Overview    Webinars    Webcasts    Seminars    Training    White Papers    eNewsletter 

Products

Webcasts

Join featured Forrester analyst Khalid Kark and executives from Forrester, PCI and AirDefense for this 90-minute educational webcast to discuss retail wireless security risks and the importance of PCI compliance. We will also discuss value-added functionality components that retailers require for ensuring long-term security of real-world wireless networks.

Wireless LANs are proving their value to retailers with the flexibility of easily deploying checkout registers throughout stores and the productivity benefits of wireless applications, such as managing inventory. Without the time and cost of additional wiring, WLANs allow retailers to position registers closest to where customers make their buying decisions with multiple points of sale. WLANs also enable mobile applications for tracking goods to instantly connect data from bar code scanning to backend systems of inventory management.

Attend this complimentary webcast to understand the WLAN security needs for retailers to lock down enterprise WLAN deployments, secure the integrity of customer information, and adhere to industry regulations. Hear from leading industry experts on the major challenges identified by retailers in becoming compliant with the Payment Card Industry Data Security Standard. Learn how to address the issues and plan accordingly to meet your compliance needs.

 Webcast Agenda

  1. State of Wireless Security and PCI Compliance in the Retail Industry – Khalid Kark, Principal Analyst, Forrester
    2.
    1. Examples of wireless data breaches and lessons learned
    2. Industry trends in PCI Compliance
    3. Security challenges with wireless networks
    4. Technology trends for wireless security and wireless policy compliance
    5. Security v compliance - Best practices for wireless security in retail
       
  2. PCI DSS Wireless Requirements – Troy Leach, Director of Technology, PCI
    3.
    1. PCI’s overall charter for wireless security
    2. Section 11.1 – The need to scan all locations using wireless analyzers and distinguishing rogue devices from neighbors
    3. Section 4.1.1 – WEP v WPA, layered security and compensating control provisions
    4. Other wireless requirements – 10.5.4 (logging), 12.3 (usage policies), 9.1.3 (physical security), etc.
    5. Network segmentation best practices and limitations
    6. Best practices and compliance guidelines for auditors and retailers
    7. Beyond DSS 1.1 (QA, FAQ initiatives, standard enhancements, etc.)
       
  3. Retail Wireless Vulnerabilities & Solutions – Dr. Amit Sinha, CTO, AirDefense
    1. Summary of retail wireless survey results
    2. Wireless Vulnerabilities – Rogue devices and wireless attacks in retail
    3. Limitations of firewalls and VLANs
    4. Wireless intrusion prevention
    5. Cost effective and accurate PCI wireless compliance
       
  4. Q&A

 

Speaker Bios:

Khalid Kark, Principal Analyst, Forrester, primarily contributes to Forrester's offerings for the Security and Risk Management professional. He is a leading expert in security management, compliance, best practices, and services. Khalid's research focuses on helping organizations to make their information security programs more effective by aligning them to the business objectives while appropriately managing information security risks. His research focuses on the strategies, operational processes, and organizational structures for developing and maintaining effective security programs. Khalid covers security strategy, metrics, reporting, and security service providers. He also advises clients on standards, industry and government regulations, and compliance. Khalid has co-developed Forrester's Information Security Framework and assessment methodology. Prior to joining Forrester, Khalid worked in the consulting and enterprise sectors. He has managed information security programs, security infrastructure, and control frameworks for enterprises in the healthcare and financial services sectors. Khalid holds a master's degree in telecommunications management from University of Pennsylvania and a bachelor's degree in business and economics from University of Texas at Austin. Khalid is also a Certified Information Systems Security Professional and a Certified Information Security Manager.

Troy Leach, CISSP, CISA is the Technical Director for the PCI Security Standards Council (SSC).  Prior to joining the Council, Mr. Leach led  the incident response program at American Express and has reviewed more than 300 cases where account data has been compromised.  Mr. Leach has had the benefit to consider challenges and opportunities to meet PCI compliance and apply security safeguards from a variety of unique positions.  Over the past 15 years, he has held positions in systems administration, network engineering, IT management, security assessment and forensic analytics.  Mr. Leach holds a Master of Science in Telecommunications & Network Management as well as a graduate degree in Information Security Management from Syracuse University.

Dr. Amit Sinha, Vice President and Chief Technology Officer at AirDefense, specializes in wireless communications and low power design. Prior to joining AirDefense, he served as Vice President and Chief Technologist at Engim, a company he co-founded. At Engim he designed 802.11 modems and was responsible for the core technology portfolio of the company. Prior to Engim he held various research positions at MIT, Hewlett Packard Laboratories, Intel Corporation and Texas Instruments. Amit is an accomplished researcher with more than 25 refereed papers published in technical journals and conferences to his credit. Amit received his S.M. and Ph.D. degrees in Electrical Engineering and Computer Science from the Massachusetts Institute of Technology, Cambridge, and his B.Tech. degree in Electrical Engineering from the Indian Institute of Technology, New Delhi, India where he was awarded the President of India Gold Medal for graduating summa cum laude.


Copyright 2001-2008 AirDefense, Inc. All Rights Reserved.

Privacy Policy | Legal Notice