Agenda

Day One : Tuesday, April 28, 2020

08:00

60 min

Registration and Continental Breakfast

09:00

10 min

Welcome and Opening Remarks from the Chair

10:00

15 min

Networking Break

11:15

60 min
Saad Ali

Elements of a Robust Governance Framework

Saad Ali, Director, Governance, Controls & Operational Risk, CIBC

  • Critical elements of a Governance Framework
  • Regulatory requirements for Corporate Governance (including OSFI and SOX)
  • How business changes impact the risk assessments
  • Reviewing industry events for risk incidents and assessing impact on the business
  • Creating a Risk Profile for each Line of Business to identify areas requiring enhancements

12:15

60 min

Luncheon

13:15

60 min

Real-Life of Quantitative Convergent ERM to Solve Real Life Problems

Franco Obani, President, Riskope

  • A real life case history. Multi country, multi-operations, diversified products.
  • Why a convergent quantitative ERM was necessary.
  • How such an endeavor is setup
  • How it was successfully implemented, including interdependencies
  • How results are displayed and used to enhance decision-making

14:15

60 min

Using Predictive Analytics in Operational Risk Identification

Norman Baldwin, Partner, GRC Vista Risk Consulting

  • Integrating new data to optimize risk identification methods
  • Evaluate more types of operational risks than ever before
  • Evolve your data architecture and models 
  • Accurately determine risk exposure 
  • Understand what data pools and advanced tools could make possible

15:15

15 min

Networking Break

15:30

60 min
Richard Cartwright

Strengthening Cyber Risk Programs in Regulated and Non-Regulated Environments

Richard Cartwright, Senior Program Management Consultant, MZP Solutions

  • What is a GRC Cyber Risk and Cybersecurity Program (and what are global industry best practices critical to the success of the program)
  • Why and how do we make targeted improvements to Cyber Risk programs
  • How do we assess and manage cyber threats, vulnerabilities and risks based on risk profiles and the value at risk
  • How do we demonstrate success of a strengthened cyber risk and cybersecurity program through the use of KPIs and KRIs
  • How do we ensure that operational risk management, enterprise risk management and enterprise cybersecurity programs are well aligned

16:30

End of Day One

Day Two : Wednesday, April 29, 2020

08:00

60 min

Registration and Continental Breakfast

09:00

10 min

Welcome and Opening Remarks from the Chair

09:10

50 min

Implementing and Delivering the Three Lines of Defence Model

  • Find the balance between managing risk and impeding progress
  • Understand the importance of independent assurance
  • Implement a governance framework in a non-regulated environment
  • Identify the benefits of a risk aware culture
  • Learn how to manage transformational change

10:00

15 min

Networking Break

10:15

60 min

Moving Towards an Integrated Risk Management Approach

  • Understand the benefits of moving away from a traditional risk management approach 
  • Learn how technology can be an enabler and obstacle for integrated risk management 
  • Overcome integrated risk management challenges and explore solutions 
  • Step-by-step guide to what integrated risk management looks like in real life 
  • Explore what financial risk management can teach us

11:15

60 min

12:15

60 min

Luncheon

13:15

60 min

Costs and Response Strategies for Cybersecurity Incidents

Michael Leung, Founder & Management Consultant, Canadian Cybersecurity Inc.

  • Hear about the latest cyber-attack statistics on Canadian businesses
  • See the breakdown of activities and the cost of a data breach for Canadian businesses
  • Leverage your ERM categories to define your organization’s potential impact of a cyber incident
  • Learn about the phases of an incident response, and strategies on responding to major breaches
  • Hear about some caveats to cybersecurity insurance

14:15

60 min

ERM: Common Myths and Misconceptions

  • Understand why convergent approaches are needed 
  • Implement a systemic analyses for better decision-making
  • Learn the importance of understanding the ‘why’
  • Understand why traditional audit planning does not work  
  • Explore consistency vs quality of information 

15:15

15 min

Networking Break

16:30

End of Day Two