Vendor & Third Party Risk Europe

Addressing most recent regulatory guidelines to maximise utilisation of high-end technology

5TH ANNUAL VENDOR & THIRD PARTY RISK EUROPE

October 6-8, 2020 

2020 Topics Include

REGULATION
Update from PRA on consultation paper and forward view on requirements

SUPPLY CHAIN
Developing a holistic view of risks associated with third parties and supply chain outsourcing for end to end management

OPERATIONAL RESILIENCE
Building resilience to identify and manage critical third parties within the supply chain

OVERSIGHT
Monitoring third party outsourcing to maintain control and oversight across the supply chain

view the full agenda here

FINTECH
Onboarding and working with FinTechs or startups and balancing risk against agility benefits

CLOUD
Understanding increased adoption of cloud infrastructure and regulatory requirements for the industry and cloud providers

Hear from 20+ Vendor & Third Party Risk experts including-
Alex Dorlandt

Alex Dorlandt
Head of Supply Chain Risk
Lloyds Banking Group

Ben Davis

Ben Davis
Head of Business Risk & Controls
Sainsbury’s Bank

Daniel Keyworth

Daniel Keyworth
Chief Procurement Officer
Legal and General

Gary Lock

Gary Lock
Head of Supplier Risk & Relationship Management
Fidelity International

Steven Wyles

Steve Wyles
Head of Santander Services Risk & Director Third Party Risk Management
Santander UK

Amit Lakhani

Amit Lakhani
Head of IT and Third Party Risk Management
BNP Paribas

Matt Alford

Matthew Alford
EMEA Head of Third Party Risk Management
SMBCE

Matthew Browning

Matthew Browning
Head of Third Party Oversight
Direct Line Group

Orlando Fernandez

Orlando Fernandez
Senior Technical Specialist
Prudential Regulation Authority (PRA) / Bank of England

Philippa Green

Philippa Green
Head of Third Party Relationship Management
Nationwide Building Society

View full speaker line up
Pre-Event Cyber Resilience & Recovery Forum
Separately Bookable Cyber Forum

The Cyber Resilience & Recovery Forum will take place on 21 September, the day before Vendor & Third Party Risk Europe takes place. The Forum will explore the threat landscape and firms ability to enhance resilience and recovery techniques.

Hear from senior cyber, technology and resilience professionals from organisations including: BNP Paribas, Morgan Stanley, Lloyds Banking Group, Standard Chartered Bank, AIB, ICBC Standard Bank, Aviva, Société Générale Group and more!

Find out more here
Hear from last year’s attendees
Sponsorship

CAN YOUR ORGANISATION CONTRIBUTE?

Please contact the Center for Financial Professionals today to discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities. For more information on what we can offer, please contact sales@cefpro.com or call us on +44 (0) 20 7164 6582 where a member of the team will be happy to tailor the right package for you.

08:00 Registration and breakfast

8:50 Chair’s opening remarks

PRA UPDATE
9:00 Update from PRA on consultation paper and forward view on requirements

  • Update from consultation and forward look
  • Risk register request
  • Alignment to operational resilience
  • Timelines and speed of implementation

Orlando Fernández, Senior Technical Specialist, Governance & Remuneration Team, Prudential Policy Directorate, Bank of England

9:40 Your journey to optimized third party risk management will eliminate the following

  • Lack of insight driving excessive due diligence on non-critical activity
  • Admin burden and non-value-add work
  • Mistakes diverting risk resource
  • Cost of systems maintenance
  • Manual process to produce management reporting

Richard Blore, CEO, KY3P, IHS Markit

10:20 Morning refreshment break and networking

10:50 What to consider when shaping regulator outsource notifications

  • LBG Background on Outsource Notifications
  • Regulatory guidance on notification
  • LBG learnings and latest approach
  • Key topics and timescales

Alex Dorlandt, Head of Supply Chain Risk, Lloyds Banking Group

PANEL DISCUSSION
11:30 Monitoring third party outsourcing to maintain control and oversight across the supply chain

