Agenda

Day One: Tuesday, October 5, 2021

12:45 EDT ( 09:45 PDT )

45 min

Break

14:30 EDT ( 11:30 PDT )

60 min

The Power of Partnership: Optimizing Operational Risk Management by Expecting more from Internal Audit

Kendra Holland, Chief Credit and Risk Officer, connectFirst Credit Union

Rachael Golembuski, Chief Audit Officer, connectFirst Credit Union

  • The management of operational risk is everyone’s job; tips for communicating clearly across the Three Lines
  • It takes two to tango; the role Internal Audit plays in optimizing operational risk management
  • Let’s be partners and have a #piñacolAudit
  • Cooperation makes it happen; how to share resources so everybody wins
  • Telling the story of success through separate yet coordinated view

16:30 EDT ( 13:30 PDT )

Closing Remarks from the Chair

Day Two: Wednesday, October 6, 2021

11:45 EDT ( 08:45 PDT )

60 min

Operation Risk in Financial Industry: Data Loss Protection and Prevention

Sameer Lal, Associate Director, Operational Risk, RBC

  • What is Data Loss
  • How to prevent it -Business needs take precedence- the exemption
  • Types of exemptions (Including printing from home in new Covid situation)
  • Toxic combination for data leakage
  • Controls- Preventive and Detective
  • Risk acceptance vs Risk mitigation
  • Data Loss Incidents and Impacts
  • Continuous monitoring and reviews

12:45 EDT ( 09:45 PDT )

45 min

Break

14:30 EDT ( 11:30 PDT )

60 min
Narasimham Nittala

Building A Cloud Risk Management Framework in Financial Institutions: The Enterprise View

Narasimham Nittala, Manager, Operational Risk & Technology, Concentra Bank

  • Core elements of a Cloud Security Risk Management framework (CSRM) in financial  institutions.
  • Leverage industry leading frameworks: National Institute of Standards and Technology (NIST) and Cloud Security Alliance (CSA) in building a CSRM
  • Business Dimensions of CSRM: Technology, Operational, Governance and Financial  Dimensions of cloud engagements.
  • Bring together the various links between business risk areas, technology controls, and  aligning cloud security risk to enterprise risk definitions.

16:30 EDT ( 13:30 PDT )

Closing Remarks from the Chair