grc summit 2011 - 28-29 april
TRANSCRIPT
-
8/7/2019 GRC Summit 2011 - 28-29 April
1/4
Why GRC Summit 2011?
ood Governance, Effective and Real-time Riskanagement and adhering to regulatoryompliances have direct impact on yourrganizations Reputation, Valuation and Profitability
here is a need to simplify internal processes and notake them more complex. Ground Reality is thatultiple groups bear responsibility for severalnctions and processes; they operate in silos, withsufficient sharing of information and followingultiplicity of frameworks and systems. Audits,nance, Compliance, Risk and Legal have their ownnctioning styles and process. Business lineanagers and IT bring in their own perspectives,hich complicate adoption.
nderstanding and reconciling these disparities andonflicts is critical to success when driving annterprise-wide GRC program.
his inclusive two day conference bring together allakeholders on a common discussion platform to
ee, hear and determine best practices in inter-nking people, processes and technology for theost appropriate GRC framework and a practical
doption roadmap that will work in todays worknvironment !
Rajesh Bagga, Vice President Legal,TATA Motors
T Vinod Kumar, Global Head Corporate Audit &Risk Management,TATA Chemicals
Sanjay Mathur, Sr.VP and Head - ManagementAudit, Reliance Communications
Ashish Padmanabhan, Director,Standard Chartered Bank
Arun O Gupta, Customer Care Associate & GroupCTO, Shoppers Stop Limited
Ravi Raman, Head Investment Analytics andOperation, Infrahedge.
Lav Chaturvedi, Chief Risk Officer,Reliance Capital
Suparna Singh, Vice President, CorporateGovernance and Business Development, Chairman'sOffice, Essar Group
B. Krishnamurthi, Practice Head (KM & BusinessConsulting),Strategy and Business Solutions
Sunil Varkey, Global Security Assessment &Remediation, Barclays Technology Centre
Anand Tatavarthi, Vice President,CURA Technologies Limited
Burgess Cooper, AVP Information Security,Vodafone Essar
Vijay Devnath, IRSEE, CISA, Chief Manager (IT),Konkan Rly. Corp. Ltd
onceptualised &Organised By
Gold Partner
Organizations Reputation, Valuation and Profitability are directly linked to Good Governance, Effective and Real-time Risk Managementand adhering to regulatory Compliance
Join this interactive, comprehensive, wide ranging and new thought generating forum which discussesbest practices in Governance, Risk Management & Compliance and
process for integrating and harmonizing people and process for a workable, practicalIntegrated and Unified GRC Framework
Official Media Partners
Silver Partners
28-29 April 2011, JW Marriott Hotel, MUMBAI
Ajay Kumar Dhir, Executive Director and Group CIOLanco Infratech Limited
Tobias Heine, Head of Internal Audit VolkswagenGroup India & CAE,Volkswagen India Private Limited
Pradeep Parakh, Group President (GRC) & CompanySecretary,Bajaj Hindusthan Limited
Adarsh Sakhuja, Head-Corporate Risk Management& Internal Controls, Larsen & Toubro Limited
Dr. Soumya Kanti Ghosh , Enterprise RiskManagement, TATA AIG Life
Abhijit Sanzgiri , Head Internal Audit,Aditya Birla Management Corporate Pvt. Ltd.
Debashis Roy, Senior Director, Head Enterprise RiskManagement, IDFC
Ranjan Banerji, Senior Vice President, Head of Risk& Compliance India,Commonwealth Bank of Australia
Rajeev Thakur, Advisor - Risk & Assurance,Cairn Energy
B. Sai Chandravadhan, Managing Director,Sand Legal Private Limited
Vinod Vasudevan, Co-founder & COO,Paladion
Anurag Jain, Head of GRC, MetricStream
Sameer Chugh, General Counsel,Essar Telecom Business Group
Amber Gupta, Head - Compliance, Legal &Secretarial, Aditya Birla Money
Conference Chair: Day One
Sunil K Kohli, IDAS, Joint Secretary and Financial Adviser,National Disaster Management Authority (NDMA) andNational Disaster response Force (NDRF),Government of India, Ministry of Home Affairs
Speakers Panel
Document Partner
For Registration and more information Contactl 91 22 3067 4205 l 91 22 3065 3262 l
Online Media Partner
Platinum Partners
-
8/7/2019 GRC Summit 2011 - 28-29 April
2/4
ITP Publishing India Pvt Ltd. Level 8 Span Centre, Off Linking Rd, Santacruz (W), Mum - 54. India.