  • Contracting oversight of third party outsourcing: Extending control as far as possible
  • Concentration risk with third party outsourcing
  • Balancing assurance and business activity
  • How far to go in managing supply chain outsourcing
  • Regulation of vendors not in financial services
    • Oversight of subcontractors with limited risk programs
  • Gaining the right level of assurance oversight on fourth parties across lifecycle

Steven Wyles, Director of Third Party Management, Santander UK
Sandra Hislop, Head of Business Governance & Operational Oversight, Northern Trust
Gary Lock, Head of Supplier Risk & Relationship Management, Fidelity International

12:20 Lunch break and networking

1:20 Session reserved for OneTrust

2:00 Building resilience to identify and manage critical third parties within the supply chain

  • Aligning operational risk and business continuity
  • Holistic view of operational incidents
  • Identifying critical processes and third parties supporting them
  • Ensuring resilience to avoid enacting business continuity and disaster recovery plans
  • Alignment of processes, documentation and requirements
  • Mitigating risks of concentration and business continuity plans

Julie Hoesli Stewart, Executive Director – Compliance & Operational Risk Control, UBS

PANEL DISCUSSION
2:40 Mitigating the risk of increased volume and variety of disruptive threats to the business and supply chain

  • Managing level of information coming in
  • Increasing reliance on third party technology for BAU critical processes
  • Threat from bad actors across the supply chain
  • Increased use of ransomware and malware attacks
  • Travelex case study of impact to critical services
  • Using third parties to resolve IT threats and protect network infrastructure

Ben Davis, Head of Business Risk & Controls, Sainsbury’s Bank
Ian Burgess, Director, Cyber and Third Party Risk, UK Finance

3:30 Afternoon refreshment break and networking

FINTECH
4:00 Onboarding and working with FinTechs or startups and balancing risk against agility benefits

  • Working with smaller companies or start-ups
  • Increase in use of FinTechs
  • Use of data and competitive edge
  • Digitally enabled product offerings
  • Onboarding smaller suppliers
    • Moving faster to stay ahead whilst managing risks
  • Responding to market needs whilst protecting data

Fiona O Brien, Head of Outsourcing Oversight & Governance, Bank of Ireland

CLOUD
4:40 Understanding increased adoption of cloud infrastructure and regulatory requirements for the industry and cloud providers

  • Creating market dependency on cloud service providers
  • Concentration risk with limited number of cloud providers
  • Exit planning, disaster recovery and business continuity for cloud providers
  • Ensuring compliance with regulations and business standards
  • Cultural changes moving to the cloud
  • Compliance with modern slavery act across supply chain

Sebastian Wilson, Head of Delivery for Google Cloud Platform, HSBC

5:20 Chair’s closing remarks

5:30 End of day one and networking drinks reception

View full speaker line up
Register here
Download the brochure here

08:00 Registration and breakfast

8:50 Chair’s opening remarks

ARAVO SURVEY RESULTS
9:00 Benchmark your TPRM program

  • Learn about six key third party management trends revealed in the 3rd Annual Benchmarking Survey
  • Gain practical insight into what these trends tell us about how organizations should be looking to evolve and mature their programs
  • Walk away with six recommendations on how to improve your program in 2020 and beyond

Kimberley Allan, Chief Marketing Officer, Aravo

CONCENTRATION RISK
9:40 Managing concentration risk across suppliers and supplier outsourcing to mitigate risk of over reliance

  • Understanding geographical concentration risks
  • Leveraging regulators oversight of entire industry
  • Tracking key systems to limit concentration to provider and location
  • Ensuring accuracy of data to assess concentration
  • Accurate data matching first line risk appetite

10:20 Morning refreshment break and networking

DUE DILIGENCE
10:50 Developing harmonisation and consolidation of assessments and vendor due diligence to limit duplication

  • Third party due diligence of critical suppliers
  • Making the process more practical and value added
  • Resources for effective due diligence
  • Reviewing options and comparative analysis of offerings
  • Developing a more tailored approach across vendors
  • Mitigating vendor and assessment fatigue

Tom Garrubba, Senior Director/CISO, Shared Assessments

PANEL DISCUSSION
11:30 Setting holistic risk appetite and tolerance levels for third party risks and communicating to the business

