Vendor & Third Party Risk USA

5th Annual Vendor & Third Party Risk USA

June 2020 | New York City

Key Agenda Highlights from 2019:

REGULATION
Managing increased pressure and divergence across jurisdictions

CONTINUOUS MONITORING
Continuous monitoring for full review of inventory

REPORTING
Aggregating reporting across systems for increased oversight

CYBER SECURITY
New cyber regulations and increasing security internally and across supply chain

PROGRAM MATURITY
Oversight and due diligence across the life cycle

CONTRACT MANAGEMENT
Incorporating technology advances and understanding for contract management

INTEGRATION ACROSS TEAMS
Integration of procurement and risk across the process

DIGITAL CONVERGENCE
Uses of technology to automate processes and drive efficiency

Vendor & Third Party Speakers from 2019 Included:

John Gilbride
ED, Head of Third Party Risk Management Governance and Regulatory Engagement
JP Morgan

Lazaro Barreiro
Director, Governance and Operational Risk Policy
OCC

David Stomski
Director, Operational Risk Management
Credit Suisse

James McPherson
Director
Credit Agricole CIB

Jeannie Pumphrey
Director, Third Party Risk Management
Union Bank

Roxane Romulus, MBA
Director, Third Party Risk Management
Voya Financial

Michael Gallerani
Director, Third Party Risk Management
GE Capital

Natallia Aliakseyenka
Head of Third Party Risk Management
BNP Paribas

5th Annual Vendor & Third Party Risk USA

June 2020 | New York City

INSIGHTS

Find our Vendor Risk thought-leadership articles here. These articles feed from our much larger Risk Insights section of our website which provides you with thought-leadership, white papers, articles and more across risk and regulation.

7th June 2019

Building operational resilience in financial services and ensuring compliance to regulatory standards

By Sucharita Banerjee Lodha, General Insurance International (GII) Business Resiliency and Operational Governance, AIG

6th June 2019

TPRM insights from Dov Goldman, VP, Innovation and Alliances, Opus

22nd May 2019

Risk Webinar: Vendor & third party risk – Adapting to the evolving regulatory landscape

22nd May 2019

Risk Webinar: A discussion on the key findings from CeFPro’s Global Conduct Risk Survey

21st May 2019

Survey Suggests Third-party Risk Practices Are Maturing

By Aravo

21st May 2019

Vendor risk: Due diligence, scaling, analysis, and ongoing oversight

By Marc Lotti, Partner, ACA Aponix and Jeff Rowley, Principal Consultant, ACA Aponix

14th May 2019

Developing and testing business continuity plans for risk mitigation for supplier failure

By Tom Garrubba, Senior Director & CISO, Shared Assessments & The Santa Fe Group

14th May 2019

Monitoring and mitigating insider risk and limiting insider fraud

14th May 2019

Strengthening process and communication to align frameworks across the lifecycle

13th May 2019

Risk Webinar: Managing third parties, it’s more than just cyber risk

13th May 2019

Third-party due diligence: Has your program evolved enough to keep up with changes in regulations and advancements in technology?

By Bill Hauserman, Senior Director, Compliance Solutions, Bureau van Dijk, A Moody’s Analytics Company

13th May 2019

Full oversight for risk reporting: Aggregating reporting across multiple systems and jurisdictions

By David Stomski, Director, Operational Risk Management, Credit Suisse

9th May 2019

Vendor Complaint Monitoring – Why It’s Important

By Branan Cooper, Chief Risk Officer, Venminder

2nd May 2019

Aggregating reporting across multiple systems and jurisdictions for full oversight for risk reporting

By Roxane Romulus, MBA, Director, Third Party Risk Management, Voya Financial

29th April 2019

Continuous monitoring of vendor and third parties for full portfolio analysis of risks

