The EL/WLA Security Seminar: Challenges on the Horizon – Be Prepared!

Challenges on the Horizon – Be Prepared!” began with the keynote speech describing how there are only two types of organisations: those that have been hacked, and those that will be. The IOT (Internet of Things) will come to represent the Internet of Threats.
gallegoweb

Ramses Gallego, Security Strategist & Evangelist; Past international President, ISACA, Board of Directors.

The joint EL/WLA Security Seminar (Malaga 18 – 20 October), titled “Challenges on the Horizon – Be Prepared!” and graciously hosted by SELAE Spain, was a fabulous success.  A record number of participants from all regions of the world attended and engaged in a highly interactive and productive workshop led by twenty-five experts and leaders in the security field.

The keynote speech by Ramses Gallego (Security Strategist & Evangelist; Past international President, ISACA, Board of Directors) described how there are only two types of organisations: those that have been hacked, and those that will be. The IOT (Internet of Things) will come to represent the Internet of Threats. There is already an average of thirteen enterprise security breaches every day, resulting in roughly 10 million records lost a day—or 420,000 every hour. And that’s now – the IOT future will usher in an explosion in the number of device connections which will create entirely new levels of risk and vulnerability to hacking.

Examples:  Security experts Chris Valasek and Charlie Miller grabbed headlines with their research on the vulnerability of connected cars when they hacked into a Toyota Prius and a Ford Escape using a laptop plugged into the vehicle’s diagnostic port. This allowed them to manipulate the cars headlights, steering, and breaking.  The massive domain name hack that recently disrupted service at major websites like Netflix, Amazon, Twitter, Reddit and others was made possible by poorly protected IOT devices.  Systems need protection against new points of vulnerability and increasingly sophisticated methods of attack.  Thankfully, Mr Gallego’s warnings of dire challenges and potential consequences were presented in a most engaging and entertaining fashion!

thierry-pujol-fdj-lottery

Thierry Pujol, FDJ and Chair of WLA Security and Risk Management Committee.

_acr3621

Bin Han, GM of the Beijing Zhongcai Printing Company.

 

 

 

 

 

 

 

_acr3572

Danielle Van Emmerik, Senior Auditor, Nederlandse Loterij, Nederland Netherlands.

Thierry Pujol, FDJ and Chair of WLA Security and Risk Management Committee outlined the proposed changes for the next version of the WLA Security Control Standard (SCS) which were again discussed at the WLA General Assembly Singapore. These include additions for online, sports betting, electronic draws, and VLT’s.

Danielle Van Emmerik (Senior Auditor, Nederlandse Loterij, Nederland Netherlands), Evangelos Cosmidis (Financial Unit / Procurement & Quality Division Director, OPAP, Greece)  and Declan Murray (Security and Compliance Manager, Premier Lotteries Ireland) shared their experiences with various aspects of the WLA  SCS Certification process. The main theme was to prepare well and keep all colleagues and stakeholders fully informed at all stages of the process. Bin Han, GM of the Beijing Zhongcai Printing Company, described the certification process for a printing company and noted how important it was for their customers to know that they had the WLA SCS Certification.

The presentations on Personal Data Protection included a detailed description by Calvo Medina (IT Area Head of the Spanish Data Protection Authority), Franz-Joseph Wichmann (WestLotto), Johannes Puchinger (Austrian Lottery) and addressed both the big-picture importance of Personal Data Protection and detailed the practical applications of tools to provide such protection.  The speakers agreed that it is both efficient and practical to combine or create synergy between the functions of Privacy and Security.

The Partner/Supplier presentations from INTRALOT, Novomatic, IGT, Playtech and Scientific Games were particularly interesting and should have well reassured the participants that their suppliers were on top of the subject and were already planning systems that are keeping the government-gaming business protected from and ahead of the cyber-criminals of the future.

_acr3850

Manuel Gonzales Barreda, Director Fiscal Adjunto, SELAE, Spain.

_acr3644

Calvo Medina, IT Area Head of the Spanish Data Protection Authority.

 

 

 

 

 

 

 

_acr3585

Evangelos Cosmidis, Financial Unit / Procurement & Quality Division Director, OPAP, Greece.

Jean-Jacques Riera (Mission Head, Information Security, FDJ, France), Maurizio Rubini (Lottomatica, Italy), and Manuel Gonzales Barreda (Director Fiscal Adjunto, SELAE, Spain) presented on anti-money laundering where a “risk-based approach” was praised as a good solution.  These were followed by Antonio Gorrasi on the Italian approach and developments for protection, privacy and cybersecurity in Italy.

