Book before

28 July 2014
to receive our
early bird discount

One-day connected forum with two half day post-forum workshops

27-28 August 2014, Rydges Melbourne

$945 + GST

Joining the national and international dots to closely

examine the threatening & mysterious world of fraud

Digital Fraud in
Corporate & Government
Hear from our expert panel of speakers:
PricewaterhouseCoopers
University of South Australia
Australia Post
Ernst & Young
NBNCO
BAE Systems Applied Intelligence
STOPline Pty Ltd
And
Sam Sittlington Director, The Fraud Company
(UK) (and former) Head of Financial
Investigation Unit, Economic Crime Bureau,
Police Services of Northern Ireland
9
9
9
9
9
9
9
9

This conference puts forward case

studies, insights and perspectives
from leading practitioners across
Australia and internationally, who
are very much in the same boat
as you are; or may be in trying
to find answers to the unknown
territory(ies) of digital fraud and
sharing their thought, strategy
and response to their unique
professional journeys whilst
combating online risks, threats and
digital frauds of varying nature and
complexities.

Cyber criminal portal the heart of Cyber Criminal Economy

Targeted attacks - Common perceptions; Lego blocks
Procurement and contracting fraud
Fraud maturity
Joining the dots when local crime goes Global
Money service bureaus
Investigating a data breach - manage an incident response
Securing the corporate mobile

Post Forum Workshops

A Electronic Information in Pursuit of Civil Recovery

Facilitated by: Blare Sutton, Director Consulting Services, EDT and

Sarah Coffey, Executive Counsel at Millens Pty Ltd

B Security and PCI an Approach that is Practical

Facilitated by: Trevor Cushen, Service Manager Governance Risk & Compliance (GRC),
BAE Systems Applied Intelligence

Endorsed By:

Event Partner:

w w w. a r k g r o u p a u s t r a l i a . c o m . a u

AGENDA

Digital Fraud in Corporate & Government

27-28 August 2014, Rydges Melbourne

Digital Fraud is the single most widespread fraud to have taken over any other (less significant) frauds today. Its a major
threat to businesses, corporate and the government, making the investigation of fraud and recovery of debt far more
significant than before. To make it even worse, electronic devices like the mobiles, tablets and memory cards have added an
altogether new dimension to corporate fraud. Online emailing / transactions / contracts and even highly sensitive company
information is predominantly stored on the web thereby open to the enormous danger of being ripped open by an intruder
and exploited in ways unanticipated and at times, unprecedented. New forensic technologies therefore demand to be updated
constantly to respond to the evolving nature of this threat. In such circumstances, it can be extremely challenging to maintain
vigil, secure your data and anticipate the plethora of digital frauds floating around the web.

COnnected forum - Wednesday, 27 August 2014

8:30 Registration and refreshments
9:00

Chairperson's opening remarks

Sam Sittlington, Director, The Fraud Company (UK)

9:15 Building Advanced Persistent Threat out of building blocks

This presentation will demonstrate how even the most
sophisticated and highly publicised attacks could be built using
services available on the open criminal market. The business
model of a typical APT attack on financial and retail industry will
be demonstrated. Examples of the valuable information sought
by attackers will be given. The conclusion of the presentation will
focus on the implications of the development in cybercriminal
economy for the financial industry, and legitimate economy in
general.
Cyber criminal portal the heart of Cyber Criminal Economy
Targeted attacks - Common perceptions; Lego blocks
Conclusion

Stas Filshtinskiy, CISSP, Principal Consultant,
BAE Systems Applied Intelligence

1:30 Investigating a data breach

Data breach incidents can be high profile and damaging. To
manage the damage you need to quickly understand:
Who was involved?
How did they do it?
What data was compromised?
This session will discuss practical examples of the who, how
and what and how to best manage an incident response.

