Deloitte Risk and Financial Advisory helps organizations turn critical and complex business issues into opportunities for growth, resilience and long-term advantage. Our market-leading teams help our clients manage strategic, financial, operational, technological, and regulatory risk to enhance enterprise value, while our experience in mergers and acquisitions, fraud, litigation and reorganizations helps clients emerge stronger and more resilient.
In a world of unprecedented change, EY Advisory believes a better working world means solving big, complex industry issues and capitalizing on opportunities to help deliver outcomes that grow, optimize and protect clients' businesses.
From C-suite and functional leaders of Fortune 100 multinationals to disruptive innovators and emerging market small and medium sized enterprises, EY Advisory teams with clients - from strategy through execution - to help them design better outcomes and deliver long-lasting results.
A global mindset, diversity and collaborative culture inspires EY consultants to ask better questions. They work with the client, as well as an ecosystem of internal and external experts, to co-create more innovative answers. Together, EY helps clients' businesses work better.
The better the question. The better the answer. The better the world works.
Rsam is a flexible platform for IT GRC, security and vendor risk initiatives. Baselines are operational in 30 days and can be easily customized. Automate manual processes and streamline workflows. Rsam is named a Leader in the Gartner 2017 Magic Quadrant for IT Risk Management and Vendor Risk Management. Visit www.rsam.com.
SureCloud provides Governance, Risk & Compliance (GRC) applications and Cybersecurity services that give our customers certainty - of risk management/compliance, of cybersecurity, of having answers today and tomorrow.
Established in 2006, SureCloud is headquartered in the United Kingdom and has offices in the United States. SureCloud has more than 400 customers throughout the UK and US from the Retail, Financial Services, Government and other sectors.
We exist to help chief information security officers, CIOs, risk and compliance leaders, legal teams and others answer critical questions:
• Are we managing risk or is risk managing us?
• Are we compliant? Is our information technology secure?
• Are we certain . . . today, tomorrow?
Our goal is that our customers not only have answers to these questions but also "certainty of knowing." That's why our brand promise is Always Be Certain.
MSTAR is the first tool specifically designed for operational risk scenario quantification.
The MSTAR approach is based on an analytic decomposition of an expert risk assessment; typically a classical Frequency and Severity rating, into a structured graphical model. Users can use MSTAR's intuitive functionality to share and collaboratively improve the model design. The completed models are then quantified combining internal or external data (backward-looking knowledge) as well as expert judgment (forward-looking knowledge)
• The MSTAR approach and functionality drives improved risk management behavior, because it:
- Elicits a deep understanding of the risk and related drivers,
- Entails a clear formalization of how these drivers influence the risk level
- Enhances transparency of assessment process and facilitates review and challenge
• MSTAR helps all stakeholders understand the process, as they all contribute to the model design and quantification - MSTAR models are the opposite of black boxes.
• MSTAR increases the chances that the regulator agrees that it is fit for purpose, since it allows a capital calculation which is in line with the business and risk profile of the company.
MSTAR is used by our clients within their regulatory capital and operational risk stress-testing frameworks.
MSTAR is in use within internal models approved by regulators: ACPR (France) & PRA (UK).
For more informations www.elseware.fr
Nasdaq BWise is a global leader in Enterprise Governance, Risk Management and Compliance (GRC) software. The BWise® GRC Platform provides companies with highly-rated, proven software solutions for Risk Management, Internal Control, Internal Audit, Compliance & Policy Management and Information Security. BWise® Information Security supports end-to-end information security processes and ensures the impact of threats and vulnerabilities are being measured and embed these processes across the organization.
SmartStream provides Transaction Lifecycle Management (TLM®) solutions and Managed Services to dramatically transform the middle and back-office operations of financial institutions. Over 1,500 clients, including more than 70 of the World's top 100 banks, 8 of the top 10 asset managers, and 8 of the top 10 custodians rely on SmartStream's solutions.