By Ken Wolckenhauer, VP, Vendor Management, Nordea Bank

24th April 2019

Third-party impacts on financial websites: Insights and data

By Idan Cohen, CEO & Co-founder, Reflectiz

23rd April 2019

The innovation illusion

By Daniel Moore, Chief Risk Officer, Scotiabank

23rd April 2019

A vision of the end-state analytics architecture for your firm

By Stevan Maglic, SVP, Head of Quantitative Risk Analytics, Regions Bank

23rd April 2019

Increasing cyber resilience in an advancing threat landscape

By Philip Masqullette, SVP, CRO, Ulster Savings Bank

23rd April 2019

Effective management of model risk for end to end management

By Wei Ma, Head of Model Risk Management, Sumitomo Mitsui Banking Corp

16th April 2019

Beginners guide to navigating a regulatory inspection

By Fiachra Crean, Head of Supplier Relationship Management, AIB

16th April 2019

Managing risks prior to onboarding through integration of procurement and vendor risk management

By Bob Koszkalda, Director, Third Party Risk Management, SVP, KeyBank

11th April 2019

Model Risk: The backbone of the asset management industry

By Abhisekh Adukia, VP, Model Risk Director, Alliance Bernstein

11th April 2019

Uncovering unknowns: Understanding the intersection of vendor management and business continuity planning

By Michael Berman, Founder & CEO, Ncontracts

10th April 2019

Best practice for categorising vendors to determine level of due diligence and oversight required

By Ben Joyce, Head of Sourcing – Global Commercial Services, ICBC Standard Bank Plc

Sponsorship

5th Annual Vendor & Third Party Risk USA

June 2020 | New York City

Sponsorship

Can your organisation contribute? Please contact the Center for Financial Professionals today to discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities. For more information on what we can offer, please contact sales@cefpro.com or call us on +44 (0) 20 7164 6582 where a member of the team will be happy to tailor the right package for you.

2019 Co-Sponsors:

ACA Aponix

ACA Aponix, a division of ACA Compliance Group, provides cybersecurity and technology risk assessments, vendor and M&A diligence services, network testing, and advisory services. Our team of highly experienced technologists combines expertise across the breadth of cybersecurity and information technology. Our award-winning solutions are designed to help firms uncover risks and identify deficiencies in their cybersecurity policies, procedures, and controls.

Aravo

Aravo Solutions delivers award-winning, marketleading cloud-based solutions for managing third party governance, risk, compliance and performance. We help companies protect their business value and reputation by managing the risks associated with third parties and suppliers, and to build business value by ensuring that their third party relationships are optimized. Aravo TPRM for Financial Services allows firms to centralize all their third parties into a single, quickstart cloud solution for assessing risk, conducting initial and ongoing due-diligence, managing and monitoring contractual compliance and performance, and transitioning and off-boarding third parties. Providing unrivaled regulatory agility and ease-of-use, together with actionable executive reporting, Aravo supports a user base of 124,000 corporate users, managing more than 4.3 million third party users in 36 languages and 154 countries. Learn more at aravo. com

BitSight

BitSight Technologies is transforming how companies manage information security risk with objective, evidence-based security ratings. The company’s Security Rating Platform continuously analyzes vast amounts of external data on security behaviors in order to help organizations manage third party risk, benchmark performance, and assess and negotiate cyber insurance premiums.

Bureau van Dijk

Certainty is a highly prized commodity in business. Data might be getting bigger all the time, but this only makes extracting value from it more difficult. Bureau van Dijk captures and treats private company information for better decision making and increased efficiency.

With information on nearly 300 million companies, we are the resource for company data. A key benefit of our information is how simple we make it to compare companies internationally.

Our information includes:
– What companies do, how they’re performing and the people that run them
– Financial data, legal entity details, M&A activity and news
– Corporate structures and ownership

You can access our information via a range of interfaces that are designed to help different business challenges and streamline workflows. Many of our customers blend our information with their own internal data for superior insight.

Grant Thornton

Are your traditional controls and safeguards being stretched to the limit amid a host of risks? Do you need a comprehensive solution to identity, assess, and monitor third-party risks? The accelerating pace of change is placing unprecedented demands on financial institutions with third party risk management as an area of growing concern among many financial services institutions.

