NEW FOR 2015- Meet our Speakers!
Presentation and Cocktail Sponsor
Cyber Risk Stream Sponsors
Cyber Risk Co-Sponsor
Cyber Risk Roundtable Sponsors
Cyber Risk Associate Sponsor
EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. We develop outstanding leaders who team to deliver on our promises to all of our stakeholders. In so doing, we play a critical role in building a better working world for our people, for our clients and for our communities.
EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients. For more information about our organization, please visit ey.com.
Aon is a market specialist in operational risk management and mitigation. Through a combination of proprietary data, models and platforms, together with specialists in scenario analysis, modelling, appetite/tolerance, frameworks, and governance, we advise on and help clients to maximize their investment in operational risk to not only understand the regulatory environment and requirements, but to use risk understanding to drive better business decisions and performance management. Our practice works with both "top of the house" and underlying business units on their respective needs.
The regulatory requirements for US financial institutions have increased in both breadth and complexity of requirements, notably demonstrated by new stress testing requirements.
Our clients range from the most complex, with sophisticated Advanced Measurement Approach and Internal Models, to diversified financial institutions of all sizes. We help clients define their objectives and requirements for the management of operational risk in the short, medium and longer-term. Drawing on proprietary tools and insight gained across the global financial services industry, clients receive support and advice in setting out and articulating a clear vision for risk management and governance. Implementation planning and the setting out of a roadmap that will deliver value to the business quickly is also a key output.
It is important to note that an often overlooked aspect of requirements is the amount of advance time required to build the initial framework, typically multiples of years, and the initial planning phase is critical given changes often come at significant cost.
While Aon's consulting offering covers all aspects of the operational risk framework, below are some of the specific requests from our clients:
• Operational risk program gap analysis
• Model and/or framework validation
• Operational risk data analysis
• Capital attribution and optimization
• Scenario Analysis framework and execution
• Full model build and upgrade consulting
• Stress Testing for Operational Risk (Dodd Frank Stress Tests, ICAAP)
• MRA Consulting
• Regulatory Direction Consulting
The appropriate framework for a one type of financial institution may not be the same as another, particularly when crossing from Bank Holding Company to another type of institution. Because of this, and regardless of the scope of the consulting request, we believe it is important for Aon to be a partner in program development alongside the institution rather than providing a block-box solution.
Ayasdi is on a mission to make the world's complex data useful by automating and accelerating insight discovery through machine intelligence. Our breakthrough approach, Topological Data Analysis (TDA), simplifies the extraction of intelligence from even the most complex data sets confronting financial services organizations. Aysadi software is deployed in 3 of the 5 largest financial institutions worldwide where it performs model validation, client segmentation, fraud detection, market conditions analysis as well as regulatory and risk assessment.
Developed by Stanford computational mathematicians over the last decade, our approach combines advanced learning algorithms, abundant compute power and topological summaries to revolutionize the process for converting data into business impact. Funded by Khosla Ventures, Institutional Venture Partners, GE Ventures, Citi Ventures, and FLOODGATE, Ayasdi's customers include General Electric, Citigroup, Anadarko, Boehringer Ingelheim, the University of California San Francisco (UCSF), Mercy, and Mount Sinai Hospital.
BWise, a Nasdaq company, is a global leader in Enterprise Governance, Risk Management and Compliance (GRC) software. Based on a strong heritage in business process management, the BWise® GRC Platform provides companies with highly-rated, proven software solutions for Risk Management, Internal Control, Internal Audit, Compliance & Policy Management, IT GRC and Sustainability Performance Management.
BWise's end-to-end solutions support an organization's ability to understand, track, measure, and manage key organizational risks. BWise helps companies truly be in control by balancing performance with their financial and reputational risks, improving corporate accountability, increasing financial, strategic and operating efficiencies. Using BWise, organizations are able to efficiently comply with anti-corruption regulations like FCPA and the UK Bribery Act, the Sarbanes-Oxley Act, European Corporate Governance Codes, ISAE3402/SAS-70, PCI-DSS, Solvency II, Basel II and III, Dodd-Frank, ISO-standards, and many more.
BWise sales, service and support offices around the globe provide for the GRC needs of hundreds of leading companies worldwide. For more information, visit www.bwise.com. Follow us on LinkedIn and Twitter.
