2021 Agenda

Cyber Risk Summit


Cyber Risk Exposure in real world - Giving risk a real-world perspective
Panel discussion

09:10 - 09:50

Join this panel to explore what’s truly impacting banks due to cyber risk, delving into practical takeaways on cyber fraud, data breaches, ransomware attacks and more.

Chris Beck

Managing director


Chris is a member of Milliman’s Cyber Risk Solutions (CRS) practice group.  The practice delivers a portfolio of risk consulting services, such as enterprise risk design, cyber risk assessment and quantification, test and build projects, operational risk assessments, enterprise risk management (ERM) education and training, and ERM technology evaluation. The CRS practice uses diagnostic consulting strategies to understand an organization’s enterprise risk goals and challenges and then customize solutions to deliver required business results. 


Chris has 15 years of professional experience.  His experience includes work in the banking, insurance, capital markets and card sectors helping clients assess and mitigate risk. 

Prior to joining Milliman, Chris was a Senior Manager in Accenture’s Finance and Risk Management Consulting practice, delivering work for global financial service clients.   Additionally, Chris served as an active duty Naval Officer and has multiple overseas deployments. 

Professional experience and subject matter advisory includes: 

  • Cyber Security metrics and governance
  • Financial Service Regulatory and Compliance initiatives
  • Risk Management 
  • Corporate and Risk Governance
  • Surveillance 
  • Financial Services operating model and cost reduction
  • Regulatory remediation and responses
  • Legal department risk and optimization
  • Leading large cross functional projects and teams


  • BS Political Science, University of Wisconsin–Madison
  • MBA, University of Chicago – Booth School of Business

Jayaraj Puthanveedu

MD, cyber & technology risk, global head operational resilience

BNP Paribas

Tom Kartanowicz CISM, CISS

Regional chief information security officer


Filippo Curti

Financial Economist, Supervision, Regulation and Credit


<p>Filippo is a financial economist in the Quantitative Supervision and Research (QSR) unit of the Federal Reserve Bank of Richmond. Filippo joined the Richmond Fed in 2014 after earning his doctorate in Finance at the University of Arizona. Prior to moving to the US, Filippo worked one year for Toro Assicurazioni S.p.a. (now Assicurazioni Generali S.p.a.) and obtained his master degree in Actuarial and Statistical Science from the University of Turin. Since he started working for the Richmond Fed he has been heavily involved in Operational Risk as both modeler and examiner.</p>


Cloud security automation for enterprise risk management
Fireside chat

10:00 - 10:40

Alex Shulman-Peleg

Executive Director, Technology Consulting


Alex Shulman-Peleg, PhD, is a Managing Director leading the Cloud Cybersecurity consulting services of Ernst & Young in the Americas. She is supporting multiple clients in their secure enablement of public clouds and container technologies, addressing the involved risk, cybersecurity and regulatory requirements. In her previous role, she was a Director of Cloud Security at Citibank, where she has established and led a CISO cloud security program, as well as cloud-native security engineering. In her role, she was responsible for the cloud and container security solutions, processes and architectures, delivering protection, detection and auto-remediation in public and private clouds. Prior to Citi, Alex developed secure Clouds and related security products at IBM Research, leading security innovation in multi-year EU Cloud consortium projects.

She has over two decades of technological leadership and holds PhD, MSc and BSc degrees in Computer Science from Tel-Aviv University. She has multiple patents and more than 30 scientific publications having thousands of citations. 

Samir Sherif

Chief Information Security Officer (CISO)


As a transformational leader within cybersecurity, Samir has over 20 years of development, risk and IT security program leadership.


Digital Risk Management

10:50 - 11:15

What do we mean by digital risk management? In this session, we’ll hear how cyber, IT risk, resilience, cloud and third-party topics align within this Digital Risk Management sphere

Steve Schlarman

Integrated Risk Management Strategist


Steve Schlarman applies his experience in Risk Management, GRC, security and product design and architecture as a strategist for Archer. Steve is responsible for research and thought leadership related to integrated risk management across the Archer suite. Steve joined Archer in 2001 and has held multiple positions over the last decade. He has designed, built and evangelized integrated risk management solutions in a wide variety of capacities.