  • Holistic third party risk approach
  • Risk based tolerance levels
  • Allowing individual components to drive appetite
  • Managing by risk vs. across the board risk appetite
  • Deciding on an acceptable risk appetite
  • Consistency of risk exposure across categories

Amit Lakhani, Head of Third Party Risk Management, CIB, BNP Paribas
Daniel Keyworth, Head of Group Procurement & Supplier Management, Legal and General

12:20 Lunch break and networking

PERFORMANCE MANAGEMENT
1:20 Oversight of portfolio of third parties for ongoing performance management

  • Oversight at an organisation level
  • Tools and systems used across the industry
  • Full portfolio view and review
  • Applying a risk based approach
  • Overseeing critical vendors, services and activities

Philippa Green, Head of Third Party Relationship Management, Nationwide

PANEL DISCUSSION
2:00 Developing a holistic view of risks associated with third parties and supply chain outsourcing for end to end management

  • Managing risk across risk functions
  • Holistic view of vendors profile of risk
  • Sustainability and concentration risks
  • Understanding all third parties and exposure
  • Proportionality to manage risks

Matthew Alford, Head of Third Party Risk Management, Sumitomo Mitsui Banking Corporation
Matthew Browning, Head of Third Party Oversight, Direct Line Group
Ameet Jugnauth, Head of IT Risk & Governance, Lloyds Banking Group
Alastair Parr, SVP Global Products & Delivery Operation, Prevalent

2:50 Afternoon refreshment break and networking

INTRAGROUP OUTSOURCING
3:20 Reviewing regulatory guidance and treatment of intragroup outsourcing and affiliates to efficiently manage risks

  • EBA guidelines on branch to branch services
    • Treatment as an outsourced service
  • Managing affiliates and treatment across borders
  • Data sharing across jurisdictions
  • Governance across intra group outsourcing

RESOURCES
4:00 Resource utilisation within third party risk management to maintain oversight with limited resources

  • Industry trend towards aggressive cost cutting
  • Deploying limited resources to get adequate assurance oversight
  • Testing evidence of controls working in practice vs. attestations or questionnaires from suppliers
  • Managing risk with conflicting resource requirements
  • Providing adequate assurance with limited resources

Nicholas Irwin, Head of Supply Chain Assurance, Sainsbury’s Bank

4:40 Chair’s closing remarks

4:50 End of Summit

View full speaker line up
Register here
Download the brochure here
Hear from 20+ Vendor & Third Party Risk experts including-
Matt Alford

Matt Alford
EMEA Head of Third Party Risk Management
SMBCE

Biography

Matt is the EMEA Head of TPRM at SMBCE with responsibility for designing, implementing and maintaining the second line third party risk management framework. He manages a small team coordinating the TPRM process; due diligence, risk remediation, reporting and performance monitoring and has led a strategic programme to establish a TPRM managed service to support the process centrally across the region. Matt joined the bank in 2018 following three years at Deutsche Bank on a VRM remediation programme. Prior to that, he spent time as a consultant with Deloitte’s Enterprise Risk Services team.

Kimberley Allan

Kimberley Allan
Chief Marketing Officer
Aravo

Biography

Kimberley Allan will be presenting at Vendor & Third Party Risk Europe 2020.

Richard Blore

Richard Blore
CEO, KY3P
IHS Markit

Biography

Richard Blore will be presenting at Vendor & Third Party Risk Europe 2020.

Matthew Browning

Matthew Browning
Head of Third Party Oversight
Direct Line Group

Biography

Matthew joined Direct Line Group in 2016 as Head of IT Third Party Oversight
where he oversees activities of the Third Party Assurance and PCI Compliance teams. Third Party Assurance focusses on ensuring the operational resilience and security of DLG’s supply chain and the PCI Compliance team ensures DLG maintains daily compliance to PCI Data Security Standard and conducts the annual PCI DSS assessment.

Previously Matthew was a Qualified Security Assessor at Gemserv Ltd, where, as Principal Consultant, he delivered Cyber Security consultancy and PCI assessments for merchants and service providers in a variety of industries.

