continuity Management and Risk Management.

AtINGVysyaBank,NarayananistheHeadofOperationalRiskManagement&CISO.HeisresponsiblefordrivingOperationalRiskGovernance&Management,CyberSecurity,DataGovernance,FraudRisk, Information Security strategy, Business Continuity and its implementation across the Bank.

NarayananholdsBachelorsofScienceinPhysics,MasterinFinancialManagement(MFM)fromK.J. Somaiya Institute of Management, Mumbai. He holds the following professional qualifications: CISA-Certified Information Systems Auditor, Certified Information Security Manager (CISM), CISSP, andSANSCertifiedIncidentHandler(GCIH).

Mr. Makesh ChandramohanHead Information Security & Business Continuity, Birla Sun Life Insurance Company Limited

Makesh Chandramohan is an experienced and qualified information security professional with more than 13 Yrs of professional experience across various industry verticals likeBFSI, ITES,Telecom&manufacturing.He is currently heading the

information Security and Business Continuity function at Birla Sun Life Insurance and he was instrumental in setting up IS functions in various large financial services organization. By qualification he holds a Master ofComputerApplication(MCA),CISA(CertifiedInformationSystemsAuditor)&CISM(CertifiedInformationSecurityManager)fromISACA(USA).Heisaneminentspeakerandparticipateinvariousforums.

Mr. Mannan GodilChief Information Security Officer - Information Security Group

Heading Information Security Group, Mannan drives Information Security,Business Continuity, Technology Risk Management and Access Management forEdelweissFinancialServicesLtd.EdelweissisidentifiedasamongstIndiasleading diversified financial services organization with business straddling across Credit, Capital Markets, Asset Management, Housing finance and Insurance.

SPEAKERS


With 15+ years of overall experience, Mannan has served the domestic as well as International business in the field of Information Security. He is a Certified Chief Information Security Officer (EC Council), Certified Information Systems Auditor, Certified in Risk and Information Systems Control and a Certified Ethical Hacker. MannansaccoladesincluderecognitionasamongstTop100CISOsforriskmanagementpracticesbyCISOPlatform,andbeingawardedwiththetitleInfoSecMaestrosbyInfoSecuritygroup.Hehas also been awarded with the Risk Titan award by Edelweiss.

Mr. Menny BarzilayChief Security Evangelist, Uniken

Menny Barzilay is a cybersecurity strategist and esteemed public speaker. PriortojoiningUniken,MennyhasservedasaCISOintheIsraeliDefenceForces, Barzilay (Capt. (Res)) and head of the IT Audit department at Bank Hapoalim Group (Based in Israel). An evangelist of innovation, he meetsand advises many startups and entrepreneurs from around the world. In

addition, he lectures and serves as the host and panelist at cyber security conventions, conferences and professional work groups worldwide and his publications are featured in renowned computer magazines.

Mr. Michael kehoeIBM WW i2 EIA Sales Leader, IBM Analytics Group IBM

Michael kehoe is the IBM WW i2 EIA (Enterprise Insights Analyses) Sales Leader for the Commercial sector. His responsibilities are to work with clients and deliver solutions that solve their challenges caused by their overwhelming data. Currently he is working with WW clients in developing the next generation Security Operation Centers (SOC). Understanding your adversaries, their

threats and their methods to actively prepare to detect and defend against them.

Previously Mike was a senior global products manager for Smarter Cities, where he lead the delivery of product based solutions for world cities. His areas of expertise include industrial control, business intelligence, enterprise process design, business strategy, and technical opportunity realization.

MikehasahonoursdegreeinElectronic/ElectricalEngineeringfromTrinityUniversityDublinandholdsaMasterofBusinessAdministration(MBA)degreefromtheOpenUniversity.HehaswrittenPapers, redguides and has spoken around the world on what becoming smarter can achieve and is consideredtobeoneofIBMsforemostforwardthinkersonthissubject.

SPEAKERS


Mr. Mohan V TanksaleChief Executive, Indian Banks Association

Mr.MohanVTanksaleistheChiefExecutiveofIndianBanksAssociation.