Prior to joining Archer, Steve was one of the founders and the Chief Strategist for Brabeion Software, an early IT GRC platform, where he was responsible for overall product strategy, product management and content management. Before Brabeion Software, Steve was a Director in PricewaterhouseCoopers’ Advisory Practice focusing exclusively on information security consulting and auditing. Steve served as PricewaterhouseCoopers’ global Subject Matter Expert on Enterprise Security Architecture and Security Policy as primary developer of PricewaterhouseCoopers' early GRC technology tool ESAS, the Enterprise Security Architecture System.

Steve is a respected author, spokesperson and evangelist. Steve holds a patent for his Composite Based Risk System (issued 7/2013, US8478628 B1). Steve received a Bachelor of Science degree in Mathematical Sciences from Southern Illinois University-Edwardsville and holds both the CISSP and CISM certifications.

Gordon G Liu

EVP US Head of Global Risk Analytics


Gordon is EVP, Regional Head of Global Risk Analytics at HSBC. He is responsible for the development and implementation of models used for calculating wholesale credit, market and counterparty credit risk metrics, financial crime compliance, including anti-money laundering and sanctions analytics, as well as regulatory compliance and operational risk analytics. Additionally, he is responsible for interacting with regulatory agencies to ensure HSBC’s compliance in quantitative aspects with the relevant risk and compliance regulations.
Gordon received a PhD in electrical and systems engineering from University of Connecticut and his undergraduate and master degrees from Huazhong University of Science and Technology, Wuhan, China.

Svetlana Belyalova

Head of operational risk management

Rosbank Societe Generale Group

Emerging risk in focus


Known unknowns: what emerging risks need to be on your radar?
Panel discussion

09:10 - 09:50

Importantly, how are firms defining and articulating what qualifies as an ‘emerging’ risk? Understand how climate risk, new technology, natural disasters, and geopolitical are keeping risk managers on their toes and hear how you can better anticipate and manage the known knowns and the unknown knowns.

Jay Newberry

Risk management executive and consultant; managing director, operational risk management

Citigroup (Retired)

Jay Newberry has over thirty years of experience in risk management. 

Currently, he is engaged as Principal, Greenwich Risk Management Consulting, focused on Enterprise Risk Management and Operational Risk Management in the financial services industry.

Recently, Jay also served as an adjunct Lecturer in the Enterprise Risk Management Program at Columbia University teaching courses in Operational Risk Management, and Traditional Risk and ERM Practices.

Jay retired from Citigroup where he was responsible for the global Operational Risk Policy and Framework for identifying, assessing, monitoring, and communicating operational risk and the overall effectiveness of the control environment.

His responsibilities included standards for Risk Identification and Monitoring, spanning risk appetite, key operational risks and key indicators, and concentration risk.  He was also responsible for standards for Scenario Analysis and related stress loss forecasting processes.

In addition, Jay established and oversaw the independent verification processes for operational risk covering Basel AMA and CCAR and has facilitated a number of key global operational risk management governance committees.

Jay led U.S. regulatory relations for operational risk and partnered across Citi on global regulatory matters.

In his most recent role, he had responsibility for developing Citi’s Lessons Learned Policy and program, spanning all risk types.

Jay’s prior experience at Citi included leadership positions in developing and executing credit risk analytics, portfolio derivatives, risk capital, and credit portfolio management tools.  He began his banking career as Senior Analyst in Citi’s Corporate Finance Analysis Department where he engaged in marketing initiatives and credit approvals for the large corporate market.

Jay earned his BA degree in Economics from Middlebury College and his MBA from the Tuck School at Dartmouth.


