Operational Risk Management USA 2018

4th Annual Operational Risk Management | Agenda

Day One | October 4, 2018 | New York City

08:00 Registration and breakfast

08:50 Chair’s Opening Remarks

KEYNOTE PANEL DISCUSSION
09:00 Reviewing the industry trend to converge operational risk and compliance teams

Aligning and converging expertise
Reducing head count to drive efficiency
Losses from legal and compliance outweighing operational risk
Creating a more empowered and efficient function
Compliance dovetailing into Board level operational risk committees
Grey areas between operational risk and compliance responsibilities and coverage
Reactive vs. proactive approach across lines

Andrew Weg, Americas Head of Compliance and Operational Risk Framework, UBS
Brian Goldman, Head of Enterprise Risk Management, Goldman Sachs
James Wistman, Head of Branch Risk & Compliance/MRLO, Santander, Abbey National Treasury Services, US Branch

KEYNOTE ADDRESS
09:50 Risk Convergence – Building a sustainable multidiscipline risk program

Using ERM to bridge risk silos
Sharing data and processes to gain efficiency
Building a common view of risk

Scott Gyllensten, Chief Operational Risk Officer, People’s United Bank

10:30 Morning refreshment break and networking

STREAM ONE:
Operational Risk Frameworks

Moderated by:
Tim Carbery, Managing Partner, CastleHill

STREAM TWO:
Operational Risk Subtypes

DRIVING EFFICIENCY AND VALUE
11:00 Demonstrating the value of operational risk departments with limited direct calculations

• Reviewing loss trends and declines in unexpected losses
• Demonstrating value for time and labour expenses
• Drawing correlations from decreased losses and operational risk efforts
• Limited quantitative calculations

Ryan Williams, Director, Operational Risk Programs: Incident Loss Reporting, Product & Services Risk & Subsidiary Governance, TIAA

11:00 New and expanded or modified existing products and services

• Products and services risk assessment process
• Governance & oversight
• Impact and risk considerations
• Due diligence process
• Roles and responsibilities
• Post implementation reviews

Glenn H. Hursh, Managing Director, KPMG

PANEL DISCUSSION
11:40 Increasing stature of operational risk within the institution and limiting execution risk of changing departments

• Escalating to same level as other disciplines
• Increasing visibility in the institution
• Cost cutting and downsizing increasing operational risk
• Change management/fatigue
• Doing more with fewer resources
• Internal controls and handoffs

Paul Clarke, SVP, Operational Risk Management, TD Bank
Lyndsay Byun, Division Risk Officer, MUFG
Michael Nardo, Managing Director – Enterprise and Operational Risk Management, GE Capital
Benoit Saint-Jevin, Director, Head of Global Markets Americas OPC & TAC Coordination, BNP Paribas

PANEL DISCUSSION
11:40 Ensuring effective and up to date controls are in place for monitoring and mitigating insider risk and limiting insider fraud

• Balancing attention with external fraud
• Supervision of tech employees at higher risk
• Ensuring test environment is separate to live environment
• Increase in algorithmic trading
• Implementation of analytical tools to monitor inside behavior
• Mitigating threat of data leakage

Sabeena Liconte, Chief Legal Officer & Chief Compliance Officer, Bank of China International
James Wistman, Head of Branch Risk & Compliance/MRLO, Santander, Abbey National Treasury Services, US Branch
Gustavo Ortega, Head of Technology, Innovation and Operations Risk Management, Voya Financial

12:30 Lunch break and luncheon roundtables

1:30 Aligning the roles of the three lines of defense and implementing in practice

• First line ownership and second line training
• Training to assist first line
• Identifying issues and creating sustainable mitigation plans
• Determining what right looks like

Rick Taiano, Chief Operating Officer, National Australia Bank

1:30 Vendor risk management

• Cybersecurity breaches exploiting weaknesses in vendors and suppliers
• Evolving landscape regarding vendor risk management
• Practices organisations are adopting to meet more stringent demands
• Criticality of continuous monitoring of vendor security performance
• How firms are transforming the way they interact with vendors and suppliers

Stephen Boyer, CTO and Co-Founder, BitSight
Peter Pernebo, Executive Director, KY3P by IHS Markit

SECOND LINE OF DEFENSE
2:10 Exploring effective challenge from the second line
Jeff Hause, Director, Operational Risk Management, Capital One

2:10 From GDPR to California Privacy: Managing vendor risk

• Managing vendor risk under GDPR, California CCPA and other global regulations
• Improving privacy and security programs to streamline 3rd and 4th party vendor risk
• Implementing successful vendor risk processes
• Expediting vendor onboarding
• Automating vendor risk management within a software technology platform

Stephanie Hanson, Privacy Engineer, OneTrust

PANEL DISCUSSION – LINES OF DEFENSE
2:50 Creating common risk taxonomy across lines of defense

• Aligning assessments
• Pressures on business to align with multiple taxonomies
• Aligning frameworks for same risk analysis
• Defining risk at various levels and event types
• Universal language, definitions and taxonomies

Hafsteinn Gislason, VP, Risk Management, CIT
Andrew Weg, Americas Head of Compliance and Operational Risk Framework, UBS
Dominique Benz, Director, Operational Risk Management, Mizuho
Paul Tuller, Business Operations Executive, JP Morgan

PANEL DISCUSSION – VENDOR & THIRD PARTY RISK
2:50 Reviewing risks associated with vendor and third parties across the lifecycle

• Contracting and monitoring
• Collecting good data
• Developing monitoring systems for KRIs
• Monitoring 4th and 5th parties beyond service level agreements
• Contract compliance
• Increased complexity of supply chains and technology
• Due diligence and reporting across the lifecycle

