This is an overall general preview of the 2016 conference agenda, curriculum and program, with inspiring Governance, Risk Management, Compliance and IT-Security (GRC) topics and issues during the plenum, parallel, workshop and breakout -sessions, at the 10th annual European GRC Summit on the 9th -10th November 2016.
The annual GRC conferences are known for attendee participation, live, and productive debate and knowledge sharing. During the sessions, we will conduct a series of surveys with interactive voting for table discussions on the results.
The 10th annual European GRC Summit on the 9th -10th November 2016 are known for an abundance of expert speakers, attendee dialogue and participation, productive debate and knowledge sharing. During the sessions, we will conduct a series of surveys with interactive voting on some GRC issues for table discussions on the spontænous results
The two-day conference attracts the participation of governance, compliance, risk, audit, IT and legal executives from corporations around Europe Besides plenum and keynote speakers; we have concurrent panel discussions, workshops, parallel sessions and presentations that deliver high-quality GRC content to suit all trades
At the conference 30 + speakers will put their expertise on display and offer analysis, views and predictions on what might lie ahead for the enforcement and regulatory climate related to governance, risk management, compliance and IT security officers and their teams
3 MINUTE VIEWS ON GRC & IT SECURITY ISSUES (in-between keynote speech)
Silo thinking
- How to avoid that each GRC activity, function or group performs its own activity in a silo
Dominant chief executive
- The Scots say that "the fish rots from the head", and so do companies
- How can a strong and challenging board, leash an overly ambitious or greedy CEO.
Length of chief executive tenure
- CEO exit schedules: A season to stay, a season to go
Leadership arrogance
- Confidence can be motivating and inspirational. Arrogance crosses the line of confidence
Pressure to meet the numbers/overambitious targets
- Evidence indicates that the No. 1 reason for ethical violations is the pressure to meet expectations, sometimes unrealistic expectations.
Lack of access to information
- The +4 billion cell phones prove that information networks exists from Indiana to India
- How to use the explosion of information with the demand quick access to relevant content that cuts through the clutter.
Low levels of engagement between leadership and employees
- It's the bottom line, and the stock price. Strike the balance between profitability and doing everything together to get the company moving
Lack of openness to challenge
- There is no one-size-fits-all solution to the challenges facing the corporate world.
- Issues need to be considered are design, planning, being well-connected to a powerful paradigm and an engine for integration and inclusivity.
Poor succession planning
- How to ensure that succession options are in force when a monarch CEO steps down
Lack of diversity
- Common sense tells us that this explosion of media sources should eliminate any concern over a lack of diversity of views in the marketplace and competition.
Special Session on Brexit
Brexit will have a significant negative economic impact for all companies in the UK. This is caused by primarily by two factors: the risk of a technical recession and significant uncertainty on a regulatory framework on the rules and conditions will apply for ALL future corporate activities. At the 10th annual European GRC Summit on the 9th and 10th November 2016 in London, we have invited leading experts to guide companies to review the consequences and uncertainties:
- How will the outlines of the final agreement between Britain and the EU affect companies?
- The timeframe of the withdrawal effect; safeguards in the interim?
- Will the UK meet its obligations under the EU Treaty in the future?
- What is the content of the many bilateral agreements that Britain will negotiate with EU and outside the EU?
- Will the UK decide to maintain elements of EU law (Civil Law) as part of English law (Common Law)?
Global IT-Security Issues
INTERCONNECT IT-GRC AND TECHNOLOGY PROGRAMS
- What are the major technology changes that affect business processes, oversight and disclosures
- How can communication in and out of the workplace ultimately distortion the message to stakeholders
- How to tailor the communications and training program; where and how employees 'including tech-savvy millennials' want to know and learn.
Alissa Knight, Group Managing Partner, Brier & Thorn Inc.
ASSESSING VULNERABILITIES IN CONNECTED DEVICES IN THE INTERNET OF THINGS (IOT)
- Performing penetration tests against IoT connected devices to identify vulnerabilities and lower IT risks
- How digital transformation and IoT has affected IT risk management
- Identifying Indications of Compromise (IOCs) in IoT.
Alissa Knight, Group Managing Partner, Brier & Thorn Inc.
LEARNING THE LESSONS OF DIGITAL TRANSFORMATION
- How to align stakeholders in digital platforms that allow involvement to produce digital value, from co-creation of content, activities, ideas, to the management, governance, and gardening of the digital ecosystem.
