This conference helped me to find practical ways to integrate risk management in day-to-day operation.
- Chief of Active Risk
Surveillance Economic
Development Canada
12th Annual Event!

Risk Management in the Public Sector

Improve Capability in Risk Management to Meet Accountability Expectations

January 22 - 23, 2019  ·  Ottawa, Ontario
Optional Workshops: Thursday, January 24, 2018
9:00 - 12:00
Workshop A
Building a Unified Front to Tackle Risk
David Pearson CTO, Iceberg Networks
Melissa Cohoe, Director of Archer Services, Iceberg Networks

Every organization, including public sector organizations, operate in a rapidly evolving risk environment. They’re looking for ways to mature their risk management programs and processes to increase their ability to respond to new and emerging risks, and ensure that they are aligned to their overall corporate risk profile and strategy -- all while staying focused on the ultimate outcome: delivering more efficient and effective programs to the public and stakeholders.

A key challenge is dealing with the increasing volume of risk data being captured on spreadsheets. It is overwhelming and difficult to scale, and organizations are looking for new approaches and new ways to leverage technologies to automate and simplify risk management, and provide greater transparency into their risk posture.

In this hands-on workshop, participants will explore success stories from the public and private sectors that will include:

  • How to integrate risk management within a broader strategic planning framework and corporate planning activities.
  • How to break down departmental silos, and develop common risk taxonomies, processes and organizational alignment for a holistic view of risk in areas including cyber risk, vendor management and procurement, audit management, business resiliency, privacy, compliance, and overall enterprise risk management priorities.
  • How to integrate a horizontal service-based approached, focused on delivering efficient and effective delivery of services and information to Canadians.
  • How to incorporate digital tools into the risk management process to drive automation, and develop more effective reporting. This will include examples of dashboards, KPIs and KRIs that improve the transparency and timeliness of risk information being shared within departments and to external stakeholders.
  • How to improve issues management and tracking, to ensure timely and accountable remediation of identified gaps and weaknesses. This includes best practices for prioritizing remediation activities based on risk level, risk tolerance and budget.
  • Recommendations on developing a roadmap and resource planning to chart a course to build the maturity of their risk management programs.

Iceberg Networks works with organizations, to help plan, deploy and support successful implementations of Governance, Risk Management & Compliance (GRC) solutions, driving more informed and confident business decisions. Based in Ottawa and serving the public and private sectors in North America, their roster of clients includes municipal, provincial and federal government departments and agencies. Their team of consultants, developers and subject matter experts offers a full lifecycle of services, including executive workshops, implementation and integration, and support services. They are also a software reseller for some of North America’s leading GRC software platforms.

David Pearson co-founded Iceberg Networks in April 2006 to deliver leading edge Enterprise Risk Management solutions and services. In a consulting role, he has worked with dozens of organizations in the public and private sectors across North America to plan, implement, and support GRC. Mr. Pearson has assisted Government of Canada clients to implement Treasury Board policies and standards for IT Security, and helped developed certification, accreditation and information security risk management frameworks for Shared Services.

Melissa is a second-generation IT professional with over a decade’s experience in a variety of technical roles, including application management, development management, systems analysis, project management and production support.
At Iceberg, she leads the Archer business, supporting the team in creating repeatable and deployable success with RSA Archer. With clients, she provides leadership and consulting services, driving the delivery of successful business-driven risk solutions.

1:00 - 4:00
Workshop B
Preventing Harassment, Workplace Violence and Conflict. Your Policies in Action
Deborah Jelly, Director Investigations, CHR

When employees come forward with complaints of harassment and workplace violence, employers and their representatives often scramble to determine what action the situation demands. The response is often muddled and delayed followed by decisions that do not suit the situation. These reactions lead to delays in resolving the problem, sometimes additional harm is caused, the problem becomes worse, employees become ill or disillusioned, complaints are made to external agencies and in general the employer experiences losses.

This workshop reviews the foundation of an effective and legally appropriate response, including the steps the employer should undertake to review policy and procedure. The policies should identify roles, responsibilities, definitions, steps, record keeping, preventing additional injury and processes for resolution. This interactive session will cover:

  • Harassment as an injury which the employer is legally responsible for preventing.
  • The employer’s legal duties in prevention and resolution.
  • What constitutes a complete and effective policy? Get your checklist in order.
  • Understanding Procedural Fairness will help you understand your duties.
  • Managing employee confidentiality.
  • Every Supervisor, Team Leader and Manager is expected to serve as a role model and point of intervention. Be ready to respond.

Ms. Deborah Jelly is the Managing Director of CHR. Deborah liaises with clients, develops standards, recruits consultants and provides leadership to the CHR team of consultants. Deborah has extensive experience in the analysis and resolution of complex workplace disputes as well as the development and delivery of related training.

Deborah is known for her insights into the causes of workplace dissatisfaction and conflict; her understanding of the legislation informing relevant policy; her coaching and support of leaders; and her forecasts concerning the impact of policy changes, and implementation of decisions in cases of workplace conflict and harassment.




Risk is inherent in everything we do. Despite best efforts it is impossible to control everything. Organizations face numerous risks that can prevent the entity from achieving desired outcomes. No one, least of all those working in the public sector, can ignore risks -- they must be managed. Unfortunately, like most things, this can be easier said than done. Risk management can be tricky, but when done right it can be invaluable.

INFONEX's two-day Risk Management for the Public Sector will bring together thought leaders to discuss and identify ways to continually optimize your organization's risk management practices. Our expert faculty of speakers will share timely information and proactive approaches for manoeuvring and anticipating likely eventualities, both good and bad.

Transformation is a key activity in government at all levels. The need to respond to changes in the economy, policy direction and an increased focus on effectiveness and results, taken together, create a strong business case to review, streamline and enhance your implementation of risk management. In some departments, agencies and organizations risk management has degraded and become an obligatory "tick box" exercise, the same risks continue to be assessed and no effort is made to remove risks that no longer apply or to identify new and emerging risks that are arising from changes in the economy, security and governance.

Get a better understanding your organization's culture and potential threats posed by the wrong corporate culture. Hear best practices for integrating planning, risk management, and performance reporting. Examine the best practices for integrating internal controls into your risk management program. Find the balance between reducing cyber-related risks and managing business demands. Learn how to develop a forward-looking approach will mitigate threats to your organization's reputation.

Attend Risk Management for the Public Sector and walk away with practical strategies for taking your risk management practices to the next level. Register today!

Telephone: 1.800.474.4829  |   360 Bay Street, Suite 900, Toronto, ON  M5H 2V6   |   Fax: 1.800.558.6520  |  Contact Us
© 2000-2018 INFONEX Inc.