Rajat Baijal

Managing director, global head of enterprise risk

Cantor Fitzgerald

Rajat Baijal is the Managing Director – Global Head of Enterprise Risk at Cantor Fitzgerald. In this role, he is responsible for designing and embedding a robust Risk Framework across the firm. This includes articulating and implementing a robust Risk & Control Self-Assessment (RCSA), Risk Event Management, Key Risk Indicators etc. and ensuring that the Board is suitably informed about all material issues.

Rajat has an MBA in Finance and has previously worked for Kensington Mortgages, Lloyds Banking Group and Aviva specialising in global implementation of their Risk Framework. Rajat is a regular speaker at risk conferences across London and New York and has authored a number of articles for risk journals/textbooks.

Evan Sekeris

Head of model validation


Evan's background is in the measurement and quantification of credit risk and operational risk.  His primary focus is currently on supporting institutions in building operational risk modeling for stress testing, developing their risk identification process and developing their model risk management frameworks.
Some of his recent client engagements include:
For a foreign global bank, helped them develop a comprehensive operational risk framework for their US based IHC. Ensured both integration of the framework in their international framework as well as US regulatory compliance.
For a large internationally active US bank: supported major change of course in CCAR operational risk stress estimates a few months prior to submission in reaction to regulatory guidance.
For a large regional bank: built their CCAR loss projection model and wrote the documentation for the full CCAR operational risk submission.
For a global bank conducted a validation of their operational risk modeling framework for CCAR
  Prior to joining Oliver Wyman, Evan was the Head of Risk Consulting for Financial Institutions for Aon in Columbia, Maryland. He was in charge of building Aon's risk consulting practice for financial institutions and managed multiple teams based in North America and Europe to deliver services to clients worldwide. Previously, Evan was an Assistant Vice President of the Federal Reserve Bank of Richmond, where he created the center of excellence for operational risk which served the System needs for operational risk related matters. The team was in charge of the supervision of all AMA and CCAR banks in the US and developed the Fed's CCAR model for operational risk.
Evan earned a B.A. and M.A. in Economics from the Université Catholique de Louvain in Belgium. He received an additional M.A. as well as his Ph.D. in Economics from the University of California at Los Angeles.

Ken Radigan

Chief executive officer


Ken Radigan is currently the CEO of the Professional Risk Managers’ International Association (PRMIA).  Ken also teaches Insurance Risk Management at Columbia University’s Master of Professional Studies in Insurance Management.  

Ken served as the Chief  Risk Officer (CRO) for US and Bermuda platforms of Aspen.  Prior to this, Ken was the CRO for the Casualty and Global Risk Solutions Divisions of AIG.  Ken had worked at AIG for over 25 years and during this time he had the following responsibilities:

CRO Casualty and Global Risk Solutions

  • Director of corporate catastrophe modeling
  • Product line manager for the Environmental Protection Programs
  • Product line manager for the Cleanup Cost Cap programs
  • Actuarial analyst for the corporate actuarial department

Ken was the inventor of two US Patents on Nuclear Decommissioning Insurance. 

Ken has a Bachelor of Arts degree with a major in Mathematics from the University of Dayton and has the following professional designations:

  • Professional Risk Manager, PRM
  • Chatered Property Casualty Underwriter, CPCU
  • Associate in Risk Management, ARM
  • Associate in Surplus Lines Insurance, ASLI
  • FINRA Series Certifications: 6,63,66, and 7

Victor Sino

Head of Americas operational risk


Paula Fontana

Senior director of product marketing

Fusion Risk Management


5G and IoT: inspiring new threat actors on the block
Panel discussion

10:00 - 10:40

It’s inarguable that 5G and IoT will revolutionize financial services and merge the way consumers make transactions. But what are the key risks involved with such exciting new technical opportunities?

Join our expert panel as they explore how they are preparing for this new threat landscape, key considerations for security and how infrastructure providers are preparing for the new wave of cyber risk sophistication.

