The Compliance Certification Board (CCB)® has approved this event for up to 19.8 Live CCB CEUs, based on a 50-minute hour, each.. Continuing Education Units are awarded based on individual attendance records. Granting of prior approval in no way constitutes endorsement by CCB of this event content or of the event sponsor

 

Day 1: Monday, June 17, 2024

12:00 PM - 12:50 PM

Registration & Networking

(Harborside Foyer)

 

Track 1

(Essex A & B)

Track 2

(Essex C)

 
12:50 PM - 1:00 PM
 

MetricStream Welcome

Doug Montgomery

Associate Vice President, GRC Solutions, MetricStream

MetricStream Welcome

Patricia McParland

AVP, Head of Product Marketing, MetricStream
 
1:00 PM - 2:00 PM
 

Workshop

How do you practice effective ERM and how does ERM align with a GRC strategy?

Join our workshop to explore the synergy between Enterprise Risk Management (ERM) and Governance, Risk, and Compliance (GRC). Learn about effective ERM practices, integrating proactive risk identification, assessment, and mitigation into strategic decision-making. Understand how an aligned ERM/GRC strategy synchronizes risk management with compliance and governance efforts. Discover leadership's expectations from ERM/GRC practitioners, including a profound understanding of the organization's risk landscape and the ability to provide timely assessments. Explore ERM's pivotal role in mission accomplishment, facilitating organizations to pursue objectives while navigating uncertainties.

Christopher E. Mandel

Founder & President, Excellence in Risk Management, LLC

Workshop

What's New in Regulatory Compliance: Preview the Latest Product Release & Roadmap

As new regulations around AI, operational resilience, and cyber risk emerge and existing regulations evolve, keeping up and staying compliant is more than a full-time job. What’s more, the consequences of non-compliance are increasingly severe – including personal liability for senior leaders. Join this in-depth product review session and workshop with MetricStream’s Product Leaders to see how MetricStream can help. See our latest product release in action and how it can ease your compliance burdens – and preview what’s coming next on the product roadmap. Both existing customers and compliance leaders interested in seeing how MetricStream can streamline and simplify their compliance programs will benefit from this deep-dive session.

Shreyank S Kamat

Senior Director, Product Management, MetricStream
 
2:00 PM - 3:00 PM
 

Workshop (continued)

How do you practice effective ERM and how does ERM align with a GRC strategy?

Join our workshop to explore the synergy between Enterprise Risk Management (ERM) and Governance, Risk, and Compliance (GRC). Learn about effective ERM practices, integrating proactive risk identification, assessment, and mitigation into strategic decision-making. Understand how an aligned ERM/GRC strategy synchronizes risk management with compliance and governance efforts. Discover leadership's expectations from ERM/GRC practitioners, including a profound understanding of the organization's risk landscape and the ability to provide timely assessments. Explore ERM's pivotal role in mission accomplishment, facilitating organizations to pursue objectives while navigating uncertainties.

Christopher E. Mandel

Founder & President, Excellence in Risk Management, LLC

Workshop

What's New in CyberGRC: Preview the Latest Product Release & Roadmap

Cyber risk and IT compliance aren’t just top of mind for CISOs – they are board-level concerns. Nor is the CISO solely responsible. Today, cyber risk is a critical part of GRC and shared by all leaders, including the Chief Compliance Officer and the Chief Risk Officer. MetricStream’s CyberGRC product is designed to address all essential cyber risk and IT compliance needs, in one flexible solution. In this session, we will demonstrate how to assess and manage AI model risk and we will review all the exciting new product enhancements to help keep your organization ahead of cyber risk, automate compliance, quantify risks, and keep your entire organization current with insightful analytics and monitoring. We will also call out upcoming enhancements on the CyberGRC product roadmap.

Anil Kumar

AVP, Product Manager - IT and Cyber Security, MetricStream
 
3:00 PM - 3:20 PM

Break

(Harborside Foyer)

 
3:20 PM - 4:20 PM
 

Workshop

Cyber Risk Quantification: Harnessing Quantified Insights for Better-Informed Strategic and Operational Decision-Making

The need for effective cyber risk management based on quantification has been recognized for many years as a prerequisite for success. Many of the models to date provide lots of promise but fall woefully short of delivering effective, scalable, and viable solutions to support near-real-time decision-making and prioritization. In part, this is due to the fact that the models focus almost exclusively on loss avoidance and are scenario-based. In this workshop, you'll get an up-close-and-personal overview of how Asset Value-based Risk Quantification works, how to model it in any business vertical, and how to get started on this pioneering approach to "real" risk quantification and management.

