The Compliance Certification Board (CCB)® has approved this event for up to 19.8 Live CCB CEUs, based on a 50-minute hour, each.. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor
Day 1: Monday, June 17, 2024
Registration & Networking
(Harborside Foyer)
Track 1 (Essex A & B)
Track 2 (Essex C)
MetricStream Welcome
Doug Montgomery
Associate Vice President, GRC Solutions, MetricStream
MetricStream Welcome
Patricia McParland
AVP, Head of Product Marketing, MetricStreamWorkshop
How do you practice effective ERM and how does ERM align with a GRC strategy?
Join our workshop to explore the synergy between Enterprise Risk Management (ERM) and Governance, Risk, and Compliance (GRC). Learn about effective ERM practices, integrating proactive risk identification, assessment, and mitigation into strategic decision-making. Understand how an aligned ERM/GRC strategy synchronizes risk management with compliance and governance efforts. Discover leadership's expectations from ERM/GRC practitioners, including a profound understanding of the organization's risk landscape and the ability to provide timely assessments. Explore ERM's pivotal role in mission accomplishment, facilitating organizations to pursue objectives while navigating uncertainties.
Christopher E. Mandel
Founder & President, Excellence in Risk Management, LLC
Workshop
What's New in Regulatory Compliance: Preview the Latest Product Release & Roadmap
As new regulations around AI, operational resilience, and cyber risk emerge and existing regulations evolve, keeping up and staying compliant is more than a full-time job. What’s more, the consequences of non-compliance are increasingly severe – including personal liability for senior leaders. Join this in-depth product review session and workshop with MetricStream’s Product Leaders to see how MetricStream can help. See our latest product release in action and how it can ease your compliance burdens – and preview what’s coming next on the product roadmap. Both existing customers and compliance leaders interested in seeing how MetricStream can streamline and simplify their compliance programs will benefit from this deep-dive session.
Shreyank S Kamat
Senior Director, Product Management, MetricStreamWorkshop (continued)
How do you practice effective ERM and how does ERM align with a GRC strategy?
Join our workshop to explore the synergy between Enterprise Risk Management (ERM) and Governance, Risk, and Compliance (GRC). Learn about effective ERM practices, integrating proactive risk identification, assessment, and mitigation into strategic decision-making. Understand how an aligned ERM/GRC strategy synchronizes risk management with compliance and governance efforts. Discover leadership's expectations from ERM/GRC practitioners, including a profound understanding of the organization's risk landscape and the ability to provide timely assessments. Explore ERM's pivotal role in mission accomplishment, facilitating organizations to pursue objectives while navigating uncertainties.
Christopher E. Mandel
Founder & President, Excellence in Risk Management, LLC
Workshop
What's New in CyberGRC: Preview the Latest Product Release & Roadmap
Cyber risk and IT compliance aren’t just top of mind for CISOs – they are board-level concerns. Nor is the CISO solely responsible. Today, cyber risk is a critical part of GRC and shared by all leaders, including the Chief Compliance Officer and the Chief Risk Officer. MetricStream’s CyberGRC product is designed to address all essential cyber risk and IT compliance needs, in one flexible solution. In this session, we will demonstrate how to assess and manage AI model risk and we will review all the exciting new product enhancements to help keep your organization ahead of cyber risk, automate compliance, quantify risks, and keep your entire organization current with insightful analytics and monitoring. We will also call out upcoming enhancements on the CyberGRC product roadmap.
Anil Kumar
AVP, Product Manager - IT and Cyber Security, MetricStreamBreak
(Harborside Foyer)
Workshop
Cyber Risk Quantification: Harnessing Quantified Insights for Better-Informed Strategic and Operational Decision-Making
The need for effective cyber risk management based on quantification has been recognized for many years as a prerequisite for success. Many of the models to date provide lots of promise but fall woefully short of delivering effective, scalable, and viable solutions to support near-real-time decision-making and prioritization. In part, this is due to the fact that the models focus almost exclusively on loss avoidance and are scenario-based. In this workshop, you'll get an up-close-and-personal overview of how Asset Value-based Risk Quantification works, how to model it in any business vertical, and how to get started on this pioneering approach to "real" risk quantification and management.