Arthur Lindo (Art)

Deputy director for policy

Federal Reserve Board's Division of Supervision and Regulation

Arthur Lindo (Art) is the Deputy Director for Policy in the Federal Reserve Board's Division of Supervision and Regulation. His principal responsibilities include overseeing the development and assessment of the effectiveness of Board regulations and policies affecting the financial services sector and coordinating the Board’s domestic and international regulatory programs. He also advises the Board on emerging policy matters that have implications for the supervision and regulation of the financial services sector. He is an active participant in various committees in the Federal Reserve System and is the Chairman of the Appraisal Subcommittee of the Federal Financial Institutions Examination Council (FFIEC) and the Chairman of the Basel Committee’s Operational Resiliency Working Group. Art has a BA in Accounting from the Catholic University of America and a MBA in Finance from the George Washington University.

Fred Harris

Head of Cybersecurity, Data & Technology Risk & Compliance

Société Générale

Mandar Rege

Managing director, operational risk management, technology and cybersecurity


Mandar has over 20 years of engineering and risk management experience across Technology Operations, Governance and Audit, helping organizations meet business objectives through technology. Currently he is serving as a Managing Director at Citigroup in the Operational Risk group. Prior to Citi, Mandar was the Global CTRO at TD Bank Group, before which he served as the CTRO and CISO at the Bank of Montreal. In his prior career, Mandar has worked extensively with financial institutions globally through leadership roles at Cisco Systems, Inc., Accenture LLC, Alvarez & Marsal LLP,  KPMG LLP and Ernst & Young LLP.

Mandar is an active member of the professional community and has presented at industry forums like Risk.Net, RSA and IAPP Conferences. Additionally, he is active in various profesional organizations such as ISACA, IAPP and ISC2 and has served as the Chair of the Canadian Banking Association’s CIRT (CISO Forum). He holds the CISSP, CIPP, CISA, and PMP certifications.



Climate risk and operational risk - Addressing ESG risk
In conversation with...

10:50 - 11:15

Brandon Sutcliffe

Partner/Principal, Business Consulting


Brandon serves as the EY Americas Financial Services Sustainable Finance Leader. He has more than 25 years of consulting experience, with a focus on advising financial services clients on sustainable finance, risk, regulatory and compliance management.

Prior to joining EY, Brandon specialized in the energy services industry, working with clients to gain savings on their energy costs and reduce their carbon footprint.

Debbie Kirby

SVP Operations

Bank of America

Debbie Kirby is currently the Compliance and Operational Risk executive for climate change. In preceding roles, Debbie provided risk management coverage for change management, technology, business continuity, third party, item processing, payment operations, global markets operations, merchant card services, trade finance, and other global banking and markets functions.
Debbie has been with Bank of America for 32 years. Prior to beginning her risk management career, Debbie held senior roles in Global Transaction Services (GTS), focused on internet delivery, liquidity products, client services and payments. She led the product design and roll out for the bank’s first internet delivery solution for GTS clients and managed a number of product, transition and strategic initiatives.
Debbie holds a BBA degree in Finance from Southern Methodist University. She lives in Dallas, TX with her husband and two children.


RCSA automation – how to automatically calculate your RR to reduce risk of errors and RCSA processing time?

12:20 - 13:00

Anne-Sophie Gug

Director - GRC program manager

Société Générale

Third-party risk and ICT in focus


Moving beyond pandemic plan testing: what’s next for TPRM?
Panel discussion

09:10 - 09:50

Moving beyond the pandemic, how should FIs approach TPRM in the face of stringent regulatory requirements and an evolving threat landscape?

Delving into governance, process, data, and infrastructure, this discussion will highlight why TPRM needs to be a strategic priority and how you can refine and build on your existing process to help strengthen your approach, safeguard your supply chain and ensure compliance.

Yakut Akman

Independent operational risk management consultant

Reference Point

Yakut Akman brings 35 years of diverse banking experience to her role of Chief Third Party Management Officer. She has responsibility, authority and accountability for the end-to-end Third Party Management Program, and leads global efforts to strengthen Citi's organizational framework, as well as processes and tools to manage third party risk.