- What are the traditional ways of achieving organisational objectives to designing the digital transformation?
- How is the IT and digital transformation platformed and decentralised for scale, agility and innovation?
Jiri Kram, Tata Consultancy Services, Silicon Wharf
THE CYBERSECURITY CHALLENGE
- How to operationalise the vague regulatory guidelines
- Which breaches and instances must be disclosed to the board or senior management?
- How do you stay aware and maintain policies in an area, which changes constantly?
- What is the optimal investment strategy in knowledge, technology and the latest developments?
Jiri Kram, Tata Consultancy Services, Silicon Wharf
UPDATING THE IT AND CYBER POLICIES ON RISKS AND RESPONSIBILITIES
- Changing circumstances - the developing IT threat scenario
- Different approaches towards planning, prioritisation and managing Cybersecurity activities.
- Is your Cyber security strategy sufficient?
- What are the proper corporate response to the complex IT and cyber security threats
Hans Henrik Aa Berthing, CPA, CRISC, CGEIT, CISA, CIA. Verifica
UPDATING DATA SECURITY, DATA BREACHES AND SECURITY ALERTS
- How to ensure that adequate data security controls for crucial customer and business information are always protected.
- How to configure IT Risk-management programs with operating environments, multi-factor authentication for flexible controls and solutions.
- How to safeguard against the risks associated with groups that are either employed, associated or business partners that have access to data and systems.
Chris Johnson, Senior Product Manager, Market Data | HSBC Securities Services
A COMPLETE REVIEW OF UPDATED CONTROLS, USER ACCESS, SEPARATION OF SYSTEM INFRASTRUCTURE, LIMITS AND RESTRICTIONS AND PROACTIVE SYSTEM MONITORING
- How to monitor periodic risk assessments of information security programs.
Hans Henrik Aa Berthing, CPA, CRISC, CGEIT, CISA, CIA. Verifica
DEVELOPING A STATE OF THE ART IT AND DATA MONITORING PROGRAM UNITES DATA ANALYTICS IN THE GRC PROGRAM
- What are the advantages of cloud, big data and Internet of things, allows you to take the data you collect from multiple sources, functions, and processes to monitor non-compliance, discrepancies, and red flags.
- How to use the data analytics to create an aggregated report for management and internal audit to achieve results in a graphic format that is understood by all.
JP Rangaswami, Chief Data Officer, Deutsche Bank
GENERAL DATA PROTECTION REGULATION (GDPR) - THE IMPACT ON BUSINESS AND WHAT SHOULD I BE DOING NOW?
- The 'Fast Track' on GDPR– covering new concepts such as data portability, data protection by design and default and the one-stop shop mechanism to comply
- What are the derogations, myths and truths in the GDPR as they apply to the UK
- The ten practical steps that Data Officers should consider doing to comply by May 2018.
Nevena Krstic, LLM, Henley Business School
A CHANGING LANDSCAPE FOR THE AUDIT COMMITTEES - WHAT YOU NEED TO KNOW
- Trust and integrity in corporate reporting - What is the role of the audit committee?
- More than just an accounting change - Are you prepared?
Jonathan Wallis CA, Head of China Outbound & Financial Reporting Advisory Group member, Grant Thornton UK LLP
Global Financial Compliance Issues
WHY DO THE ADOPTION AND IMPLEMENTATION OF ENTERPRISE RISK MANAGEMENT OFTEN FAIL? (CASE STUDY)
- Measuring the adoption of an Enterprise Risk Management system.
- Addressing the performance issues and gaps between the implemented and the adopted Enterprise Risk Management system.
- What are the lessons learned from the case study of a big player in the energy industry.
Carlos Moreno, IT Manager, Configit Inc
REVIEW OF THE PRINCIPLES OF A PROFESSIONAL JUDGEMENT FRAMEWORK IN FINANCIAL REPORTING
- We examine some of the redefined standards e.g. revenue recognition
- What are the new uncertainties that the new standards create for the auditor, investor and the response to the oversight authorities
- Addressing the pressure from capital markets to use risk intelligence and other models in the reporting framework
- How to exercise and defend a good judgment in all financial reporting processes and disclosures.
