grc summit 2011-08-09 december

8/12/2019 GRC Summit 2011-08-09 December

http://slidepdf.com/reader/full/grc-summit-2011-08-09-december 1/4

Why GRC Summit 2011?

Good Governance, Effective and Real-time Risk Management and adhering to

regulatory Compliances have direct impact on your organizations Reputation,Valuation and Profitability

There is a need to simplify internal processes and not make them more complex

There is an urgent and immediate need to cut complexities brought by necessity to managegovernance, risk management and regulatory compliances which are now overseen by anumber of departments including internal audit, information technology, compliance andregulatory management, enterprise risk management (ERM), operational risk and incidentmanagement amongst others.

Ground Reality is that multiple groups bear responsibility for several functions andprocesses; they operate in silos, with insufficient sharing of information and followingmultiplicity of frameworks and systems.

A number of thought leaders are now talking about the business sense to optimizeresources and these intersecting activities as a Singular Function to bring about efficiencies,reduce or eliminate repetitions of same task by multi departments, need to come beyondthe paper trail to practices in real time by formulating a common GRC Framework.

Thoughts on GRC have been discussed for some time, yet real-time and inclusiveintegration is still work in process. However the main question remains on How do developa GRC Framework and Program for your organization?

Especially since it is hard to bring all the stakeholders together in an integrated GRCframework.

Audits, Finance, Compliance, Risk and Legal have their own functioning styles and process.Business line managers and IT bring in their own perspectives, which complicate adoption.

Understanding and reconciling these disparities and conflicts is critical to success when

driving an enterprise-wide GRC program.

This inclusive two day conference bring together all stakeholders on a common discussionplatform to see, hear and determine best practices in inter-linking people, processes andtechnology for the most appropriate GRC framework and a practical adoption roadmap

that will work in today’s work environment !

08-09 2011, New Delhi

“Organisations manage their governance, risk management, legal and regulatory compliance in an unconnected manner,separated through functional lines, multi locations and sub units”

Join this interactive, comprehensive, wide ranging and new thought generating forum which discussesbest practices in Governance, Risk Management & Compliance and

process for integrating and harmonizing people and process for a workable, practicalIntegrated and Unified GRC Framework

Who Should Attend:-

CXO ,

Chief Risk Officers

Chief Legal Counsel

Chief Compliance Officer Chief Internal Audit

Chief Information Officer

Chief Information Security

Vice Presidents, General Managers,Head, Functional Managers &Consultants of:-

Finance

Corporate Governance

Treasury

Controllers

Compliance

Accounts

Enterprise Risk Management

Legal and Regulatory

Ethics

Operational Risk

Audit & Internal Controls

Information Technology

Information Security

Management Assurance



© Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.

GRC is about linking together your business processes, people and technology in an integrated manner.

Consider this:

Risks are now more diverse and interrelated The management of enterprise risk and compliance has become a critical business issue and can

provide a strategic competitive advantage. Reaction to positive risk are often delayed –opportunities missed

Departments have their individual mandates, but often work is duplicated

As companies grow, expanding presence across state and international borders, GoodGovernance is the most effective measurement criteria for current and future stakeholders

There are so many regulations, central, state, municipal and also your industry regulator – givingyou limited time and resources to comply

Even with mature risk management strategies in place, communication of the same to boardmembers or top management is not effectively done. Adequate mitigation strategies in place –organizations are not ready to adjust to new or emerging risk

Laws and regulations have become more complicated. Boards and executives are now moreaccountable

Why should you participate in GRC SUMMIT 2011?

The key SUCCESS for a GRC PROGRAM is a coordinated effort by audit, legal,risk and compliance functions and among key administrative, operational

personnel and business lines in both the implementation of the systems andthe interpretation of the data generated”

What Differentiates GRC SUMMIT 2011?

The Summit brings together ALL STAKEHOLDERS involved in implementing a successful GRCProgram in an interactive and shared learning environment to discuss real time execution paths,way around practical roadblocks, so that you start applying your learning’s immediately in your

work environment

The challenge is to bring together all the stakeholders in an integrated GRCFramework. Audits, Finance, Compliance, Risk and Legal have their own

functioning styles and process.Business line managers and IT bring in their own perspectives, which complicate

adoption.

IMAGES FROM MUMBAI GRC SUMMIT




08.00 Registration and morning refreshment

09.30 Mainstreaming of GRC into Business Process

Keynote address by session chair

10.00 Key Note Panel:

Where & Why is GRC integration needed most?Cost saving or Effective functioning?

