Pre-conference workshops: March 19, 2018

Post-conference workshops: March 22, 2018

 

For updates or to discuss speaking opportunities please contact Genevieve Furtado:

 

DOWNLOAD A COPY OF THE AGENDA

 

Conference Program - March 20 & 21, 2018

Conference Day 1, March 20 2018

08:00am

Registration and refreshments

08:50am

WELCOME REMARKS:

Alexander Campbell, Divisional Content Editor, RISK.NET

*Interactive Audience Poll via Sli.do
Vote live to generate real time content #OpRiskNA

09:00am

KEYNOTE ADDRESS: UBS Innovation- The transformation of a global giant

  • Then and now
  • What are the benefits of merging operational risk and compliance functions? What were the obstacles faced?
  • How to establish a firm-wide risk taxonomy 
  • The need to revamp risk and control assessments
  • Deterring internal misconduct and monitoring employee behaviour

James Oates, Global Head of Compliance and Operational Risk Control, UBS

 

*Audience Q&A
Submit your questions via sli.do

09:30am

REGULATORY KEYNOTE ADDRESS

10:00am

THE LEADER'S DEBATE: Next generation operational risk management

  • Regulatory developments in operational risk management
    • Where are the biggest regulatory demands coming from? How are firms adapting to growing regulatory burden and escalating costs?
    • Do regulatory sandboxes, bank-run pilots work for emerging fintech?
  • Conduct and culture
    • How has the definition of conduct and culture changed over the years? Looking at broader systemic risk and moving away from idiosentric examples 
    • Insider threats vs outsiders threats

Lazaro Barreiro, Director- Governance and Operational Risk Policy, OFFICE OF THE COMPTROLLER OF THE CURRENCY (OCC)
Jay Newberry, Managing Director, Operational Risk Management, CITI
Glenna Hagopian, Chief Conduct Officer & Head of Enterprise Risk Management, CITIZENS FINANCIAL GROUP
Jodi Richard, Chief Operational Risk Officer, U.S. BANK


*Audience Q&A
Submit your questions via sli.do

10:50am

MORNING COFFEE AND NETWORKING

STREAM 1 : Emerging risks and current barriers

11:20am

CHAIR'S OPENING REMARKS

11:25am

PRESENTATION: Agile risk management - Innovating in the risk space

  • Applying a ‘growth mind-set' to leapfrog to innovative solutions
  • Holding a Future of Risk offsite to kick start innovation
  • Applying Kanban and agile pods to risk deliverables
  • Robotics and Machine Learning in the risk space
  • Unlocking the power of risk data in the cloud

Philippa Girling, SVP, Chief Risk Officer, INVESTORS BANK

 

5 minute intermission allowing participants to change streams

12:00pm

PANEL DISCUSSION: Next generation GRC

  • eGRC: Transitioning from the risk team entering data to risk owner - how to manage that behavioural/cultural change?
  • Use of GRC tools and techniques to inform operational risk management
  • How to use your GRC tool across various business lines 
  • How did GRC solutions keep pace with increasingly technical risk discipline?

Speaker TBC, RSA
Panagiotis Tsaoussis, Head of Operational Risk, Group and Worksite Markets, GUARDIAN LIFE

 

12:45pm

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:45pm

CASE STUDY: Maximising operational risk efficiency through revamped KRIs and taxonomy

  • How do you effectively identify, assess, measure and manage operational risk events
  • How did you build your risk taxonomy? The benefits of customising your risk register or taxonomy 

5 minute intermission allowing participants to change streams

2:20pm

LIVE INTERVIEW: Delving into risk appetite and emerging risks 

  • How to think about a good risk appetite?
  • Who should own the risk appetite- The 1LOD or 2LOD?
  • How you define risk appetite and limits for emerging risk like process risk? 
  • Managing the emerging customer risk 
    • Protecting customer data and risk mitigation tactics for data breaches

Michael Reidy, Director, Head of Risk Frameworks and Programs, CITIZENS FINANCIAL GROUP
Jeremy Zierler, Head of Strategic Risk Management, SUNTRUST
Shari Daw, Head, Enterprise Risk Management, DISCOVER FINANCIAL SERVICES
Matt Duditch, Senior Vice President- Operational Risk Management, U.S. BANK

 

STREAM 2 : Vendor risk management

11:20am

CHAIR'S OPENING REMARKS

11:45am

PRESENTATION: Strengthening governance framework and reporting for vendor management

  • How can governance frameworks be strengthened to increase accountability?
  • Where does vendor risk sit in a 3LOD model?
  • What does the regulator focus on when they review third party risk? 
  • How to effectively report on third party risk?