Prior to this,Mr.Tanksalewas theChairman&ManagingDirector,CentralBankofIndiaandbeforethatExecutiveDirectorofPunjabNationalBank.Mr.TanksalestartedhiscareerasanofficerinUnionBankofIndiaatGwaliorin

1974.

Mr. Tanksale, a seasoned Banker having rich experience in Banking is backed by professional credentialslikeAssociateMemberofInstituteofCost&WorkAccountantsofIndia(ICWA),CompanySecretary (Inter)of the Institute of Company Secretaries of India, CAIIB, a Bachelor degree of Science and a master degree in English literature.

Mr. Pinaq DudhwalaChief Manager - Financial Crime Prevention Group, ICICI Bank Ltd.

Mr.PinaqDudhwalaisworkingasChiefManager,FinancialCrimePreventionGroup,inICICIBankLtd.Inthisrole,heisresponsibleforfraudpreventionanddetectionforCards,PaymentproductsandDigitalChannels.Hemanagesstrategy related to prevention and detection, vulnerability risk assessment of product,processandrelatedpolicyformation.Mr.Dudhwalastintwith ICICI

bank is more than a decade.

InICICIbank,Mr.DudhwalaheadedvariousrolesinFraudriskmanagementwhichencompassesapplication and vendor screening, investigation in different segment of products like Cards, Payment Product, Retail Asset, Mortgages, Small Medium Enterprise, Rural and Priority Sector lending. Prior totakingFraudriskmanagementprofile,Mr.Dudhwalahasworkedinbusinessfunctionandwasresponsible to deliver top lines target and set up distribution channels. He has also worked with GeneralElectricCountrywideConsumerFinancialServicesforastintof3yearsinsalesandbusinessmanagement role.

He is also an active core committee member of India Payment Risk Council (IPRC) and represent on behalf of IPRC in various industry forums that work to combat card and payment fraud. He is a regular speaker at academic university, industry forum and contributes actively to the industry. He holds post-graduation Business Management and is an Associate Certified Fraud Examiner. He is also a Certified Anti Money Laundering Expert.

SPEAKERS


Mr. Ravikiran S. MankikarChief General Manager - Information Technology Department, The Shamrao Vithal Co- operative Bank Limited

RavikiranMankikarispresentlyworkingasChiefGeneralManagerInformationTechnology at the Shamrao Vithal Co-operative Bank, Mumbai.

He has a rich experience in the field of banking and implementation of technological projects. He is driving the IT initiatives at the SVC Bank. Implementation of in-house developedGeniusBankingapplications.

Earlier to this he has had stints with the technology departments of the IndusInd Bank and the Janakalyan Sahakari Bank. WHe has had experience in setting up Tier 3 Standard compliant data centre for the Bank and the Bank getting certified for ISO 27001 (Information Security) and ISO 22301 (Business Continuity) practices.

A graduate in commerce, he has a Diploma in Systems Analysis. Recently he has acquiredinternational certifications of BS7799 & Quality Management Systems. He is also a CertifiedInformationSystemsAuditor(CISA)andCertifiedintheGovernanceofEnterpriseIT(CGEIT)andCertified Information System Banker (CeISB). He is the only awardee from the Co-operative Banking sectoroftheC.H.BhabhaScholarship&ResearchAwardforhisdissertationImpact&Implicationsof Computerisation in Banks conferred by the Indian Banks Association in 1997.

HehasbaggedvariousITawardsincludingtheCTOoftheYear&CIOGoldAward,CIO100,BestCIOoftheYearandtheOutstandingAchieveroftheYearAward,etc.HeisactivelyinvolvedwithISACAMumbaiChapter, has worked on the Managing Committee of the Chapter and has been the President of the Chapter.

He is on the Executive Managing Committee of the Computer Society of India, and having also served on the ManagingCommitteeoftheComputerSocietyOfIndiaMumbaiChapterincapacityofTreasurerandSecretary.

He is also a regular speaker at various forums on Core Banking, Information Security and Information SystemsGovernance.