Perspective from Board of Directors

Governance vulnerabilities which make GRC integration a mustfor corporate in India

Evaluating GAPS in governance, risk management & complianceand ground realties which are the real needs for effectivefunctioning of Board

GRC effect on increasing transparency and business assurance

Perspective from Management (CEO and MD)

Gaps in risk management, compliance which hinderorganisational top line and bottom-line

How can GRC help in effective functioning and managing ofcompanies? Key expectations from CXO

GRC as a Business Enabler

CFO Perspective

Cost benefit analysis and value creation of GRC integration

Perspective from Business Process Facilitators(Legal, Audit, Risk Management, Compliance)

Case Examples of GRC Implementation in Indian Corporate

11.30 Refreshment and networking break

12.00 GRC International Perspective:Observations on the development of GRC in global companies

Learning’s from GRC implementation in leading companies

What are the main drivers for GRC and the cost benefit analysiswhich have lead these companies to initiate and actively pursuean integrated GRC program?

How do we leverage the current experiences to a unified GRCframework which adds value?

Technology and information management in GRC which haveenabled the transformation

12.30 Presentation of Research Report by Knowledge Partners

13.00 Expert View:Evaluating the return on your GRC Investment

The key for implementing a new process or program in organizationis to have a very clear view on advantages it offers, monetary, shortterm and long term benefits. This presentation analyses the benefitof GRC program on

Enterprise’s brand and reputation

Stakeholders and share price

Resources utilization

New business strategies Competitive differentiation

13.30 Networking Lunch

14.30 Practical Road Map for GRC ConvergenceEstablishing a practical roadmap for an integratedGovernance, Risk Management and Compliance organizationalstructures to work

The need for an integrated GRC framework is well recognized intoday’s business environment, however only a few companies havebeen able to succeed in implementing an integrated GRC strategydue tocomplexities as well as structural overlays This session willexamine and discuss the critical patterns for adapting a successfulGRC framework

Discussion Focus one:

Identifying current challenges and business benefits for aunified GRC framework?

• Is the corporate world looking at GRC as a strategic tool orMonitoring / Control concept or value creation? Why?

• What are the current challenges in organization in aligninggovernance, risk management and compliance framework?

• What are the business benefits seen?• What is the ideal GRC framework, state of future play and

business benefit for fast growing company or for a globallyexpanding corporate and why?

• Identifying common blocks?• Siloed functions and impact on your GRC strategy?

Discussion Focus Two: Change Management

How do you manage transition from silo assurance andcompliance functions to an integrated GRC - addressingconcerns of stakeholders at various levels, socializing GRC andcreating GRC culture in enterprise?

• How do you bring different mindsets of different individuals tocollaborate and work on a uniform GRC platform?

• How do you build ownership culture within the organization andamongst key stakeholders related to GRC?

• How do you increase sincerity of departmental heads in takingRisk, Audit and Compliances seriously?

• Communication plan for raising awareness level of managementand Board Of Directors about importance and benefits of GRC?What are the key buy in factors to achieve a positive outcome?

16.00 Refreshment and networking break

16.45 Practical Road Map for GRC Convergence (Continued)

Discussion Focus Three: Methodology Methodology to link process and technology for effectivelybridging together internal audit, risk management,information security, operations and compliance functions

• GRC Champion: Who should leads the initiative?• What are key steps in integrating GRC into the company culture

and work ethos?• How do you position GRC structures right in organizational

hierarchy?• Challenges and practical path for creating a sustainable structure• Identifying and bridging the GAP between department and a

unified GRC Framework?• Communication strategy in getting the right message across to all

stakeholders• How do you create harmony between business roles?• Accommodating stakeholder requirements• What is the ideal GRC framework and state of future play for fast

growth companies?• Cost of integrating of GRC with company’s present system? How

do you work on lowering cost implications on size and nature oforganization

Discussion Focus Four: Role of Technology Role of Technology as key differentiator factor for a successfulor a failed GRC Framework

• Current technology environment and available platforms whichcan be integrated in your existing infrastructure

• How is the GRC solutions and tools expanding – are they hype or

provided a practical solution to ease your governance, riskmanagement and compliance activities?• Implementation costs, investment and RoI• Key consideration before choosing your technology partner• Case Examples: Analyzing failed and successful implementation

17.30 Summation and end of day one

CONFERENCE DAY ONE: THURSDAY, 08 December 2011




8.30 Registration and morning refreshment

9.15 Opening remarks by session chair

9.30 Instilling a culture of good corporate governance for GRCsuccess

• Changing approaches to corporate governance

• Involving senior management and drive from the top

• Ethics and corporate governance, Education and enforcement

• Integrating corporate governance with CSR• Integration with internal and external stakeholders and extending it

to third-party business partners

• Linking good governance to your GRC strategy?