Grace Beason
Director of Governance, Risk and Compliance, Guidewire SoftwareGavin Anthony Grounds
CEO & Co-Founder, Mercury Risk and Compliance, Former - Meta & Verizon
Workshop
How Low-Code/No-Code Can Help Accelerate Configuration of your GRC Solution
The foundation of a strong GRC and risk management program is a flexible, integrated software platform – one that is cognitive and powered by artificial intelligence for smart decisions; continuous and always available through automation and mobile; and cloud-based for fast access and easy, low-code updating. Explore the basis of the next generation of GRC – the MetricStream platform. Uncover new opportunities and discover the power of low-code/no-code.
Joy Bhowmick
Senior Vice President, Product Development, MetricStreamWorkshop (continued)
Cyber Risk Quantification: Harnessing Quantified Insights for Better-Informed Strategic and Operational Decision-Making
The need for effective cyber risk management based on quantification has been recognized for many years as a prerequisite for success. Many of the models to date provide lots of promise but fall woefully short of delivering effective, scalable, and viable solutions to support near-real-time decision-making and prioritization. In part, this is due to the fact that the models focus almost exclusively on loss avoidance and are scenario-based. In this workshop, you'll get an up-close-and-personal overview of how Asset Value-based Risk Quantification works, how to model it in any business vertical, and how to get started on this pioneering approach to "real" risk quantification and management.
Grace Beason
Director of Governance, Risk and Compliance, Guidewire SoftwareGavin Anthony Grounds
CEO & Co-Founder, Mercury Risk and Compliance, Former - Meta & Verizon
Workshop
What’s New in Enterprise and Operational Risk Management : Preview Product Release and Roadmap
Enterprise risk and operational risk management are more critical than ever in today’s complex, interconnected world of risk. How can you assess risk more simply and efficiently? How can you gain an actionable, single view of risks across your bank or enterprise? Most important, how can you create proactive, continuous action plans to mitigate risk – and monitor for an ongoing agility and resilience? In this deep-dive product review session, MetricStream senior Product Leaders will unveil the latest ERM and ORM product improvements. We will also preview what’s next by looking at the product roadmap . Existing customers and prospects will both benefit. Please join us!
Anil Kumar
AVP, Product Manager - IT and Cyber Security, MetricStreamDrinks & Reception
(Harborside Foyer)
Day 2: Tuesday, June 18, 2024
Registration & Networking Breakfast
(Harborside Foyer)
Welcome Note
Introduction and Welcome
(Harbor A & B)
Simrin Jhangiani
Director Marketing, MetricStreamOpening Keynote
Beyond Boundaries: Embracing the Next Frontier of GRC
As interconnected risks escalate and transformative forces continue to accelerate, how can you and your risk teams stay proactive and current? Discover the power of connection in Governance, Risk, and Compliance (GRC) as we explore the future of risk, from people to processes to next-generation technologies like Gen AI. We will discuss key trends and how to apply them to take your GRC programs, career, and insights to the next level. Join us as we delve into the dynamic realms of GRC and AI to navigate complex risk and regulatory landscapes with agility and resilience.
Gaurav Kapoor
CEO and Co-Founder, MetricStreamPanel
Navigating the Risks on the Horizon: Preparing for What’s Next in GRC
Embark on a journey of foresight with 'Navigating the Risks on the Horizon: Preparing for What’s Next in GRC'. Explore proactive strategies and innovative approaches to anticipate and address emerging risks in Governance, Risk, and Compliance (GRC). From technological disruptions to geopolitical shifts, uncover key insights to fortify organizational resilience. Join industry experts and thought leaders as we navigate the evolving risk landscape, equipping you with the tools and knowledge to effectively prepare for and mitigate future challenges in the dynamic world of GRC.