Mr. Richard J.D. CollardWW Business Development - i2 Advanced Visual Analysis & SME Fraud, AML & Risk, IBM

Richard Collard draws on a business-based career, with 2 of the major global fraud analytics organisations - specialising in the provision of detection solutions and consulting for credit and debit card issuers and for AML. Prior to joining IBM through its acquisitionof ILOG,Richardworked todevelop

a radical, new approach to rules-based fraud detection through the automated generation of rules using genetic algorithms and evolutionary computing techniques.

SPEAKERS


His approach to financial crime management is, therefore, holistic and non-prescriptive - he espouses thebeliefthatthereisnosuchthingasaone-size-fits-allsolution.ThisfitsextremelywellwiththecomponentisednatureofIBMsapproachtothechallengesthattheFSSindustryfacesin2015andbeyond-especiallywiththefast-evolvingthreatsincyber-space.IBMsabilitytodrawonbest-of-breedcomponent sensures that an institution is not tied to a specific specialisation or paradigm - a key benefit when considering the specific nature of fraud and financial crimes within any single geography.

He has worked on major operational reviews for card issuers in South Africa and Switzerland generating significant $ savings and operational efficiencies and has been instrumental in the recent adoption of Business Rules Management Systems (BRMS) technology as a major component of a hosted fraud detection capability at MasterCard. Current projects include driving a major transformational project withoneofthemajorUKbanksAMLgrouptoensureeffectiveresolutionofentitiesacrossbusinessunits and geos using a combination of paradigms and technologies.

Richardsabilitytodrawonglobalexperienceallowssignificantknowledgetransferofglobalbestpractice.

His approach is consultative and respectfulof geography and culture which ensures that the thought-leadership that he provides is positively received - traits which have earned him significant respect through his engagements.

He has a Bachelors degree in French and Economics and has published work by IBM.

Mr. Saleem JavedTechnical Director, Skybox Security

Responsible for the technical leadership in Asia-Pacific markets, Saleem Javed has more than 15 years of Information Security experience. Prior to joining Skybox Security, Saleem Javed was a Security Architect at Hewlett-Packard SingaporePte.Ltd.Previously,heheldmanagement&consultingpositionsatCitibank,Verisign,WiproTechnologies,GeneralMotors,Datacraft.Heisa

CISSP,CISM,CRISCandholdsaBachelorsdegreeinEngineeringforElectronics&Communication.

Mr. Sameer RatolikarSVP & Chief Information Security Officer, HDFC Bank

Sameer Ratolikar, presently working as SVP & Chief Information SecurityOfficer, HDFCBank. Before this he was CISOwith AXIS Bank. Previouslyhe was working with Bank Of India as CISO and CTO, and Ministry of IT on deputationtogovernmentofGujaratasPrincipalSystemsAnalyst(Security&networks).Hehas20yearsofexperienceinITandInformationSecurity

domain. He holds certificates such as CISA, ISO 27001LA, CEH, BS25999 LA, COBIT. ITIL v3, MCSE,CCNA,Cyberlaw.

SPEAKERS


SameerisPioneerinIndianbankingindustryforachievingISO27001,PCI-DSSandBS25999certificationfortheBank;toestablishZACHMANframeworkandSABSAbasedInformationsecurityarchitecture.Hehasimplementedhugesecurityprojectslike2FA,Dataleakageprevention,Identity&Accessmanagement,GRC,SOC,PCI-DSS,ISO27001,BusinessContinuityacrossmajorBUsoftheBank.Sameerisalsoonthe panel of Regulators and IBA on developing Security Standard for Indian banks.

HeisalsoauthoredabookInformationSecurity-Demystifiedforbanksusersandemployees.Heisalsoan active Information Security, Privacy and Cyber Crime speaker in various national and international.

Mr. Shailesh VermaSVP & Head Debt Management and FCU Retail Lending & Payments, Axis Bank Ltd.