Grace Beason

Director of Governance, Risk and Compliance, Guidewire Software

Gavin Anthony Grounds

CEO & Co-Founder, Mercury Risk and Compliance, Former - Meta & Verizon

Workshop

How Low-Code/No-Code Can Help Accelerate Configuration of your GRC Solution

The foundation of a strong GRC and risk management program is a flexible, integrated software platform – one that is cognitive and powered by artificial intelligence for smart decisions; continuous and always available through automation and mobile; and cloud-based for fast access and easy, low-code updating. Explore the basis of the next generation of GRC – the MetricStream platform. Uncover new opportunities and discover the power of low-code/no-code.

Joy Bhowmick

Senior Vice President, Product Development, MetricStream
 
4:20 PM - 5:20 PM
 

Workshop (continued)

Cyber Risk Quantification: Harnessing Quantified Insights for Better-Informed Strategic and Operational Decision-Making

The need for effective cyber risk management based on quantification has been recognized for many years as a prerequisite for success. Many of the models to date provide lots of promise but fall woefully short of delivering effective, scalable, and viable solutions to support near-real-time decision-making and prioritization. In part, this is due to the fact that the models focus almost exclusively on loss avoidance and are scenario-based. In this workshop, you'll get an up-close-and-personal overview of how Asset Value-based Risk Quantification works, how to model it in any business vertical, and how to get started on this pioneering approach to "real" risk quantification and management.

Grace Beason

Director of Governance, Risk and Compliance, Guidewire Software

Gavin Anthony Grounds

CEO & Co-Founder, Mercury Risk and Compliance, Former - Meta & Verizon

Workshop

What’s New in Enterprise and Operational Risk Management : Preview Product Release and Roadmap

Enterprise risk and operational risk management are more critical than ever in today’s complex, interconnected world of risk. How can you assess risk more simply and efficiently? How can you gain an actionable, single view of risks across your bank or enterprise? Most important, how can you create proactive, continuous action plans to mitigate risk – and monitor for an ongoing agility and resilience? In this deep-dive product review session, MetricStream senior Product Leaders will unveil the latest ERM and ORM product improvements. We will also preview what’s next by looking at the product roadmap . Existing customers and prospects will both benefit. Please join us!

Anil Kumar

AVP, Product Manager - IT and Cyber Security, MetricStream
 
5:20 PM - 7:00 PM

Drinks & Reception

(Harborside Foyer)

 
 

Day 2: Tuesday, June 18, 2024

7:50 AM - 8:50 AM

Registration & Networking Breakfast 

(Harborside Foyer)

 
8:50 AM - 9:00 AM

Welcome Note

Introduction and Welcome

(Harbor A & B)

Simrin Jhangiani

Director Marketing, MetricStream
 
9:00 AM - 9:45 AM

Opening Keynote

Beyond Boundaries: Embracing the Next Frontier of GRC

As interconnected risks escalate and transformative forces continue to accelerate, how can you and your risk teams stay proactive and current? Discover the power of connection in Governance, Risk, and Compliance (GRC) as we explore the future of risk, from people to processes to next-generation technologies like Gen AI. We will discuss key trends and how to apply them to take your GRC programs, career, and insights to the next level. Join us as we delve into the dynamic realms of GRC and AI to navigate complex risk and regulatory landscapes with agility and resilience.

Gaurav Kapoor

Co-CEO, Co-Founder, MetricStream
 
9:45 AM - 10:25 AM

Panel 

Navigating the Risks on the Horizon: Preparing for What’s Next in GRC

Embark on a journey of foresight with 'Navigating the Risks on the Horizon: Preparing for What’s Next in GRC'. Explore proactive strategies and innovative approaches to anticipate and address emerging risks in Governance, Risk, and Compliance (GRC). From technological disruptions to geopolitical shifts, uncover key insights to fortify organizational resilience. Join industry experts and thought leaders as we navigate the evolving risk landscape, equipping you with the tools and knowledge to effectively prepare for and mitigate future challenges in the dynamic world of GRC.

