Day One: Tuesday, June 11, 2024
10:30 EDT
15 minWelcome and Opening Remarks from the Chair
Marc Y. Tassé, Departmental Audit Committee, Public Safety Canada
10:45 EDT
60 minLeveraging Data Mining for Effective Internal Controls
Brian McKenna, Manager Analysis and Liaison, Treasury Board of Canada Secretariat
- Identify anomalies and irregularities in large datasets to detect potential fraud, errors, or deviations from established internal controls
- Analyze patterns, trends, and outliers within the data
- Leverage historical data to build predictive models that forecast potential risks or control weaknesses
- Facilitate continuous monitoring of internal controls by automating the analysis of large volumes of data in real-time
- Perform in-depth root cause analysis to understand the underlying factors contributing to control failures
11:45 EDT
60 minThe Future of Internal Controls: Our Journey to Automation
- Understand what the future of controls testing entails including the art of the possible.
- Determine how the organization can begin its automation journey.
- Review and understand the benefits in modernizing the three lines of defense.
- Consider the benefits of implementing a GRC platform for internal controls and beyond.
- Proactively engage stakeholders and buy-in to the automation journey.
12:45 EDT
45 minBreak
13:30 EDT
60 minFraud Risk Management Strategy
Purnima Pandit, Manager, Internal Controls, The Ottawa Hospital
- Concepts of fraud
- Governance
- Fraud Risk Assessment
- Controls and mitigation strategies
- Investigation and Reporting
14:30 EDT
60 minPrivacy Concerns and the Public Sector
- Develop and implement robust privacy policies and procedures within the public sector to ensure the responsible handling and protection of sensitive citizen data
- Launch comprehensive awareness campaigns to educate government employees and the public about privacy risks, promoting a culture of understanding and accountability
- Regularly conduct thorough privacy audits and assessments to identify vulnerabilities, address compliance gaps, and continuously enhance data protection measures in the public sector
15:30 EDT
60 minNavigating the Implications of Ethics in the Future of Internal Controls in Public Sector Organizations
Marc Y. Tassé, Departmental Audit Committee, Public Safety Canada
- Emergence of New Ethical Challenges: Addressing the evolving ethical dilemmas in the public sector due to technological advancements, like data privacy and AI ethics, and their impact on internal controls.
- Integration of Ethics in Internal Controls: Emphasizing the crucial role of internal controls in upholding ethical standards, including developing and implementing policies and procedures to ensure integrity and accountability.
- Technological Advancements and Risks: Exploring how new technologies are transforming internal controls, offering improved transparency and efficiency, while also introducing new ethical risks and considerations.
- Future Trends and Stakeholder Engagement: Discussing predictions for future trends in ethics and internal controls, and stressing the importance of engaging stakeholders in developing and upholding ethical practices in public sector organizations.
16:30 EDT
Closing Remarks from the Chair
Day Two: Wednesday, June 12, 2024
10:30 EDT
minWelcome and Opening Remarks from the Chair
Marc Y. Tassé, Departmental Audit Committee, Public Safety Canada
10:30 EDT
60 minBusiness Resilience Foundations and How to Audit Resilience Programs
Tarek Habib, Senior Manager, Cybersecurity & Resilience, KPMG LLP
Business resilience programs are typically broad in scope and are designed to cover all types of disruptions, including severe weather, third party failure, cyber-attacks and pandemics. Along with these programs comes a variety of concepts, acronyms and buzzwords that are not widely known in the business world. In this presentation, we will cut through the buzz and explore practical ways to communicate business resilience concepts and assess resilience capabilities. We will explore how you can approach auditing your resilience program and what to look for in determining recovery targets, assessing exposure, making the case for additional investment, developing recovery plans and testing them.
11:30 EDT
60 minIntelligence-led Investigations in Group Benefits Fraud & Abuse
- Sun Life’s approach to Fraud Risk Management and Group Benefits Fraud and Abuse
- Leveraging data and intelligence to identify and investigate suspicious medical equipment suppliers/vendors
- Proactive intelligence-led investigations to mitigate fraud
- Conducting thorough post-review of investigations to identify gaps and improve internal controls and enhance future investigations
12:30 EDT
45 minBreak
13:15 EDT
60 minNavigating Internal Controls in the Age of Automation
- Adapt an internal control framework to seamlessly incorporate and leverage automated processes.
- Implement advanced automation tools to enhance the efficiency and accuracy of internal controls.
- Proactively monitor automated systems to ensure compliance and identify potential control gaps.
- Continuously optimize automated internal controls for maximum effectiveness in the evolving technological landscape.
- Educate personnel on the integration and use of automated tools within internal control processes.
14:15 EDT
60 minHow to Protect Your Organization Against Fraud
- Implement robust authentication protocols to safeguard access
- Conduct regular audits to detect irregularities and vulnerabilities
- Educate staff on fraud awareness and prevention techniques
15:15 EDT
Closing Remarks from the Chair