Yakut's Citi career started in Istanbul, Turkey, as a Management Trainee. She then managed several trading support groups in New York ranging from Capital Markets and Fixed Income to Foreign Exchange, and was instrumental in establishing Citi's Interest Rate Derivatives Operations in the early 1990s. In 1996 she transferred to London as Director of Trade Services in Europe, managing Citibank's main service delivery hub in London supporting Europe.

Yakut is known for her abilities to connect operational details to the strategic business vision and drive meaningful change - an approach sharpened by many years in Operation & Technology and her role as Program Director in in Citi's Internal Audit, overseeing critical Investment and Consumer banking businesses, and also serving as Deputy Chief Auditor of Citi's Student Loan Corporation.

Prior to her current role, Yakut served as Global Head of Risk Management for Citi's Enterprise Infrastructure. Her responsibilities covered all operational risk disciplines including Information Security, Continuity of Business, and Third Party Management.

Yakut is a member of the Information Systems Audit and Control Association (ISACA) and is certified in CISA (Certified Information Systems Auditor). She is a Magna Cum Laude graduate of Mount Holyoke College with a degree in Economics.




Olga Baldwin

Third party risk management, operational risk management, contract management

Sterling National Bank

Shea Murphy

Third-Party Risk Solutions Engineer

OneTrust Vendorpedia

Shea Murphy serves as a Third-Party Risk Solutions Engineer for OneTrust VendorpediaTM – a purpose-built software designed to operationalize third-party risk management.

In her role Murphy advises companies throughout their third-party risk management implementations to help meet requirements relating to relevant standards, frameworks, and laws (e.g. ISO, NIST, SIG, GDPR and CCPA). Murphy works with clients to centralize their third-party information across business units, assess risks and performance, and monitor threats throughout the entire third-party relationship, from onboarding to offboarding. 


Regulatory requirements in the 3rd and 4th party space

10:20 - 11:20

  • Discussion on the proposed Interagency Guidance on Third-Party Relationships from US regulators (FRB, FDIC, and OCC

  • Highlights of current program and regulatory trends

Jordan Serre

Principal, Consulting Services Technology Risk


Jordan Serre is a Principal with over 15 years of experience at EY focused on helping clients address and manage business and information technology risk, enhancing their control environment, and supporting the expanding regulatory demands across the banking, capital markets, asset management, insurance, and FinTech sectors.

Jordan leads EY’s Third Party Risk Management activities for West coast financial services clients and also has extensive experience leading a broad range of engagements helping clients improve their risk and control capability including GRC system support, internal audit, external audit, service organization control reporting, IT risk management, along with other IT risk and control advisory projects.

Chris Watson

Managing Director, FSO - Markets Enablement


Chris is a Managing Director at EY with 15+ years of experience in risk management with a focus in third party risk, cybersecurity and resiliency. Chris’ expertise includes building sustainable operations and product delivery from scratch to deliver third party control validation and scaled risk management and technology control functions globally. Throughout his career he has developed functions that align, design and deliver new products and integrated services as solutions.

Chris is actively involved with sector enhancement efforts and regularly speaks as a representative of them. His last presentation on Third Party Risk was at a US Federal Reserve System National Cloud Summit highlighting the benefits, risks and challenges of migration strategies to the public cloud environment.

Chris joined EY in May 2020 after spending two years building and operating a third party risk focused consortium effort on behalf of JP Morgan Chase, Bank of America, Bank of New York Mellon, Wells Fargo and American Express as COO. The 5 years preceding that were spent building, implementing, and operating a global, third party risk management function at one of the world’s largest financial institutions. In this role Chris was accountable for the organization’s third party due diligence activities across all phases of the relationship, the third party cyber product, driving focused residual risk reduction and led numerous initiatives to mature the Third Party Oversight and Controls program.


