Overview
Scandals. Accidents. Cyber Attacks. Disasters. These days, too many companies have found themselves suddenly caught in the negative spotlight. As a result, they are being hit with massive fines and lawsuits, their reputations are taking a beating, their stock prices are falling and they are losing money and market share.
Sensitive corporate data leaks, natural catastrophes, financial reporting mistakes and costly business interruptions are just a few of the wide spectrum of risks organizations must be prepared for today. Do you know all the threats your company now faces? Do you have a plan to help you avoid these potential disasters? Are you and your team ready to take effective action at a moment’s notice when the unexpected strikes? Is your comfort based on data or assumptions?
With our Risk Management forum, you will get insight and practical tools to help you assess the readiness of your company to face today’s biggest threats. Led by real-world practitioners, this forum will arm you with all the practical knowledge and skills you need to implement an effective action-oriented risk management program.
FORUM HIGHLIGHTS
• Establishing a risk program and committee
• Identifying, evaluating and prioritizing top risks: balancing content and process
• Cybersecurity: understanding and communicating the threat in business terms
• Risk management strategies and remediation
• Establishing risk transparency and reporting
• What does ERM mean to our company?
Agenda
Deluxe Continental Breakfast & Registration
8:00 – 8:45 AM
Welcome & Opening Remarks
8:45 – 9:00 AM
Establishing a Risk Program & Committee
9:00 – 10:15 AM
This session will cover practical approaches for establishing a risk program and committee and
getting started on the right path.
• ERM program lifecycle
• Organization and structure
• Managing the risk culture
• Developing a risk committee charter and membership
• Establishing risk appetite, program purpose and priorities
• Risk taxonomy, ranking criteria and measures
• Recruiting committee members
• Establishing expectations with senior management and the board
Break
10:15 – 10:30 AM
Identifying, Evaluating & Prioritizing Top Risks: Balancing Content & Process
10:30 – 11:30 AM
This session will cover an array of best practices for risk identification and striking a balance
between collecting risks and over-engineering.
• Linkage to business and strategic objectives
• Meeting and data collection strategy
• Best practices and lessons learned from peers in industry
• Aggregating and measuring risks
• Understanding and measuring technology risks
Cybersecurity: Understanding & Communicating the Threat in Business Terms
11:30 AM – 12:30 PM
This session will cover cyber security threats seen in the headlines, why they happen and how
best to assess the risk in nontechnical terms.
• Information security—linkage to business and strategic objectives
• Are hackers super-human?
• Safe security practices at home and work
• Why are you a target?
• How do I explain the risk without losing attention?
Luncheon
12:30 – 1:30 PM
Risk Management Strategies & Remediation
1:30 – 2:45 PM
This session will cover strategies for preventing threats from popping up again with disciplined
remediation.
• Assigning accountability on risks—“Who’s on First”
• Developing remediation plans and tracking mechanisms
• Leveraging continuous control monitoring tools
• Leveraging self assessments, internal audit, risk and compliance functions as part of the risk
management strategy
Break
2:45 – 3:00 PM
Establishing Risk Transparency & Reporting
3:00 – 4:15 PM
This session will cover best practices, emerging trends and technologies associated with
identifying key risk indicators, creating and managing risk reporting, and dashboards.
• Connecting the CFO, CIO, CRO, CISO, and COO to produce risk transparency and early warning
identification
• Predictive risk analytics
• Leveraging technology
• Linkage to other risk programs and functions (SOX, internal audit and compliance)
• Ongoing real-time risk reporting
Wrap-Up & Summary: What Does ERM Mean to Our Company?
4:15 – 5:00 PM
This session will wrap up the day as well as provide inspirational perspective and advice from a
senior executive on how best to get buy-in and traction with ERM.
• Board perspective
• Executive buy-in
• Managing expectations
Forum Ends
5:00 PM
Location
Speakers
FORUM LEADER
Ray Vazquez, CISA, CRISC, is Chief Executive of Infinitive Insight, a management consulting firm helping clients by combining enterprise risk, information security and business intelligence to advise companies seeking innovative and sustainable solutions. He is a senior level executive with extensive experience in financial reporting, information technology, information security, privacy and operational risk management across multiple industries including financial services, entertainment and media, nonprofit, higher education, retail and manufacturing. As Vice President of Operations, Technology Risk and Information Security, Mr. Vazquez drove the strategy for several risk and controls initiatives at Fannie Mae. He has designed risk management frameworks that combine technology and processes to provide stakeholders a shared view of risk. He is a graduate of Florida International University with an undergraduate degree in Accounting and a Masters in Accounting Information Systems.
Workshop
No results found.
Forum
No results found.