REVIEW OF THE COMPLEXITIES ON THE USE OF JUDGEMENTS IN THE MODERN FINANCIAL REPORTING PROCESS
- How van compliance, audit and financial teams work together and navigate in these multiple upstream disclosure channels,
- What are the questions the accountants/auditors need to address and be capable of to exercise professional judgement?
JP Rangaswami, Chief Data Officer, Deutsche Bank
Is Your Compliance Policy Defective Because it Does Not Encourage Whistleblowers?
- What can we learn from the financial disasters at Volkswagen A.G., Olympus Corp., General Motors, Lehman Brothers, GlaxoSmithKline, and Enron?
- How to change employee culture
- How to encourage internal and external whistleblowers.
Frederick D. Lipman, LLM, President | Association of Audit Committee Members, Inc.
NON-FINANCIAL REPORTING: THE IMPACT AND RELATION BETWEEN THE BOARD OF DIRECTORS, MANAGEMENT AND THE INTERNAL AND EXTERNAL AUDITORS AND STAKEHOLDERS
- Throughout the world, CFO's are rearranging disclosures to comply with the many directives on Non-Financial Reporting
- How to increase transparency and performance on the environment and social matters.
- How to comply with the disclosure of non-financial information, taking into account current best practice, international developments and related global initiatives.
- How to develop and disclose concisely, useful and necessary information to provide an understanding of the organisation's development, performance, position and its impact on the activities.
- In this session, we provide a methodology and an IT Tool to facilitate the disclosure of comparable non-financial information and to provide stakeholders to exchange views by illustrating some of best practices.
Chris Smith, Partner, Grant Thornton UK LLP
PERSONAL ACCOUNTABILITY AND COLLECTIVE RESPONSIBILITY IN FINANCIAL SERVICES
- How the Senior Managers Regime will be introduced in the UK and rolled out in other jurisdictions
Simon Collins, Managing Director - Regulatory Compliance, Eversheds
THE AUDIT REGULATION AND DIRECTIVE – LEGAL AND REGULATORY REFORM TO SUPPORT STAKEHOLDER CONFIDENCE: THE UK FRC’S EXPERIENCE
- What it means for audit?
- What it means for oversight and inspection?
- What it means for audit committees?
Mark Babington| Deputy Director, Audit Policy, Financial Reporting Council
Global Bribery, Fraud and Corruption Issues
HOW TO DEVELOP AND IMPLEMENT A SUCCESSFUL ANTI-CORRUPTION COMPLIANCE PROGRAM
The workshop focus on practical steps compliance executives can follow when developing, implementing and refining anti-corruption programmes including how to:
- Gain buy-in for your anti-corruption plan from senior management
- Conduct effective risk assessments; design and implement a compliance plan that addresses the specific risks your organisation faces
- Create a cost-effective and efficient third-party due diligence program.
Frank Hailstones, CPA, Candor Acceleration Partners Ltd
HOW TO DESIGN A USEFUL UKBA/FCPA COMPLIANCE TESTING AND MONITORING PROGRAM
- A crucial operational component and part of the internal control for UKBA/FCPA is regular monitoring and testing. What are the local or global jurisdiction in an ever-changing regulatory environment and the series of monitoring controls
- how to maintain, design and execute the UKBA/FCPA compliance tests, so that results are interpreted and tested for useful insights
- What are the program improvements that can match the complex UKBA/FCPA regulations?
ENFORCING ANTI-CORRUPTION POLICIES IN-HOUSE AND AMONG THIRD PARTIES
- How to design and develop a process to assess and uncover bribery and corruption risks
- Planning the assessment and collecting data to analyse the information and flagging UKBA/FCPA concerns for formal investigations.
- What are the compliance challenges e.g. documentation on remediation and communication with the authorities?
- What should happen when a UKBA/FCPA problem is discovered?
- What to do in between findings and before any final settlement is reached
Simon Scales, FCMI MIPI MSyI, Head of Investigations (EMEA), BP
Global Governance Issues
ESTABLISHING THE RIGHT REGULATORY GOVERNANCE OVERSIGHT STRUCTURE
- Can a healthy governance program achieve the dual goals of preventing regulatory process delinquency and at the same time promote a healthy corporate governance culture to respond to the oversight authorities' demands.
- How can a global governance program have both independence to perform and power to comply How to pool resources with multiple governance functions across the organisation and transaction.