Data Harmonization and the ever-evolving global regulatory mandates
Panel discussion

10:50 - 11:30

Standing still is not an option in today’s evolving regulatory environment. Without adapting to new technologies, products and regulation, FIs will struggle to keep up with the industry needs of tomorrow in a manner that facilitates smarter, and more consistent use of data.

In this session, we will explore the evolving regulatory mandates across the world and its impact on data required to support the reporting of OTC derivatives. With countries such as Australia, the EU, Hong Kong, Japan, Singapore, the UK, the US, all requiring amended reporting from Q3 2022 onwards, the panel will examine the use of the data standards-driven identifiers to facilitate evolving regulatory mandates, and consider the impact on market participants and market infrastructure alike.

Our expert panel will discuss how you can meet your business targets, stay compliant and maximize the value of reporting and reference data in an ever-complex regulatory environment.

Discussion points:

  • What are the new regulatory requirements for OTC derivative data and reporting

  • How best to respond to market dynamics and regulatory requirements

  • Leverage advanced analytics and data management tools to mitigate risk and drive profitability

  • What is the future of regulation from a data perspective?

Malavika Solanki

Management team

Derivatives Service Bureau (DSB)

Malavika Solanki is part of the Management Team at the Derivatives Service Bureau, (DSB), a global numbering agency for OTC derivatives that allocates ISINs, CFI codes and FISNs - all recognised and adopted ISO standards for identifying, classifying and describing financial instruments. The DSB will in due course also provide UPIs, following recent nomination by the Financial Stability Board. Malavika has worked in the OTC derivatives market for over 20 years, is part of the team that oversees the DSB and was previously responsible for the development of LCH. Clearnet’s credit default swap clearing service. Malavika’s experience lies predominantly in launching and scaling new ventures across a variety of OTC derivative asset classes, with skills focused on service and product development and business modelling. Malavika is a graduate of London Business School’s Executive MBA programme and enjoys mentoring high-growth, fintech teams.

Michael Ivie

Managing partner – head of financial services consulting

Phyton Consulting

Michael is a Managing Partner and the Head of Financial Services Consulting for Phyton Consulting, a specialized professional services firm that empowers highly regulated and data intensive businesses with subject-matter leadership and execution-focused delivery capabilities.

Michael has over a decade of experience in Finance, Risk, and Technology in both public and private sectors. His diverse background as a Trader, Developer, Analyst, Enterprise Risk Manager, and Management Consultant for many of the world’s leading financial institutions has helped him develop a unique perspective on how these organizations function and how to navigate a changing business, technical, and regulatory landscape.

He received an MS in Finance and an MBA in Risk Management & Insurance from Georgia State University’s J. Mack Robinson College of Business. He earned a Professional Risk Manager certification from PRMIA, Basel Compliance Professional designation from BCPA, Project Management Professional credential from PMI, and numerous professional industry licenses and data/IT certifications.


Environmental, Social, and Governance (ESG): The Missing ‘R’ for Resilience

11:45 - 12:45

In time of significant climate and social turbulence, regulatory scrutiny, and investor expectation, Environmental, Social, and Governance (ESG) is increasingly at the heart of what it means to build a more risk-aware and resilient organisation.

In fact, a recent article from the World Economic Forum suggests ESG is missing a letter – ‘R’ for resilience.

“From the pandemic and devastating weather events of last year to a restive and divided set of social movements, the growing pace of upheavals points to the fact that ESG measurement doesn’t just need more uniformity, rigor and breadth. It also needs an additional variable in order to assess businesses’ capacity to effectively recover, adapt and grow in the face of shocks and stress: resilience.”

Simply put, it is increasingly clear that investors can no longer outrun or ignore social and environmental problems. All evidence points to continued business and financial disruption in the years ahead.”

World Economic Forum, “ESG is missing a metric: R for resilience”, June 2021

Join Fusion Risk Management’s for a roundtable discussion exploring how risk and resilience is leading the way in amidst growing, quickly-evolving and unpredictable climate and social threat.