Who Should Attend:- CFO Chief Risk Officers Chief Legal Counsel Chief Compliance Officer Chief Internal Audit Chief Information Officer Chief Information SecurityVice Presidents, General Managers,Head, Functional Managers& Consultants of:- Finance Corporate Governance Treasury Controllers Compliance Accounts Enterprise Risk Management Legal and Regulatory Ethics Operational Risk Audit & Internal Controls Information Technology Information Security Management Assurance
RC is about linking together your business processes, people and technology in an integrated manner.
onsider this:
Risks are now more diverse and interrelated
The management of enterprise risk and compliance has become a critical business issue and can provide a strategic competitiveadvantage. Reaction to positive risk are often delayed opportunities missed
Departments have their individual mandates, but often work is duplicated
As companies grow, expanding presence across state and international borders, Good Governance is the most effectivemeasurement criteria for current and future stakeholders
There are so many regulations, central, state, municipal and also your industry regulator giving you limited time and resourcesto comply
Even with mature risk management strategies in place, communication of the same to board members or top management isnot effectively done. Adequate mitigation strategies in place organizations are not ready to adjust to new or emerging risk
Laws and regulations have become more complicated. Boards and executives are now more accountable
Why should you participate in GRC SUMMIT 2011?
What Differentiates GRC SUMMIT 2011?
The Summit brings together ALL STAKEHOLDERS involved inplementing a successful GRC Program in an interactive and sharedlearning environment to discuss real time execution paths, way
around practical roadblocks, so that you start applying yourlearnings immediately in your work environment
old Partner:
today's fast paced global economy, with emerging threats, coupled with everore regulations, organizations find themselves in a position that necessitates thetive management of Governance, Risk, Opportunity, and Compliance. As there isbstantial overlap across these functions, a co-ordinated approach is required.timately, these challenges can be reduced to risks and opportunities that thesiness faces. It is on this idea that Cura was founded in 2002.
ra provides smarter software solutions designed to enable businesses around theorld to quickly achieve the bottom line benefits of GRC Governance, Enterprisede Risk Management and Compliance linked to performance management. Curaes this through faster implementation, easier configurability & true enterprise
chitecture.ra is used by over 200 amongst Global 1000 enterprises around the world,rtnering with Big Four consulting firms in focused areas of GRC and is recogniseda Challenger by Gartner and as a Leader by Forrester Research in GRC domain
ra has achieved impressive revenue and customer growth over the past manyars and today represents a strong team of about 200 people worldwide. Thempany has offices in USA, UK, South Africa, Australia Singapore and Hyderabad.
ntact: Anand Tatavarthi, Vice President, CURA Technologies Limited l Email:[email protected] l Website: www.curatechnologies.co.in i
ibit Partner:
ure Matrix is a company 100 % dedicated to e security. It is Product, Technology,tform and Vendor Neutral. It can act as a Planner, Architect, Implementer,
egrator and Monitoring Agency for all e security requirements emanating fromting or proposed IT infrastructure cutting across geographies and networks.ure Matrix plans, implements and manages Internal controls in a computerizedironment ( LAN, WAN and TAN )
ure Matrix is a specialist IT services company in the IS space and assists enterprisesmplementing several Global Compliances and Best Practices for the e securityce.
ure Matrix has proprietary trainings for Vulnerability Assessment, Web Security,iness Continuity, Information Security and Service Delivery. The company worksy closely with Certification bodies worldwide.
ure Matrix operates globally through its subsidiaries in the UK, USA and throughng regional partners in the M/ East KSA, Oman, Qatar and UAE. In Africa Southca and Ghana. In essence, the company aims in bringing continuity andrtainty to IT operations of all its end customers.
tact: l E-mail : [email protected] l Website: www.securematrix.inl :+91 22 3073 7579 l Fax :+91 22 3050 7578 l
Silver Partner: Sand Legal Services Private Limited
Sand Legal provides legislative, contractual and litigation Compliance and allied services througha blend of an in house team and a consortium of legal experts. It comprises of a core team withmore than two hundred man-years of extensive expertise and experience in Compliance servicessupported by partners in automation, legal expertise and engineering processes.
It partners with a leading US law firm based in Beverly Hills, Los Angeles in the US for itsonshore/ offshore Litigation Support services in the US. Sand Legals teams of experts haveexperience in a variety of industrial verticals including, Automobile, Copper, Cement, Oil,Pharmaceutical, IT and ITES among other industries.It provides Corporate Compliance trainingprograms to law students, legal managers and functionaries.
