grc summit 2011-08-09 december
TRANSCRIPT
8/12/2019 GRC Summit 2011-08-09 December
http://slidepdf.com/reader/full/grc-summit-2011-08-09-december 1/4
Why GRC Summit 2011?
Good Governance, Effective and Real-time Risk Management and adhering to
regulatory Compliances have direct impact on your organizations Reputation,Valuation and Profitability
There is a need to simplify internal processes and not make them more complex
There is an urgent and immediate need to cut complexities brought by necessity to managegovernance, risk management and regulatory compliances which are now overseen by anumber of departments including internal audit, information technology, compliance andregulatory management, enterprise risk management (ERM), operational risk and incidentmanagement amongst others.
Ground Reality is that multiple groups bear responsibility for several functions andprocesses; they operate in silos, with insufficient sharing of information and followingmultiplicity of frameworks and systems.
A number of thought leaders are now talking about the business sense to optimizeresources and these intersecting activities as a Singular Function to bring about efficiencies,reduce or eliminate repetitions of same task by multi departments, need to come beyondthe paper trail to practices in real time by formulating a common GRC Framework.
Thoughts on GRC have been discussed for some time, yet real-time and inclusiveintegration is still work in process. However the main question remains on How do developa GRC Framework and Program for your organization?
Especially since it is hard to bring all the stakeholders together in an integrated GRCframework.
Audits, Finance, Compliance, Risk and Legal have their own functioning styles and process.Business line managers and IT bring in their own perspectives, which complicate adoption.
Understanding and reconciling these disparities and conflicts is critical to success when
driving an enterprise-wide GRC program.
This inclusive two day conference bring together all stakeholders on a common discussionplatform to see, hear and determine best practices in inter-linking people, processes andtechnology for the most appropriate GRC framework and a practical adoption roadmap
that will work in today’s work environment !
08-09 2011, New Delhi
“Organisations manage their governance, risk management, legal and regulatory compliance in an unconnected manner,separated through functional lines, multi locations and sub units”
Join this interactive, comprehensive, wide ranging and new thought generating forum which discussesbest practices in Governance, Risk Management & Compliance and
process for integrating and harmonizing people and process for a workable, practicalIntegrated and Unified GRC Framework
Who Should Attend:-
CXO ,
Chief Risk Officers
Chief Legal Counsel
Chief Compliance Officer Chief Internal Audit
Chief Information Officer
Chief Information Security
Vice Presidents, General Managers,Head, Functional Managers &Consultants of:-
Finance
Corporate Governance
Treasury
Controllers
Compliance
Accounts
Enterprise Risk Management
Legal and Regulatory
Ethics
Operational Risk
Audit & Internal Controls
Information Technology
Information Security
Management Assurance
8/12/2019 GRC Summit 2011-08-09 December
http://slidepdf.com/reader/full/grc-summit-2011-08-09-december 2/4
© Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
GRC is about linking together your business processes, people and technology in an integrated manner.
Consider this:
Risks are now more diverse and interrelated The management of enterprise risk and compliance has become a critical business issue and can
provide a strategic competitive advantage. Reaction to positive risk are often delayed –opportunities missed
Departments have their individual mandates, but often work is duplicated
As companies grow, expanding presence across state and international borders, GoodGovernance is the most effective measurement criteria for current and future stakeholders
There are so many regulations, central, state, municipal and also your industry regulator – givingyou limited time and resources to comply
Even with mature risk management strategies in place, communication of the same to boardmembers or top management is not effectively done. Adequate mitigation strategies in place –organizations are not ready to adjust to new or emerging risk
Laws and regulations have become more complicated. Boards and executives are now moreaccountable
Why should you participate in GRC SUMMIT 2011?
The key SUCCESS for a GRC PROGRAM is a coordinated effort by audit, legal,risk and compliance functions and among key administrative, operational
personnel and business lines in both the implementation of the systems andthe interpretation of the data generated”
What Differentiates GRC SUMMIT 2011?
The Summit brings together ALL STAKEHOLDERS involved in implementing a successful GRCProgram in an interactive and shared learning environment to discuss real time execution paths,way around practical roadblocks, so that you start applying your learning’s immediately in your
work environment
The challenge is to bring together all the stakeholders in an integrated GRCFramework. Audits, Finance, Compliance, Risk and Legal have their own
functioning styles and process.Business line managers and IT bring in their own perspectives, which complicate
adoption.
IMAGES FROM MUMBAI GRC SUMMIT
8/12/2019 GRC Summit 2011-08-09 December
http://slidepdf.com/reader/full/grc-summit-2011-08-09-december 3/4
© Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
08.00 Registration and morning refreshment
09.30 Mainstreaming of GRC into Business Process
Keynote address by session chair
10.00 Key Note Panel:
Where & Why is GRC integration needed most?Cost saving or Effective functioning?
