95830
We are sorry, this event is in the past, registrations are now closed. To view forthcoming events please see the Next Sessions tab or see our Schedule.

The only course of its kind which cover emerging threats to the ATM environment and its components (cash, device, and data). Its been recently adapted to instil a holistic approach to security and a set (and proven) risk-based methodology.

The International ATM Security Training is the global benchmark for ATM professionals, developed by LiquidNexxus in collaboration with industry stakeholders and subject-matter experts. ATM Security Training covers strategic management, physical, and logical perspectives focusing on increasing knowledge of ATM fraud as well as key recommendations for proactive protection at each stage of the ATM Life cycle.

The ATM Security Training - London

LnxImage object

Context

Direct losses to financial institutions from ATM related attacks amount to hundreds of millions while ranging from low-tech to highly sophisticated schemes. As banking and payment systems evolve, so do fraudsters' expertise and methods of illicit financial gain. The nature of the ATM environment encompasses many internal and external stakeholders, which presents wider attack surfaces and leads to more exploitable opportunities for fraudsters.

LnxImage object

Why Attend

Unique insights based on LNX global network of contacts in payment system fraud and security units including banks, ATM networks, central banks and regulators, industry bodies.
A completely neutral approach to training focused on vendor-neutrality and agnostic advice.
Discover the latest statistics and trends, threat vectors and countermeasures.
Find out how the latest ATM Physical, Fraud and Logical Threats are evolving.
Learn about ATM functionality, components, inter-relationships, and dependencies between cash, device, and data.
Understand how Risk Management & Industry Compliance affect ATM Security.
Drive adoption of proactive industry best practices from installation through maintenance and decommissioning.
Understand the logical device security flaws affecting ATMs as well as measures that can be employed to reduce risks.
Benchmark your Security Strategy, Controls, and Procedures and learn how to streamline operations and reduce the short, mid and long term impacts of ATM crimes on your organisation.

LnxImage object

Who attends

System and Network Administrators
Payment Channel Management
Cash in Transit
Fraud Prevention
Compliance & Audit
ATM Channel Management

Banking Associations, Central Banks and Oversight Bodies
Banks and Financial Institutions
Payment Processors and Networks
Service and Maintenance Companies
Corporate and Information Security
Law Enforcement

None

Testimonials

Hundreds of delegates from all over the world have attended LiquidNexxus training sessions. Here are some testimonials related to this course/event.

View More Testimonials
None

Agenda

The ATM Security Training covers all aspects of ATM Security, from physical and fraud attacks, to logical attacks (such as black box, malware and others). Over the course of 2 full days the expert trainers will walk you through all key aspects you must be aware of in order to implement a comprehensive ATM Security strategy. 

ATM Risk Assessment Methodology

As opposed to a pen test, this section leverages industry best practices and recommendations for risk assessments applied specifically to the ATM environment with particular focus on people and processes.
  •  

Card & Payments Context

A brief introduction to the context of magstripe cards, chip cards, payment stakeholders and their roles and how all influence and impact ATMs and ATM Security.

Card & Payments Context

A brief introduction to the context of magstripe cards, chip cards, payment stakeholders and their roles and how all influence and impact ATMs and ATM Security.

ATMs and Components

An overview of the ATM machine, types of ATMs, ATM positioning/locations, common ATM hardware components, and understanding ATM transactions to set the scene for the rest of the course.

ATM Location & Fraud Prevention Through Environmental Design

In this section the course covers some of the common best practices in environmental design as well as relevant controls that should be applied at ATM physical locations as well as accompanying elements which deter and prevent criminal activity. across the world, this section provides a brief overview of attacks and countermeasures.

The ATM Lifecycle

This section covers the ATM lifecycle from purchasing to decommissioning, all  stakeholders involved, tasks involved for each stakeholder at each stage of the process.

Cash Trapping Updates

One of the emerging threats in Europe and particular also to specific countries, this type of attack is easy to perpetrate and hard to detect, this section covers cash trapping, transaction reversal, types and techniques as well as countermeasures

Countering ATM physical attacks

An overview of physical attacks with videos and demonstrations of modus operandi across the world, this section provides a brief overview of attacks and countermeasures.

ATM Fraud Trends

This chapter focuses on ATM fraud and attack trends as provided by EAST and other reputable sources providing a global perspective on how ATM fraud occurs and the differences between regions.

Card Trapping

This section focuses on describing Card Trapping, various types of trapping devices, and examples.

Skimming Updates

As the top global ATM fraud this section focuses on defining and describing skimming, showing examples of various scams, describing the various methods employed as analyzing recent devices and techniques being employed by fraudsters. The section also covers specific countermeasures to ATM Skimming.

Servicing and Cash Management Risks

ATM Maintenance and Cash replenishment functions are two of the most important functions in the ATM lifecycle; in this section we cover typical activities carried out, potential risks as well as general advice for these functions.

Security Policy, Management & Audits

No controls are effective without a holistic integrated strategy, in this section the course covers some high level recommendations for management of ATMs as well as how these overlap with more common best practices.

    Hacking, Cybercrime & the ATM Fraud Economy

    There has been much published about how hackers are attacking ATM machines, this section focuses on clarifying the various forms of attack, profiling criminal groups and clarifying their modus operandi in this domain.

    ATM Hacking and Malware Analysis

    2013 and 2014 have seen Malware feature prominently in the news and affects institutions across the globe. This section analyses in detail the various incidents known and details the modus operandi of Malware attacks with demonstrations. In this section specific countermeasures are also covered.

      ATMs and the logical software environment

      This section covers in detail the ATM software environment focusing on clarifying the different logical components and interactions between them. This chapter sets the scene for further understanding ATM functionality and how different type of fraud affects ATMs.

        Monitoring & Remote Management

        This section covers various tools for ATM management and monitoring which permit ATM deployers to not only manage endpoint security but also conduct other activities such as remote diagnostics.
         

          Applicable Standards & Other Recommendations

          PCI Standards have become de facto for minimum controls on cardholder data and transactions, in this section we cover how these standards apply to ATM environment and in particular PCI DSS, PA DSS and PTS (POI) applicability and relevance.
           

            ATM Applications, Operating System, & System Hardening

            In light of recent trends and the growth of ATM malware and similar attacks, this section covers guidelines and recommendations for securing the system against manipulation and tampering.
             

              ATM Controls: People, Processes & Technology

              This section covers best practices which should be employed by deployers to prevent external attacks, internal misuse, fraud, and costly errors as well as guidance on monitoring and prevention including: Data & Asset Classification, Asset Inventory, Change Control and Change Management, Audit Trails and Accountability, Responsibilities & Oversight
               

                Payment Fraud Trends

                In order to understand ATM fraud this chapter focuses on clarifying how card fraud occurs, recent trends from various industry sources, how this type of fraud facilitates and is manifested at ATMs.

                Venue

                London is the capital and most populous city of England and the United Kingdom. Standing on the River Thames. 
                London is a leading global city, with strengths in the arts, commerce, education, entertainment, fashion, finance, healthcare, media, professional services, research and development, tourism, and transport all contributing to its prominence. 

                *The venue is only disclosed to confirmed participants

                None

                Next Sessions

                No session planned yet for this course, please click here to contact us.
                Inhouse and eLearning available and we are always interested in working with new partners.