Nasdaq (Nasdaq: NDAQ) is a leading provider of trading, clearing, exchange technology, listing, information and public company services across six continents. Through its diverse portfolio of solutions, Nasdaq enables customers to plan, optimize and execute their business vision with confidence, using proven technologies that provide transparency and insight for navigating today's global capital markets. As the creator of the world's first electronic stock market, its technology powers more than 70 marketplaces in 50 countries, and 1 in 10 of the world's securities transactions. Nasdaq is home to more than 3,500 listed companies with a market value of over $9.1 trillion and more than 10,000 corporate clients. To learn more, visit http://nasdaq.com/ambition or http://business.nasdaq.com.
CRISIL Global Research & Analytics (GR&A) is the world's largest and top-ranked provider of high-end research and analytics services. We are the world's largest provider of equity and credit research services. We are also the foremost provider of end-to-end risk and analytics services to trading and risk management functions at the world's leading financial institutions and corporations. We are committed to delivering cutting-edge analysis, opinions, and solutions. This underscores our proposition of being the best people to work with.
FIS (NYSE: FIS) is the world's largest global provider dedicated to banking and payments technologies. With a long history deeply rooted in the financial services sector, FIS serves more than 14,000 institutions in over 110 countries. Headquartered in Jacksonville, Fla., FIS employs more than 39,000 people worldwide and holds leadership positions in payment processing and banking solutions, providing software, services and outsourcing of the technology that drives financial institutions. First in financial technology, FIS tops the annual FinTech 100 list, is 434 on the Fortune 500 and is a member of Standard & Poor's 500® Index
KPMG is a global network of professional firms providing Audit, Tax, and Advisory services. We operate in 152 countries and have 145,000 people working in member firms around the world. With more than 22,000 people, including more than 1,700 partners, KPMG LLP is a leader among professional services firms in the United States. We provide services from 87 offices covering clients in all 50 states.
Our high-performing people mobilize around our clients, using our experience and insight to cut through complexity and deliver informed perspectives and clear methodologies that our clients and stakeholders value. Our client focus, commitment to excellence, global mind-set, and consistent delivery build trusted relationships that are at the core of our business and reputation.
In essence, our competitive advantage is high-performing people cutting through complexity.
MetricStream is the market leader in integrated governance, risk and compliance (GRC) and operational risk management solutions for banks and financial services organisations. MetricStream GRC solutions are used by leading retail banks, commercial banks, asset managers, investment banks, stock exchanges, federal agencies and financial institutions for automating and streamlining risk, compliance, policy and auditing programmes across the enterprises.
The MetricStream solution includes integrated functionality for documenting risks, defining controls, managing assessments, identifying issues and implementing remediation plans that are based on industry-specific standard frameworks, best-practice workflows, powerful analytics and embedded risk control libraries. The solution provides a multidimensional approach for managing risk through advanced risk and control assessments, real-time risk intelligence metrics, a centralised loss database, and integrated issue tracking supported by built-in risk analytics and reporting functionality.
The MetricStream operational risk management solution is based on the industry-leading enterprise GRC platform that has been categorised in the leadership quadrant by leading independent industry analysts.
Allegis Group, a leading global provider of Human Capital and Workforce Management Solutions, is uniquely structured to help clients solve complex business challenges in the areas of risk and compliance. Our clients enjoy full access to each of the Allegis companies, leveraging comprehensive talent management solutions across the spectrum of needs for any industry or geography. We also provide consultative guidance around industry trends, competitive intelligence, talent and culture assessment, compensation benchmarking and search solutions for the entire executive suite.
A leading publisher of scientifically validated assessments for more than 30 years, Multi-Health Systems Inc. (MHS), was the first to publish a commercially available assessment for Emotional Intelligence. MHS has recently become a North American distributor for the Risk Type Compass assessment. The Risk Type Compass explores an individual's predisposition to risk and their capacity to manage it.
MHS serves clients in educational, clinical, talent management and public safety settings with products sold in more than 75 countries and translated into over 50 languages.
MHS has been named one of Canada's Best Managed Companies for 2013 & 2014. The best managed designation is a recognized symbol of excellence for Canadian businesses. Every year hundreds of companies compete for this designation in a rigorous and independent process that evaluates their management skills and practices.