Michael Koenig

Global Chief Ethics and Compliance Officer, JBS

Tolu Oyefesobi

Chief for Financial Controls and Operational Risk, Inter-American Development Bank

Prabha Thomas

Chief Risk & Compliance Officer, Tata Consultancy Services

Manu Gopeendran

Senior Vice President Marketing, MetricStream
 
10:25 AM - 11:05 AM

Product Keynote 

What’s Driving Key GRC Technology Innovations: The Three Cs and the Power of Connection

Unlock the driving forces behind key GRC technology innovations in 'What’s Driving Key GRC Technology Innovations: The Three Cs and the Power of Connection'. Explore the convergence of Compliance, Collaboration, and Connectivity as catalysts for transformative advancements. Delve into the symbiotic relationship between cutting-edge technologies and GRC frameworks, uncovering how interconnected systems amplify efficiency and effectiveness. Join us to discover how embracing the Three Cs can empower organizations to navigate complex regulatory landscapes with agility and precision, driving sustainable growth and resilience in the digital era.

Gunjan Sinha

Executive Chairman, MetricStream

Prasad Sabbineni

Co-CEO, MetricStream
 
11:05 AM - 11:25 AM

Break

(Harborside Foyer)

 
11:25 AM - 11:55 AM

Customer Case Study

Case Study: dnata's Integrated GRC Transformation

David Storey

Vice President Health, Safety & Environment, dnata
 
11:55 AM - 12:35 PM

Panel

GRC in the Era of AI and Automation: Looking at the Road Ahead

Embark on a forward-looking exploration of 'GRC in the Era of AI and Automation: Looking at the Road Ahead'. Delve into the transformative impact of artificial intelligence and automation on Governance, Risk, and Compliance (GRC) practices. Explore emerging trends, challenges, and opportunities reshaping the GRC landscape. From predictive analytics to robotic process automation, discover how cutting-edge technologies are revolutionizing risk management and regulatory compliance. Join industry leaders and innovators as we navigate the evolving terrain of GRC, equipping you with insights to thrive in the digital age.

Michael Cover

Director, Blue Cross Blue Shield of Michigan

Michael Rinard

Chief Legal & Chief Compliance Officer, Mosaic Health System

Joshua Wick

Global Head of Risk & Compliance, Hitachi Digital Services

Mike Milton

Group Vice President Sales Americas, MetricStream
 
12:35 PM - 1:05 PM

GRC Journey Awards

Recognizing GRC Excellence: The GRC Journey Awards What does GRC excellence look like in action? 

MetricStream will recognize key achievements of customers and partners in the field of governance, risk, and compliance management.

 
1:05 PM - 1:55 PM

Lunch

(Harborside Foyer)

 

Track 1

(Harbor A & B)

Track 2

(Essex A & B)

 
1:55 PM - 2:35 PM
 

Panel

Transformative Strategies for a Modern Compliance & Risk Function

Discover transformative strategies for modernizing compliance and risk functions to meet the demands of an ever-changing regulatory landscape. Explore actionable approaches to enhance agility and efficiency, leveraging innovative technologies such as connected, cognitive, cloud, and continuous capabilities. Chief Compliance Officers (CCOs) and Chief Risk Officers (CROs) will gain insights into future-proofing compliance and risk programs while maintaining a positive ethics and compliance posture within organizations , even amidst limited resources and budgets

Faisal Siddiqui

Deputy Chief Compliance Officer, International Finance Corporation (IFC)/World Bank Group

Bianca Forde

VP, Global Ethics & Compliance Programs, Otis Worldwide Corp

Anand Narayanan

Head of Regulatory Change Management - Americas, Sumitomo Mitsui Banking Corporation

Kevin Finlay

Group Vice President, Sales, MetricStream

Customer Case Study

Case Study: Prioritize Technology to Optimize a Resilient Compliance Strategy

Nicholas Cannon

Manager, Blue Cross Blue Shield of Michigan

Jason James

Senior Business Systems Analyst, Blue Cross Blue Shield of Michigan
 
2:35 PM - 3:15 PM
 

Customer Case Study

Case Study: Agile Risk Strategies in Action at Bank OZK

Explore the agile risk management strategies in action at Bank OZK, a U.S. regional bank with over $34B in assets. Arindam Majumdar, Deputy Chief Risk Officer of Bank OZK, will delve into the challenges of operational risk management within a growing financial institution, showcasing effective strategies and programs for enhancing risk posture. Discover how Bank OZK maintains resilience and agility through adept management of people, processes, and technology in the face of volatile markets and evolving regulations.