Ian Burgess

Ian Burgess
Director, Cyber and Third Party Risk
UK Finance

Biography

Ian leads UK Finance’s operational and policy work on cybersecurity and third party risk management. In this role he engages with key industry stakeholders to determine the applicability of collective action on behalf of the financial sector. Through this engagement he is currently creating a single standard to assess the resilience of critical suppliers, having previously operationalised the Financial Sector Cyber Collaboration Centre (FSCCC), an industry utility designed to promote cyber intelligence sharing amongst financial institutions.

Before joining UK Finance Ian worked for BNY Mellon, where he led the development and deployment of a global system to map technology risk regulatory controls to global cyber, technology and data privacy regulations. Prior to this he served as a British Army Officer for eight years.

Ben Davis

Ben Davis
Head of Business Risk & Controls
Sainsbury’s Bank

Biography

Ben Davis if the Head of Business Risk & Controls which is an enterprise wide First Line of Defence Risk function. The division provides Business Risk Partnering across all Bank brands and divisions which includes the following disciplines; Operational Risk, Compliance advice, Operational Resilience, Crisis & Incident Management, Supplier Risk Management, Control Assurance (internally and across both the Supply Chain and distribution channels) and risk reporting.

Prior to joining Sainsburys Bank in 2017, Ben held a number of senior roles across both Financial Services and the Professionals Sector. These roles have been across both First and Second Lines of Defence, Change Management, Operations and Commercial functions. He is a graduate from the University of Stirling and holds a Bachelor of Arts degree in Business Management.

Alex Dorlandt

Alex Dorlandt
Head of Supply Chain Risk
Lloyds Banking Group

Biography

Alex Dorlandt will be presenting at Vendor & Third Party Risk Europe 2020.

Tom Garrubba

Tom Garrubba
Senior Director/CISO
Shared Assessments

Biography

Tom Garrubba will be presenting at Vendor & Third Party Risk Europe 2020.

Philippa Green

Philippa Green
Head of Third Party Relationship Management
Nationwide Building Society

Biography

Philippa Green will be presenting at Vendor & Third Party Risk Europe 2020.

Woman

Sandra Hislop
Senior Vice President, Head of Business Governance & Operational Oversight
Northern Trust

Biography

Sandra Hislop will be presenting at Vendor & Third Party Risk Europe 2020.

Nick Irwin

Nick Irwin
Head of Control Operation & Oversight
Sainsburys Bank

Biography

Nick Irwin will be presenting at Vendor & Third Party Risk Europe 2020.

Ameet Jugnauth

Ameet Jugnauth
Head of IT Risk & Governance
Lloyds Banking Group

Biography

Ameet Jugnauth will be presenting at Vendor & Third Party Risk Europe 2020.

Daniel Keyworth

Daniel Keyworth
Chief Procurement Officer
Legal and General

Biography

Daniel Keyworth will be presenting at Vendor & Third Party Risk Europe 2020.

Amit Lakhani

Amit Lakhani
Head of IT and Third Party Risk Management
BNP Paribas

Biography

Amit Lakhani has wide and varied experiences in managing risks across key areas such as cyber and third party services risks for organisations of all sizes. He started his career working as a consultant with Accenture where he developed and deployed multi-million dollar programmes involving compliance and risk elements, especially information security and cyber risks. Further, Amit worked at large multinational organisations in his role at KPMG driving strategic decision-making, investments and risk reduction programmes.
In his current role, Amit looks after third party/vendor risk management across the Corporate and Institutional Banking division for BNP Paribas. He has developed and is embedding global third party risk management initiatives and more importantly raising the risks at Boards and Executive Committee levels to have clear visibility on the identification, assessment, monitoring and reporting of third party services risks. The global role entails him to face up to regulators across many geographies, develop and establish solutions that are generic but addresses key risks that BNP Paribas faces in its operations.

Gary Lock

Gary Lock
Head of Supplier Risk & Relationship Management
Fidelity International

Biography

Gary Lock will be presenting at Vendor & Third Party Risk Europe 2020.

Fiona O Brien

Fiona O Brien
Head of Outsourcing Oversight & Governance
Bank of Ireland UK

Biography

Fiona O Brien will be presenting at Vendor & Third Party Risk Europe 2020.