In association with an international institute on e-discovery, Sand Legal is shortly going to
commence a certification course for Indian Lawyers on e-discovery and electronic evidence, aprogram that prepares Indian Lawyers to be globalized service providers.
Contact:
Website: www.sandlegal.in l Phone: 044 - 42114224 l U.S. contact: +1 713 876 9243
Silver Partner : MetricStream
MetricStream is the market leader for integrated Governance, Risk, and Compliance (GRC)Management Solutions for global enterprises enabling them to deliver better businessperformance. It's customer portfolio spans across all verticals with world-leading companiesin each industry.
The MetricStream GRC Platform provides solutions for audit management, regulatorycompliance, risk management, policy management, IT GRC, supplier/vendor governance andquality management.
Silver Partner: Paladion
Paladion is the largest pure-play information security player in AsiaPAC and the fastestgrowing in Asia (as ranked in Deloitte Technology Fast 500 Asia Pacific & Technology Fast50 India - 2006, 2007, 2008 & 2009, 2010). Gartner too has included Paladion in its rating ofMarketScope for Managed Security Services in Asia Pacific 2008 & 2009 as Promisingplayer and as a Positive player in 2010.
With a global footprint across 15 countries and decade of experience in the informationsecurity domain, Paladion today is actively managing security for over 450 customers. Itprovides security assurance, compliance, governance, monitoring and management servicesto large and medium sized organizations.
Paladion also offers solutions for communication interception to law enforcement agenciesand service providers. Paladions security solutions have been awarded by Asian Banker,Red Herrings, and Financial Insights. Paladion is involved in several security research forumsand has authored books on security management.
Document Partner: Keane an NTT DATA Company
Keanes Global Governance, Risk, and Compliance (GRC) practice offers comprehensive,
integrated solutions designed for legislative and regulatory compliance in a performanceoptimized environment. Our deep, cross-industry regulatory expertise and acute productknowledge complemented with 40 years of SAP global implementation and supportexperience, enable our resources to rapidly transition organizations from narrowly-focused,rigid compliance systems to a global, continuous control management solution that adapts tothe dynamic world marketplace.
Keanes dedicated GRC vertical with an exemplary COE and R&D set up, provides solutions forAccess Controls, Process Controls, Environment Health and Safety and Global Trade Servicesimplementation, review and support.
atinum Partner: SAP
s market leader in enterprise application software, SAP India, a subsidiary ofAP AG (NYSE: SAP) helps companies of all sizes and industries run better.om back office to boardroom, warehouse to storefront, desktop to mobile
evice SAP empowers people and organizations to work together moreficiently and use business insight more effectively to stay ahead of thempetition. Started in 1996, SAP India is one of the fastest growingmpanies within SAP worldwide with 5,220 employees and over 4,600
stomers.AP offers applications and services that enable companies of all sizes and inore than 25 industries to run better. SAP has emerged as the unquestionable
artner of India Inc.
Platinum Partner: Greenlight Technologies
Greenlight Technologies is one of the leading providers of governance, risk, andcompliance (GRC) software enabling integrated or stand alone REAL TIME analysis ofa company's compatible and incompatible enterprise solutions. GreenlightTechnologies delivers the highly efficient and high speed tools to achieve sustainablecompliance for their critical business applications with reduced audit/compliance
costs."
-
8/7/2019 GRC Summit 2011 - 28-29 April
3/4
ITP Publishing India Pvt Ltd. Level 8 Span Centre, Off Linking Rd, Santacruz (W), Mum - 54. India.
08.30 Registration and morning refreshment
09.10 Mainstreaming GRC into the Business ProcessKeynote address by session chair
Sunil K Kohli, IDAS, Joint Secretary and Financial Adviser,National Disaster Management Authority (NDMA) andNational Disaster response Force (NDRF),Government of India, Ministry of Home Affairs
09.30 Road Map for Initiating Governance, Risk and ComplianceProgram in an Enterprise risk management and compliance
strategies What are the best practices in developing interdependence,
strong reporting and transparent communication betweenfunctions, key management, committees, and the board
Governance vulnerabilities that make GRC relevant How do you define scope and framework of GRC which is right
for your organisation?
Senior Representative, SAP
10.00 Case Study:Best practices in compliance and risk management
What are the best practices in compliance training and creatingawareness across your organization
Practical risk and compliance models for local and cross borderconditions
Linking your compliance, audit and risk programmesRajesh Bagga, Vice President Legal, TATA Motors
10.30 GRC Strategy:Key steps for uniting risk management across the business
What should be your main motivation for unifying riskmanagement across business units and departments?