Grant Thornton’s Advisory Services professionals are progressive thinkers who create, protect and transform value today so our clients have the opportunity to thrive tomorrow. By helping you withstand the pressures of evolving business environments, our services can support you wherever you are – whether you’re focusing on developing and implementing the right controls to mitigate risk or advancing your company’s finance and technology infrastructure to match your aspirations. Learn more at www.grantthornton.com

IHS Markit

KY3P® is the first centralized data hub that simplifies and standardizes third-party risk management processes. Third-party relationships are under growing scrutiny by global regulators, including the US Office of the Comptroller of the Currency (OCC), FINRA, the UK Financial Conduct Authority, and the Monetary Authority of Singapore. As firms increase reliance on third parties to deliver business-critical processes and services, oversight complexity also increases. The lack of standardization around collecting due diligence data can lead to duplicate efforts, creating inefficient processes that might result in delays in response times, revenue recognition, increased costs and overall inconsistency of information. KY3P®, developed in partnership with global banks, asset managers, and Big 4 consulting firms, is designed to help you simplify third-party risk management processes. By standardizing due diligence questionnaires and storing third-party information centrally, the service minimizes efforts around information requests and responses.

Ncontracts

Ncontracts provides web-based vendor management solutions to over 1500 clients. Ncontracts’ powerful mix of software and services allows organizations to effectively monitor and manage third-party risk with tools that are adaptable to different vendor management policies and procedure. Together, these tools allow clients to reduce expenses, enhance profitability, and improve internal efficiencies, while maintaining compliance with applicable regulatory standards.

Protiviti

Protiviti is a global consulting firm that helps companies solve problems in finance, technology, operations, governance, risk and internal audit, and has served more than 60 percent of Fortune 1000® and 35 percent of Fortune Global 500® companies. Leveraging our professionals with operational, regulatory, compliance, risk management, IT, and information security expertise, Protiviti provides integrated solutions to help our clients assess, design, and implement leading third party risk management programs. This includes 3PRM program assessments and third party audits, 3PRM program transformation, third party program managed services, digital transformation, and targeted issue remediation.

PwC

With offices in 158 countries and more than 236,000 people, PwC is among the world’s leading professional services networks. We help organizations and individuals create the value they’re looking for by delivering quality audit, tax and advisory services. As the needs of PwC’s clients and stakeholders have changed, so has PwC. We look at the world through the eyes of clients, anticipating and listening to their needs, helping them to solve problems while capitalizing on the opportunities brought on by new technologies. PwC’s purpose is to build trust in society and solve important problems. We work alongside our clients to deliver solutions and tackle challenges. PwC’s global Cybersecurity and Privacy practice of 3,300+ practitioners includes specialized consultants, former law enforcement agents, cyber-forensic investigators, intelligence analysts, technologists, attorneys and industry leaders in cybersecurity and privacy. Our team has deep experience helping global businesses across industries strategically assess, design, deploy and improve cybersecurity and privacy programs.

RapidRatings

RapidRatings® is transforming the way the world’s leading companies manage enterprise and financial risk. RapidRatings provides the most sophisticated analysis of the financial health of public and private companies in the world. The company’s analytics system provides predictive insights into third-party partners, suppliers, vendors, customers and securities issuers. Every business conversation becomes more productive, transparent and efficient with the RapidRatings Financial Health SystemTM. For more information, visit www.rapidratings.com.

Venminder

Venminder is the national leader in third party risk management headquartered in Elizabethtown, Kentucky. Through the firm’s software and suite of outsourced services, Venminder has pioneered a new age by dramatically reducing the workload essential to meeting today’s demanding regulatory requirements.

Venminder’s software organizes all things vendor-related and guides users through critical processes such as contract management, risk assessments, due diligence requirements, questionnaires and more. The firm also offers a popular suite of outsourced due diligence services which includes collecting documents and then assessing them for risk in cybersecurity, information security, business continuity/disaster recovery and financial health.

Venminder has over 600 customers across a variety of industries. As their solutions are scalable, their clients range in size from small to very large organizations.