Perspective from Board of Directors
Governance vulnerabilities which make GRC integration a mustfor corporate in India
Evaluating GAPS in governance, risk management & complianceand ground realties which are the real needs for effectivefunctioning of Board
GRC effect on increasing transparency and business assurance
Perspective from Management (CEO and MD)
Gaps in risk management, compliance which hinderorganisational top line and bottom-line
How can GRC help in effective functioning and managing ofcompanies? Key expectations from CXO
GRC as a Business Enabler
CFO Perspective
Cost benefit analysis and value creation of GRC integration
Perspective from Business Process Facilitators(Legal, Audit, Risk Management, Compliance)
Case Examples of GRC Implementation in Indian Corporate
11.30 Refreshment and networking break
12.00 GRC International Perspective:Observations on the development of GRC in global companies
Learning’s from GRC implementation in leading companies
What are the main drivers for GRC and the cost benefit analysiswhich have lead these companies to initiate and actively pursuean integrated GRC program?
How do we leverage the current experiences to a unified GRCframework which adds value?
Technology and information management in GRC which haveenabled the transformation
12.30 Presentation of Research Report by Knowledge Partners
13.00 Expert View:Evaluating the return on your GRC Investment
The key for implementing a new process or program in organizationis to have a very clear view on advantages it offers, monetary, shortterm and long term benefits. This presentation analyses the benefitof GRC program on
Enterprise’s brand and reputation
Stakeholders and share price
Resources utilization
New business strategies Competitive differentiation
13.30 Networking Lunch
14.30 Practical Road Map for GRC ConvergenceEstablishing a practical roadmap for an integratedGovernance, Risk Management and Compliance organizationalstructures to work
The need for an integrated GRC framework is well recognized intoday’s business environment, however only a few companies havebeen able to succeed in implementing an integrated GRC strategydue tocomplexities as well as structural overlays This session willexamine and discuss the critical patterns for adapting a successfulGRC framework
Discussion Focus one:
Identifying current challenges and business benefits for aunified GRC framework?
• Is the corporate world looking at GRC as a strategic tool orMonitoring / Control concept or value creation? Why?
• What are the current challenges in organization in aligninggovernance, risk management and compliance framework?
• What are the business benefits seen?• What is the ideal GRC framework, state of future play and
business benefit for fast growing company or for a globallyexpanding corporate and why?
• Identifying common blocks?• Siloed functions and impact on your GRC strategy?
Discussion Focus Two: Change Management
How do you manage transition from silo assurance andcompliance functions to an integrated GRC - addressingconcerns of stakeholders at various levels, socializing GRC andcreating GRC culture in enterprise?
• How do you bring different mindsets of different individuals tocollaborate and work on a uniform GRC platform?
• How do you build ownership culture within the organization andamongst key stakeholders related to GRC?
• How do you increase sincerity of departmental heads in takingRisk, Audit and Compliances seriously?
• Communication plan for raising awareness level of managementand Board Of Directors about importance and benefits of GRC?What are the key buy in factors to achieve a positive outcome?
16.00 Refreshment and networking break
16.45 Practical Road Map for GRC Convergence (Continued)
Discussion Focus Three: Methodology Methodology to link process and technology for effectivelybridging together internal audit, risk management,information security, operations and compliance functions
• GRC Champion: Who should leads the initiative?• What are key steps in integrating GRC into the company culture
and work ethos?• How do you position GRC structures right in organizational
hierarchy?• Challenges and practical path for creating a sustainable structure• Identifying and bridging the GAP between department and a
unified GRC Framework?• Communication strategy in getting the right message across to all
stakeholders• How do you create harmony between business roles?• Accommodating stakeholder requirements• What is the ideal GRC framework and state of future play for fast
growth companies?• Cost of integrating of GRC with company’s present system? How
do you work on lowering cost implications on size and nature oforganization
Discussion Focus Four: Role of Technology Role of Technology as key differentiator factor for a successfulor a failed GRC Framework
• Current technology environment and available platforms whichcan be integrated in your existing infrastructure
• How is the GRC solutions and tools expanding – are they hype or
provided a practical solution to ease your governance, riskmanagement and compliance activities?• Implementation costs, investment and RoI• Key consideration before choosing your technology partner• Case Examples: Analyzing failed and successful implementation
17.30 Summation and end of day one
CONFERENCE DAY ONE: THURSDAY, 08 December 2011
8/12/2019 GRC Summit 2011-08-09 December
http://slidepdf.com/reader/full/grc-summit-2011-08-09-december 4/4
© Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
8.30 Registration and morning refreshment
9.15 Opening remarks by session chair
9.30 Instilling a culture of good corporate governance for GRCsuccess
• Changing approaches to corporate governance
• Involving senior management and drive from the top
• Ethics and corporate governance, Education and enforcement
• Integrating corporate governance with CSR• Integration with internal and external stakeholders and extending it
to third-party business partners
• Linking good governance to your GRC strategy?
