Day One: Tuesday, November 16, 2021

10:15 EST

45 min
Brian Bost
Keynote Address

Internal Controls in Agile Transformations

Brian Bost, Partner-in-Charge, Risk Consulting Ottawa, KPMG LLP

Role of Internal Controls on the success of major transformations:

  • The role of internal controls in 1st, 2nd and 3rd lines of defence in major transformations
  • AGILE – What it is, and what it is not
  • The importance of internal controls in agile transformations
  • Case Studies – Why internal controls are even more important than ever

11:00 EST

45 min
Roxane Roy

How Covid Changed Workplace Culture and How We Have Responded: Monitoring and Mitigating Changes in “Culture Risk” with an Internal Control Framework

Roxane Roy, Director, Internal Controls, Finance and Administration Branch, Public Services and Procurement Canada

Impact of Covid-19 on:

  • The system of values, beliefs and behaviours that shape how things get done within an organization
  • The activities used to reinforce culture and the employee behaviours that have an impact on an organization’s culture
  • The qualitative and quantitative indicators that support a healthy organization
  • Practical frameworks used to identify linkages between leader’s actions, business strategy, organization systems and employee behaviours

11:45 EST

45 min
Claire Lake Becky Drummond

The Evolving Financial Management Landscape: Adapting your Management Control
Framework and Internal Controls Assessments for Changes in Financial Management Policies

Claire Lake, Baiame Consulting

Becky Drummond, Senior Manager, Risk and Financial Management, Baiame Consulting

  • Impact of Covid-19 on financial management policies in the public sector
    • Flexible transfer payments and evolving transfer payment programs
    • Risk-based focus
    • Sustainable operations and resiliency
  • Upcoming changes to financial management policies that may affect your organization.
  • Implementing and revising a management control framework, internal control assessments and supporting processes in alignment with financial management policy changes.
  • Case Study: Redesigning Transfer Payments and Grants and Contributions management practices

12:30 EST

45 min


14:00 EST

45 min
John Colthart

Leveraging Artificial Intelligence to Mitigate Financial Risk

John Colthart, Senior Vice President, Strategic Insights and Marketing, MindBridge

  • How machine learning and artificial intelligence (AI) solutions are transforming risk management
  • The main machine learning and AI techniques of benefit to risk management
  • Current practice and empirical evidence of the application of AI techniques to the risk management fields
  • Current limitations
  • How the field is likely to develop in the short- to medium-term
  • Practical limitations around suitable data management policies, transparency, necessary skill sets

14:45 EST

15 min


15:00 EST

60 min
Mike Goodfellow

Don’t Just Survive, Thrive: Reliable Financial Reporting For the Public Sector in the Era of Covid

Mike Goodfellow, Global Operations Advisory Leader, Deloitte

Conducting a thorough review of your organization’s internal control environment is now more crucial than ever. This session will cover considerations related to business processes, technology, and control testing practices that will allow you to thrive even in this challenging time.

  • Anticipating challenges in internal control over financial reporting
  • Business control implications
  • IT Control implications
  • Internal Control framework and governance
  • Testing activities

16:00 EST

End of Day One

Day Two: Wednesday, November 17, 2021

10:15 EST

45 min
Richard​​ ​​Leblanc
Opening​​ ​​Keynote​​ ​​Address

Focus on Fraud: New and Emerging Risk​​ ​​Governance ​​Insights​​ ​​for​​ ​​Internal​​ ​​Controls​​

Richard​​ ​​Leblanc, Professor of Governance, Law​​ ​​&​​ ​​Ethics, York​​ ​​University

The impact of Covid -19 has ricocheted throughout every organization and the result is new and emerging governance risks and necessary changes to internal controls.  This session will include a deep dive into the Internal Controls over:

  • Employee wellness and safety
  • Cyber-security
  • Fraud
  • Working from home
  • Climate and “Environment, Social and Governance” (ESG)
  • Recent legal changes to fiduciary duty
  • Acceleration of digitization and impact on business models
  • Assurance over the design and testing of internal controls
  • Linking executive pay to Environment, Social and Governance (ESG)
  • Independence of internal audit, risk and compliance functions

11:00 EST

45 min
Darrin Nowakowski

Threat Hunting Techniques and More - The Intersection Between Fraud Detection, Cyber Security and Data Analytics

Darrin Nowakowski, National Head Cyber Strategy, CGI Canada

  • Where cyber security and fraud detection converge
  • Strategies for detecting internal and external fraud
  • Detecting and alerting for fraud
  • Using Threat Hunting techniques for fraud detection
  • Platforms for rapid analysis
  • Analytics for large scale analysis
  • Putting it all together A.K.A -Finding the needle in the haystack

11:45 EST

45 min
Matthew D. Lammers

Remote Work and the Effects of Dispersed Workforces The Case for Evolved Strategies Improving Data Security, Privacy, and Compliance Performance

Matthew D. Lammers, Sr. Managing Consultant, IBM Security

  • How organizations have demonstrated agility and creativity in adapting to new realities affecting connectivity and workloads since the global pandemic alert was issued,
  • How remote work and the effects of dispersed workforces have now transformed into a race towards digital transformation (hybrid-cloud).
  • Important gaps in that innovative leap.
  • How the effects of these gaps are being felt in areas of security, privacy, and compliance.
  • How these elements represent a journey, not a destination,
  • How  “perimeterless” environments have put an end to legacy security postures,
  • The need for rapidly evolving strategies to protect organizations

12:30 EST

60 min


13:30 EST

45 min
Robert Pitcher

The Threat From Within: Recognizing the Risk of an “Insider”…

Robert Pitcher, Cyber Partnerships Manager, National and Cyber Security Branch, Public Safety Canada / Government of Canada

Insider risk relates to people working within an organization to subvert the confidentiality, integrity, and availability of the information contained within the walls of that entity. Public Safety Canada is pleased to provide an informative and insightful talk where participants will hear case studies of related events and learn what organizations can do today to protect their systems from the “threat from within”.

  • What if the keys to the castle were in the hands of those that you were trying to defend against?
  • What if the contractor building your IT infrastructure was working for your competitor?
  • What if your most important asset was also your biggest vulnerability?

14:15 EST

60 min
Nicole Dufresne-Baker Charity Lawson

System Implementation and Control Transformation

Nicole Dufresne-Baker, Director, Risk Advisory, Deloitte Canada

Charity Lawson, Partner, Risk Advisory, Deloitte Canada

  • Many public sector organizations are currently or will be moving from SAP ECC to SAP S/4 HANA in the coming years.
  • With any new system implementation, there are important internal control considerations
  • Find out how to see this as an opportunity for business process transformation and internal control optimization.

15:15 EST

30 min

Q & A

15:45 EST

End of Day Two