2019 Associate Sponsors:

Compliance Education Institute LLC

The premier education and training firm focused on providing 3rd party risk management certification courses and specialized training to the financial services industry. With more than 1,700 graduates of the CRVPM® Levels l, ll and lll Advanced courses in 14 countries, CEI has established itself as the go-to company for practical, hands-on experience from the field in designing, building, implementing, augmenting and managing 3rd party risk management programs. Its strong foundational content and advanced level certifications have helped financial institutions from $35 million to $20+ trillion in assets under management improve their 3rd party risk management programs and posture. CEI offers advisory services and 3rd Party Toolbox, its industry-leading TPRM solution. Contact: 732.800.0744

EY

The global network of EY firms understands the importance of asking great questions. It’s how you innovate, transform and achieve a better working world. Finance and capital markets fuel our lives. No other sector can touch so many people or shape so many futures. That’s why globally our network includes 26,000 people who focus on financial services. Our financial services teams are dedicated to providing assurance, tax, transaction and advisory services to the banking and capital markets, insurance, and wealth and asset management sectors. It’s our global connectivity and local knowledge that ensures we deliver the insights and quality services to help build trust and confidence in the capital markets and in economies the world over. The better the question. The better the answer. The better the world works.

OneTrust

OneTrust is the largest and most widely used technology platform to operationalize privacy, security and third-party risk management. According The Forrester New Wave™: GDPR and Privacy Management Software, Q4 2018, OneTrust “leads the pack for vision and execution.” Additionally, Fast Company named OneTrust as one of 2019’s World’s Most Innovative Companies.

More than 2,500 customers use OneTrust to implement their privacy, security and third-party risk programs, automatically generating the specific record keeping needed to demonstrate compliance with privacy regulations including the GDPR, California Consumer Privacy Act, Brazil LGPD, and hundreds of the world’s privacy laws.

To learn more, visit OneTrust.com

Prevalent

Prevalent helps enterprises manage risk in third party business relationships. It is the industry’s only purpose-built, unified platform that integrates a powerful combination of automated assessments, continuous monitoring, and evidence sharing for collaboration between enterprises and vendors. No other product on the market combines all three components, providing the best solution for a highly-functioning, effective third-party risk program.

ProcessUnity

ProcessUnity’s cloud-based solutions help organizations of all sizes automate their risk and compliance programs. Our highly configurable, easy-to-use tools significantly reduce manual administrative tasks, allowing customers to spend more time on strategic risk mitigation. As a software-as-a-service technology, ProcessUnity deploys quickly with minimal effort from customers and their IT resources. The inherent efficiency our technology delivers faster, better results, and the ability to scale governance, risk, and compliance programs over time. Learn more at www.processunity.com.

RSA

The RSA Archer Suite empowers organizations of all sizes to manage multiple dimensions of risk on one configurable, integrated software platform. With RSA Archer, organizations can quickly implement risk management processes based on industry standards and best practices—leading to improved risk management maturity, more informed decision-making and enhanced business performance.

2019 Luncheon Sponsor:

Certa

Certa is a new one-stop intelligent TPRM platform. In just the last two years, our platform powers sophisticated global TPRM programs at multiple Fortune 100 firms including a Fortune 5 firm, two industry leading consulting firms, a leading aerospace/aviation company, and a global tech giant.

Existing TPRM solutions take too long to implement and fail to achieve RoI and usage goals. What differentiates Certa is:
– AI-enabled due diligence: Automatically raise red-flags
– No manual workarounds: 100% automation delivers high RoI
– Actually gets used: Multilingual and intuitive user experiences
– 50+ integrations: E.g., D&B, all major screening solutions, Google
– Enterprise ready: Integrations with SAP, Oracle, Coupa, Salesforce, etc.

Media Partners:

We are happy to support publications, associations and organisations at this event. From a simple company listing with your logo to taking advantage of some of our sponsor benefits listed above. To discuss a media partnership further please email jesse.hopkins@cefpro.com or call +44 (0)20 7164 6582.

Venue & FAQs

5th Annual Vendor & Third Party Risk USA

June 2020 | New York City

VENUE & FAQs

Venue

The venue will be confirmed soon.