Learnings from failed ERM strategies evaluating the paperfailures instead of helping in the business decision process?
Gaining board buy-in in a meaningful way Defining risk without aided technology driven solutions Quantifying culture in your risk management programmes Managing risk for subsidiaries and new business unitsAjay Kumar Dhir, Executive Director and Group CIOLanco Infratech Limited
11.00 Refreshment and networking break
11.30 GRC International Perspectiv: Observations on thedevelopment of GRC in global companies
Learnings from GRC implementation in leading companies What are the main drivers for GRC and the cost benefit analysis? How do we leverage the current experience to a unified GRC
framework which adds value?
Technology and information management in GRCRavi Raman, Head Investment Analytics and Operation,Infrahedge.
12.00 GRC Convergence: Establishing practical Governance, RiskManagement and Compliance organizational structures thatwork
Challenges for a unified GRC framework? Common blocks? Siloed risk function and impact on your GRC strategy State of future play in GRC for fast growth companies GRC key trends in international markets Accommodating stakeholder requirements and harmonizing
function for a unified GRC framework
Panel Moderated by:
Ashish Padmanabhan, Director,Standard Chartered Bank
Panel Members:
Lav Chaturvedi, Chief Risk Officer,Reliance Capital
Sunil Varkey, Global Security Assessment & Remediation,Barclays Technology Centre
Suparna Singh,Vice President, Corporate Governance andBusiness Development, Chairman's Office,Essar Group
13.00 Networking lunch
14.00 Case Study: Elements of a good Corporate Governancestructure towards building a sustainable future
Moving from a siloed structure to a well-integrated framework Criticality of positioning the GRC structure right in the
organizational hierarchy
Challenges in creating a sustainable structure Importance of good communication in getting the right message
across to all stakeholders
T Vinod Kumar, Global Head Corporate Audit & Risk
Management, TATA Chemicals
14.30 GRC Integration with Governance: Instilling a culture of goodcorporate governance for GRC success
Changing approaches to corporate governance Involving senior management and drive from the top Ethics and corporate governance, Education and enforcement Integrating corporate governance with CSR Integration with internal and external stakeholders and extending
it to third-party business partners
Linking good governance to your GRC strategy?Panel Moderated byB. Krishnamurthi, Practice Head (KM & Business Consulting)Strategy and Business Solutions
Panel Members:
Sanjay Mathur,Sr. VP and Head - Management AuditReliance Communications
Ranjan Banerji, Senior Vice President, Head of Risk & Compliance India, Commonwealth Bank of Australia
Ravi Raman, Head Investment Analytics and Operation,Infrahedge.
15.30 Expert View: Evaluating the return on your GRC InvestmentThe key for implementing a new process or program in organizationis to have a very clear view on advantages it offers, monetary, shortterm and long term benefits. This presentation analyses the benefitof GRC program on
Enterprises brand and reputation Stakeholders and share price Resources utilization New business strategies Competitive differentiationAnand Tatavarthi, Vice President, CURA Technologies Limited
16.00 Evaluating Enterprise GRC Platforms: Evaluation One
16.10 Refreshment and networking break
16.30 GRC Enabler: Information Governance and its role in asuccessful GRC strategy
Developing an enterprise-wide information governance strategy.
Target states on Information Governance Maturity Model Information Management maturity curves Significant forces affecting the governance of IT How are organizations governing IT in order to manage the
business imperatives of the economy?
What is the new organizing logic for IT governance What are best practices for Information Governance?Panel Moderator
Burgess Cooper, AVP Information Security,Vodafone Essar
Panel Members:Ajay Kumar Dhir, Executive Director and Group CIOLanco Infratech Limited
Arun O Gupta,
Customer Care Associate & Group CTOShoppers Stop Limited
Vijay Devnath, IRSEE, CISA, Chief Manager (IT),Konkan Rly. Corp. Ltd
17.30 Summation and end of day one
CONFERENCE DAY ONE: HURSDAY, 28 April 2011
-
8/7/2019 GRC Summit 2011 - 28-29 April
4/4
ITP Publishing India Pvt Ltd. Level 8 Span Centre, Off Linking Rd, Santacruz (W), Mum - 54. India.