John Rachek, Director, Operational Risk Asset Management, Credit Suisse
Alex Hammam-Howe, Director, Head of Third Party Risk Management, Commerzbank
Michael Gallerani, Director, Third Party Risk Management, GE Capital

3:40 Afternoon refreshment break and networking

4:10 Moving the first and a half line of defense focus to Risk Identification (and back into the business)

• Where do the the first line and second line interact today
• The value of changing the role from “Jack of all trades” to “Master of one”
• How do your risk management systems need to change
• A forward looking representation of the risk identification process tailored to first line of defense

Tim Carbery, Managing Partner, CastleHill

4:10 Incorporating a centralized function to form a holistic approach to vendor & third party risk management

• Allocating risk oversight
• Leveraging SMEs and SMPs to provide support to business
• Developing a process to assess risks
• Applying appropriate supervision
• Complying with global regulations
• Strengthening programs and advancing maturity
• Agreeing governance model at Board level
• Capturing all third parties in a single inventory

John Rachek, Director, Operational Risk Asset Management, Credit Suisse

RCSA
4:50 RCSA: Developing traditional RCSAs to increase benefit and efficiency
Thomas Tobin, Director, Operational Risk, Mizuho

LEVERAGING ORM
4:50 Leveraging operational risk management practices to further improve vendor and third party risk management

• Experience
• Tools to leverage
• What is transferable between teams?

Kimberly Fix, Director, Third Party Risk Management, Operational Risk Management Shared Service Centers, AIG

5:30 Chair’s closing remarks

5:40 End of day one and drinks reception

4th Annual Operational Risk Management

Day Two | October 5, 2018 | New York City

08:10 Registration

08:50 Chair’s Opening Remarks

KEYNOTE ADDRESS
09:00 Use of AI and Machine Learning in operational risk to support and capture risk and further enhance efficiency

AI and machine learning for human capital intensive exercises
o Continuous monitoring of control environment
Preventative controls through machine learning and AI
Protections in place
Streamlining operations
Collecting, analysing and using data to improve operational risk program

PANEL DISCUSSION
09:40 Effective management and reporting of operational risk and subtypes for a holistic overview

Creating working groups to consolidate at operational risk committee
Effective reporting of subtypes
Granular detail on exposures
Defining subtypes and allocating risk oversight responsibilities
Escalating to operational risk subtype level
Delineating and quantifying operational risk subtypes
Qualifying and reporting risk profile for point in time risk assessment

Paul Clarke, SVP, Operational Risk Management, TD Bank
Jeff Hause, Vice President, Operational Risk Management Division, Capital One
Joe Beal, Head of Business Risk Management, Wells Fargo Commercial Capital, Wells Fargo Equipment Finance, Wells Fargo

10:30 Morning refreshment break and networking

STREAM ONE:
Operational Risk Frameworks

Moderated by:
Ellen Schubert, CEO, KY3P by IHS Markit, IHS Markit

STREAM TWO:
Operational Risk Subtypes

Moderated by:
Glenn H. Hursh, Managing Director, KPMG

CUSTOMER FOCUS
11:00 Skewing operational risk framework towards customer centricity

• Role of the customer within the framework
• Convergence of operational risk sub-types toward customers
• Redefining policy requirement and regulatory requirement
• Validating operational risk programs and customer’s role
• Protecting brand & reputation; and any unseen surprises

Vasanth Murugan, Director, Operational Excellence, American Express

DOUBLE SESSION – ENTERPRISE RISK MANAGEMENT
11:00 Enterprise Risk Management – Helping management to achieve oversight across the institution

• Adding visibility and transparency to the enterprise risk governance framework implementation
• Collecting and aggregating Risk Management data effectively
• Top-down communication of organization’s obligations
• Extracting the critical information quickly

Sasu Sihvonen, Head of Business Risk, Nordea

11:40 Understanding the importance of driving good conduct and adherence to company culture to promote behaviors

• Monitoring how companies and individuals operate
• Adhering to values and code of conduct
• Analytics and patterns
  • Identifying anomalies in operating metrics and data
• Ownership of conduct
• Behaving ethically in company environment
• Impact on reputation
• Risk ownership within lines of defense

Jacob D. Rosengarten, former CERO, Current Risk Advisor to CFO, XL Group Ltd

DOUBLE SESSION CONTINUED – ENTERPRISE RISK MANAGEMENT
11:40 Enterprise Risk Management – Helping management to achieve oversight across the institution

• What issues Governor is seeing from meeting with banks across the EMEA and US
• The Governor Approach
• Oversight via visual mapping of obligations
• On going tracking organization’s obligations

Richard Pike, CEO, Governor

12:20 Lunch break and networking

PANEL DISCUSSION
1:20 Stress test forecasting for operational risk: Managing evolving expectations and using as a value added tool

• Increased usage of scenarios under SR15-18
• 2018 review and outlook
• Changes to approach with new Federal Reserve leadership
• Evolving expectations across the industry
• Managing losses based on internal loss taxonomy
• Demonstrating credible challenge

Michael Rachlin, Director, BNY Mellon
Jack Sprague, SVP, Operational Risk, HSBC
Craig Spielmann, former Global Head of Enterprise Risk Management Strategy, First Data

PANEL DISCUSSION
1:20 Utilizing FinTech infrastructure to drive process automation and support increase in digital banking structure

• Using technology enabled software products
• Making operations more efficient and less error prone
• Successfully using and deploying technology
• Capturing data
• Providing service when not facing customers
• Operational risks of increase in digital banking
• Identifying risk exposure

Lyndsay Byun, Division Risk Officer, MUFG
Alex Beigelman, former Head of Technology & Cyber Security Risk, JP Morgan
Vasanth Murugan, Director, Operational Excellence, American Express
Monica Muprhy, Head of Operational Risk Management – Latin America, Deutsche Bank