5 minute intermission allowing participants to change streams

12:00pm

PANEL DISCUSSION: Vendor risk in the next generation firm 

  • Fourth party risk management- How do you "manage" fourth parties? What successful approaches have you witnessed and/or implemented?
  • Should vendors themselves be regulated to some degree to shift some of the burden around regulatory demands and ensure cooperation with financial institutions
  • Can AI increase third party risk?

Moderator: Dolores (Lori) Miller, Managing Director, Head of Operational Risk, Investments, AIG
Clarice Carotti, Head of Market, Liquidity and Operational Risk Management - NY Branch, ‎INTESA SANPAOLO


1-2-1 Innovation Tables: Have you seen the latest initiatives for effective vendor risk management? Ask the experts

12:45pm

Lunch and networking break

1:45pm

CASE STUDY: Learning from a vendor breach

  • How do you manage "crisis" situations that could impact your third party network (e.g. broad cyber events like WannaCry)?
  • Putting a BCP in place for when a HVAC contractor is compromised

5 minute intermission allowing participants to change streams

2:20pm

LIVE INTERVIEW: Third party risk assessment

  • How do you strike the right balance of rationalizing down the number of vendors vs. having available alternative vendors you need to exit?
  • How do you determine who your critical service providers are? How many categories of service providers do firms have?
  • Who checks the vendor agreements - the 1LOD or 2LOD?
  • How do you control your third party's risk exposure to a third party?

Ted Carter, Business Line Risk Officer, Investments and Trading, Enterprise Risk Management Office, T. ROWE PRICE

 

STREAM 3 : Modeling oprisk of the future

11:20am

CHAIR'S OPENING REMARKS

11:25am

PRESENTATION: SMA- The new norm?

  • How do you anticipate that the Basel Committee's op risk consultative paper containing SMA will evolve? Do you expect SMA will become the new standard?
  • Do you view the SMA as compatible with the requirements of the the financial choice act?
  • Is the forward-looking and incentive-compatible approach, or FIA an appropriate alternative to the SMA?

5 minute intermission allowing participants to change streams

12:00am

PANEL DISCUSSION: Integrating CCAR into business as usual

  • How are firms moving from just producing the numbers to using them?
  • How can finance and treasury utilise CCAR data?
  • How can we use operational risk to make business decisions?
  • How to effectively marry macro prudential regulations with individual bank health
  • Forecasting framework- what is the objective of CCAR?
  • Abiding by the regulators requirements- ensuring 1LOD and 2lod work hand in hand. What does it mean to have involvement form 1LOD?

Justin Huhn, CFA, Head of CCAR for Risk & US ICAAP, DEUTSCHE BANK

 

12:45pm

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:45pm

PRESENTATION: A pilot project for peer benchmarking of scenario assessment

Jane Yao, SVP - Benchmarking & Survey Research, Office of the Chief Economist, ABA
Patrick Naim, CEO, MSTAR

 

5 minute intermission allowing participants to change streams

2:20pm

LIVE INTERVIEW: Models for the future

  • How to reflect the increased economic and political uncertainty caused by Brexit in your risk - based capital models? I.e. are you holding more capital?
  • Operational risk is becoming more diverse- how do we quantify cyber-crime, conduct risk to a capital number?
  • Do U.S. firms have sufficient capital to absorb worst case cyber risk losses?

Michael A. Barton, Director of Operational Risk Quantification and Scenario Analysis, AIG
Filippo Curti, Financial Economist- Supervision, Regulation and Credit, THE FEDERAL RESERVE BANK OF RICHMOND

 

STREAM 4 : Cyber risk

11:20am

CHAIR'S OPENING REMARKS

11:25am

LIVE INTERVIEW: Modeling cyber risk

  • Does the vast scope of threats make modelling for cyber risk unfeasible? Can risk models accurately capture cyber risk?
  • How to apply stress testing and scenario analysis to cyber risk
  • Do you redo the same cyber scenarios each year or do new ones?
  • Do you combine cyber scenarios along with macro scenarios?

Manan N. Rawal, Regional Head of Independent Model Review & Governance, HSBC USA
Jack Freund, ‎Senior Manager, Cyber Risk, TIAA

 

5 minute intermission allowing participants to change streams

12:20pm

PANEL DISCUSSION: Mitigating cyber risk losses

  • Do U.S. firms have sufficient capital to absorb worst case cyber risk losses?
  • Does your info security use the same risk framework as ops risk?
  • Given that firms have different defences in place, how do firms understand weaknesses and risk priorities?