• Controlling cost of Corporate Governance

0.00 Expert View: GRC Quantification, Accountability, Reporting,Disclosures & Maturity Models

• What are the metrics and measurement to check the success andprogress of your GRC plan? What to track? Why? and how?

• How do you establish and track GRC goals

• Creating collaborative accountability across business function androles

• GRC Maturity Models

0.30 GRC Tools: Evaluating Enterprise GRC Platforms

In this session 3 hand-picked GRC platform providers present for 7minutes each, their latest innovations to Interested buyers who areeager to learn about the latest solutions in the market. This sessionprovides a very unique opportunity to quickly determine whichsolutions you may want to explore in greater depth to support yourGRC framework

1.00 Networking and refreshment break

1.30 GRC Tools:Implementing continuous auditing & continuous monitoringtechniques to support your GRC Strategy

Continuous auditing (CA) and continuous monitoring (CM) methodsare ideal to address evolving, complex risk environment, meet ever-changing regulatory, business, and industry requirements and canform one of your core tools for an integrated GRC.This session will discuss key success factors required for implementingcontinuous auditing and continuous monitoring techniques inorganizations

2.00 GRC Enabler: Enterprise Risk ManagementLinking Enterprise risk management to a unified GRC strategy

Everyone in an organisation plays a role in ensuring successful ERMpractices, it is important for all functional departments which includeinformation technology, finance, audits, compliance, legal and risk.To understand larger picture for managing risk and involvement foran effective ERM program which is linked to your GRC strategy, thisinteractive session will discuss:-

How is GRC different from ERM?

How would you build a business case justifying and convincing theAudit Committee on implementing GRC as a separate componentdifferent from ERM?

If Organizations are in the process of implementing ERM, whatconsiderations should be made to ensure GRC is also mapped aspart of ERM?

Real Time Risk Alert Monitoring, Detection & Reporting

Importance of good governance and ERM strategy– directors’duties, legislation & expectations

Organisation’s risk appetite – link to stakeholders’ expectations

Committing to a risk Management programme

How do you create a common risk management communicationlanguage?

Linking your ERM to a unified GRC strategy

Case study: Case analysis on successful ERM from industry sectorsand key factors in successful implementation

3.00 Networking lunch

14.00 GRC Enabler:Information Governance and its role in a successful GRC strategy

• Developing an enterprise-wide information governance strategy.

• Identify current and target states on Information Governance MaturityModel

• Challenges and strategies in implementing roadmaps,

• Learn about technologies that accelerate movement up

• Information Management maturity curves

• What are the significant forces affecting the governance of IT incontemporary organizations?

• How are organizations governing IT in order to manage the businessimperatives of the economy?

• What is the new organizing logic for IT governance, and what are thebusiness implications?

• What are best practices for Information Governance?

15.00 GRC Enabler: Compliance Strategy

• Percolating GRC into day to day management at regulatory and legallevel – benchmarking the same at various business unit levels

• Evaluating how you can stay on top on regulatory requirements andchanges thereto with a unified GRC program

• Achieving connectedness between compliance, audit and riskprogrammes

• Risk Identification & Management - Mapping of controls and

compliance requirements to specific business processes

16.00 Networking and refreshment break

16.30 OPEN SESSION:

Discussion which focus on questions and issues which lie between the line,are in the back of everybody minds, but are not brought forward in publicdiscussions

GRC and Impact on Mergers and Acquisitions – will it help you in thenegotiating and price valuation? Will GRC ensure a successfulamalgamation?

GRC and its role in influencing your stakeholders? Does it drive up yourstock valuation? Does it help when your stock prices are being driven

down by market manipulators? How do you use GRC as an effective reputational tool building block for

up scaling company valuation and stakeholders perceptions

GRC – what are the common issues which will result in this being onemore buzz word and practice which is just on paper?

Will GRC help in managing your organizational exposure to fraud fromexternal sources and fraudulent behaviors from internal employees?

Analysis: Could the recent scams and frauds been prevented with GRCprogram in place

Ideation Focus

• How can departments contribute positively in a unified GRCStrategy?

• Identifying the GRC Champion who should lead the initiative inyour organization

17.30 Summation and end of day two

CONFERENCE DAY TWO: FRIDAY 09 December 2011

‘*’ – awaiting formal confirmation

grc summit 2011-08-09 december

Documents