MODEL RISK
2:10 Establishing a clear inventory of operational risk models for effective validation and controls

• Inventory of existing models
• Defining a model
• Inhouse vs. third party inventory
• Risk assessing inventory under risk reporting methodology
• Rating risk and models and impact to risk, financials and customers
• Validating models
  • Input through models
• Taking action to identify, mitigate, manage and report

Saqib Jamshed, Director – Quantitative Risk Analytics, State Street Corporation

2:10 Integrating data across several operational risk processes and programs to drive a more holistic view of emerging risks and the operational risk profile

• Tools to look at operational risk information
• Understanding operational risk profiles from existing data
• Using risk information to challenge the first line of defense
• Looking forward to the future of risk information

Jeff Capelli, Operational Risk Officer, Director Operational Risk Management, Capital One

RISK IDENTIFICATION
2:50 Developing and leveraging risk identification for increased management and mitigation of risks

• Using risks identified at an enterprise level
• Managing risks
• Identification before mitigation
• Using the information identified for other programs

Hafsteinn Gislason, VP, Risk Management, CIT

2:50 The evolving nature of the risks posed by the global technology ecosystem

• Technology has been viewed as an efficiency enhancer rather than a core part of the business
• Technology capabilities are now at the heart of most firms’ business
• Cyber risks have been constrained to the virtual world – data was stolen, electronic services were degraded
• Cyber-attacks have now crossed into the physical world – power grids and hospitals have shut down, industrial equipment has been destroyed, cash has been carried away
• The risks posed by the technology ecosystem are no longer a backwater “IT problem” best left to the Technology staffr
• The old approach to managing these risks is no longer sufficient – a new approach is needed

Alex Beigelman, former Head of Technology & Cyber Security Risk, JP Morgan

3:30 Afternoon refreshment break and networking

CLOSING PANEL DISCUSSION
4:00 Future of operational risk management – leveraging technology and innovation to drive efficiency across operational risk and subtypes

Technology innovations
Inclusion of a more unified operational risk department
Alignment with compliance
Future of models and quantitative disciplines
Budgetary limitations and head count

Ryan Williams, Director, Operational Risk Programs: Incident Loss Reporting, Product & Services Risk & Subsidiary Governance, TIAA
Paul Tuller, Business Operations Executive, JP Morgan
Nicolette Martin, Head of Compliance, Operations & Technology, Citi
Joe Beal, Head of Business Risk Management, Wells Fargo Commercial Capital, Wells Fargo Equipment Finance, Wells Fargo

5:00 Chair’s closing remarks

5:10 End of Congress

Joe Beal, Head of Business Risk Management, Wells Fargo Commercial Capital, Wells Fargo Equipment Finance, Wells Fargo

Mr. Beal is a Senior Vice President and head of Wells Fargo Equipment Finance Business Risk Management. He is responsible for leading a team of professionals managing compliance, operational risk and associated controls.

Prior to joining Wells Fargo & Co. Mr. Beal was a Managing Director, Operational Risk, at GE Capital where he developed the company’s first Operational Risk Scenario Analysis program, and managed the company’s Internal Loss/External Loss Data programs.

Before entering the private sector, Mr. Beal completed a successful active duty career in the U.S. Air Force responsible for compliance and operational risk aligned functions.

Alex Beigelman, former Head of Technology & Cyber Security Risk, JP Morgan

Over his 30+ year career, Alex has had extensive experience in risk management, security and technology. His leadership roles include CIO, CISO, and Chief Technology Risk Officer.

Alex has created and led two startups, including a marine navigation firm and his current company, Beigelman Risk Advisors.

Alex’s most recent role was creating and leading the Technology and Cybersecurity Risk organization for JPMorgan Chase. Previously he led Information Security for UBS Wealth Management Americas.

Alex is a graduate of Polytechnic University in Brooklyn, New York with a Masters Degree in Computer Science.

Dominique Benz, Director, Operational Risk Management, Mizuho Americas LLC

Dominique has over 20 years of financial services industry experience and deep expertise in Operational Risk, Technology, and Process Transformation. Dominique is a Director at Mizuho Bank in the Americas Risk Department providing 2nd line of defense services to all business lines across Mizuho’s U.S. operations. He is responsible for building out and overseeing the Operational Risk Management framework for a number of key risk domains including Third Party, Business Continuity, and Data Management. Dominique has worked in similar capacities for some of the world’s leading global banks including Goldman Sachs, Morgan Stanley, Deutsche Bank and Citigroup. Dominique holds an MBA and a BS in Industrial Engineering from Rutgers University in New Jersey.

Stephen Boyer, CTO and Co-Founder, BitSight

Stephen Boyer will be presenting at the forthcoming 4th Annual Operational Risk Management Congress.

Lyndsay Byun, Division Risk Officer, MUFG

Lyndsay Byun will be presenting at the forthcoming 4th Annual Operational Risk Management Congress.

Jeff Capelli, Operational Risk Officer, Director Operational Risk Management, Capital One

Jeff Capelli is a Director in Operational Risk Management (ORM), and serves as the Operational Risk Officer (ORO) for Commercial Banking, Retail and Direct Bank, and Risk Management. As an ORO he is responsible for conducting independent second line oversight, challenge and escalation related to the first line’s risk decision-making activities. The ORO also provides operational risk advice and counsel, and conducts independent reporting and assessments of the state of the first line’s operational risk management profile. Mr. Capelli is also responsible for Operational Risk Control Program Governance to provide oversight and structure for managing risk across all Control Programs.