Gunnar Ewald (Chief Audit Executive, Vice President, LOTTO Hamburg GmbH) gave his traditional annual review of recent security issues worldwide and there followed some excellent presentations and an animated and robust round-table on “Trust and Assurance – RNG/Electronic Draws” comprised of Lotteries (FDJ, Loterie Romande, SELAE) and Suppliers/Certifiers (GLI, Smartplay, and Szrek2Solutions). Carlos Bachmaier (SELAE) presented a most informative review of existing standards for RNG’s and a comprehensive set of references for relevant articles. These details, together with all the presentations are available online to all of the participants at the Seminar.

The Seminar concluded with a practical hands-on workshop on the European Lottery Risk Tool supported by members of the EL POS Working Group.

Ray Bates, Honorary EL Chair, moderated.

qa190667

Related Articles

View all

Synopsis

Français
Le séminaire EL/WLA sur la sécurité s’est déroulé à Malaga du 18 au 20 octobre.  Le séminaire conjoint EL/WLA sur la sécurité intitulé « Défis à l’horizon ‑ Soyez prêts ! » et gracieusement accueilli par SELAE Espagne, a été un franc succès. Un nombre record de participants de toutes les régions du monde a participé à un atelier hautement interactif et productif conduit par 25 experts et dirigeants dans le domaine de la sécurité. Le discours d’ouverture de Ramses Gallego (stratège en sécurité et évangéliste, ancien président international, ISACA, Conseil d’administration) a décrit les deux types d’organisations : celles qui ont été piratées et celles qui le seront. L’IOT (Internet of Things [Internet des choses]) viendra représenter l’Internet of Threats (Internet des menaces). Il y a déjà en moyenne, chaque jour, 13 failles de sécurité en entreprises, provoquant la perte d’environ 10 millions d’enregistrements par jour ‑ soit 420 000 toutes les heures. Et c’est maintenant ‑ l’avenir de l’IOT marquera le début d’une explosion dans le nombre de connexions qui créera des niveaux jamais atteints de risque et de vulnérabilité au piratage. Thierry Pujol, FDJ et président du Comité de sécurité et de gestion des risques de la WLA a présenté les changements proposés pour la prochaine version du norme de contrôle de sécurité (Security Control Standard, SCS) de la WLA qui a été à nouveau discuté à l’assemblée générale de la WLA à Singapour. Il s’agit notamment d’ajouts pour les paris en ligne, les paris sportifs, les tirages électroniques et les VLT (Video lottery terminals [terminaux de loterie vidéo]). La protection des données personnelles a été abordée généralement ainsi que dans le cadre des applications pratiques des outils permettant de fournir une telle protection. Les intervenants sont convenu qu’il est à la fois efficace et pratique de combiner ou de créer une synergie entre les fonctions de protection des renseignements personnels et de sécurité. Les présentations partenaires/fournisseurs INTRALOT, Novomatic, IGT, Playtech et Scientific Games étaient particulièrement intéressantes et devraient avoir bien assuré aux participants que leurs fournisseurs sont spécialistes du sujet et qu’ils planifient déjà des systèmes qui protègent le secteur de la loterie des cyber-criminels du futur, en maintenant même une longueur d’avance sur eux.
Español
Seminario de seguridad de Loterías Europeas y WLA convocado en Málaga del 18 al 20 de octubre.  El Seminario de seguridad de Loterías Europeas y WLA, titulado “Retos en el horizonte – ¡Esté preparado!” y amablemente organizado por SELAE España fue todo un éxito. Contó con la asistencia de un número récord de participantes de todas partes del mundo, que se implicaron en un taller altamente interactivo y productivo conducido por veinticinco expertos y líderes en el campo de la seguridad. Ramsés Gallego (estratega y gurú de la seguridad, antiguo presidente internacional del comité directivo de ISACA) indicó, en la conferencia inaugural, que solo existen dos tipos de organizaciones: aquellas que han sido hackeadas y aquellas que lo serán en el futuro. El IoT (Internet de las Cosas) llegará a ser el Internet de las Amenazas. Actualmente se producen, de media, unas trece brechas de seguridad empresariales al día que producen, aproximadamente, 10 millones de registros perdidos cada día, o 420 000 cada hora. Y eso es ahora; el futuro Internet de las Cosas supondrá una explosión en cuanto al número de dispositivos conectados, y creará nuevos niveles