Shailesh Verma joined Axis Bank in 2008 and currently heads the Consumer Lending and Agriculture Debt Management and Fraud Control Unit. Hehasbeen instrumental in settingupandenhancing theDebtManagementFramework for the bank.

TodaytheAxisBankDebtManagementteamisrenownedforitsDebtManagementpractices.Itsstrengthis underscored by one of the lowest debt numbers on a portfolio growing at a scorching rate since the last 3 years. The Axis Fraud Control Team has also been recognized at various industry forums for scoring many Firsts in India. They have won the Best Acquiring Bank Award in South Asia at the Visa International Forum.

Shaileshisspearheadingapath-breakingprojectforusingIT&ITEnabledServicesfordevelopingacompleteautomatedecosystemforFraudManagement&DebtControl.

Shailesh is also the current Chairperson of India Payments Risk Council an interbank initiative to fight Fraud across the payments industry in India. Before joining Axis, Shailesh worked with Standard Chartered Bank in India handling various functions, the last ones being the Country Head IndiaforFraudControlPracticesUnit.

ShaileshholdsaMastersDegreeinBusinessAdministration.

Ms. Shraddha TickooTechnology Specialist, Trend Micro

Shraddha Tickoo works as a Technology Specialist for Strategic Security products offered by Trend Micro. She works closely with the Sales, Marketing, and Presales Teams to provide Consultancy and best practices for implementing these products. She also works with Enterprise customers and helps them in deploying security solutions in the best possible manner.

SPEAKERS


Prior to her current assignment, Shraddha has worked for Reliance Communications and been a part ofvarioussecurityimplementationprojects.SheholdsBachelorsinComputerSciencedegreeandcarries with her extensive knowledge of IT Security challenges and solutions.

Mr. Siddharth Vishwanath Partner, Cyber Security Services, PwC

Siddharth is a Chartered Accountant and an MBA from Indian School of Business. HeisaPartnerwithPwCsCyberSecurityPactise.Hehasmorethanfifteenyearsof experience spanning across business and technology risk. Siddharth has led several projects across strategy, IT Risk, Vulnerability Management, ISMS, BCP and Information Secuirty awareness programs for Banks and Telcos.

Siddharth is a keen speaker at academic institutes and other forums. He has authored reports on topics such as Insider Threat, Risks in Social Media, Managing risks i an interconnected world.

Mr. Sivarama Krishnan Partner and Cyber Security Leader, PwC

Sivarama Krishnan is a Partner and Cyber Security Leader, India at PricewaterhouseCoopers Pvt. Ltd. with more than 18 years of experience and has special focus on Financial Services, Telecommunications, Technology, and E-Governanceareas.Headvisesorganizations in theareas includingCyberSecurity, Information Security, Business Strategy, Regulatory Compliance,

RiskManagement,ProcessImprovement,e-Governance,ITStrategy,ERPandApplicationSelection,Project and Program Management, Vendor Evaluation and Bid Process Management.

SivahasadvisedanumberofIndian,MNCandGovernmentclientsonCybersecurity,Informationsecurity, business strategy, business continuity, IT strategy, regulatory compliance, risk management, process improvement, program management. Siva is a known authority in the cyber security domain in India, speaking and publishing frequently on a number of security issues at various prestigious national and international forums.

SivahasadvisedtheGovtofIndiaontheInformationTechnologyAct2000,heisontheStrategyCouncil of DSCI,NASSCOM, and on the board of several prestigious educational institutionspioneering security education in India. Siva has an MBA from the Indian School of Business (ISB), Hyderabad and is a qualified Chartered Accountant.

SPEAKERS


.

Mr. Sourabh ChatterjeeVice President Technology & Head -Applications, ICICI Lombard General Insurance Company

Sourabh Chatterjee, in his current portfolio at ICICI Lombard, is managing the end to end application portfolio for core policy administration systems, centralised rules management, claims, reinsurance, accounting, money management and reporting. In addition, I have the accountability for systems

and processes related to partner tie-ups, L1 support for all applications across the company, document management and workflow management systems across the company, reporting to the COO and Head of Ops and Technology with a dotted line to business heads for Retail Sales, Corporate Sales, Underwriting and Finance. Total team size managed including vendors is220+FTEs.