SmartStream delivers greater efficiency, automation and control to critical post trade operations including: Reference Data Operations, Trade Process Management, Confirmations and Reconciliation Management, Corporate Actions Processing, Transaction Fees Invoice Management, Collateral Management, Cash & Liquidity Management and Compliance Solutions. Used independently or as a suite of solutions and services, clients gain a lower cost-per-transaction whilst reducing operational risk, aiding compliance and improving customer service levels.
For more information about SmartStream visit: smartstream-stp.com
VivoSecurity provides data analytics and operational risk modeling to companies in the financial services and high tech industries. We are a Silicon Valley company with PhD level scientists and statisticians with cross-discipline expertise in financial services, engineering and cybersecurity.
We provide custom and off-the-shelf regression models trained on historical data, that estimate the probability and forecast the cost of cybersecurity events, including PII data breach, online fraud, loss of service. Models forecast probability for lawsuits, reputation damage, notification and investigation cost. Our models are appropriate for CCAR/DFAST idiosyncratic scenarios, SEC filings, estimating loss reserves and insurance adequacy. Models are compliant with SR 11-7, can be validated and managed within a Model Risk Management framework. We use advanced statistical methods which combine multiple sources of data and produce models which are testable, credible and accurate. We provide model documentation and validation support.
KPMG LLP, the audit, tax and advisory firm, is the U.S. member firm of KPMG International Cooperative (“KPMG International”). KPMG is a global network of professional firms providing Audit, Tax and Advisory services. We operate in 155 countries and have more than 174,000 people working in member firms around the world. Our high-performing people mobilize around our clients, using our experience and insight to deliver informed perspectives and clear methodologies that our clients and stakeholders value. Our client focus, commitment to excellence, global mind-set, and consistent delivery build trusted relationships that are at the core of our business and reputation.
Marsh is a global leader in insurance broking and risk management. Marsh helps clients succeed by defining, designing, and delivering innovative industry-specific solutions that help them effectively manage risk. Marsh's approximately 30,000 colleagues work together to serve clients in more than 130 countries. Marsh is a wholly owned subsidiary of Marsh & McLennan Companies (NYSE: MMC), a global professional services firm offering clients advice and solutions in the areas of risk, strategy, and people. With annual revenue of US$13 billion and approximately 60,000 colleagues worldwide, Marsh & McLennan Companies is also the parent company of Guy Carpenter, a leader in providing risk and reinsurance intermediary services; Mercer, a leader in talent, health, retirement, and investment consulting; and Oliver Wyman, a leader in management consulting.
MetricStream is simplifying Governance, Risk, and Compliance (GRC) for modern and digital enterprises. Our market-leading enterprise and cloud Apps for GRC enable organizations to strengthen risk management, audit management, regulatory compliance, vendor governance, and quality management while driving business performance.
MetricStream ORM App provides a single, comprehensive system to manage your operational risk management requirements. The App supports operational risk identification and assessment, control evaluation, loss management, issue remediation, KRI monitoring, and risk reporting. It also has capabilities for performing scenario analysis, loss distribution analysis and capital calculation and allocation. It replaces cumbersome, manual, and siloed ORM processes with a highly automated, efficient, and collaborative approach. The App also cuts across organizational siloes, gathering and transforming operational risk data into critical risk intelligence to strengthen decision-making.
NICE Actimize is the largest and broadest provider of financial crime, risk and compliance solutions for regional and global financial institutions, as well as government regulators. Consistently ranked as number one in the space, NICE Actimize experts apply innovative technology to protect institutions and safeguard consumers and investors assets by identifying financial crime, preventing fraud and providing regulatory compliance. The company provides real-time, cross-channel fraud prevention, anti-money laundering detection, and trading surveillance solutions that address such concerns as payment fraud, cybercrime, sanctions monitoring, market abuse, customer due diligence and insider trading.
RSA helps leading organizations around the world take command of their security posture by partnering to build and implement business-driven security strategies. With RSA's award-winning cybersecurity solutions, organizations can effectively detect and respond to advanced attacks; manage user identities and access; and reduce business risk, fraud and cybercrime. For more information, go to rsa.com.