Paula Fontana

Senior director of product marketing

Fusion Risk Management

Fraud and AML in focus


Synthetics: fighting fraud in this increasingly complex landscape

10:00 - 10:40


What is the new fraud risk landscape post-pandemic? It is very different than it was before because (1) synthetic identity fraud has matured, (2) pandemic-related government stimulus has opened new avenues for fraud, and (3) there has been a shift to digital channels.

The government has taken action to claw back funds lost through stimulus fraud, which they have recently indicated may be used to fund infrastructure investments, and they have separately stated that fraud will be an exam priority. In addition, cryptocurrency is entering regulators’ area of focus as more companies seek to create products that render it accessible to mainstream consumers.

  • How can financial institutions best manage their fraud programs to operate effectively in this shifting landscape?
Nik Walser

Managing Director, Financial Crimes


Nik is a Managing Director and co-lead of the Fraud Advisory Technology and Operations practice of EY with over 15 years of experience in the banking, capital markets, and insurance industries, providing financial crime advisory services to many of the largest global institutions across five continents.

Nik has successfully guided large and complex initiatives spanning fraud prevention, detection, investigation, and claims processes, customer identity and authentication, cyber risk, regulatory compliance, AML, KYC, sanctions, operational risk and payments. His advisory experience includes working with large and mid-size firms in the execution of financial crime capability/maturity and risk assessments, strategy and roadmap definition, and implementation of governance and control frameworks with an emphasis on leveraging technology. Nik has worked extensively with financial services firms to design and build fraud programs spanning all three lines of defense, covering a diverse range of internal and external fraud risks and upstream cyber threat vectors. 

Nik led the business requirements team for IBM’s Counter-Fraud platform. He also oversaw multinational teams that designed and built first-of-a-kind solutions spanning data analytics, counter-fraud, case management, list screening, AML and KYC. He led implementations of enterprise financial crimes platforms for top-tier US, Canadian, European, Asian, and African financial institutions. This included engagements performed under regulatory scrutiny

Keith Andrzejweski

Principal, Financial Crimes


Keith is a New York-based Principal in EY’s Consulting Services practice. He has 25 years of experience in helping global financial institutions counter financial crimes and fraud. He has lead several engagements around designing and customizing fraud detection and prevention programs using optimal processes and technology. His key focus areas include fraud operating models, authentication, fraud prevention/detection, and case management and Robotics Process Automation.

Keith has lead several successful programs across the globe for multinational financial institutions targeted at enhancing their business process and IT systems to counter financial crimes. He has overseen multiple efforts to help clients establish centers of excellence in analytics and robotics focusing on assessing critical data elements for key AML related activities.

He has had experience building real-time fraud detection solution using AI, Analytics and Machine learning across different vendor solutions like NICE Actimize, Brighterion, ThetaRay, Gurdian Analytics at several clients.

Prior to joining EY, Keith has held several senior leadership roles at EMC, KPMG and BearingPoint delivering technology and operating solutions in the risk and compliance sector. 


Tackling insider fraud…best practice for managing security and controls in an era of heightened volatility

11:00 - 12:00

Banks and financial institutions (FIs) are increasingly struggling with the management and control of insider fraud. Whilst the threat is not new, the risk is in sharper focus now because of the challenges brought on by changing working environments and market volatility. With the current economic volatility and employee morale at an all-time low, how can FIs managing the growing threat of insider fraud? Join this roundtable discussion for best practice and tips on how to monitor and mitigate this complex threat.

Discussion points:

  • Rise in internal/employee fraud are on the rise – what can be done to control this risk?

  • What are the key challenges for FSIs in detecting and monitoring insider fraud risk?

  • What are the key challenges for FSIs in producing sufficient evidence to investigate potential insider fraud?

  • What is the role of automated detection tools and technologies in detecting anomalous patterns of behaviour and flag potential fraud risk?