Michael Koenig
Global Chief Ethics and Compliance Officer, JBSTolu Oyefesobi
Chief for Financial Controls and Operational Risk, Inter-American Development BankPrabha Thomas
Chief Risk & Compliance Officer, Tata Consultancy ServicesManu Gopeendran
Senior Vice President Marketing, MetricStreamProduct Keynote
What’s Driving Key GRC Technology Innovations: The Three Cs and the Power of Connection
Unlock the driving forces behind key GRC technology innovations in 'What’s Driving Key GRC Technology Innovations: The Three Cs and the Power of Connection'. Explore the convergence of Compliance, Collaboration, and Connectivity as catalysts for transformative advancements. Delve into the symbiotic relationship between cutting-edge technologies and GRC frameworks, uncovering how interconnected systems amplify efficiency and effectiveness. Join us to discover how embracing the Three Cs can empower organizations to navigate complex regulatory landscapes with agility and precision, driving sustainable growth and resilience in the digital era.
Gunjan Sinha
Executive Chairman, MetricStreamPrasad Sabbineni
Co-CEO, MetricStreamBreak
(Harborside Foyer)
Customer Case Study
Case Study: dnata's Integrated GRC Transformation
David Storey
Vice President Health, Safety & Environment, dnataPanel
GRC in the Era of AI and Automation: Looking at the Road Ahead
Embark on a forward-looking exploration of 'GRC in the Era of AI and Automation: Looking at the Road Ahead'. Delve into the transformative impact of artificial intelligence and automation on Governance, Risk, and Compliance (GRC) practices. Explore emerging trends, challenges, and opportunities reshaping the GRC landscape. From predictive analytics to robotic process automation, discover how cutting-edge technologies are revolutionizing risk management and regulatory compliance. Join industry leaders and innovators as we navigate the evolving terrain of GRC, equipping you with insights to thrive in the digital age.
Michael Cover
Director, Blue Cross Blue Shield of MichiganMichael Rinard
Chief Legal & Chief Compliance Officer, Mosaic Health SystemJoshua Wick
Global Head of Risk & Compliance, Hitachi Digital ServicesMike Milton
Group Vice President Sales Americas, MetricStreamGRC Journey Awards
Recognizing GRC Excellence: The GRC Journey Awards What does GRC excellence look like in action?
MetricStream will recognize key achievements of customers and partners in the field of governance, risk, and compliance management.
Lunch
(Harborside Foyer)
Track 1 (Harbor A & B)
Track 2 (Essex A & B)
Panel
Transformative Strategies for a Modern Compliance & Risk Function
Discover transformative strategies for modernizing compliance and risk functions to meet the demands of an ever-changing regulatory landscape. Explore actionable approaches to enhance agility and efficiency, leveraging innovative technologies such as connected, cognitive, cloud, and continuous capabilities. Chief Compliance Officers (CCOs) and Chief Risk Officers (CROs) will gain insights into future-proofing compliance and risk programs while maintaining a positive ethics and compliance posture within organizations , even amidst limited resources and budgets
Faisal Siddiqui
Deputy Chief Compliance Officer, International Finance Corporation (IFC)/World Bank GroupBianca Forde
VP, Global Ethics & Compliance Programs, Otis Worldwide CorpAnand Narayanan
Head of Regulatory Change Management - Americas, Sumitomo Mitsui Banking CorporationKevin Finlay
Group Vice President, Sales, MetricStream
Customer Case Study
Case Study: Prioritize Technology to Optimize a Resilient Compliance Strategy
Nicholas Cannon
Manager, Blue Cross Blue Shield of MichiganJason James
Senior Business Systems Analyst, Blue Cross Blue Shield of MichiganCustomer Case Study
Case Study: Agile Risk Strategies in Action at Bank OZK
Explore the agile risk management strategies in action at Bank OZK, a U.S. regional bank with over $34B in assets. Arindam Majumdar, Deputy Chief Risk Officer of Bank OZK, will delve into the challenges of operational risk management within a growing financial institution, showcasing effective strategies and programs for enhancing risk posture. Discover how Bank OZK maintains resilience and agility through adept management of people, processes, and technology in the face of volatile markets and evolving regulations.