• Controlling cost of Corporate Governance
0.00 Expert View: GRC Quantification, Accountability, Reporting,Disclosures & Maturity Models
• What are the metrics and measurement to check the success andprogress of your GRC plan? What to track? Why? and how?
• How do you establish and track GRC goals
• Creating collaborative accountability across business function androles
• GRC Maturity Models
0.30 GRC Tools: Evaluating Enterprise GRC Platforms
In this session 3 hand-picked GRC platform providers present for 7minutes each, their latest innovations to Interested buyers who areeager to learn about the latest solutions in the market. This sessionprovides a very unique opportunity to quickly determine whichsolutions you may want to explore in greater depth to support yourGRC framework
1.00 Networking and refreshment break
1.30 GRC Tools:Implementing continuous auditing & continuous monitoringtechniques to support your GRC Strategy
Continuous auditing (CA) and continuous monitoring (CM) methodsare ideal to address evolving, complex risk environment, meet ever-changing regulatory, business, and industry requirements and canform one of your core tools for an integrated GRC.This session will discuss key success factors required for implementingcontinuous auditing and continuous monitoring techniques inorganizations
2.00 GRC Enabler: Enterprise Risk ManagementLinking Enterprise risk management to a unified GRC strategy
Everyone in an organisation plays a role in ensuring successful ERMpractices, it is important for all functional departments which includeinformation technology, finance, audits, compliance, legal and risk.To understand larger picture for managing risk and involvement foran effective ERM program which is linked to your GRC strategy, thisinteractive session will discuss:-
How is GRC different from ERM?
How would you build a business case justifying and convincing theAudit Committee on implementing GRC as a separate componentdifferent from ERM?
If Organizations are in the process of implementing ERM, whatconsiderations should be made to ensure GRC is also mapped aspart of ERM?
Real Time Risk Alert Monitoring, Detection & Reporting
Importance of good governance and ERM strategy– directors’duties, legislation & expectations
Organisation’s risk appetite – link to stakeholders’ expectations
Committing to a risk Management programme
How do you create a common risk management communicationlanguage?
Linking your ERM to a unified GRC strategy
Case study: Case analysis on successful ERM from industry sectorsand key factors in successful implementation
3.00 Networking lunch
14.00 GRC Enabler:Information Governance and its role in a successful GRC strategy
• Developing an enterprise-wide information governance strategy.
• Identify current and target states on Information Governance MaturityModel
• Challenges and strategies in implementing roadmaps,
• Learn about technologies that accelerate movement up
• Information Management maturity curves
• What are the significant forces affecting the governance of IT incontemporary organizations?
• How are organizations governing IT in order to manage the businessimperatives of the economy?
• What is the new organizing logic for IT governance, and what are thebusiness implications?
• What are best practices for Information Governance?
15.00 GRC Enabler: Compliance Strategy
• Percolating GRC into day to day management at regulatory and legallevel – benchmarking the same at various business unit levels
• Evaluating how you can stay on top on regulatory requirements andchanges thereto with a unified GRC program
• Achieving connectedness between compliance, audit and riskprogrammes
• Risk Identification & Management - Mapping of controls and
compliance requirements to specific business processes
16.00 Networking and refreshment break
16.30 OPEN SESSION:
Discussion which focus on questions and issues which lie between the line,are in the back of everybody minds, but are not brought forward in publicdiscussions
GRC and Impact on Mergers and Acquisitions – will it help you in thenegotiating and price valuation? Will GRC ensure a successfulamalgamation?
GRC and its role in influencing your stakeholders? Does it drive up yourstock valuation? Does it help when your stock prices are being driven
down by market manipulators? How do you use GRC as an effective reputational tool building block for
up scaling company valuation and stakeholders perceptions
GRC – what are the common issues which will result in this being onemore buzz word and practice which is just on paper?
Will GRC help in managing your organizational exposure to fraud fromexternal sources and fraudulent behaviors from internal employees?
Analysis: Could the recent scams and frauds been prevented with GRCprogram in place
Ideation Focus
• How can departments contribute positively in a unified GRCStrategy?
• Identifying the GRC Champion who should lead the initiative inyour organization
17.30 Summation and end of day two
CONFERENCE DAY TWO: FRIDAY 09 December 2011
‘*’ – awaiting formal confirmation