September 2019 Monthly Event
5:00 pm - 5:30 pm - Registration & Buffet
5:30 pm - Meeting Starts
5:35 - 6:30 - Session 1: A Risk Management Conversation on the Shift in Regulatory Landscape & What Financial Services Can Teach Technology Companies
6:30 - 6:45 - ISACA SV Board Announcements
6:45 - 7:00 - Networking Break (15 minutes)
7:00 - 7:55 - Session 2: Payments Ecosystem & FinTech Disruptions
7:55 - 8:00 - Raffle and Meeting Adjourn
P.S. Dinner will be served at 5 pm
This session will focus on: Technology companies, long left largelyunregulated, face a brave new world. Given growing concerns over dataprotection and cybersecurity, public scrutiny is increasing. As goodcorporate citizens, how can technology companies reshape their journeyand get ahead of these new developments? How can we as riskprofessionals take a strategic approach to strengthening platforms andmanaging risk, while preserving the agility that made the tech innovatorsgreat in the first place?
Melike Etem, Cybersecurity and Technology Risk Management Leader, Symantec
Melike Etem recently joined Symantec’s Global Security Office toarchitect and lead the company-wide risk management program. Melikehas been instrumental in enabling risk based decision making in various C-suite advisory roles in Ernst and Young and Freddie Mac. Most recentlyestablished the enterprise technology risk management program atCommon Securitization Solutions, the joint venture of Fannie Mae andFreddie Mac, to oversee and monitor the technology risk posture ofCommon Securitization Platform from development to after go-live aspart of single securitization initiative, an industry valued approximately$7 trillion. Melike has a proven track record in establishing andoperationalizing enterprise risk framework and strategic risk managementprograms including reporting on risk posture against risk appetite toenterprise risk council both in financial services and technology industry.A firm believer that any challenge is an opportunity to be approachedwith curiosity, positive attitude, and perseverance, Melike is passionateabout empowering and increasing visibility and influence of women inSTEM fields.Melike holds a B.S. in Computer Science and Engineering fromPennsylvania State University and an M.S. in Systems Engineering fromUniversity of Virginia. She is CISSP, CIPP/IT, CRISC, PMP and ITILcertified.
__________________________________________________________________
Session 2 - EPayments Ecosystem & FinTech Disruptions
- This session will focus on:
- Payments systems in the US
- Differences between "Push" and "Pull" Payments
- Payment Types (POS, P2P, B2B, Bill Pay, etc.)
- Coupled and Decoupled Transactions
- Settlement Process Payment Networks and their role
- Card Economics How does Paypal, Square, Stripe, etc. make money?
- Security and Privacy by Design
- Regulations (PCI, PSD2, 3D Secure, etc.)
- Full Stack Bank or Full Stack FinTech
Speaker: Sangram Dash (CISM, PMP, MBA), Senior Business Risk Officer, Silicon Valley Bank
Sangram Dash is a specialist in the execution of Information Security,Technology/Product Risk Programs with 10+ years’ experience in theFinTech industry (SVB, Square, Braintree, Venmo and PayPal). Mr. Dashhas led various risk management programs to strengthen internalcontrols, process transformation, and regulatory compliance. Mr. Dash ispassionate about building secure and compliant software products in theFinTech industry. Mr. Dash presently leads the Cybersecurity GRC
function at Silicon Valley Bank. Prior to SVB, Mr. Dash led the TechnologyRisk program at Square. Mr. Dash spent six years at PayPal where he ledthe Product Risk Assurance function with a focus on Venmo and Braintree.He is a Certified Information Security Manager (CISM) and ProjectManagement Professional (PMP). He has an MBA from the UCLA AndersonSchool of Management.
________________________________________________________________________________________