Prevalent is a vendor risk and cyber threat intelligence innovator with a reputation for developing cutting-edge technologies and highly-automated services that are proven to help organizations reduce, manage and monitor the security threats and risks associated with third-party vendors. Prevalent's professional services offer consulting engagements led by industry experts with deep knowledge and experience. Prevalent remains relevant by creating powerful software and services solutions like Vendor Risk Manager, Vendor Threat Monitor and delivering compliance and risk solutions in the cloud with Prevalent Compliance as a Service (PCaaS).
Tanium gives the world's largest enterprises and government organizations the unique power to secure, control and manage hundreds of thousands of endpoints across the enterprise within seconds. Serving as the "central nervous system" for enterprises, Tanium empowers security and IT operations teams to ask questions about the state of every endpoint across the enterprise in plain English, retrieve data on their current state and execute change as necessary, all within seconds. With the unprecedented speed, scale and simplicity of Tanium, organizations now have complete and accurate information on the state of endpoints at all times to more effectively protect against modern day threats and realize new levels of cost efficiency in IT operations. Visit us at www.tanium.com.
Wombat Security Technologies is a leading provider of cyber security education solutions that positively change employee behavior to avoid cyber security attacks. The solutions help security officers to deliver and manage customized knowledge assessments, the largest offering of simulated attacks, a library of interactive training modules, as well as detailed and executive level reports. The Company's solutions can reduce employee susceptibility to attack by up to 90%. Wombat is helping medium to large enterprises around the world in industries such as finance, technology, banking, insurance, retail, and consumer packaged goods to reduce their risk and strengthen their cyber security defenses.
Zscaler ensures that more than 12 million employees at more than 5,000 enterprise and government organizations worldwide are protected against cyber attacks and data breaches while staying fully compliant with corporate and regulatory policies. Zscaler's award-winning Security as a Service platform delivers a safe and productive Internet experience for every user, from any device and from any location. Zscaler effectively moves security into the Internet backbone, operating in more than 100 data centers around the world and enabling organizations to fully leverage the promise of cloud and mobile computing with unparalleled and uncompromising protection and performance. Zscaler delivers unified, carrier-grade Internet security, advanced persistent threat (APT) protection, data loss prevention, SSL decryption, traffic shaping, policy management and threat intelligence-all without the need for on-premise hardware, appliances or software. To learn more, visit us at www.zscaler.com.
RSA, The Security Division of EMC, is the premier provider of intelligence-driven security solutions. RSA helps the world's leading organizations solve their most complex and sensitive security challenges: managing organizational risk, safeguarding mobile access and collaboration, preventing online fraud, and defending against advanced threats. RSA delivers agile controls for identity assurance, fraud detection, and data protection; robust Security Analytics and industry-leading GRC capabilities; and expert consulting and advisory services.
Novetta's analytics solutions are used at the heart of our nation's cyber defense. Now available for commercial enterprises, Novetta Cyber Analytics actually does what our competitors have only claimed to do for years: provide complete, truthful, near real-time network security visibility and awareness. The solution dramatically increases the effectiveness of current security teams and perimeter/SIEM infrastructure by enabling analysts to ask and receive ground truth, PCAP-based answers to subtle questions almost instantly. Customers using the solution handle an estimated 30 times the number of incidents, and have found an immeasurable number of previously unknown intrusions. Learn more at www.novetta.com/cyber-analytics
SecurityScorecard shows companies the risks and vulnerabilities of their data-sharing partners and vendors. By continuously collecting millions of proprietary security signals from across the public and deep web, we non-intrusively benchmark company security performance against industry peers and send alerts when threats are detected. Our SaaS platform is used by industry leaders around the globe to vet thousands of their vendors.
BitSight Technologies is transforming how companies manage information security risk with objective, evidence-based security ratings.
BitSight's platform helps companies manage risk by collecting and analyzing terabytes of data on security behaviors. With this data, BitSight generates Security Ratings, similar to consumer credit scores, that rate companies on security performance. These ratings are daily, automated and derived entirely from externally available data. The result: organizations are empowered to proactively identify, quantify and mitigate security risk throughout their ecosystems. Today, businesses are using Security Ratings for a wide range of risk management applications such as benchmarking security performance against industry averages and peers, mitigating third party vendor risk and improving Cyber Insurance underwriting effectiveness.