Tim Carbery, Managing Partner, CastleHill

Tim Carbery is a Managing Partner at CastleHill Managed Risk Solutions. CastleHIll offers advisory, implementation, and managed services for Regulatory Change Management, Enterprise Risk Management, Third Party, Compliance and other Operational Risk Management disciplines across industries. He leads CastleHill’s strategic advisory and implementation services for inhouse and managed GRC solutions that allow first and second line teams to utilize common information to fulfill their functions. Throughout his career, he has helped top tier financial services clients overcome internal inertia and challenges to remediate high pressure regulatory directives with strategic, sustainable solutions. He also leads CastleHill’s Interact data framework team that provides bi-directional risk data integration between GRC tools like RSA Archer and enterprise systems.

Paul Clarke, SVP, US Operational Risk Management, TD Bank

Paul Clarke has been with TD Bank since 1993 in various roles in Risk Management, Technology and TD Wealth.

Paul is currently responsible for the Operational Risk oversight and independent challenge of the TD Bank US Corporate & Shared Services portfolio, including Cyber/Tech, Fraud, Third-party, Corporate, Payments, and Shared Services. As a strategic business partner, Paul also participates and supports their strategy development and implementation efforts with an independent view to ensure these functions operate within Risk Appetite.

Prior to his current appointment, Paul held roles as VP/Head of Operational Risk Management for North American Direct Channels & Payments & Fraud, as Head/VP of ORM for TD Wealth Management, and as Associate Vice President, Technology Risk Management & Information Security supporting TD Wealth, TD Bank US, and TD Securities, successively. Paul has also held technology platform ownership roles and business leadership roles in TD Wealth.

Paul graduated from the University of Toronto with an Honors Bachelor of Arts in Economics & Industrial Relations.

Kimberly Fix, Director, Third Party Risk Management, Operational Risk Management Shared Service Centers, AIG

Kimberly Fix is the Head of AIG Operational Risk Management including Business Continuity governance as well as the enterprise program director for Third Party Risk Management. Kimberly joined AIG’s Enterprise Risk Management team in 2012 in preparation for SIFI designation, leading initiatives to enhance risk management focus across global corporate control functions. She was also responsible for implementing the risk management program in the shared service centers for claims and operations globally.

Prior to joining AIG, Kimberly spent 21 years at Citigroup, where she was responsible for numerous enterprise-wide product, system and process implementations, including the launch of web-based bank account management products, electronic on-boarding for corporates and the creation of an Information Technology information security program & organization.

Kimberly has held certifications from Carnegie Mellon University’s Software Engineering Institute in the reengineering methodology for software process improvement and attended New York University.

Michael Gallerani, Director, Third Party Risk Management, GE Capital

Michael Gallerani currently leads the Third-Party Risk Management function for GE Capital. In this role, he is responsible for providing third-party risk management across the entire enterprise, including the operating framework, guidelines, governance, assessments and due diligence. He works in collaboration with sourcing, compliance, IT, cybersecurity, legal and all business units to assess and manage the risks introduced by engaging with third parties over the full lifecycle of the engagement. Michael has held numerous roles in sourcing, operations management, engineering and program management in both financial services and the industrials and brings deep knowledge of the challenges that face our third-party relationships. Michael has a BS Mechanical Engineering from Worcester Polytechnic Institute.

Hafsteinn Gislason, VP, Risk Management, CIT

Hafsteinn (Haffi) is an Operational Risk professional that started his career in risk in the turmoil surrounding the fallen banks in Iceland in 2008. He then moved to New York in 2013 continuing his profession at CIT as VP in Operational Risk.

A self-described romantic when it comes to Operational Risk and its potential in the world of finance and a firm believer that Operational Risk can be instrumental in bridging qualitative risk functions to improve overall risk management. He has decade of experience in both implementing and managing Operational Risk framework elements and capital calculations.

He has obtained a Bachelor degree in Industrial Engineering from Reykjavik University and a Master’s degree in International Economics and Finance from the Newcastle University Business School in England. Certified GARP FRM and is a licensed securities broker in Iceland.

Brian Goldman, Head of Enterprise Risk Management, Goldman Sachs

Brian is head of Enterprise Risk Management. He serves as a member of the Firmwide Operational Risk Committee and Sovereign Risk Committee.

Previously, Brian was chief risk officer of Operations, and prior to that, he was head of Goldman Sachs Bank Operations. Earlier in his career, he managed Securities Operations and Foreign Exchange Operations for Japan and Korea and held roles in Derivatives Operations in New York. Brian joined Goldman Sachs in 1997 as an analyst and was named managing director in 2009.

Scott Gyllensten, Chief Operational Risk Officer, Peoples United Bank

Scott is the Chief Operational Risk Officer at People’s United Bank N.A.; a northeast based regional financial services company with over $40 billion in assets, offering commercial, retail, insurance, and wealth management services.

Scott is a licensed attorney, who holds a Bachelor’s Degree, Graduate Certificate in Tax, and Juris Doctorate from the University of Connecticut.

In his role, Scott is responsible for Operational Risk, Privacy, and Model Validation at People’s United Bank.

Scott has over fifteen years’ experience in Risk Management and has developed and implemented Operational and Enterprise Risk programs for domestic and international investment banking, capital markets, commercial banking, retail banking, and alternative assets organizations.

Alex Hammam-Howe, Director – Head of Third Party Risk Management, Commerzbank

Alex is the Head of Third Party Risk Management North America for Commerzbank AG and has built all aspects of its Third Party Risk Management program from the ground up. Alex has leveraged his experiences as a Management Consultant for PwC, Grant Thornton and Booz Allen Hamilton, having developed and implemented Global Third Party Risk Management Programs for various top tier banks, and consolidating all best practices learned to build a robust program for Commerzbank.