Peter Keenan, Chief Information Security Officer (CISO), LAZARD

 

12:45pm

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:45pm

SPOTLIGHT ON: Overcoming current challenges for effective quantification

  • Evaluating the lack data to develop Risk Appetite Statements
  • How to shift to consequence-driven cyber risk management
  • How to tame complexity to facilitate quantitative cyber risk measurement?

5 minute intermission allowing participants to change streams

2:20pm

LIVE INTERVIEW: Insurance of cyber risk- an additional tool in the toolkit

  • How do firms broaden scope of insurance risk products?
  • What are the data and tools used to insure cyber risk to effectively manage the risk? How to manage the risk and not just transfer it?

Sheldon Cuffie, CISSP, VP & Chief Information Security Officer, NORTHWESTERN MUTUAL

 

2:25pm

AFTERNOON COFFEE AND NETWORKING

1-2-1 Meetings: These bespoke meetings held in the dedicated meeting zone will provide you with the opportunity to address your specific concerns and challenges

2:55pm

THE EXECUTIVE BOARDROOM: Tone from the top

  • Memo to the Board
    • How do you see ORM and cyber risk interacting with the Board? What is the nature of the op risk and cyber risk reporting to the Board? 
    • Op risk and cyber risk now have a voice with the Board of Directors- What is needed to improve the Board's understanding of operational and cyber risks? Does the board have the necessary information regarding the pain points in the organisation? 
    • What are Board expectations? What is expected of them to dispense their duties properly and are they focused on the right things?
  • Adding value to the business:
    • What value is operational and cyber risk bringing to the business? 
    • What is a great example of bringing something valuable to the business from your second line view?
    • The value operational risk and cyber risk adds and the costing framework- how to assess whether putting a control in place will save or cost?

Michael J Abriatis, Executive Vice President, Chief Operational Risk Officer, PNC BANK
David Canter-McMillan, Function Head for Operational Risk, FEDERAL RESERVE BANK OF NEW YORK
Ivan Pooran, Head of Operational Risk, GUARDIAN LIFE
Alex Beigelman, Managing Director, Operational Risk Officer, Head of Technology & Cybersecurity Risk, ‎JPMORGAN CHASE

 

*Audience Q&A
Submit your questions via sli.do

4:15pm

WAR GAMES: Disaster recovery and business continuity in operational risk

PART I: SCENARIO DISSECTION AND STRATEGIZING
In each scenario, participants are introduced to an operational risk scenario which is still unfolding and asked to consider the immediate steps they would advise their firm to take based on the information available at each stage


PART II: HARVEST SESSION
Each host will summarise their POA of the discussion and present it back to the table participants with comments

Learning outcomes:

  • What immediate actions would you advise your firm to do in the scenario?
  • Hierarchy of response- who are the 1st and 2nd responders?
  • Incident management- how do you assess the impact on your firm?
  • What's your crisis management protocols? What do they look like? 
  • Business continuity planning from employees to infrastructure 
  • What's your loan exposure for customers impacted?

Leader 1: Elisabeth Rose, COO, Managing Director, AIG
Leader 2: Joshua Kotok, CFE, CISA, Chief Risk and Compliance Officer, FIRST SAVINGS
Leader 3: Andrew Richardson, VP, Enterprise and Operational Risk Management, COAST CAPITAL SAVINGS
Leader 4: Blake M. Jones, General Counsel & Chief Compliance Officer, HAYMAN CAPITAL MANAGEMENT
Leader 5: Nikki Covino, Regional Head of Business Continuity Americas, CREDIT SUISSE

 

PLATFORM SHOWCASE AFTERNOON:

At the event to shop and not just network? Then this is your time-saving opportunity to experience a live demonstration of ORM products that stand out for innovation. Compare the leading vendor risk management, GRC and ORM platforms in one dedicated hour

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

5:30pm

CHAIR'S CLOSING REMARKS

Alexander Campbell, Divisional Content Editor, RISK.NET

5:35pm

NETWORKING DRINKS RECEPTION

7:00pm

Private dinner- Invite only

Conference Day 2, March 21 2018

 

8:30am

Registration and refreshments

9:00am

WELCOME REMARKS

Alexander Campbell, Divisional Content Editor, RISK.NET

9:10am

KEYNOTE ADDRESS

*Audience Q&A
Submit your questions via sli.do

9:40am

CRO PANEL: Thriving in an era of change and upheaval

  • Which of the current and emerging risks- regulatory risk, geopolitical risk, liquidity and systemic risk are of most concerns to CROs? How do you set operational risk appetite to these risk? How do you deploy resources and capital across the spectrum of risks?
  • What is the biggest regulatory challenge? Is excessively growing regulation a risk? Is regulation stifling innovation or is it a necessary check?
  • How do other risks(market risk, credit risk) fit in with op risk?