de riesgo y vulnerabilidad al hacking. Thierry Pujol, FDJ y Director del Comité de gestión de riesgos de WLA, subrayó los cambios propuestos para la nueva versión del Estándar de Control de Seguridad (Security Control Standard, SCS) de WLA, que se discutieron de nuevo en la Asamblea General de WLA en Singapur. Estos cambios incluyen adiciones para el juego online, apuestas deportivas, sorteos electrónicos y VLT. Se habló de la protección de datos personales, tanto a gran escala como en la aplicación práctica de las herramientas que ofrecen dicha protección. Los conferenciantes indicaron que es eficiente y práctico combinar o crear sinergias entre las funciones de privacidad y seguridad. Las presentaciones de socios/proveedores por parte de INTRALOT, Novomatic, IGT, Playtech y Scientific Games fueron particularmente interesantes; los participantes obtuvieron confirmación de primera mano de que sus proveedores están a la vanguardia en cuanto a este tema, y ya están planeando sistemas que mantengan al sector de la lotería protegido de los ciberdelincuentes del futuro.
Deutsch
Das EL/WLA-Sicherheitsseminar findet vom 18. bis 20. Oktober in Malaga statt.  Das gemeinsame EL/WLA-Sicherheitsseminar mit dem Titel „Herausforderungen am Horizont – seien Sie vorbereitet!“ und liebenswürdig organisiert von SELAE Spanien war ein fabelhafter Erfolg. Eine Rekordzahl an Teilnehmern aus allen Regionen der Welt besuchte und engagierte sich in einem hoch interaktiven und produktiven Workshop mit fünfundzwanzig Experten und Führungskräften im Bereich Sicherheit. Der Keynote-Vortrag von Ramses Gallego (Sicherheitsstratege & Evangelist; ehemaliger internationaler Präsident, ISACA, Board of Directors) beschrieb, dass es nur zwei Arten von Organisationen gibt: solche, die schon gehackt wurden, und solche, die es noch werden. Das IOT (Internet of Things [Internet der Dinge]) wird bald als Internet of Threats (Internet der Bedrohungen) angesehen. Es gibt bereits einen Durchschnitt von dreizehn unternehmensbezogenen Sicherheitsverletzungen jeden Tag, was zu rund 10 Millionen verlorenen Datensätzen pro Tag bzw. 420.000 pro Stunde führt. Und das ist heute – die IOT‑Zukunft wird eine Explosion in der Anzahl von Geräteverbindungen einleiten, die völlig neue Risiken und Anfälligkeiten für Hacking schaffen. Thierry Pujol, FDJ und Vorsitzender des WLA-Ausschusses für Sicherheit und Risikomanagement, skizzierte die vorgeschlagenen Änderungen für die nächste Version des WLA Sicherheitsstandards (Security Control Standards, SCS), die auf der WLA-Generalversammlung in Singapur erneut erörtert wurden. Dazu gehören Ergänzungen für Online- und Sportwetten, elektronische Ziehungen und VLTs. Der Schutz personenbezogener Daten wurde sowohl im großen Rahmen als auch in der praktischen Anwendung von Tools zur Gewährleistung eines solchen Schutzes thematisiert. Die Sprecher waren sich einig, dass es sowohl effizient als auch praktisch ist, Synergien zwischen den Funktionen Datenschutz und Sicherheit zu schaffen oder sie miteinander zu verbinden. Die Partner-/Lieferantenpräsentationen von INTRALOT, Novomatic, IGT, Playtech und Scientific Games waren besonders interessant und sollten den Teilnehmern versichert haben, dass ihre Zulieferer auf dem aktuellen Kenntnisstand sind und bereits Systeme planen, die das Lotteriesektorgeschäft vor der Cyber-Kriminalität der Zukunft und darüber hinaus schützen werden.

Other Articles

View all

EL elects new Executive Committee & adopts Antwerp Resolution

Hansjörg Höltkemeier re-elected as EL President for the period 2019-2021 Re-elected EL President Hansjörg Höltkemeier (right) said, ‘‘We have had three fantastic days at the special 10th edi......

Read more Synopsis: fr / es / de

EL publishes first-ever Annual Report

Looking back at a successful 2018, EL has presented its first ever Annual Report. The Annual Report provides an overview of activities from the past year, which would not have been achieved without the ongoing support of EL members. By continuing to provide best practices, content and enthusiasm, they pave the way for the work of the Association....

Read more Synopsis: fr / es / de

EL’s Responsible Gaming Certification continues to reap benefits for members

Peter Simoner, CEO of Loteria Kombetare received his Commitment certificate from EL President Hansjörg Höltkemeier Benefits of the Commitment Level Loteria Kombëtare in Albania was the first-eve......