Gina Handy, Director – Operational Risk Management, Prudential Financial

Gina Handy is an Operational Risk Manager within PGIM Global Partners, whose joint venture businesses operate full service asset management companies in Italy, China, Taiwan and India. Gina is responsible for executing on the enterprise-wide operational risk management framework including risk and control self assessments and key risk indicators. In addition, she collects and analyses relevant risk information from the joint venture businesses to gain further insight into their control environment where she has been working to implement elements of an operational risk management framework.

Gina is the committee Secretary for PGIM Global Partners’ Risk Management Committee, is a member of PGIM SITE’s (Taiwan) Risk Management Committee and is the Board Supervisor for PGIM SITE’s (Taiwan) Board of Directors.

Gina joined Prudential in 1991 working in operations before becoming a Series 7 registered representative helping to grow sales of mutual funds for Prudential. In 1999, Gina moved to the business unit currently known as PGIM Global Partners where her original focus was on marketing and client servicing for their Luxembourg domiciled funds before moving into her current role in Operational Risk Management.

Gina holds a Bachelor of Science degree in General Business.

Stephanie Hanson, Privacy Engineer, OneTrust

Stephanie Hanson is a Privacy Engineer with OneTrust – the global leader in privacy management and marketing compliance software.  In this role, Hanson advises many of the world’s leading organizations on General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and ePrivacy (Cookie Law) solution implementations with extensive experience building and scaling enterprise-level privacy programs. Prior to OneTrust, she developed a payment processing platform for hospitals and drove mobile device management retail implementations for many of the world’s Fortune 500 companies. Hanson is a Certified Information Privacy Professional (CIPP/E and CIPM) and holds a B.S. in Computer Science from the Georgia Institute of Technology.

Jeff Hause, Vice President, Operational Risk Management Division, Capital One

Jeff Hause is the Vice President, Operational Risk Management, where he leads the team responsible for the Oversight and Challenge to operational risk taking, including Board Reporting teams and governance for enterprise level control programs. He also leads the Enterprise Payments Risk Management team to provide second line oversight of this function.

Prior to his current role, Mr. Hause has implemented and led several of our Operational Risk practices including functions responsible for all aspects of Basel II AMA practices, Capital Modeling and Executive Reporting. Since joining Capital One in 1999, he has filled multiple other audit, operational risk management, product risk, and compliance roles.

Before joining Capital One, Mr. Hause held a variety of audit and financial analysis roles at Wachovia Bank and Transamerica Reinsurance. He was a frequent speaker and published author on the topics of operational risk management.

Mr. Hause holds a Bachelor’s of Business Administration from the University of Georgia and a Master’s in Business Administration from William and Mary. He is a former Certified Public Accountant (inactive) and during his career, has earned the International Certification in Banking Risk and Regulation and graduated from the Wharton Advanced Risk Management Program.

Glenn H. Hursh, Managing Director, KPMG

Glenn is a Managing Director in KPMG’s Operations and Compliance Risk, Enterprise Risk Governance practice with more than 25 years of advisory and business experience in the financial services industry, including 10 years in industry serving in various management and senior management positions in internal audit and regulatory compliance. Glenn also has over 15 years of experience providing enterprise risk management assessment, internal audit outsourcing and risk consulting services to several regional and super-regional financial institutions.

Saqib Jamshed, Director – Quantitative Risk Analytics, State Street Corporation

Saqib Jamshed has over 20 years of experience at various Wall St. firms including Goldman Sachs, Royal Bank of Scotland and Morgan Stanley. He has served in programming, trading and risk management capacities at these firms and is currently embedded in the model risk group at State Street Corporation. He has an extensive background in Risk Analytics and is involved in initiatives related to automation and streamlining of regulatory and compliance activities.

Sabeena Liconte, Chief Legal Officer & Chief Compliance Officer, Bank of China (BOC) International (USA) Holdings Inc.

Sabeena serves as Chief Legal Officer and Chief Compliance Officer to the investment banking division of Bank of China International – BOC International (USA) Holdings Inc. and its two subsidiaries, BOCI Commodities & Futures (USA) LLC, a registered futures commission merchant and CME Group Inc. clearing member, and BOC International (USA) Inc., a registered broker-dealer and member of FINRA (collectively, “BOCI”). Prior to joining BOCI, Sabeena served as a Futures & Derivatives Counsel and Compliance Advisor to E*TRADE Financial Corp., including E*TRADE Clearing Corp. and E*TRADE Securities Corp.; and General Counsel and Chief Compliance Officer to Alpari (US), LLC, a CFTC-registered futures commission merchant and retail foreign exchange dealer and member of the NFA, and its affiliate broker-dealer, Alpari Securities LLC. Her previous professional work includes the Office of General Counsel at Merrill Lynch Pierce Fenner & Smith Incorporated, the Division of Enforcement at the Financial Industry Regulatory Authority, the Bank of New York Mellon’s Legal Division and the Securities Fraud Prosecution division of the Attorney General’s Office for the State of New Jersey.

Sabeena is an active member of the American Bar Association, the New York State Bar Association and the New Jersey State Bar Association. She holds a Bachelor of Arts in Criminology and Political Science from the University of Toronto, a Master of Arts in International Relations from Columbia University and a Juris Doctor from the St. John’s University School of Law. She also serves as Chair to the New York County Lawyers Association’s Futures & Derivatives Committee.

Nicolette Martin, Head of Compliance, Operations & Technology, Citi

Nicolette Martin is the Business Risk Head of Citi Private Bank, Residential Real Estate. She is responsible for leading the strategic direction of the Residential Real Estate Business Risk program including all control processes both internal and client-facing. Previously, Ms. Martin served as the Head of Information Security Compliance where she was responsible for implementing a firm-wide compliance program to confirm adherence to the rules and regulations of US and non-US regulatory agencies. Her expertise covers compliance risk assessments, operational KRIs, regulatory change management, and processes for reporting and escalating risk-related matters.