Arindam Majumdar

Deputy Chief Risk Officer, Bank OZK

Panel

Panel on Managing Data Privacy and Security Risks in the Era of GenAI and Data Explosion

Join us for a panel discussion addressing the complexities of managing data privacy and security risks amidst the emergence of Generation AI (GenAI) and the data explosion. Explore the challenges of safeguarding sensitive data in this era, navigating evolving regulations, technological advancements, and ethical dilemmas of AI. Gain insights into strategies for mitigating data privacy and cybersecurity risks while maximizing the value and integrity of large datasets.

Eduardo R. Ortiz

VP, Global Head of Cybersecurity, TTI Group, Inc.

Ananeya Abebe

SVP, Director of Data Risk Governance, KeyBank

Patricia McParland

AVP, Head of Product Marketing, MetricStream

Raghuram Srinivas

SVP, Product Management, MS Innovations, MetricStream
 
3:15 PM - 3:55 PM
 

Panel

The Expanding Scope of Operational Risk Programs in the Time of Operational Resilience

Explore how operational risk programs are evolving to meet the demands of an increasingly complex and interconnected business landscape. Delve into the integration of operational resilience principles, emerging technologies, and proactive risk management strategies. Join industry leaders and experts as we examine the expanding scope of operational risk programs, empowering organizations to navigate uncertainties with agility and fortitude. Gain valuable insights into building robust operational resilience frameworks to thrive in today's dynamic environment.

Madiha Fatima

Executive Director - Global Head of Horizontal Risk Management, JPMorgan Chase

Alapan Arnab

Technology Resilience Executive, Former - Scotiabank and Barclays Africa

Spruille Braden

Head of Operational Resilience, PGIM

Kamlesh Sidhwani

CRO Canada, Sumitomo Mitsui Banking Corporation – SMBC

Adriaan Boon van Ostade

Head of Customer Success for the Americas, MetricStream

Panel

Driving Value in Your GRC Program: Creating Synergies across Audit, Risk, Cyber, and Compliance

As risks interconnect and intersect, so too must our approaches to them. In this session, we will explore the transformative power of integrating audit, risk, cyber, and compliance functions to drive organizational value. Working together, these functions can enhance collaboration, streamline processes, and mitigate risks effectively. Join industry experts and thought leaders as we delve into practical strategies and best practices for leveraging cross-functional synergies to elevate your GRC program and deliver tangible value to your organization with a coordinated approach to risk, audit, cyber, and compliance.

Jeannie Kim

VP, Enterprise Risk Management, Mitsui & Co. Energy Marketing and Services (USA), Inc. (MEMS)

Joseph Hegge

Senior Audit Program Manager, Lockheed Martin Corporation

Jason Stockinger

Director, Global Information Security, Royal Caribbean Group

Bhaskar Dasari

CEO, Vivid Edge Corp

Chris Sams

Head of Global Partnerships and Alliances, MetricStream
 
3:55 PM - 4:15 PM

Break

(Harborside Foyer)

 
4:15 PM - 4:45 PM
 

Product Session

Harnessing GRC CoPilots to Transform Risk and Compliance Programs

Discover the cutting-edge capabilities of GRC CoPilots in revolutionizing risk and compliance management. This session will delve into how these advanced tools streamline processes, enhance accuracy, and ensure robust compliance. Learn practical strategies to implement GRC CoPilots, transforming your organization's approach to risk assessment and compliance programs for unparalleled efficiency and effectiveness.

Raghuram Srinivas

SVP, Product Management, MS Innovations, MetricStream

Expert Talk

Automating Audits and Cloud Compliance Including for generative AI with AWS Audit Manager and MetricStream Cyber GRC

Ensuring cloud compliance and governance for Generative AI is crucial. Discover how to leverage AWS Audit Manager and MetricStream CyberGRC to automate audits, and continuously monitor and assess cloud controls and Generative AI deployments against AWS best practices. This session will also cover how enterprises can gain real-time visibility into their compliance posture and proactively address risks or deviations. Learn to build trust and confidence in your cloud environments and Generative AI applications.

Neha Singh Rajpurohit

Senior Product Manager – Technical, Amazon

Anil Kumar

AVP, Product Manager - IT and Cyber Security, MetricStream
 
4:45 PM - 5:15 PM

Closing Keynote

Gaurav Kapoor

Co-CEO, Co-Founder, MetricStream
 
5:15 PM - 6:45 PM

Drinks & Reception

(Harborside Foyer)