Read more Synopsis: fr / es / de

European Standard on reporting in support of online gambling supervision notes considerable progress

On 12 and 13 September the CEN Working Group drafting the Standard held its two-day meeting in Brussels. The Standard is expected to be put for public comment and a vote by the end of November 2019....

Read more Synopsis: fr / es / de

European Commission Sport Unit Breakfast welcomes EL

At the fourth European Commission Sport Unit Breakfast EL was invited to present how lotteries are supporting and using sport. EL President Hansjörg Höltkemeier highlighted the importance of promoting the values of sport and the sustainable financing from national lotteries....

Read more Synopsis: fr / es / de

New appointments for EL members

From left to right: Kerstin Kosanke, Managing Director, Lotto Brandenburg, Alexandru-Mircea Croitoru, General Manager, Loteria Romania, Bekir Yunus Uçar, General Director, Turkish National Lottery Administration & Gábor Czepek, CEO, Hungarian National Lottery...

Read more

10th EL Congress – Lotteries, democracy and the European political landscape

Brett Henning  Brett Henning, Co-founder and Director at Sortition Foundation analysed the results of the elections, looking closely at the rise in European populism. In the past months and years,......

Read more Synopsis: fr / es / de

IGT | Sustainability Strengthens the Social Contract

IGT recently released its 12th annual IGT Sustainability Report, “Ahead of the Game,” an externally audited document that validates IGT’s sustainability activities and data. The report highligh......

Read more Synopsis: fr / es / de

Scientific Games | Investing in growth with instant games

The global lottery industry faces new challenges from changing consumer and retail behaviours. Along with regulations and policy decisions, these changes place competitive and margin pressure on lotte......

Read more Synopsis: fr / es / de

EL Congress Antwerp – Day 1: The Corporate Success of Chance

The Black Swan with keynote speaker: Mr. Nassim Nicholas Taleb  International bestselling author Nassim Nicholas Taleb focused his keynote presentation on the Black Swan, his book which looks at th......

Read more Synopsis: fr / es / de

INTRALOT | Trends and technologies that modernise the Lottery Industry

As it was stated during the 10th EL Congress in the CEO Panel discussion by Maria Stergiou, Group Chief Sales and Operations Officer of INTRALOT, all the above technological trends are creating sever......

Read more Synopsis: fr / es / de

EL Congress Antwerp – Day 2: Give Chance a Chance

Talent Vs Luck After a lively performance by mentalist Gili, three inspiring keynote speakers highlighted the role of randomness in success and failure, bringing with them their own personal expertis......

Read more Synopsis: fr / es / de

Call for global action as Macolin Convention enters into force

The Convention entered into force thanks to its ratification by Italy, Moldova, Norway, Portugal, Switzerland and Ukraine. Another 32 countries, including Australia, have also signed it. Within 12 mon......

Read more Synopsis: fr / es / de

New Managing Director at Germany’s Lotto Brandenburg

Kerstin Kosanke, Managing Director of Land Brandenburg Lotto GmbH After finishing her law studies in Potsdam, Ms. Kosanke worked for 15 years as an independent lawyer with a focus on tax law and man......

Read more Synopsis: fr / es / de

Loteria Romania appoints new General Manager

Honoured in his new role Alexandru-Mircea Croitoru as General Manager, he will continue to work on the implementation of projects that will drive the development of the lottery. The Romanian Lottery is one of the oldest institutions in the country, established in 1906 in order to improve the health system, especially in rural areas....

Read more Synopsis: fr / es / de

Interview with Gábor Czepek, new CEO of the Hungarian National Lottery

Gábor Czepek, CEO, Hungarian National Lottery Szerencsejáték Zrt. is one of Hungary’s largest, dynamically developing state-owned enterprises: What were the most pressing tasks in this initial......

Read more Synopsis: fr / es / de

Introduction to new General Director at the Turkish National Lottery Administration

Following a career in journalism, Bekir Yunus Uçar spent over 20 years in public service. He worked in several roles at Türk Telekom before joining the Turkish National Lottery Administration. He was appointed General Director by the Minister of Treasury and Finance....

Read more Synopsis: fr / es / de

Chance is a part of Lotteries. Chance is a part of Success. Chance is also a part of Life.

Hansjörg Höltkemeier, EL President & Jannie Haek, CEO of the National Lottery Belgium open the Trade Show at the 10th EL Congress in Antwerp ‘‘The Success of Chance’’ was the theme for......

Read more Synopsis: fr / es / de