Nicolette is an attorney with over 14 years of experience in compliance risk management. Her industry experience includes a variety of senior compliance roles for financial institutions, including HSBC, where she most recently served as the U.S. Head of Compliance Policy; and the New York Stock Exchange, where she served as the U.S. Head of Corporate Compliance. Nicolette also served as a Senior Privacy Manager at American Express.

Nicolette holds a JD from Benjamin Cardoza School of Law with a Bachelor of Science degree in Finance.

Vasanth Murugan, Director, Operational Excellence, American Express

Vasanth currently serves as Director of Operational Excellence within Commercial Service Division of American Express which primarily issues a wide range of proprietary corporate and small business cards and provides payment and expense management services globally. Vasanth works closely with control functions and business leaders to implement operational risk framework and also to stand up critical control programs that support operational risk within the company.

Vasanth has a broad range of experience within American Express, holding roles in implementation of Next-Generation payment platform in international markets; driving Information Security and internal control program within Technology Services group , and recently, leading Issue Management program for the company. Vasanth is passionate about Operational Risk topics and has worked with leaders to drive enterprise risk management and implement best practices that directly impact operational risk, controls and compliance, growth and service quality.

Michael Nardo, Managing Director, Enterprise and Operational Risk Management, GE Capital

Michael Nardo currently leads the Enterprise and Operational Risk Management function for GE Capital (GEC). In this role, Michael leads a team in identifying and managing the key operational risks of the Company as well as defining its overall risk appetite and assessing its enterprise risks. Prior to that role, Michael formed and led the Risk Controls Group implementing an internal controls program across GEC’s Risk Management organization.

Prior to joining GE Capital, Michael occupied numerous roles in the operational risk management as well as internal control assessment functions at AIG, American Express and PricewaterhouseCoopers.

Michael holds a Bachelor’s degree in Accounting from St. John’s University and a CISA designation. He also chairs the Board of Directors of the Riverside Symphony, serves as a member of the Advisory Board of the St. John’s University Peter J. Tobin College of Business and a member of the Audit Committee of the Diocese of Rockville Centre.

Gustavo Ortega, Head of Technology, Innovation and Operations Risk Management, Voya Financial

Gus is a risk practitioner in the financial services industry with over 15 years of experience. Currently, he is responsible for Operational Risk policy, governance, programs and framework, data management and reporting at AIG. Gus’s primary responsibility is maintaining an integrated operational risk function that supports the company’s three lines of defense accountability model and ensures regulatory requirements are met with respect to the design and implementation along with continuous refinement of the Operational Risk program across AIG. Prior to AIG, Gus held various senior positions at UBS Investment Bank, Dresdner Bank and Morgan Stanley.

Peter Pernebo, Executive Director, KY3P by IHS Markit

Peter Pernebo will be presenting at the forthcoming the Annual Operational Risk Management Congress.

Richard Pike, CEO, Governor

Richard has extensive experience of working with financial institutions throughout the world, assisting companies in managing enterprise risk more efficiently while addressing local regulatory guidelines and standards. As well as being the founder and CEO of Governor Software, Richard is currently an Independent Non Executive Director at both PermanentTSB Bank plc and JP Morgan Fund Administration ltd.

Prior to Governor Software, Richard has worked in various senior banking, insurance, credit and market risk roles at Wolters Kluwer Financial Services, ABN AMRO, Bain, COMIT Gruppe and Quay Financial Software. He has analysed, designed and managed the development of core treasury and enterprise risk management systems for large financial institutions, including UBS, Citibank, Schroders and Unicredito.

In 2009, Richard was recognised as a “Top 50” Face of Operational Risk by Op Risk & Compliance magazine and was a contributing author to two books on risk management. He is also a board member of the Governance, Risk and Compliance Technology Centre which focuses on research in the area of financial services governance, risk and compliance. Richard has also received the designation of ‘Certified Bank Director’ by the Institute of Banking.

John Rachek, Director – Operational Risk Asset Management, Credit Suisse

John Rachek will be presenting at the forthcoming 4th Annual Operational Risk Management Congress.

Michael Rachlin, Director, BNY Mellon

Michael Rachlin will be presenting at the forthcoming 4th Annual Operational Risk Management Congress.

Jacob Rosengarten, former CERO, Current Risk Advisor to CFO, XL Group Ltd

Mr. Rosengarten retired as Chief Enterprise Risk Officer for XL Group Ltd in December 2017. He continues to work with the Company on a part-time basis, working as an advisor to XL’s Chief Financial Officer.

Jacob Rosengarten was appointed Chief Enterprise Risk Officer for XL Group Ltd in September, 2008. In this capacity, he served as Chairman of XL Group’s Enterprise Risk Committee. His responsibilities included the identification, assessment, monitoring and reporting of key risks across XL Group companies. This included establishing policies designed to promote a strong ERM process, playing a leadership role in XL Group’s Solvency 2 (and equivalence) initiatives and in maintaining a top tier economic capital modeling program.

Prior to joining XL Group, Jacob was Managing Director of Risk Management and Analytics for Goldman Sachs Asset Management (GSAM) from 1998 to 2008. From 1993 to 1997 he was Director of Risk and Quantitative Analysis at Commodities Corporation (now part of GSAM). Between 1983 and 1992 he held progressively senior positions at Commodities Corporation as Director of Accounting, Assistant Controller, and then Controller. Jacob began his career in 1979 as an Auditor at Arthur Young & Company.