HehasworkedindiverseenvironmentsinUnisysandhasmanagedtheoverallrelationshipanddeliveryfora USD50M+ Fortune 100 Life Insurance carrier inUSMidwest. Accountable for both revenue growth and profitability and single point ownership for all deliveries across Business and Process Consulting, Application development and maintenance and Infrastructure in a managed services model. Managed the account of 450+FTEsspreadacrossIndiaandUSinvariouslocationsandhavingvariedskillsetsacrossvarioushorizontaland vertical business units within Infosys.

He has a 15+ years of Information Technology expertise, executing large/ complex multi million dollar IT programs with Fortune 500 clients across the globe. Currently accountable for a large portfolio of core Insurance applications, Partner Tie-ups and Allied ecosystem of apps including document management, workflowmanagement,centralisedrulesmanagementetcforIndiaslargestGeneralInsurancecompany.

Mr. Subhash SubramaniamChief Information Security Officer, ICICI Bank

Subhash has a total of 20 years of experience in diverse areas. He started his career withNationalStockExchange(NSE)andworkedtherefor3years(partofcoreteamwhichbuilt&rolledoutIndiasfirstelectronicexchangetradingplatform).In1997,quitNSEandsetupatechnologystartupspecializinginwebapplications,e-commerce portals and eLearning solutions. He expanded the operations with

developmentcentersinMumbai&Puneandclientsspreadacrosstheworld.

After achieving scale, sold off the business to strategic investors and divested stake and joined ICICI Bank in 2004 and have been with the Bank for over 10 years with rich banking experience in diverserolesTreasuryOperations,Technology,RiskManagementandInformationSecurity.HeiscurrentlydesignatedastheChiefInformationSecurityOfficer(CISO)forICICIGroupresponsiblefor ICICIBankandall itsGroupcompanies in Indiaand internationally.SubhashholdsBachelorinComputerSciencefromFergussonCollege,UniversityofPuneandMBA(Finance)fromNMIMS(BombayUniversity).

SPEAKERS


Mr. Sundareshwar Krishnamurthy Associate Director, Cyber Security Services, PwC

Sundar is an Associate Director with PwCs Cyber practice. He hasmorethan 12 years of experience in advising clients to build and sustain robust Security programs. He focuses on Banking and Telecom sector. He is currently workingwithoneofthenewbanksthatsbeingsetuptodefineandimplementtheir Security program. Over the last decade, he has advised several public

and private sector banks adhere to security conditions of regulatory requirements, Technology risk management, business continuity and disaster recovery, Information security policies and processes, Online banking security, IT strategy, application selection and bid management.

Mr. S.V. Sunder KrishnanExecutive Vice President and Chief Risk Officer, Reliance Life Insurance

Enterprise Risk Management (ERM) and oversight of Internal Audit, BCP, Information Security, Legal, Secretarial, Claims and Compliance functions.

Implemented risk based strategy in all the above functions with the use of technology.

First Insurance Company in India to rate the Enterprise Wide Risk ManagementandSolvencythroughBrickWorksRatingAgencygotaratingofAAA

Investment Risk Management - Mid-Office Operations, Market Risk Management, Credit Risk Management, Asset Liability Management and Operations Risk Management

ApartoftheStandingCommitteeonAccountingandInvestmentsIRDAI

Review of dealing room operations and institute controls to check insider trading

Coordinate Asset Liability Management and ERM (Control Committee) executive level meetings

Coordination and reporting to the Board Risk Management Committee, Board Asset Liability ManagementCommitteeandBoardAudit&ComplianceCommittee

WontheBestInnovationGroupQualityawardforPostIssuanceRiskVerification

Experience of Three decades in various Organizations listed below

Background as a senior and middle level manager with iexposure to Bank businesses and operations in more than 12 countries

PartofallthecoregroupsManagingCommittee,ControlCommittee,BoardMeetings,ProductCommittee, InvestmentCommitteeand the like. IT consulting& strategy, IT security and ITAudits for banks in India and abroad

Marketing of Assurance, IT security and consulting services during the managerial tenure in Ernst&Youngfortheyears199397andduringconsultancyassignments2002-03.