Arindam Majumdar
Deputy Chief Risk Officer, Bank OZK
Panel
Panel on Managing Data Privacy and Security Risks in the Era of GenAI and Data Explosion
Join us for a panel discussion addressing the complexities of managing data privacy and security risks amidst the emergence of Generation AI (GenAI) and the data explosion. Explore the challenges of safeguarding sensitive data in this era, navigating evolving regulations, technological advancements, and ethical dilemmas of AI. Gain insights into strategies for mitigating data privacy and cybersecurity risks while maximizing the value and integrity of large datasets.
Eduardo R. Ortiz
VP, Global Head of Cybersecurity, TTI Group, Inc.Ananeya Abebe
SVP, Director of Data Risk Governance, KeyBankPatricia McParland
AVP, Head of Product Marketing, MetricStreamRaghuram Srinivas
SVP, Product Management, MetricStreamPanel
The Expanding Scope of Operational Risk Programs in the Time of Operational Resilience
Explore how operational risk programs are evolving to meet the demands of an increasingly complex and interconnected business landscape. Delve into the integration of operational resilience principles, emerging technologies, and proactive risk management strategies. Join industry leaders and experts as we examine the expanding scope of operational risk programs, empowering organizations to navigate uncertainties with agility and fortitude. Gain valuable insights into building robust operational resilience frameworks to thrive in today's dynamic environment.
Alapan Arnab
Technology Resilience Executive, Former - Scotiabank and Barclays AfricaSpruille Braden
Head of Operational Resilience, PGIMKamlesh Sidhwani
CRO Canada, Sumitomo Mitsui Banking Corporation – SMBCAdriaan Boon van Ostade
Head of Customer Success, MetricStream
Panel
Driving Value in Your GRC Program: Creating Synergies across Audit, Risk, Cyber, and Compliance
As risks interconnect and intersect, so too must our approaches to them. In this session, we will explore the transformative power of integrating audit, risk, cyber, and compliance functions to drive organizational value. Working together, these functions can enhance collaboration, streamline processes, and mitigate risks effectively. Join industry experts and thought leaders as we delve into practical strategies and best practices for leveraging cross-functional synergies to elevate your GRC program and deliver tangible value to your organization with a coordinated approach to risk, audit, cyber, and compliance.
Jeannie Kim
VP, Enterprise Risk Management, Mitsui & Co. Energy Marketing and Services (USA), Inc. (MEMS)Joseph Hegge
Senior Audit Program Manager, Lockheed Martin CorporationJason Stockinger
Director, Global Information Security, Royal Caribbean GroupBhaskar Dasari
CEO, Vivid Edge CorpChris Sams
Head of Global Partnerships and Alliances, MetricStreamBreak
(Harborside Foyer)
Product Session
Harnessing GRC copilot to Transform Risk and Compliance Programs
Discover the cutting-edge capabilities of GRC copilot in revolutionizing risk and compliance management. This session will delve into how these advanced tools streamline processes, enhance accuracy, and ensure robust compliance. Learn practical strategies to implement GRC copilot, transforming your organization's approach to risk assessment and compliance programs for unparalleled efficiency and effectiveness.
Raghuram Srinivas
SVP, Product Management, MetricStream
Expert Talk
Automating Audits and Cloud Compliance Including for generative AI with AWS Audit Manager and MetricStream Cyber GRC
Ensuring cloud compliance and governance for Generative AI is crucial. Discover how to leverage AWS Audit Manager and MetricStream CyberGRC to automate audits, and continuously monitor and assess cloud controls and Generative AI deployments against AWS best practices. This session will also cover how enterprises can gain real-time visibility into their compliance posture and proactively address risks or deviations. Learn to build trust and confidence in your cloud environments and Generative AI applications.
Neha Singh Rajpurohit
Senior Product Manager – Technical, AmazonAnil Kumar
AVP, Product Manager - IT and Cyber Security, MetricStreamClosing Keynote
(Harbor A & B)
Gaurav Kapoor
CEO and Co-Founder, MetricStreamDrinks & Reception
(Harborside Foyer)