Warren Dunn, Partner - Head of Forensic Technology &
Discovery Services, Ernst & Young
2:15 If your corporate mobile is lost, what can I know about you?
Whats on your mobile devices?
What information can others possibly exfiltrate recover from
my mobile devices?
Securing my mobile devices (example: using anti-forensic
techniques)

Dr. Raymond Choo, Senior Lecturer and Fulbright Scholar,
University of South Australia

10:00 Hesperbot: Under the Bonnet

What is Hesperbot, and what does it do?
How does Hesperbot work?
How widespread is Hesperbot?
Malcolm Shore, Principal Security Officer, NBN Co Limited

3:00 Audience Interactive

During this interactive, Andrew will field questions that arise
through the day, and will solicit responses from speakers and
attendees alike. The objective is to collaborate and share

Facilitated by: Andrew McLeish, Director Forensic
Technology, STOPline Pty Ltd

10:45 Morning refreshments and networking

3:45 Afternoon refreshments and networking

11:00 The growth in procurement and contracting fraud

What is procurement and contracting fraud, and how does it
manifest?
Case studies of each
Proactive measures to prevent the risk of fraud
and corruption

Steve Hipkin, Director Fraud and Forensics,
PricewaterhouseCoopers

4:00 Keystroke loggers software that spys

Key logger software is used to collect as much information as
possible from a persons computer or business network without
the knowledge or permission of the other person. This includes
passwords, banking details, private and confidential information.

This presentation will give you an in depth understanding of
what software key loggers are capable of capturing when using
a computer.

Andrew McLeish, Director Forensic Technology, STOPline
Pty Ltd

Andrew McLeish was working at the Australian Federal Police
during this period and as a Senior Computer Forensic Examiner
he investigated numerous cases where software key loggers
were used to collect personal and confidential information about
a person.

11:45 Collaboration for success

Understanding and working within a dynamic business
context
Fraud maturity why its important to understand where were
at
Making good behaviours BAU

Paul Gardner, Manager Fraud Control & Financial Security,
Australia Post
12:30 Lunch (Let us know if you have any special dietary
requirements 2 weeks prior to the forum)

4:20 Case Study: Police Services of Northern Ireland

Joining the dots when local crime goes Global
Money service bureaus
Assistance from overseas
Analysis in investigation

Sam Sittlington (formerly) Head of Financial Investigation
Unit, Economic Crime Bureau, Police Services of Northern
Ireland
5:00 Chairpersons closing remarks and end of connected forum

Workshops - Thursday, 28 August 2014

A

Electronic Information in Pursuit of Civil Recovery

Registration: 8.30 am
Workshop starts: 9.00 am
Workshop ends: 12.00 pm
Facilitated by: Blare Sutton, Director Consulting Services, EDT and Sarah Coffey, Executive Counsel at Millens Pty Ltd
About the workshop:
Blare Sutton, Director Consulting Services, EDT and Sarah Coffey, Executive Counsel at Millens Pty Ltd, explore the role of electronic information in the pursuit of a digital fraudster. With a scenario based on real life experiences, the workshop will cover:
1.
Digital Fraud Detection
2.
Obtaining Civil Search Orders (traditional and electronic investigation)
3.
Preservation of Electronic Information
4.
Examination, analysis and presentation of electronic evidence at trial
This workshop is ideal for CEOs, CFOs and CIOs who wish to broaden their awareness in protecting themselves against digital fraud and the
process of pursuing a digital fraudster. Internal and external legal counsel who have not participated in a Civil Search Order will also benefit.
About your workshop leaders:
Blare is an IT Forensic and eDiscovery specialist with a passion for helping people deal with difficult IT problems. His 15 years
experience providing IT Forensic and electronic discovery services in professional services firms such as PPB Advisory, Ernst
& Young, PwC, his own firm Inveni Pty Ltd and now EDT give Blare a unique insight into the many issues and solutions available in his area of expertise. Blare has led and managed multi-million dollar, global engagements for both Ernst & Young and
PwC. He has a Post Graduate Certificate in eCrime Investigation (University of Melbourne) and is an Associate Member of the
Australian Institute of Professional Investigators and the Australian Computer Society.
Sarah is an experienced corporate lawyer who has assisted in the investigation and litigation of numerous digital frauds. She
has broad experience in preparing, obtaining and executing Civil Search Orders, resulting in an excellent knowledge of the
benefits and pitfalls of dealing with electronic information throughout the process. Her ability to understand and communicate
the complex issues in dealing with electronic information make her a leading litigator in the area of Digital Fraud.