Thomson Reuters brings together trusted information, managed services, software, and expertise - an unrivaled combination that helps you manage enterprise, operational, and compliance risk. Thomson Reuters Connected Risk is the next-generation risk management software platform that connects internal and external information on the risks that matter, enabling you to truly understand the challenges your business faces, identify critical exposures and take appropriate action. A truly integrated platform, Thomson Reuters Connected Risk empowers you to easily manage disruption and embrace risk through a flexible risk management solution that is configured to your unique methodology and processes.
Accenture is a leading global professional services company, providing a broad range of services and solutions in strategy, consulting, digital, technology and operations. Combining unmatched experience and specialized skills across more than 40 industries and all business functions-underpinned by the world's largest delivery network-Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. With more than 435,000 people serving clients in more than 120 countries, Accenture drives innovation to improve the way the world works and lives. Visit us at www.accenture.com.
Ayasdi is a pioneer in the creation and deployment of enterprise-class intelligent applications for the financial services industry. Ayasdi's award-winning Artificial Intelligence platform, developed by Stanford computational mathematicians, has already solved key challenges in financial services including financial crimes, regulatory risk management, customer intelligence, and conduct risk. The Company's accomplishments have earned it recognition as one of the world's most innovative companies from Chartis, Fast Company and the World Economic Forum.
Based in Menlo Park, CA, Ayasdi is backed by Kleiner Perkins Caufield & Byers, IVP, Khosla, Centerview Technology Partners, Draper Nexus, Citi Ventures, GE Ventures, and Floodgate Capital.
Broadridge, a global fintech leader with over $10 billion in market capitalization, provides communications, technology, data and analytics. We help drive business transformation for our clients with solutions for enriching client engagement, navigating risk, optimizing efficiency and generating revenue growth.
CastleHill Managed Risk Solutions, LLC - CastleHill offers advisory, implementation, and managed services for Regulatory Change Management, Enterprise Risk Management, Third Party Risk Management, Compliance and additional Operational risk disciplines. Our structured approach to implementation and onboarding (Prototype-Iterate-Enhance) leverages best practice risk management process design, prototyping and iterative enhancement techniques that delivers rapid value. In addition, our GRC as a Service (GRCaaS) managed service helps simplify your risk management processes by providing options for outsourcing the costly administrative activities and technology support that distract risk managers from their primary job of managing risk. CastleHill team members average over 17 years of professional experience and act as Subject Matter Experts in two or more risk domains. We have a proven track record of departmental and enterprise GRC implementations using the RSA Archer and ProcessUnity platforms.
Cyber Risk Sponsors
Aravo Solutions delivers market-leading cloud-based solutions for managing third party governance, risk, compliance and performance. We help companies protect their business value and reputation by managing the risks associated with third parties and suppliers, and to build business value by ensuring that their third party relationships are optimized.
Since 2000, leading global brands across a diverse range of industries have counted on Aravo for their end-to-end enterprise supplier and third party risk management. Aravo has also distilled this experience and best-in-class technology into rapid time-to-value applications that help companies manage a wide range of programs including: anti-bribery and anti-corruption, responsible sourcing, data privacy, information security, GDPR, financial services regulatory compliance and know your third party programs.
Providing unrivaled regulatory agility and ease-of-use, together with actionable executive reporting, Aravo supports a user base of 124,000 corporate users, managing more than 4.3 million third party users in 36 languages and 154 countries.
RiskLens is the leading provider of cyber risk management software. RiskLens helps Business Executives, Risk Officers, and CISOs manage cyber risk from the business perspective by quantifying cyber risk in dollars and cents.
Forward-thinking organizations leverage RiskLens as their system of record for cyber risk for understanding their cyber risk exposure, prioritizing their risk mitigations, measuring the ROI of their security investments and optimizing their cyber insurance policies.
RiskLens is the only cyber risk management software purpose-built on FAIR, the only international standard quantitative model for cybersecurity and operational risk.