He has an M.B.A. from the University of Chicago and a B.A. from Brandeis University. He is also a Certified Public Accountant and Chartered Global Management Accountant. He serves as a member of the Board of Trustees for the Global Association of Risk Professionals (“GARP”), and also serves on the University of Connecticut’s MSFRM Board of Advisors.

Benoit Saint-Jevin, Director, Head of Global Markets Americas OPC & TAC Coordination, BNP Paribas Corporate and Institutional Banking

Benoit Saint-Jevin will be presenting at the forthcoming 4th Annual Operational Risk Management Congress.

Ellen Schubert, CEO, KY3P, IHS Markit

Ms. Ellen Schubert leads strategic business initiatives for KY3P, the first centralized, third party risk management data hub.

Ms. Schubert is responsible for managing product and business development teams on KY3P, which was designed in partnership with leading global financial institutions to increase efficiency and standardize third-party due diligence processes. Prior to joining the firm in 2015, Ms. Schubert spent a year consulting to women-owned hedge funds, both start-ups and established funds on their marketing, human resources and compliance policies. She currently serves as a director and treasurer on Miami University’s Foundation Board and was a member of the Finance Advisory Board of Miami University’s Farmer School of Business.

Sasu Sihvonen, Head of Business Risk, Nordea

I’ve been working in the financial industry for 20 years, both in U.S. and Nordic markets, in different roles ranging from trading and trading system implementation project to various risk management roles. Over the last 10+ years that I’ve been working in the risk management I’ve seen the external and internal requirements change quite drastically.

In my current role as a head of 1st line risk management team I oversee the implementation of market, liquidity and non-financial risk frameworks at the Nordea’s New York Branch with a goal of providing a holistic oversight for local and Group senior management overseas.

Craig Spielmann, former Global Head of Enterprise Risk Management Strategy, First Data

Craig Spielmann will be presenting at the forthcoming Operational Risk Management Congress.

Jack Sprague, SVP, Operational Risk, HSBC

Jack is the US Head of Operational Risk Capital and Stress Testing at HSBC, where he is responsible for the firm’s Operational Risk CCAR program and regional submissions to support global stress tests and economic capital calculations. He has worked at HSBC since 2010 and was previously the Head of Business Risk and Control for the Private Banking division in the Americas. He has also held Operational Risk oversight roles at HSBC. Jack began his career as an internal auditor, first at Fidelity Investments and then at Bank of Tokyo-Mitsubishi. Jack earned his degree in Accounting from the University of Massachusetts, Amherst.

Rick Taiano, Chief Operation Officer, National Australia Bank

Rick has spent the last 12 years as a Director at National Australia Bank Ltd. (“NAB”) in their Corporate Finance division in New York. For the last 4 years, Rick has served as the Chief Operating Officer of nabSecurities LLC, NAB’s U.S. Broker Dealer. His responsibilities include managing transaction and operational risk, as well as overseeing the day-to-day operations for nabSecurities. In addition, Rick manages a $85 Million securities investment portfolio owned by the Broker Dealer as well as managing $65 Million in capital. Prior to his role as COO, Rick managed the treasury administration team for NAB’s $5 Billion Asset Backed Commercial Paper program, as well as the origination of auto loan and lease Asset Backed Securities.

Prior to joining NAB, Rick spent 5 years as a Director in the Asset Backed Finance Group at the Bank of Nova Scotia in New York. His responsibilities there included the origination and administration of trade receivable, timeshare, auto loan & lease Asset Backed Securities transactions. Rick also served as the Head of the Portfolio Administration & Analysis Team for the Bank’s $8 Billion Asset Backed Commercial Paper Program.

Prior to joining the Bank of Nova Scotia, Rick spent 5 years at Lord Securities Corporation. At Lord, Rick was a Partner and Vice President where he was responsible for the marketing and sales of the firms product suite, as well as the consultative structuring and administration of the firm’s 200 special purpose companies. Rick also served as a member of the Board of Directors for 30 special purpose entities under Lords management, as well as serving as a Director for Citigroup’s Capital Markets Engineering and Trading broker dealer operation.

Prior to Lord, Rick spent 8 years at Goldman Sachs & Co. as an Associate in the Operations, Technology and Finance division, where he was responsible for global accounting technology. In this capacity, Rick spent a considerable amount of time working in Goldman’s Tokyo, London, Hong Kong, and New York offices.

Rick graduated from La Salle Academy High School in 1983; he has an A.A.S. degree with a major in Accounting from LaGuardia Community College; a B.A. with a major in Economics from New York University; and an M.B.A. with a major in Global Management from the University of Phoenix.

In his spare time, Rick enjoys vacationing and spending time with his wife and two children. As a hobby, Rick is also a professional musician and studio engineer and has had the opportunity to work with well-known artists.

Thomas Tobin, Director, Operational Risk, Mizuho

Tom has over 20 years of financial services industry experience and is currently a Director of Operational Risk Management at Mizuho Bank in the Americas Risk Department. As part of the 2nd line of defense, Tom is responsible for implementing the RCSA program, establishing and maintaining the Control Library and Risk Taxonomy and integrating the GRC system to all business lines across U.S. operations.

Paul Tuller, Business Operations Executive, JP Morgan

Paul is a currently part of the Human Resources and Marketing, Communication & Client Experience teams within the Commercial Bank. He is responsible for partnering with the teams in these areas and other key stakeholders to develop and implement strategies to actively monitor, manage and report on the risk and control environment for the two separate functions. Paul joined JPMC in 2012 where he worked in the Mortgage Banking business in a Controls and Operational Risk function. Prior to joining JPMC, Paul worked in Operational Risk at Morgan Stanley. During his tenure there, he managed a global Operational Risk team supporting the Finance function and spent some time in the Corporate Operational Risk arena. Early in his career, Paul spent time working at Deloitte to become a CPA, and in various internal audit positions at the Sydney Futures Exchange in Australia and HSBC in London.

