Post-conference workshops: March 22, 2018

 

For updates or to discuss speaking opportunities please contact Genevieve Furtado:

 

Main Conference Program 2018


March 20th, 2018

08:30

Registration and refreshments

09:10

CHAIR'S WELCOME REMARKS

Jim Gilligan, ‎Retired President and CEO, BLUE CROSS LIFE CANADA

*Interactive Audience Poll via Sli.do
Vote live to generate real-time content #CYBERRISKNSA

09:20

KEYNOTE ADDRESS: Future outlook- Cyber risk in 2020

Brendan Goode, MD, Global Head of Cyber Risk, CITI

 

09:50

LEADERS PANEL: Next generation cyber risk management

  • How do you develop risk appetite limits for cyber security risk?
  • What are the weakness or challenges firms experience with the data aggregation or intelligence gathering tools to address cyber security risks?
  • The Fed guidance issued recently specifies the CISO function to be part of 2LOD. How are firms implementing it?

Moderator: Anthony G. Vigilante, Managing Director, Head of Global Information Technology & Information Security, MACKAY SHIELDS
Thomas Kartanowicz, Head of Information Security, NATIXIS CIB AMERICAS
Henry Jiang, Head of Cyber Risk, SOCIETE GENERALE CORPORATE AND INVESTMENT BANKING - SGCIB
Howard Whyte, Chief Information Officer and Chief Privacy Officer, FDIC

 

10:40

Morning coffee and networking break

11:10

GUEST ADDRESS: Risk implications of new and emerging threats

  • Impact, likelihood and uncertainty
  • Diverse in nature, amplified by interconnectivity and technology
  • Technology and cyber risk through an operational risk lens
  • Embracing innovation while maintaining a secure and sound environment
  • Broader implications when considering cyber threats

Aengus Hallinan, Managing Director- Group Head of Operational Risk Management and Business Continuity, CREDIT SUISSE

 

11:50

PANEL DISCUSSION: Modelling cyber risk

  • Does the vast scope of threats make modelling for cyber risk unfeasible? Can risk models accurately capture cyber risk?
  • How to apply stress testing and scenario analysis to cyber risk
  • Do you redo the same cyber scenarios each year or do new ones?
  • Do you combine cyber scenarios along with macro scenarios?

Manan N. Rawal, Regional Head of Independent Model Review & Governance, HSBC USA
Jack Freund, ‎Senior Manager, Cyber Risk, TIAA
Ashish Dev, Principal Economist, Supervision & Regulation, FEDERAL RESERVE BOARD
Jack Jones, Co-Founder, EVP Research & Development, RISKLENS
Sidhartha Dash, Research Director, CHARTIS

 

12:35

LUNCH AND NETWORK

Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting millennials.

1:35

SPOTLIGHT ON: PRESENTATION: The missing ingredient when quantifying cyber risk: the attacker

  • Overview of cyber's current position in the business
  • Establishing traceability for better risk management
  • Analyzing the attacker's role in cyber risk
  • Outlook for the future of cyber risk quantification

Jerry Caponera, VP Cyber Risk Strategy, NEHEMIAH SECURITY

2:20

LIVE INTERVIEW: Insurance of cyber risk- an additional tool in the toolkit

  • How do firms broaden scope of insurance risk products?
  • What are the data and tools used to insure cyber risk to effectively manage the risk? How to manage the risk and not just transfer it?

Moderator: Jim Gilligan, ‎Retired President and CEO, BLUE CROSS LIFE CANADA
Sheldon Cuffie, CISSP, VP & Chief Information Security Officer, NORTHWESTERN MUTUAL
Matthew P. McCabe, Senior Vice President, Assistant General Counsel, Cyber Policy, MARSH

2:55

AFTERNOON COFFEE AND NETWORKING


1-2-1 Meetings: These bespoke meetings held in the dedicated meeting zone will provide you with the opportunity to address your specific concerns and challenges

3:20

THE EXECUTIVE BOARDROOM: Tone from the topMemo to the Board

  • How do you see ORM and cyber risk interacting with the Board? What is the nature of the op risk and cyber risk reporting to the Board? 
  • Op risk and cyber risk now have a voice with the Board of Directors- What is needed to improve the Board's understanding of operational and cyber risks? Does the board have the necessary information regarding the pain points in the organisation? 
  • What are Board expectations? What is expected of them to dispense their duties properly and are they focused on the right things?
  • Adding value to the business:
  • What value is operational and cyber risk bringing to the business? 
  • What is a great example of bringing something valuable to the business from your second line view?
  • The value operational risk and cyber risk adds and the costing framework- how to assess whether putting a control in place will save or cost?

Moderator: Brenda Boultwood, Senior Vice President of Industry Solutions, METRICSTREAM
Michael J Abriatis, Executive Vice President, Chief Operational Risk Officer, PNC BANK
David Canter-McMillan, Function Head for Operational Risk, FEDERAL RESERVE BANK OF NEW YORK
Michael Barry, Executive Director, Head of Operational Risk, NATIXIS CIB AMERICAS

*Audience Q&A
Submit your questions via sli.do

4:15

WAR GAMES: Disaster recovery and business continuity in operational risk

PART I: SCENARIO DISSECTION AND STRATEGIZING
In each scenario, participants are introduced to an operational risk scenario which is still unfolding and asked to consider the immediate steps they would advise their firm to take based on the information available at each stage
PART II: HARVEST SESSION
Each host will summarise their POA of the discussion and present it back to the table participants with comments

Learning outcomes:

  • What immediate actions would you advise your firm to do in the scenario?
  • Hierarchy of response- who are the 1st and 2nd responders?
  • Incident management- how do you assess the impact on your firm?
  • What's your crisis management protocols? What do they look like? 
  • Business continuity planning from employees to infrastructure 
  • What's your loan exposure for customers impacted?