08.30 Registration and morning refreshment
09.15 Opening remarks by session chair
09.30 GRC Integration with Enterprise Risk ManagementPanel Discussion: Developing integrated strategy for Enterpriserisk management and linking it to a unified GRC strategy
Lessons from early adaptors of ERM frameworks Importance of good governance and ERM strategy directors
duties, legislation & expectations
Organisations risk appetite link to stakeholders expectations Committing to a risk Management programme Understand the modern ERM process: linking units and functional
departments
How do you create a common RM communication language? Linking your ERM to a unified GRC strategy Case study: Case analysis on successful ERM from industry sectors
and key factors in successful implementation
Panel Moderator:Sunil Varkey, Global Security Assessment & Remediation,Barclays Technology Centre
Panel Members
Adarsh Sakhuja, Head-Corporate Risk Management & InternalControls, Larsen & Toubro Limited
Dr. Soumya Kanti Ghosh , Enterprise Risk Management,TATA AIG Life
Debashis Roy, Senior Director, Head Enterprise Risk ManagementIDFC
Abhijit Sanzgiri , Head Internal Audit,Aditya Birla Management Corporate Pvt ltd
10.30 Guidelines on Evaluating GRC Solution
Anurag Jain, Head of GRC, MetricStream
11.00 Networking and refreshment break
11.15 GRC Strategy Tools: Implementing continuous auditing &
continuous monitoring techniques to support your GRCStrategy
Tobias Heine, Head of Internal Audit Volkswagen Group India & CAEVolkswagen India Private Limited
11.45 How to fast track an IT GRC initiative?This session will look at mechanisms to quickly establish a meaningfulIT GRC program.
Key drivers for IT GRC IT Governance scope & areas Role of risk & compliance management Leveraging available standards & processes Establishing IT Governance roles & relationships Performance Metrics & Measurement Automation using the right technologiesVinod Vasudevan, Co-founder & COO, Paladion
12.15 Five effective steps for fortifying your Legislative ComplianceManagement as part of Governance and risk Management.
Orientation and training in implementation of compliancesLegislative contentAuditsAutomated SystemsManaging Compliance.B. Sai Chandravadhan, Managing Director,Sand Legal Private Limited
12.45 Best practices for ensuring effective identification, assessmentand mitigation of Enterprise wide risks.
Myths associated with Risk Management Addressing these myths and other associated issues Governance issues linked to risk managementRajeev Thakur, Advisor - Risk & Assurance, Cairn Energy
13.15 Networking lunch
14.15 GRC Integration with ComplianceBest practices for managing compliance and linking it to your GRCstrategy
What are the best practices for driving compliance programmes acrossyour company?
Establishing policies and processes for compliance Compliance training and awareness across your organization! What
works best? Monitoring compliance by business partners and suppliers Adapting regional or global risk and compliance models for local
conditions
Achieving connectedness between compliance, audit and riskprogrammes
Developing a principles based risk & compliance approach Proactive compliance monitoring Compliance risk managementPanel Members
Sameer Chugh, General Counsel,Essar Telecom Business Group
Amber Gupta,Head - Compliance, Legal & Secretarial,
Aditya Birla Money
B. Sai Chandravadhan, Managing Director,Sand Legal Private Limited
15.30 EXPERT VIEWGRC Quantification, Accountability, Reporting, Disclosures &Maturity Models
What are the metrics and measurement to check the success andprogress of your GRC plan
What to track? Why? and how? How do you establish and track GRC goals GRC accountability Creating collaborative accountability across business function and roles GRC Maturity ModelsPradeep Parakh, Group President (GRC) & Company Secretary,Bajaj Hindusthan Limited
16.15 Networking and refreshment break
16.45 Summit Spotlight
GRC Implementation & Integration Discovery knowledge caf
Discovery Focus
Discussion which focus on questions and issues which lie between the line,are in the back of everybody minds, but are not brought forward in publicdiscussions
GRC and Impact on Mergers and Acquisitions will it help you in thenegotiating and price valuation? Will GRC ensure a successful
amalgamation?GRC and its role in influencing your stakeholders? Does it drive up yourstock valuation? Does it help when your stock prices are being drivendown by market manipulators?How do you use GRC as an effective reputational tool building block forup scaling company valuation and stakeholders perceptionsGRC what are the common issues which will result in this being onemore buzz word and practice which is just on paper? Will GRC help in managing your organizational exposure to fraud fromexternal sources and fraudulent behaviors from internal employees?
Ideation Focus: How can departments contribute positively in a unifiedGRC Strategy?
Thoughts: How do you create harmony between business roles?
Views: Change Management
How do you managing transition from silo assurance and compliancefunctions to an integrated GRC - addressing concerns of stakeholders atvarious levels, socializing GRC and creating GRC aware culture inenterprise...
17.30 Summation and end of day two
CONFERENCE DAY TWO:, FRIDAY 29 April 2011
SUMMITSPOTLIG
HT
* awaiting fo rmal confirmation