CPE Credits

Attendees can earn CPE Credits for the Congress!

Prerequisites: Knowledge of financial risk management Advanced Preparation: No advanced preparation is required Program Level: Intermediate to advanced
Delivery Method: Group-live

The Center for Financial Professionals is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.learningmarket.org

Frequently Asked Questions

Can I present at the Vendor & Third Party Risk USA 2019 Congress?

Yes, the Center for Financial Professionals are happy to discuss speaking opportunities at Vendor & Third Party Risk USA 2019 Congress. For further information on this please contact alice.kelly@cefpro.com or call us on +1 888 677 7007.

Are there any rules on the dress code?

Business attire is requested. The Congress is a formal opportunity to network with like-minded professionals and to gain knowledge from the industry’s finest risk management experts.

What is the cost and what is included in the registration fee?

We offer incentives for ‘early bird’ registrants of the Congress, as outlined on our pricing structure. Registration includes breakfast, refreshment breaks, lunches, the cocktail reception at the end of the day, full access to the sessions and exhibition area. Presentations from sessions are also available, subject to speaker approval.

Where can I find the Congress documentation and speaker presentations?

All registered attendees will receive an email with access to documentation and speaker presentations after the Congress* We will work with our presenters to include as many presentations as possible on our Risk Insights App during the Congress. *Please note that our speakers often have to gain permission from their relevant compliance departments to release their presentations. On rare occasions compliance may not allow presentations to be distributed.

Will breakfast, lunch and refreshment be provided?

Yes. As with all of our events the Center for Financial Professionals will be providing brilliant coffee, breakfast, lunch, refreshments, and smaller bites during the networking breaks.

Will there be opportunities to network with other attendees?

There are ample opportunities for networking and interaction throughout the Congress, such as

Breakfast, lunch and refreshment breaks
Cocktail reception at the end of the day (Subject to confirmation)
Q&A, panel discussions and audience participation technology available through the Risk Insights App

I have several colleagues that would like to attend, is there a group discount?

Certainly! We are pleased to offer you a 50% discount on the third registration or provide a fifth registration for free. If you would like to register more than five colleagues please contact us on +1 888 677 7007 Please note:

Registrations must be made at the same time
Registrations must come from the organisation
The lowest registration will be discounted

Are there opportunities to share my thought-leadership at the Vendor & Third Party Risk USA 2019 Congress?

Yes there are plenty of opportunities for the Center for Financial Professionals to share thought-leadership to the attendees of Payments Forum 2018 and our wider risk professionals community. At the event We can distribute your material to the attendees, offer you an exhibition booth, and provide speaking opportunities so that you may enjoy a more prominent presence at the Forum. Visit the Sponsor tab for further information or contact sales@cefpro.com / +44 (0) 207 164 6582. Risk Insights Feature your content on our Risk Insights website and supporting Risk Insights monthly newsletter. For further information please download our media pack here.

Are media partnerships available for Vendor & Third Party Risk USA 2019 Congress?

Yes. As part of a media partnership we can offer a variety of options to increase the branding and awareness of your association, company, certificate, publication or media. We are flexible with what we can offer however we usually:

Provide a discounted rate to attend
Place your logo and profile on the Congress website
Place your logo on the Congress brochure
Place your logo on promotional content where applicable
Distribute your media/marketing at the Congress
Promote through social media channels

To discuss this further please contact jesse.hopkins@cefpro.com or call +1 888 677 7007

Register

5th Annual Vendor & Third Party Risk USA

June 2020 | New York City

Pre-Agenda Rate

Representing a financial institution
(E.g. Bank, Insurance company, Asset Manager, Regulator)

$899

Until the agenda is live

Representing an information/service provider
(E.g. Consultant, Vendor, Executive Search Firm, Law Firm)

$1,499

Until the agenda is live

Group Bookings:

Group rates are available for 3 or more attendees from the same organisation, when registering at the same time. The current rate allows every third colleague to come along for half price or a fifth colleague to attend for free!