Security and PCI an Approach that is Practical

Registration: 12.30 pm
Workshop starts: 1.00 pm
Workshop ends: 4.00 pm
Facilitated by: TTrevor Cushen, Service Manager Governance Risk & Compliance (GRC), BAE Systems Applied Intelligence
About the workshop:
A review of adopting security in an environment that is manageable and aligned to both compliance needs and business daily
operations. Drawing on over 15 years in the information security and almost 10 years PCI auditing across 30+countries, this
workshop will review the common audit failings and implementation pitfalls and how they could have been avoided. Various case
studies will be reviewed to illustrate the approaches that have worked and why and those that have not worked and why.
1.
Security as a practical part of business as usual
2.
Adopting a security standard such as PCI DSS
3.
Pitfalls of compliance to a standard
4.
Security as an ongoing business element
About your workshop leader:
Trevor Cushen began PCI DSS auditing from version 1.0 and carried out some of the first audits across Europe
and the Middle East, in many countries the very first audit. With almost 10 years of PCI DSS experience and a
world of audits under his belt Trevor is ideal to discuss openly the topic of security implementation and passing
audits. Originally from Ireland, Governance Risk & Compliance (GRC) Service for BAE Systems for the APAC
Region and is based in Sydney Australia.

5 way s t o b o o k yo u r p l a c e AT t h i s e v e n t
Phone: +61 1300 550 662
+61 (02) 8913 4000

Fax: +61 1300 550 663

+61 (02) 8913 4099

Email: aga@arkgroupasia.com
Web: www.arkgroupaustralia.com.au

Post: Send the completed registration form to Ark Group Australia Pty Ltd, Main level, 83 Walker Street, North Sydney, NSW 2060

Digital Fraud in Corporate & Government

SO-web

27-28 August 2014, Rydges Melbourne

put your details here (please print):
Organisation Name

postal address

Connected forum +
workshops

state

postcode

fax

phone

Connected forum +
workshop
A
B

Post-forum workshops
A or B

Connected forum only

Standard pricing

o Save $200
$2185+ GST = $2403.50

o Save $100
$1590 + GST = $1749

o $995 + GST = $1094.50

o $695 + GST = $764.50

Early bird (exp: 28/07/2014)

o Save $300
$2085+ GST = $2293.50

o Save $200
$1490+ GST = $1639

o Save $50
$945 + GST = $1039.50

o Save $50
$645 + GST = $709.50

o Save $400
$1985 + GST = $2183.50

o Save $300
$1390 + GST = $1529

o Save $100
$895 + GST = $984.50

o Save $100
$595 + GST = $654.50

Not valid with any other offer

Member discount(I am a member

of a supporting organisation)
(exp: 28/07/2014)

I am a member of a supporting organisation

Delegate

Name

Job title

Email address

1st
2nd
3rd
4th

Event venue and accommodation

Signature

Preferential rates are available at the Rydges

I have read and accepted the booking conditions

Melbourne. Please contact the hotel directly to make

Please note: Payment must be received in full prior to the event to guarantee your place

o Mastercard

o Visa

o American Express

your reservation, quoting Ark Group Australia as

your reference.

Card number

Rydges Melbourne

Expiry date

186 Exhibition Street

Cardholders name

Melbourne

Cardholders signature

Phone: 03 9662 0511

o Payment enclosed (Cheques should be made payable to Ark Group Australia Pty Ltd)
o Please invoice me
Booking conditions
1. Bookings can be submitted at any stage prior to the
event, subject to availability. A limited allocation is being
held and booking early is therefore recommended. In
the event of the booking not being accepted by Ark
Group Australia the total amount will be refunded.
2. Payment must be received in full prior to the course.
3. All speakers are correct at the time of printing, but are
subject to variation without notice.
4. If the delegate cancels after the booking has been
accepted, the delegate will be liable to the following
cancellation charges:
Cancellations notified over 45 days prior to the event
will not incur a cancellation fee.
In the event of a cancellation being between 45 and
30 days prior to the event, a 20% cancellation fee
will be charged.

5.
6.
7.
8.
9.

www.rydges.com

For cancellations received less than 30 days prior to

the event, the full delegate rate must be paid and no
refunds will be available.
All bookings submitted by e-mail, fax, or over the
telephone are subject to these booking conditions.
All cancellations must be received in writing.
Ark Group Australia will not be held liable for
circumstances beyond their control which lead to the
cancellation or variation of the programme.
All bookings, whether Australian or overseas will be
charged Australian GST at the prevailing rate at the
time of booking.
Delegates are responsible for their own travel,
accommodation and visa requirements.

We occasionally allow reputable companies to mail details of products we feel may be of interest.
If you do not wish to receive this service, please tick this box q

F004

Sponsorship or Exhibition Opportunities

If you are interested in sponsoring or exhibiting at this
event
please contact Ark Group Australia on:
Phone: 1300 550 662
Email:aga@arkgroupasia.com