Moderator: Joshua Kotok, CFE, CISA, Chief Risk and Compliance Officer, FIRST SAVINGS
Joshua Rosenberg, Executive Vice President , Chief Risk Officer, FEDERAL RESERVE BANK OF NEW YORK
Beth Dugan, Deputy Comptroller for Operational Risk, OFFICE OF THE COMPTROLLER OF THE CURRENCY (OCC)

 

*Audience Q&A
Submit your questions via sli.do

10:30am

Morning Coffee and networking break

STREAM 1 : ORM

11:00am

CHAIR'S OPENING REMARKS

11:05am

SPOTLIGHT ON: Optimising high-value asset (HVA) identification

  • How to identify HVAs?
  • Examining processes to prioritize and enhance HVA protection

5 minute intermission allowing participants to change streams

11:35am

PANEL DISCUSSION: Dynamic risk assessment- Identify, connect and visualize risk in four dimensions

  • Comparing and contrasting the traditional two dimensional approach vs the new four-dimensional approach
  • How can firms place more of an emphasis on risk contagion?
  • Leveraging interconnectedness for improved decision making and risk management

Michele Ushkowitz, Managing Director, Head of Risk Supervision, SG CORPORATE & INVESTMENT BANKING
Elisabeth Rose, COO, Managing Director, AIG

 

12:20pm

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:20pm

LIVE INTERVIEW: RCSAs

  • Optimization of RCSA Design and Deployment / Execution
  • Value proposition: ‘value-added' benefits of RCSA versus ‘check the box'
  • Guiding principles and leading practices
  • Next generation: Convergence of risk assessments

Moderator: Craig Spielmann, Former Global Head of Enterprise Risk Management Strategy, FIRST DATA
Glenn Hursh, Managing Director, KPMG
Neil Roth, Former Head of Operational Risk Governance for Combined U.S. Operations, RBC
Kevin Slane, Director of Enterprise and Operational Risk, WHITNEY BANK (tentative)

 

5 minute intermission allowing participants to change streams

1:55pm

SPOTLIGHT ON: Asset Manager of the Year- Nuveen Investments

  • Then and now
  • How to reduce annual number of errors whilst adding new products and processes
  • Engaging staff to learn from near ‘misses'
  • Identifying and managing risks on a forward looking basis

STREAM 2 : AI and Machine Learning

11:00am

CHAIR'S OPENING REMARKS

11:05am

PRESENTATION: Leveraging data management to minimize op risk and deliver shareholder value

Bala Ayyar, Managing Director & Chief Data Officer, SOCIÉTÉ GÉNÉRALE AMERICAS

 

5 minute intermission allowing participants to change streams

11:35am

PANEL DISCUSSION: AIs role in streamlining regulatory compliance

  • Keeping up with growing regulatory demands from CCAR and DFAST to BCBS 239 and FRTB- where are the biggest demands coming from?
  • How compliance and risk organizations are dealing with increased regulation coupled with cost challenges with AI?
  • Are organizations converging regulation and compliance teams?
  • Will AI need to be regulated?

12:20pm

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:20pm

LIVE INTERVIEW: Modelling made easy

  • Given the increased regulations and regulatory scrutiny, how can AI help modellers?
  • Crossing silos and combining models for effective reporting through AI

5 minute intermission allowing participants to change streams

1:55pm

PRESENTATION: AI for effective ORM

  • How to reduce operational and compliance risks
  • GRC convergence across cyber risk, model risk, financial risk and IT through AI
  • Does this increase compliance testing methodologies as a result of FX consent order etc.?
  • The use of end user computer management on the road to operational efficiency

STREAM 3 : Preparing for the future

11:00am

CHAIR'S OPENING REMARKS

11:05am

PRESENTATION: Payments

5 minute intermission allowing participants to change streams

11:35am

PANEL DISCUSSION: Defining roles across 3LOD

  • Should the 1LOD or 2LOD test operational controls?
  • Have any 2LOD ops risk functions used outside vendors to challenge the 1LOD by conducting pen testing etc.?
  • Should there be both a 1.5 and a 2LOD? Has it worked effectively when both exist? Or should they really be merged into 1LOD and 2LOD?
  • Should transactional testing be part of the 2LOD operational risk management function?