Worked for various organizations such as:

DSP Merrill Lynch for the Year 2005-06 as Senior Vice President - Corporate Audit Services for the

SPEAKERS


entireDSPMerrillLynchGroupofCompanies,MemberofRiskandAuditCommittees.Thisentailedreview of business and operations of the investment banking company, Broking Company and the Asset Management Company

ING Vysya for the years 2003-05 as Senior Vice President and Senior Audit Manager - Corporate Audit Services and a permanent invitee to various IT committees, Member of IT steering Committees, Risk and Audit Committees. This entailed review of business and operations of the Banking Company, Insurance Company and the Asset Management Company

Credit Lyonnais as Vice President Audit, Compliance and Integrated Risk Management and a member of the weekly Managing Committee for the years 2000-02. A Member of Weekly Management Committeeresponsibleforrunningofthebank.CoordinateConcurrentAuditofInvestmentswhichentails review all the investment transactions.

Standard Chartered as Senior IT auditor responsible for IT audits, payments audit for 12 countries in Middle East and South Asia regions for the years 1998-2000, Handled two projects: Credit cards at DubaiandCarLoansinMumbai.

Bank Internasional Indonesia as Head of Audit and Compliance and a part of the weekly Management committee of the Bank, Member of weekly management committee responsible for running of the bank. ALCO committee and Coordinate concurrent audit of investments

Ernst & Young Audit Manager Managing a number of Financial Services assignments

Delloitte - Statutory audit of NOCIL, PIL, Tandon Group of companies in SEEPZ

Professional Experience and Qualifications:

Was a President of ISACA Mumbai Chapter for the year 2007-08 and was a member of Board of Advisors to Bombay Chartered Accountants Society for Internal Audit Studies for the year 2005-06. WasaMemberofBoardofStudiesNMISforMBAActuaryduringtheyearFY-11.

Am the Chairman of ISACA India Growth Task ForceISACA International for the last two financial years.

Qualifications:

Bachelor in Commerce and Economics, Chartered Accountant, Certified Information Systems Auditor (CISA), Inter Company Secretary and Check Point Certified Security Administrator (CCSA); EnterpriseWideRiskManagementProgramfromAIMAsianInstituteofManagementManila

Mr. Vaibhav KhandelwalBusiness Head - India / South Asia, IBM Trusteer

VaibhavKhandelwalhasbeenworkingatintersectionofBanking&Technologyfor over 10 years. He has worked in Microfinance in SriLanka, been a Trade FinanceBankerwithABNAMROBankinSingaporeandwithIBMconsultedlarge global banks in Europe and Africa on the channel transformation and customer engagement initiatives. Vaibhav is currently India and South

Asia Head for IBM Trusteer - a cloud service that is enhancing consumer banking experience by protecting banks and their customers from cyberfraud. He is passionate about new technologies that aremakingbankingmorecredible,accessibleandefficient.VaibhavhasaPostGraduateDiplomain Management for Executives from IIM Ahmedabad.

SPEAKERS


Mr. Vishal SalviPartner, Cyber Security Services, PwC

Vishal Salvi is Partner for Cyber security in Price waterhouse Coopers Pvt. Ltd.Vishalhas21yearsifindustryexperienceITServiceDeliveryandCyberSecurity and has worked in Crompton Greaves, Development Credit Bank,GlobalTrustBank,StandardCharteredBankandHDFCBank.Hehasbeenperforming leadership roles in Cyber Security across these organisations for

past14years.HislastrolewasofbeingtheChiefInformationSecurityOfficerofHDFCBankforeight years.