Leader 1: Elisabeth Rose, COO, Managing Director, AIG
Leader 2: Joshua Kotok, CFE, CISA, Chief Risk and Compliance Officer, FIRST SAVINGS
Leader 3: Andrew Richardson, VP, Enterprise and Operational Risk Management, COAST CAPITAL SAVINGS
Leader 4: Nikki Covino, Regional Head of Business Continuity Americas, CREDIT SUISSE
Leader 5: Craig Spielmann, Former Global Head of Enterprise Risk Management Strategy, FIRST DATA
Leader 6: Edmund Daniels, Managing Director, General Counsel & Chief Compliance Officer, PANDA POWER FUNDS
Leader 7: Glenn Hursh, Managing Director, KPMG
Leader 8: Marshall Toburen, GRC Strategist, RSA ARCHER

 

5:30

CHAIR'S CLOSING REMARKS

Alexander Campbell, Divisional Content Editor, RISK.NET

5:35

Networking drinks reception

7:00

Private dinner- Invite only

March 21st, 2018

08:30

Registration and breakfast

09:00

CHAIR'S OPENING REMARKS

09:10

KEYNOTE ADDRESS: The CIO's role in enterprise cyber risk

Howard Whyte, Chief Information Officer and Chief Privacy Officer, FDIC

*Audience Q&A
Submit your questions via sli.do

09:40

PANEL: Third party vendor risk- Fraud and cyber security

  • How do you integrate the information security function with fraud detection?
  • What is the best method you have seen in conducting an incident exercise?
  • Data breach related fraud prevention- What does authentication look like in the future?

Chris Watson, Executive Director - Global Head of Supplier Assurance Services, ‎JPMORGAN CHASE & CO
Filippo Curti, Financial Economist- Supervision, Regulation and Credit, THE FEDERAL RESERVE BANK OF RICHMOND
Matthew Moog, Principal, Financial Services, EY
Kelley Chamberlain, CAFP, Financial Crimes Consultant, WELLS FARGO

*Audience Q&A
Submit your questions via sli.do

10:30

Morning networking break

11:00

SPOTLIGHT ON: Are we secure enough? answering tough business questions with the NIST cyber security framework

  • Why NIST for Cyber Risk Management
  • How do Cyber Risk and Operational Risk Intersect
  • Operationalization of NIST CSF as Part of Integrated Risk Management
  • Where to Start, How to Evolve

Andrew Vesay, Rsam Client Partner, RSAM

11:35

PANEL DISCUSSION: Extrapolating the causes of cyber security breaches

  • Evaluating the role of human error
    • Inadequate controls on sensitive data
    • Insider threat and ‘anomalous behaviour' by staff
  • Ransomware and/or phishing
    • Preventative controls (AV, Advanced End-Point, Cloud Filtering)
    • Recovery strategies from ransomware

Moderator: Jim Gilligan, ‎Retired President and CEO, BLUE CROSS LIFE CANADA
Justin Fier, Director for Cyber Intelligence and Analysis, DARKTRACE
Afzal Khan, VP, Global Head of IT Security, Risk Mgmt & Compliance, EVEREST RE
John Polis, Chief Operating & Technology Officer, STAR MOUNTAIN CAPITAL


12:20

LUNCH AND NETWORK


Advice sharing and networking tables over lunch on the 8th floor: Have a seat at a table to share your experiences with fellow peers and give advice on everything from the SMA to recruiting the millennials.

1:20

PRESENTATION:

Tim Sparapani, Former First Director of Public Policy, FORMERLY FACEBOOK

2:05

FIRESIDE CHAT: The insidious effects of geopolitical risk on operational and cyber risk

  • How to prepare for potential repercussions within your own firms - The increasing necessity for Boards and Chief Risk Officers to monitor the political and business environment 
  • How to reflect the increased economic and political uncertainty caused by political events in your risk - based capital models? I.e. are you holding more capital?

Moderator: Tom Osborn, RISK.NET
Manan N. Rawal, Head of US Model Risk Management, HSBC USA
Michael Barry, Executive Director, Head of Operational Risk, NATIXIS CIB AMERICAS

2:40

OUT OF INDUSTRY KEYNOTE ADDRESS: OpRisk in the energy industry

Novera Khan, Chief Risk Officer, UNIPER

3:10

AFTERNOON COFFEE AND NETWORKING

1-2-1 Meetings: These bespoke meetings held in the dedicated meeting zone will provide you with the opportunity to address your specific concerns and challenges

3:40

CHAMPAGNE KEYNOTE ADDRESS: DHS Cybersecurity Priorities

Rick Driggers, Deputy Assistant Secretary, ‎U.S. DEPARTMENT OF HOMELAND SECURITY

4:10

WRAP UP PANEL: OpRisk and CyberRisk NA 2018- what are the key takeaways?

Featuring members of the 2018 Advisory Board


Moderator: Alexander Campbell, Divisional Content Editor, RISK.NET
Dolores (Lori) Miller, Managing Director, Head of Operational Risk, Investments, AIG
Richard Cech, Senior Bank Examiner Op Risk Governance, FEDERAL RESERVE BANK OF NEW YORK
Deborah Hrvatin, ‎Managing Director - Global Head of Institutional Clients Group Operational Risk Management, CITI

*Audience Q&A
Submit your questions via sli.do

4:55

CHAIR'S CLOSING REMARKS

Alexander Campbell, Divisional Content Editor, RISK.NET

5:00

End of Cyber Risk North America

 

>> Follow this link to view our speaker profiles

Follow program updates on Twitter #CyberRiskNA

For updates or to discuss speaking opportunities please contact Genevieve Furtado: