8/7/2019 GRC Summit 2011 - 28-29 April

1/4

Why GRC Summit 2011?

ood Governance, Effective and Real-time Riskanagement and adhering to regulatoryompliances have direct impact on yourrganizations Reputation, Valuation and Profitability

here is a need to simplify internal processes and notake them more complex. Ground Reality is thatultiple groups bear responsibility for severalnctions and processes; they operate in silos, withsufficient sharing of information and followingultiplicity of frameworks and systems. Audits,nance, Compliance, Risk and Legal have their ownnctioning styles and process. Business lineanagers and IT bring in their own perspectives,hich complicate adoption.

nderstanding and reconciling these disparities andonflicts is critical to success when driving annterprise-wide GRC program.

his inclusive two day conference bring together allakeholders on a common discussion platform to

ee, hear and determine best practices in inter-nking people, processes and technology for theost appropriate GRC framework and a practical

doption roadmap that will work in todays worknvironment !

Rajesh Bagga, Vice President Legal,TATA Motors

T Vinod Kumar, Global Head Corporate Audit &Risk Management,TATA Chemicals

Sanjay Mathur, Sr.VP and Head - ManagementAudit, Reliance Communications

Ashish Padmanabhan, Director,Standard Chartered Bank

Arun O Gupta, Customer Care Associate & GroupCTO, Shoppers Stop Limited

Ravi Raman, Head Investment Analytics andOperation, Infrahedge.

Lav Chaturvedi, Chief Risk Officer,Reliance Capital

Suparna Singh, Vice President, CorporateGovernance and Business Development, Chairman'sOffice, Essar Group

B. Krishnamurthi, Practice Head (KM & BusinessConsulting),Strategy and Business Solutions

Sunil Varkey, Global Security Assessment &Remediation, Barclays Technology Centre

Anand Tatavarthi, Vice President,CURA Technologies Limited

Burgess Cooper, AVP Information Security,Vodafone Essar

Vijay Devnath, IRSEE, CISA, Chief Manager (IT),Konkan Rly. Corp. Ltd

onceptualised &Organised By

Gold Partner

Organizations Reputation, Valuation and Profitability are directly linked to Good Governance, Effective and Real-time Risk Managementand adhering to regulatory Compliance

Join this interactive, comprehensive, wide ranging and new thought generating forum which discussesbest practices in Governance, Risk Management & Compliance and

process for integrating and harmonizing people and process for a workable, practicalIntegrated and Unified GRC Framework

Official Media Partners

Silver Partners

28-29 April 2011, JW Marriott Hotel, MUMBAI

Ajay Kumar Dhir, Executive Director and Group CIOLanco Infratech Limited

Tobias Heine, Head of Internal Audit VolkswagenGroup India & CAE,Volkswagen India Private Limited

Pradeep Parakh, Group President (GRC) & CompanySecretary,Bajaj Hindusthan Limited

Adarsh Sakhuja, Head-Corporate Risk Management& Internal Controls, Larsen & Toubro Limited

Dr. Soumya Kanti Ghosh , Enterprise RiskManagement, TATA AIG Life

Abhijit Sanzgiri , Head Internal Audit,Aditya Birla Management Corporate Pvt. Ltd.

Debashis Roy, Senior Director, Head Enterprise RiskManagement, IDFC

Ranjan Banerji, Senior Vice President, Head of Risk& Compliance India,Commonwealth Bank of Australia

Rajeev Thakur, Advisor - Risk & Assurance,Cairn Energy

B. Sai Chandravadhan, Managing Director,Sand Legal Private Limited

Vinod Vasudevan, Co-founder & COO,Paladion

Anurag Jain, Head of GRC, MetricStream

Sameer Chugh, General Counsel,Essar Telecom Business Group

Amber Gupta, Head - Compliance, Legal &Secretarial, Aditya Birla Money

Conference Chair: Day One

Sunil K Kohli, IDAS, Joint Secretary and Financial Adviser,National Disaster Management Authority (NDMA) andNational Disaster response Force (NDRF),Government of India, Ministry of Home Affairs

Speakers Panel

Document Partner

For Registration and more information Contactl 91 22 3067 4205 l 91 22 3065 3262 l

Online Media Partner

Platinum Partners

8/7/2019 GRC Summit 2011 - 28-29 April

2/4

ITP Publishing India Pvt Ltd. Level 8 Span Centre, Off Linking Rd, Santacruz (W), Mum - 54. India.

Who Should Attend:- CFO Chief Risk Officers Chief Legal Counsel Chief Compliance Officer Chief Internal Audit Chief Information Officer Chief Information SecurityVice Presidents, General Managers,Head, Functional Managers& Consultants of:- Finance Corporate Governance Treasury Controllers Compliance Accounts Enterprise Risk Management Legal and Regulatory Ethics Operational Risk Audit & Internal Controls Information Technology Information Security Management Assurance

RC is about linking together your business processes, people and technology in an integrated manner.

onsider this:

Risks are now more diverse and interrelated

The management of enterprise risk and compliance has become a critical business issue and can provide a strategic competitiveadvantage. Reaction to positive risk are often delayed opportunities missed

Departments have their individual mandates, but often work is duplicated

As companies grow, expanding presence across state and international borders, Good Governance is the most effectivemeasurement criteria for current and future stakeholders

There are so many regulations, central, state, municipal and also your industry regulator giving you limited time and resourcesto comply

Even with mature risk management strategies in place, communication of the same to board members or top management isnot effectively done. Adequate mitigation strategies in place organizations are not ready to adjust to new or emerging risk

Laws and regulations have become more complicated. Boards and executives are now more accountable

Why should you participate in GRC SUMMIT 2011?

What Differentiates GRC SUMMIT 2011?

The Summit brings together ALL STAKEHOLDERS involved inplementing a successful GRC Program in an interactive and sharedlearning environment to discuss real time execution paths, way

around practical roadblocks, so that you start applying yourlearnings immediately in your work environment

old Partner:

today's fast paced global economy, with emerging threats, coupled with everore regulations, organizations find themselves in a position that necessitates thetive management of Governance, Risk, Opportunity, and Compliance. As there isbstantial overlap across these functions, a co-ordinated approach is required.timately, these challenges can be reduced to risks and opportunities that thesiness faces. It is on this idea that Cura was founded in 2002.

ra provides smarter software solutions designed to enable businesses around theorld to quickly achieve the bottom line benefits of GRC Governance, Enterprisede Risk Management and Compliance linked to performance management. Curaes this through faster implementation, easier configurability & true enterprise

chitecture.ra is used by over 200 amongst Global 1000 enterprises around the world,rtnering with Big Four consulting firms in focused areas of GRC and is recogniseda Challenger by Gartner and as a Leader by Forrester Research in GRC domain

ra has achieved impressive revenue and customer growth over the past manyars and today represents a strong team of about 200 people worldwide. Thempany has offices in USA, UK, South Africa, Australia Singapore and Hyderabad.

ntact: Anand Tatavarthi, Vice President, CURA Technologies Limited l Email:andt@curasoftware.co.in l Website: www.curatechnologies.co.in i

ibit Partner:

ure Matrix is a company 100 % dedicated to e security. It is Product, Technology,tform and Vendor Neutral. It can act as a Planner, Architect, Implementer,

egrator and Monitoring Agency for all e security requirements emanating fromting or proposed IT infrastructure cutting across geographies and networks.ure Matrix plans, implements and manages Internal controls in a computerizedironment ( LAN, WAN and TAN )

ure Matrix is a specialist IT services company in the IS space and assists enterprisesmplementing several Global Compliances and Best Practices for the e securityce.

ure Matrix has proprietary trainings for Vulnerability Assessment, Web Security,iness Continuity, Information Security and Service Delivery. The company worksy closely with Certification bodies worldwide.

ure Matrix operates globally through its subsidiaries in the UK, USA and throughng regional partners in the M/ East KSA, Oman, Qatar and UAE. In Africa Southca and Ghana. In essence, the company aims in bringing continuity andrtainty to IT operations of all its end customers.

tact: l E-mail : info@securematrix.in l Website: www.securematrix.inl :+91 22 3073 7579 l Fax :+91 22 3050 7578 l

Silver Partner: Sand Legal Services Private Limited

Sand Legal provides legislative, contractual and litigation Compliance and allied services througha blend of an in house team and a consortium of legal experts. It comprises of a core team withmore than two hundred man-years of extensive expertise and experience in Compliance servicessupported by partners in automation, legal expertise and engineering processes.

It partners with a leading US law firm based in Beverly Hills, Los Angeles in the US for itsonshore/ offshore Litigation Support services in the US. Sand Legals teams of experts haveexperience in a variety of industrial verticals including, Automobile, Copper, Cement, Oil,Pharmaceutical, IT and ITES among other industries.It provides Corporate Compliance trainingprograms to law students, legal managers and functionaries.

In association with an international institute on e-discovery, Sand Legal is shortly going to

commence a certification course for Indian Lawyers on e-discovery and electronic evidence, aprogram that prepares Indian Lawyers to be globalized service providers.

Contact:

Website: www.sandlegal.in l Phone: 044 - 42114224 l U.S. contact: +1 713 876 9243

Silver Partner : MetricStream

MetricStream is the market leader for integrated Governance, Risk, and Compliance (GRC)Management Solutions for global enterprises enabling them to deliver better businessperformance. It's customer portfolio spans across all verticals with world-leading companiesin each industry.

The MetricStream GRC Platform provides solutions for audit management, regulatorycompliance, risk management, policy management, IT GRC, supplier/vendor governance andquality management.

Silver Partner: Paladion

Paladion is the largest pure-play information security player in AsiaPAC and the fastestgrowing in Asia (as ranked in Deloitte Technology Fast 500 Asia Pacific & Technology Fast50 India - 2006, 2007, 2008 & 2009, 2010). Gartner too has included Paladion in its rating ofMarketScope for Managed Security Services in Asia Pacific 2008 & 2009 as Promisingplayer and as a Positive player in 2010.

With a global footprint across 15 countries and decade of experience in the informationsecurity domain, Paladion today is actively managing security for over 450 customers. Itprovides security assurance, compliance, governance, monitoring and management servicesto large and medium sized organizations.

Paladion also offers solutions for communication interception to law enforcement agenciesand service providers. Paladions security solutions have been awarded by Asian Banker,Red Herrings, and Financial Insights. Paladion is involved in several security research forumsand has authored books on security management.

Document Partner: Keane an NTT DATA Company

Keanes Global Governance, Risk, and Compliance (GRC) practice offers comprehensive,

integrated solutions designed for legislative and regulatory compliance in a performanceoptimized environment. Our deep, cross-industry regulatory expertise and acute productknowledge complemented with 40 years of SAP global implementation and supportexperience, enable our resources to rapidly transition organizations from narrowly-focused,rigid compliance systems to a global, continuous control management solution that adapts tothe dynamic world marketplace.

Keanes dedicated GRC vertical with an exemplary COE and R&D set up, provides solutions forAccess Controls, Process Controls, Environment Health and Safety and Global Trade Servicesimplementation, review and support.

atinum Partner: SAP

s market leader in enterprise application software, SAP India, a subsidiary ofAP AG (NYSE: SAP) helps companies of all sizes and industries run better.om back office to boardroom, warehouse to storefront, desktop to mobile

evice SAP empowers people and organizations to work together moreficiently and use business insight more effectively to stay ahead of thempetition. Started in 1996, SAP India is one of the fastest growingmpanies within SAP worldwide with 5,220 employees and over 4,600

stomers.AP offers applications and services that enable companies of all sizes and inore than 25 industries to run better. SAP has emerged as the unquestionable

artner of India Inc.

Platinum Partner: Greenlight Technologies

Greenlight Technologies is one of the leading providers of governance, risk, andcompliance (GRC) software enabling integrated or stand alone REAL TIME analysis ofa company's compatible and incompatible enterprise solutions. GreenlightTechnologies delivers the highly efficient and high speed tools to achieve sustainablecompliance for their critical business applications with reduced audit/compliance

costs."

8/7/2019 GRC Summit 2011 - 28-29 April

3/4

ITP Publishing India Pvt Ltd. Level 8 Span Centre, Off Linking Rd, Santacruz (W), Mum - 54. India.

08.30 Registration and morning refreshment

09.10 Mainstreaming GRC into the Business ProcessKeynote address by session chair

Sunil K Kohli, IDAS, Joint Secretary and Financial Adviser,National Disaster Management Authority (NDMA) andNational Disaster response Force (NDRF),Government of India, Ministry of Home Affairs

09.30 Road Map for Initiating Governance, Risk and ComplianceProgram in an Enterprise risk management and compliance

strategies What are the best practices in developing interdependence,

strong reporting and transparent communication betweenfunctions, key management, committees, and the board

Governance vulnerabilities that make GRC relevant How do you define scope and framework of GRC which is right

for your organisation?

Senior Representative, SAP

10.00 Case Study:Best practices in compliance and risk management

What are the best practices in compliance training and creatingawareness across your organization

Practical risk and compliance models for local and cross borderconditions

Linking your compliance, audit and risk programmesRajesh Bagga, Vice President Legal, TATA Motors

10.30 GRC Strategy:Key steps for uniting risk management across the business

What should be your main motivation for unifying riskmanagement across business units and departments?

Learnings from failed ERM strategies evaluating the paperfailures instead of helping in the business decision process?

Gaining board buy-in in a meaningful way Defining risk without aided technology driven solutions Quantifying culture in your risk management programmes Managing risk for subsidiaries and new business unitsAjay Kumar Dhir, Executive Director and Group CIOLanco Infratech Limited

11.00 Refreshment and networking break

11.30 GRC International Perspectiv: Observations on thedevelopment of GRC in global companies

Learnings from GRC implementation in leading companies What are the main drivers for GRC and the cost benefit analysis? How do we leverage the current experience to a unified GRC

framework which adds value?

Technology and information management in GRCRavi Raman, Head Investment Analytics and Operation,Infrahedge.

12.00 GRC Convergence: Establishing practical Governance, RiskManagement and Compliance organizational structures thatwork

Challenges for a unified GRC framework? Common blocks? Siloed risk function and impact on your GRC strategy State of future play in GRC for fast growth companies GRC key trends in international markets Accommodating stakeholder requirements and harmonizing

function for a unified GRC framework

Panel Moderated by:

Ashish Padmanabhan, Director,Standard Chartered Bank

Panel Members:

Lav Chaturvedi, Chief Risk Officer,Reliance Capital

Sunil Varkey, Global Security Assessment & Remediation,Barclays Technology Centre

Suparna Singh,Vice President, Corporate Governance andBusiness Development, Chairman's Office,Essar Group

13.00 Networking lunch

14.00 Case Study: Elements of a good Corporate Governancestructure towards building a sustainable future

Moving from a siloed structure to a well-integrated framework Criticality of positioning the GRC structure right in the

organizational hierarchy

Challenges in creating a sustainable structure Importance of good communication in getting the right message

across to all stakeholders

T Vinod Kumar, Global Head Corporate Audit & Risk

Management, TATA Chemicals

14.30 GRC Integration with Governance: Instilling a culture of goodcorporate governance for GRC success

Changing approaches to corporate governance Involving senior management and drive from the top Ethics and corporate governance, Education and enforcement Integrating corporate governance with CSR Integration with internal and external stakeholders and extending

it to third-party business partners

Linking good governance to your GRC strategy?Panel Moderated byB. Krishnamurthi, Practice Head (KM & Business Consulting)Strategy and Business Solutions

Panel Members:

Sanjay Mathur,Sr. VP and Head - Management AuditReliance Communications

Ranjan Banerji, Senior Vice President, Head of Risk & Compliance India, Commonwealth Bank of Australia

Ravi Raman, Head Investment Analytics and Operation,Infrahedge.

15.30 Expert View: Evaluating the return on your GRC InvestmentThe key for implementing a new process or program in organizationis to have a very clear view on advantages it offers, monetary, shortterm and long term benefits. This presentation analyses the benefitof GRC program on

Enterprises brand and reputation Stakeholders and share price Resources utilization New business strategies Competitive differentiationAnand Tatavarthi, Vice President, CURA Technologies Limited

16.00 Evaluating Enterprise GRC Platforms: Evaluation One

16.10 Refreshment and networking break

16.30 GRC Enabler: Information Governance and its role in asuccessful GRC strategy

Developing an enterprise-wide information governance strategy.

Target states on Information Governance Maturity Model Information Management maturity curves Significant forces affecting the governance of IT How are organizations governing IT in order to manage the

business imperatives of the economy?

What is the new organizing logic for IT governance What are best practices for Information Governance?Panel Moderator

Burgess Cooper, AVP Information Security,Vodafone Essar

Panel Members:Ajay Kumar Dhir, Executive Director and Group CIOLanco Infratech Limited

Arun O Gupta,

Customer Care Associate & Group CTOShoppers Stop Limited

Vijay Devnath, IRSEE, CISA, Chief Manager (IT),Konkan Rly. Corp. Ltd

17.30 Summation and end of day one

CONFERENCE DAY ONE: HURSDAY, 28 April 2011

8/7/2019 GRC Summit 2011 - 28-29 April

4/4

ITP Publishing India Pvt Ltd. Level 8 Span Centre, Off Linking Rd, Santacruz (W), Mum - 54. India.