Vishal has extensive management and domain experience in driving the Information Security program inallkeyaspectsi.e.Policy,Standards,Procedures,Awareness,Identity&AccessManagement,IT-GRC,NetworkSecurity, IncidentResponse,SecurityMonitoring,Malwareprotection,Securityconfiguration,Compliance,On-lineBankingandecommerce,Cryptography,DataProtection,ThirdParty Management, Business Continuity Planning. Vishal has extensively travelled and well know leader in information security industry within India as well as globally.

Vishal has rich experience in delivering simultaneous large scale, mission critical projects on time and under budget.

Mr. Deepak BhatiaHead Enterprise Sales Indian Subcontinent, Nuance

DeepakBhatiaheadsSalesforNuanceintheIndianSubcontinent,responsiblefor its Enterprise business. In this role, Deepak leads Sales Performance,Partner Management and Solution Marketing. Deepaks key focus is oncontinuingNuancesstrongmomentumintheEnterpriseAccounts,assisting

themtoimprovetheircustomersexperience,andatthesametime,increasesafety,securityandreduce operational cost.

Prior to joining Nuance, Deepak has been in various strategic and customer facing roles, withexperiences at Nokia, Siemens, Aspect Communications where he managed high-profile BFSI,telecommunications accounts, and channel partners across India and Middle East.

DeepakholdsaBachelorofTechnologyDegree(ElectronicsandCommunications)fromUPTUandhasstudiedGeneralManagementfromIIMLucknow.

SPEAKERS


My voice is my password.Voice Biometrics authenticates your customers through natural voice patterns, not robotic PINs, passwords, and questions. Its a level up in security. Its a brand new user experience. By giving them the freedom to speak, you let the customers be themselves.

Simpler authentication.With much less pain and effort for the customer, they feel more in control. And a happier customer is a more valuable customer.

Wipe out fraud.Knowledge-based security is nearing obsolescence. Voice Biometrics is the chance to start again from scratch. Its not a patch. Its not a reboot.

Almost-instant ROI.Whether its shorter call times, increased functionality, or the ability to do amazing new things with your mobile apps, Voice Biometrics can deliver from day one.

What customers are saying about Nuance Voice Biometrics.

The ultimate security measure is something you are. Voice is actually the most secure form

Paul Heller, CIO, Vanguard.

spoken passphrase login through this technology is a logical next step.

Voice Biometrics by the numbers.

Nuance Brochure May.indd 1 15/05/2014 8:29:58 AM

49% of users say authentication is time-consuming.

Knowledge-Based Authentication

85% of users are frustrated with existing authentication.

67% of mobile users reset passwords at least once a month.

Voice Biometrics Authentication

$15Maverage savings over a

three-year period.

90% of users prefer

Voice Biometricsover the status quo.

80% faster authentication

in 5 seconds.

Nuance CommunicationsDeepak Bhatia | [email protected] | +91 99111 81052

My voice is my password.Voice Biometrics authenticates your customers through natural voice patterns, not robotic PINs, passwords, and questions. Its a level up in security. Its a brand new user experience. By giving them the freedom to speak, you let the customers be themselves.

Simpler authentication.With much less pain and effort for the customer, they feel more in control. And a happier customer is a more valuable customer.

Wipe out fraud.Knowledge-based security is nearing obsolescence. Voice Biometrics is the chance to start again from scratch. Its not a patch. Its not a reboot.

Almost-instant ROI.Whether its shorter call times, increased functionality, or the ability to do amazing new things with your mobile apps, Voice Biometrics can deliver from day one.

What customers are saying about Nuance Voice Biometrics.

The ultimate security measure is something you are. Voice is actually the most secure form

Paul Heller, CIO, Vanguard.

spoken passphrase login through this technology is a logical next step.

Voice Biometrics by the numbers.

Nuance Brochure May.indd 1 15/05/2014 8:29:58 AM

49% of users say authentication is time-consuming.

Knowledge-Based Authentication

85% of users are frustrated with existing authentication.

67% of mobile users reset passwords at least once a month.

Voice Biometrics Authentication

$15Maverage savings over a

three-year period.

90% of users prefer

Voice Biometricsover the status quo.

80% faster authentication

in 5 seconds.

next step.

Documents

Secure BFSI Event Report