Lee Marks, ‎Global Head of Enterprise & Operational Risk Management, FIRST DATA
Etsuko "Ekko" Fuseya Jennings, Managing Director, MORGAN STANLEY INVESTMENT MANAGEMENT
Richard Cech, Senior Bank Examiner Op Risk Governance, FEDERAL RESERVE BANK OF NEW YORK

 

12:20pm

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:20pm

LIVE INTERVIEW: Tightening BSA and AML controls

  • New Paradigm in Operational Risk Management
  • Shift in Risk Management Infrastructure
  • Links to operational risk and macroeconomic/macro-prudential management
  • FinTech and New Operational Risk Challenges - Beyond Cyber Protections

Stuart Davis, Chief Anti-Money Laundering Officer, BMO
Lester Joseph, SVP, Manager- Global Financial Crimes Intelligence Group, WELLS FARGO
McHenry Kane, Senior Vice President, Director of AML, NEW YORK COMMUNITY BANK
John Chiota, Head of Financial Crime - Americas, NATWEST MARKETS

 

5 minute intermission allowing participants to change streams

1:55pm

SPOTLIGHT ON: Managing and mitigating future operational risk losses

  • Lessons learnt from internal and external events
  • Importance of boundary events and how to identify them

STREAM 4 : Cyber risk

 11:00am

CHAIR'S OPENING REMARKS

 11:05am

SPOTLIGHT ON: Systemic cyber risk reduction

  • Consolidating an integrated industry wide response to cyber security risk
  • Concerns over risk aggregation
  • Importance of mapping tools

5 minute intermission allowing participants to change streams

11:35am

PANEL DISCUSSION: Extrapolating the causes of cyber security breaches

  • Evaluating the role of human error
    • Inadequate controls on sensitive data
    • Insider threat and ‘anomalous behaviour' by staff
  • Ransomware and/or phishing
    • Preventative controls (AV, Advanced End-Point, Cloud Filtering)
    • Recovery strategies from ransomware

John Polis, Chief Operating & Technology Officer, STAR MOUNTAIN CAPITAL

12:20pm

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:20pm

 

WAR GAMES: How to rob a bank in 2018

Back in the 1900's a traditional bank heist, required meticulous preparation and planning- arranging the right tools, insider information, timing, target, plan-B and get-away-car was of essence. Not much has changed in that sense, a cyber-heist in the 21st century requires similar preparation. This session will allow all conference attendees to jointly prepare a cyber-heist; the results of which will likely be surprising to all involved.

 

5 minute intermission allowing participants to change streams

1:55pm

 WAR GAME: Robbing the bank in 2018

....continued

2:25pm

AFTERNOON COFFEE AND NETWORKING

1-2-1 Meetings: These bespoke meetings held in the dedicated meeting zone will provide you with the opportunity to address your specific concerns and challenges

3:00pm

FIRESIDE CHAT: The insidious effects of geopolitical risk on operational risk

 

  • How to prepare for potential repercussions within your own firms - The increasing necessity for Boards and Chief Risk Officers to monitor the political and business environment 
  • How to reflect the increased economic and political uncertainty caused by political events in your risk - based capital models? I.e. are you holding more capital?

 

Manan N. Rawal, Regional Head of Independent Model Review & Governance, HSBC USA

 

*Audience Q&A
Submit your questions via sli.do

3:30pm

WRAP UP PANEL: OpRisk and CyberRisk NA 2018- what are the key takeaways?

Featuring members of the 2018 Advisory Board


Dolores (Lori) Miller, Managing Director, Head of Operational Risk, Investments, AIG
Richard Cech, Senior Bank Examiner Op Risk Governance, FEDERAL RESERVE BANK OF NEW YORK

*Audience Q&A
Submit your questions via sli.do

4:20pm

CHAMPAGNE ROUNDTABLES: Bring your questions, leave with your answers!

From session to roundtable- Take the day's most contentious issues and fully engage with your peers in small interactive roundtable discussions to drill down, share best practice and take away diverse approaches to the same challenge from your fellow industry peers.

5:15pm

CHAIR'S CLOSING REMARKS

Alexander Campbell, Divisional Content Editor, RISK.NET

5:20pm

END OF CONFERENCE