Andrew Weg, Americas Head of Compliance and Operational Risk Framework, UBS

Andrew is the Americas Head of Framework for Compliance and Operational Risk Control at UBS. His responsibilities include overseeing the RCSA, Compliance Risk Assessment, Risk Appetite Statement process, and other Framework related activities. Prior to joining UBS, Andrew was an Examiner and the Federal Reserve Bank of New York where he was responsible for assessing the legal and compliance risk management infrastructure, including corporate compliance and BSA/AML programs, of Systemically Important Financial Institutions (“SIFIs”).

Ryan Williams, Director, Operational Risk Programs: Incident Loss Reporting, Product & Services Risk & Subsidiary Governance, TIAA

Ryan is currently a Director at TIAA responsible for the following Firm-wide Operational Risk Programs: Incident Loss Reporting, Product & Services Risk, and Subsidiary Governance. At GE Capital, Ryan was responsible for the Firm-wide Risk Control Self-Assessment (RCSA) program. As Senior Risk Officer at Morgan Stanley, Ryan was responsible for the adherence of a 1,200+ person Business Unit to the Firm’s Risk and Compliance requirements. Ryan has 13+ years of experience in promoting effective and efficient risk management practices with a strong understanding of regulatory requirements and related implementation standards. Ryan has an MBA and Master of Science in Information Systems from Marist College. He is a FINRA Registered Investment Advisor (RIA) and Operations Professional. He also holds a Certificate of Information Security Management (CISM) from ISACA.

James H Wistman, Head of Branch Risk & Compliance/MRLO, Santander, Abbey National Treasury Services, US Branch

I have conference experience, having spoken at approximately 20 conferences dating back to 1988/89; typically a Panelist, I’ve also had the privilege of speaking as a Key Noter on a few occasions. My comments are always prefaced with the standard disclaimer “The views expressed today….” For your convenience, here are a few CV highlights:

• As an undergraduate at a leading U.S. university, I studied banking regulation and conflicts-of-interest, and as a senior in Economics wrote an Honors thesis “Ends Runs Around Regulation” in 1985; I also received a Certificate in International Relations.
• As the first-ever fully-sponsored employee sent by the Federal Reserve to Columbia B-School, I obtained an MBA in Finance and the Management of Financial Services Institutions in 1989; my studies included preparation of a formal Case Study for the Fed’s use in its first inhouse course on Interest Rate Risk.
• In 1994, I authored “Rx21 – the Risk-Based Approach” for the Federal Reserve’s top executives in NY and that document established the framework for subsequent documents such as SRs 96-14, 08-8, and 14-1; it also framed countless documents published by other regulators and bankers on the same topic.
• I’ve accumulated 30+ years of hands-on experience as a Supervisory Examiner, as a trusted Adviser/Consultant to dozens of international banks, and as an inhouse risk-and-compliance Leader.

Also worth noting: I was a member of the Customer Advisory Board of a major RegTech firm, helping them white-board their future Data Management solutions; and I developed curriculum and lectured for Pace University’s graduate program for risk and compliance professionals seeking formal credentials.

Can your organization contribute at our Operational Risk Management Congress?

Please contact the Center for Financial Professionals today to discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities. Please contact sales@cefpro.com or call us on +1 888 677 7007 where a member of the team will be happy to tailor the right package for you.

Venue

Crowne Plaza – Times Square
1605 Broadway
New York
NY 10019
USA

There are now limited rooms available at the Crowne Plaza, please contact Sammy Choi in Room Reservations on 212-315-6108 and quote the conference name to enquire about booking your room.

Alternative Accommodation

DoubleTree Suites by Hilton Times Square

1568 Broadway
New York
NY 10036
USA

New York Marriott Marquis
1535 Broadway
New York
NY 10036
USA

Renaissance New York Times Square Hotel

714 Seventh Ave Two
New York
NY 10036
USA

Hilton Garden Inn Times Square

790 Eighth Ave
New York
NY 10019
USA

Hampton Inn Manhattan – Times Square North

851 8^th Ave
New York
NY 10019
USA

Earn up to 15 CPE Credits for the two-day Course.

• Prerequisites: Knowledge of financial risk management
• Advanced Preparation: No advanced preparation is required
• Program Level: Intermediate to advanced
• Delivery Method: Group-live

The Center For Financial Professionals is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.learningmarket.org

Please note these are subject to change as per the agenda and final credits will be available after the event.

Earn up to 15 CPE credits

Risk oversight – Meeting regulatory requirements and managing third party risk

Taking place on September 14, 11:30am (EST)

Key topics to be addressed include:

Achieving third party risk compliance

GDPR | Board level oversight and sign-off | Focus on 4th parties

Effective management of cyber security and third party risk

On-boarding and due diligence | Technology and operational risks

If you cannot make the live date, still register, as a full recording of the webinar will be sent to all registrants.

Hear from…

Nicolette Martin
Head of Compliance, Operations & Technology
Citi

Sabeena Liconte
Chief Legal Officer & Chief Compliance Officer
Bank of China (BOC) International (USA) Holdings Inc.

Alex Beigelman
Former Head of Technology & Cyber Security Risk
JP Morgan

Richard Pike
CEO
Governor

Group Bookings:

Group rates are available for 3 or more attendees from the same organisation, when registering at the same time. The current rate allows every third colleague to come along for half price, or a fifth colleague to attend for FREE.

Other ways to register

2. Contact Us Directly

3. Download the PDF Registration Form