- Explore the components to position the Regulatory governance and compliance oversight structure and goal
Jeffrey Avina, Microsoft, Citizenship And Community Affairs Middle East And Africa
FINANCIAL SERVICES REGULATION - WHERE ARE WE ON THE HYPECYCLE?
- Do we know what to implement when? Complexity, delays, silos and the risk of regulatory change
- Whose responsibility is it anyway?
- New technology: blockchain, artificial intelligence, gamification - is this RegTech?
Meredith Gibson, LLM, ex Head of legal, MiFID and Regulatory compliance at CiTi, Santander, HSBC
THE UPDATED GOVERNANCE MECHANISM OF ETHICS AND INTEGRITY AS A SUSTAINABLE VALUE PROPOSITION TO BOOST BUSINESS AND PROCESS ENHANCEMENTS
- The components to benchmark a global ethics and integrity program:
- Establishing a culture of Ethics & Integrity to benchmarking critical areas of training, policy management, and third party risk management
- How to identify blind spots in the core elements of ethics and integrity program
- How to relate and address the root-cause of conduct, ethics and integrity problems in a fragmented ownership and stewardship structure
Javid Cante, Group Financial Controller, CLS Group, BCom, MBA, ACA, MCSI
THE FINANCIAL REPORTING COUNCIL, THE UK CORPORATE GOVERNANCE REGULATOR; THE UK CORPORATE CULTURE NEEDS SERIOUS WORK
- The Board has a responsibility to act where leaders do not deliver.
- How to support; the role of the board, determine the purpose of the company and ensure that the firm's values, strategy, and business model are aligned
- How to influence and shape the corporate culture, put values into practice
- How they can oversee, monitor, and assess behaviour in the organisation
Chris Smith, Partner, Grant Thornton UK LLP
DATA AND REPORTS FOR ADJUSTMENTS TO IMPROVE THE GLOBAL GOVERNANCE PROGRAM
- How to address the global issues related to conflicts, cultural differences and dedication.
- Recognise the value of culture as a valuable asset, a source of competitive advantage and vital to the creation and protection of long-term value.
- How to demonstrate leadership to embody the desired culture.
- How to be open and accountable and demonstrate the way the company conducts business and engages with and reports to stakeholders.
- How to embed and integrate the values, culture and behaviour about hr, internal audit, ethics, compliance, and risk functions align values and incentives
- How to assess, measure, and engage with indicators to measure, align the desired outcomes that are material to the business.
- How to exercise stewardship to participate in cultural issues, encourage better reporting and challenge the behaviour
Frank Hailstones, CPA, Candor Acceleration Partners Ltd
A CASE STUDY IN CHANGE MANAGEMENT
- Addressing the challenge of corporate mergers, acquisitions, and reorganisations
- How to integrate the boardroom visions into post acquirement daily operations.
- Addressing the responsibilities from the unification of standard policies and procedures to automated IT systems.
- What are the stumbling blocks in the consolidation of the concerned staff to conflicting cultural values?
- Defining the standard GRC approaches to adjust the post-merger divestiture program
- How to avoid pitfalls and succeed in achieving the board vision for the alliance.
Javid Cante, Group Financial Controller, CLS Group, BCom, MBA, ACA, MCSI
THE BEST CORRELATION BETWEEN TRUST, TRANSPARENCY ETHICS AND INTEGRITY TO GOOD GOVERNANCE
Andy Agathangelou, Chairman The Transparency Institute
China Section
What Are The Major Components Of The Current Chinese Reality? A Warning Or An Unprecedented Opportunity
China is currently placing tension in the world markets with fierce price declines, government regulation and restricted growth prospects. With the significant growth of China's household wealth, information management, and E-commerce and E-banking, there is the difference in the cultural context compared to the developed countries in the West. What are the various factors and techniques that could create a different future for business opportunities in China.
- How will the current decline in prices, housing, stocks and shares affect the Chinese market and consumer and allow China business and industry to flourish?
- How has the business and management methods evolved over time, and what factors and techniques in the Chinese context distinguish it from the West?
- How will the current Chinese problems create unique opportunities for growth in this new market?
- What kind of market and compliance regulations necessary to maintain sustainability and good governance practice in China?
Ms Luka Lu, LLM, Capital Associates PRC Lawyers