08.30 Registration and morning refreshment

09.15 Opening remarks by session chair

09.30 GRC Integration with Enterprise Risk ManagementPanel Discussion: Developing integrated strategy for Enterpriserisk management and linking it to a unified GRC strategy

Lessons from early adaptors of ERM frameworks Importance of good governance and ERM strategy directors

duties, legislation & expectations

Organisations risk appetite link to stakeholders expectations Committing to a risk Management programme Understand the modern ERM process: linking units and functional

departments

How do you create a common RM communication language? Linking your ERM to a unified GRC strategy Case study: Case analysis on successful ERM from industry sectors

and key factors in successful implementation

Panel Moderator:Sunil Varkey, Global Security Assessment & Remediation,Barclays Technology Centre

Panel Members

Adarsh Sakhuja, Head-Corporate Risk Management & InternalControls, Larsen & Toubro Limited

Dr. Soumya Kanti Ghosh , Enterprise Risk Management,TATA AIG Life

Debashis Roy, Senior Director, Head Enterprise Risk ManagementIDFC

Abhijit Sanzgiri , Head Internal Audit,Aditya Birla Management Corporate Pvt ltd

10.30 Guidelines on Evaluating GRC Solution

Anurag Jain, Head of GRC, MetricStream

11.00 Networking and refreshment break

11.15 GRC Strategy Tools: Implementing continuous auditing &

continuous monitoring techniques to support your GRCStrategy

Tobias Heine, Head of Internal Audit Volkswagen Group India & CAEVolkswagen India Private Limited

11.45 How to fast track an IT GRC initiative?This session will look at mechanisms to quickly establish a meaningfulIT GRC program.

Key drivers for IT GRC IT Governance scope & areas Role of risk & compliance management Leveraging available standards & processes Establishing IT Governance roles & relationships Performance Metrics & Measurement Automation using the right technologiesVinod Vasudevan, Co-founder & COO, Paladion

12.15 Five effective steps for fortifying your Legislative ComplianceManagement as part of Governance and risk Management.

Orientation and training in implementation of compliancesLegislative contentAuditsAutomated SystemsManaging Compliance.B. Sai Chandravadhan, Managing Director,Sand Legal Private Limited

12.45 Best practices for ensuring effective identification, assessmentand mitigation of Enterprise wide risks.

Myths associated with Risk Management Addressing these myths and other associated issues Governance issues linked to risk managementRajeev Thakur, Advisor - Risk & Assurance, Cairn Energy

13.15 Networking lunch

14.15 GRC Integration with ComplianceBest practices for managing compliance and linking it to your GRCstrategy

What are the best practices for driving compliance programmes acrossyour company?

Establishing policies and processes for compliance Compliance training and awareness across your organization! What

works best? Monitoring compliance by business partners and suppliers Adapting regional or global risk and compliance models for local

conditions

Achieving connectedness between compliance, audit and riskprogrammes

Developing a principles based risk & compliance approach Proactive compliance monitoring Compliance risk managementPanel Members

Sameer Chugh, General Counsel,Essar Telecom Business Group

Amber Gupta,Head - Compliance, Legal & Secretarial,

Aditya Birla Money

B. Sai Chandravadhan, Managing Director,Sand Legal Private Limited

15.30 EXPERT VIEWGRC Quantification, Accountability, Reporting, Disclosures &Maturity Models

What are the metrics and measurement to check the success andprogress of your GRC plan

What to track? Why? and how? How do you establish and track GRC goals GRC accountability Creating collaborative accountability across business function and roles GRC Maturity ModelsPradeep Parakh, Group President (GRC) & Company Secretary,Bajaj Hindusthan Limited

16.15 Networking and refreshment break

16.45 Summit Spotlight

GRC Implementation & Integration Discovery knowledge caf

Discovery Focus

Discussion which focus on questions and issues which lie between the line,are in the back of everybody minds, but are not brought forward in publicdiscussions

GRC and Impact on Mergers and Acquisitions will it help you in thenegotiating and price valuation? Will GRC ensure a successful

amalgamation?GRC and its role in influencing your stakeholders? Does it drive up yourstock valuation? Does it help when your stock prices are being drivendown by market manipulators?How do you use GRC as an effective reputational tool building block forup scaling company valuation and stakeholders perceptionsGRC what are the common issues which will result in this being onemore buzz word and practice which is just on paper? Will GRC help in managing your organizational exposure to fraud fromexternal sources and fraudulent behaviors from internal employees?

Ideation Focus: How can departments contribute positively in a unifiedGRC Strategy?

Thoughts: How do you create harmony between business roles?

Views: Change Management

How do you managing transition from silo assurance and compliancefunctions to an integrated GRC - addressing concerns of stakeholders atvarious levels, socializing GRC and creating GRC aware culture inenterprise...

17.30 Summation and end of day two

CONFERENCE DAY TWO:, FRIDAY 29 April 2011

SUMMITSPOTLIG

HT

* awaiting fo rmal confirmation