Albert Laino

Solutions Consultant

Bottomline Technologies

Dror Kaelter

VP Fraud and Financial Crime

Bottomline Technologies

Operational resilience in focus


The future of resilience: Moving beyond COVID, what’s next?
10 questions on...

09:10 - 09:50

The pandemic forced digital adoption at an unparalleled rate. Financial institutions, preparing timelines for a digital transformation project that spanned years, effectively pressed fast forward, condensing their activities into a matter of months. Consumers across the globe bucked tradition to move their activities online. With recovery on the horizon, these behaviors are set to stay. In the face of such speedy changes to consumer behaviors, how are FIs building and ensuring operational resilience?

Nita Kohli

VP operational resilience

Freddie Mac

Gus Ortega

Head of Operational Risk


Gus Ortega is an accomplished risk management executive with over 20 years of work experience for multi-national global financial institutions. He is currently the Vice President, Head of Technology, Innovation and Operations risk management at Voya Financial. Prior to joining Voya Financial, Gus was the Head of Operational Risk Management at AIG directly responsible for the global Operational Risk program including Business Continuity and Third-Party Risk Governance and Oversight.

Gus also held various senior risk positions at UBS Investment Bank, Dresdner Bank and Morgan Stanley throughout his 20 years of work experience in the industry. He is an active advocate for Operational Risk Management and most recently was the keynote speaker at the World Bank Operational Risk Workshop in Washington D.C., Gus is also the co-author of The Fundamentals of Operational Risk for Insurers, a book published in 2017.

Charles Nicholls

Enterprise Risk Solutions Specialist


Charles Nicholls is an Enterprise Risk Solutions Specialist and currently serves as the Senior Sales Executive at MetricStream.

Prior to MetricStream, Charles has held various Sales, Audit and Enterprise GRC solution positions for Thomson Reuters, Refinitiv, Galvanize and BT.

With more than 30 years of experience, Charles was also the founder of the Inspiration Sales Consultants company, which offered Sales and Marketing Consulting services to Financial Markets.

Steve Marlin

Staff writer


Scenario based testing: evolving your testing paradigm
Panel discussion

10:00 - 10:40

Scenario testing and op resilience go together naturally. As scenario test regimes mature, financial institutions will look to expand their use. And faced with growing uncertainty affecting all aspects of their operating environment, how do firms go about creating meaningful stress scenarios that will help them operate more effectively and become more resilient:

  • Effectively leveraging experiences into scenario analysis 

  • Applying historical business continuity data with current scenarios

  • Cost benefit analysis: weaknesses and potential losses

Richard Cech

Senior bank examiner, operational risk governance

Federal Reserve Bank of New York

Rick is a Senior Bank Examiner. He joined the Operational Risk Governance unit at the New York Fed in December, 2011 in the Financial Institutions Supervisory Group (FISG).

Rick began his career as a municipal finance attorney, then joined J.P. Morgan & Co., where played a variety of roles in markets and investment banking. In the late 1990s, Rick joined J.P. Morgan's original operational risk development team. There, he was responsible for framework development tasks and loss data collection and reporting systems. While at J.P. Morgan, Rick chaired the IIF subcommittee that drafted the finance industry's recommendations for Basel II event type categories, and later participated in the definition of loss data recording standards for the Operational Risk data eXchange (ORX). Before joining the Fed, Rick was an operational risk framework consultant for RiskBusiness International, designing customized taxonomic models and structured risk management programs for institutional clients.

Rick has been a writer, speaker and business school instructor on operational risk topics. He received a B.A. (Economics) and M.A. (Organizational Behavior) from Yale University, and a J.D. from University of Connecticut School of Law (Law Review, lead articles editor).

Rich Cooper

Principal-financial services


With many years of experience deploying business continuity and risk management platforms globally, Rich Cooper oversees customer success and business development for large, global accounts.

Rich has more than 20 years of experience in the business continuity and risk management marketplace, running programs and implementing software in both Europe and North America for some of the world’s largest organizations. He has an MBCI certification from the Business Continuity Institute.