Orlando Fernandez

Orlando Fernandez
Senior Technical Specialist
Prudential Regulation Authority (PRA) / Bank of England

Biography

Orlando Fernandez is a Senior Technical Specialist in the Governance & Remuneration team in the Bank of England/ PRA Prudential Policy Directorate. He joined the (at the time) FSA in 2011 and has been leading the development of the PRA’s Policy on the Senior Managers and Certification Regime (SM&CR) since its inception in 2013. He has also represented the PRA in the development of a range of European and international standards on governance and fitness and propriety at the BCBS, EBA and FSB and worked with financial overseas regulators in the implementation of accountability regimes inspired the UK SM&CR. More recently, Orlando has been focusing on outsourcing, in particular to the Cloud and the impact of technology on firms’ governance. He represented the PRA at the EBA expert group which developed the 2019 Outsourcing Guidelines. Orlando has a Master of Laws from the University of Nottingham in the UK.

Alastair Parr

Alastair Parr
SVP Global Products & Delivery Operation
Prevalent

Biography

Alastair Parr has spent the past 10 years managing governance, risk and compliance consultancy projects and teams. Serving as the Operations Director for the largest DLP managed service provider, Alastair was involved in the co-ordination and management of over 3 million endpoints globally, correlating business context to large volumes of data, enabling scalable remediation. More recently, as a co-founder of 3GRC, Alastair was exposed to both the problems and solutions influencing the third party management and integrated risk management space. Following Prevalent’s acquisition of 3GRC, Alastair has taken on the role of Senior Vice President of Global Products and Delivery, and with a solid background in ISO27001, ISO22301, and GDPR, Alastair is well versed in current regulations and industry expectations for building robust programmes.

Julie Hoesli Stewart

Julie Hoesli Stewart
Executive Director, Compliance & Operational Risk Control
UBS

Biography

Julie Hoesli Stewart will be presenting at Vendor & Third Party Risk Europe 2020.

man

Sebastian Wilson
Head of Delivery for Google Cloud Platform
HSBC

Biography

Sebastian Wilson will be presenting at Vendor & Third Party Risk Europe 2020.

Steve Wyles

Steve Wyles
Head of Santander Services Risk & Director Third Party Risk Management
Santander UK

Biography

Steve Wyles will be presenting at Vendor & Third Party Risk Europe 2020.

_

View the full agenda here
Register here
Download the brochure here
Why attend

WHY SHOULD YOU ATTEND A CEFPRO CONFERENCE?
HEAR FROM PAST ATTENDEES AND SPEAKERS…

Key topics include
panel discussions

Panel Discussions

Interactive panel discussions are designed to include attendees by running a live Q&A throughout the session.

presentations

Presentations

Hear industry experts provide insights on range of vendor risk issues, challenges and opportunities

Networking

Networking Breaks

Networking opportunities including breakfast, lunch and refreshment breaks on both days, access to all streams and sessions plus gala drinks reception to close the first day.

Meet The Speakers

Meet The Speakers

Continue discussions beyond the auditorium and interact with speakers and attendees after their session.

hear from last years attendees

For further information please call us on +44 (0)207 164 6582 or email james@cefpro.com

Separately Bookable Cyber Forum
Agenda

8:00 Registration and breakfast

8:50 Chair’s opening remarks

REGULATION – PANEL DISCUSSION
09:00 Reviewing the regulatory push for resilience and impact of change on cyber security

  • Collaboration between the industry and regulators: Building governance at a global level
  • Interaction of resilience and consultation paper for outsourcing
  • Cyber resiliency questionnaire
    • Remediating deficiencies identified
    • Approaches to automation
  • Impact of Brexit on future of regulation
  • Disjoint across jurisdictions and requirements from local regulators
  • Defining business services
  • Data privacy and security requirements

Fox Ahmed, Global Head of Regulatory Affairs / Cybersecurity and Technology, BNP Paribas
John O’Neill, Director, MUFG
Charles Forde, Group Head of Operational Risk, AIB

RESILIENCE
09:40 Defining cyber resilience and managing requirements and impact across the organisation

  • Leveraging operational resilience concepts for cyber resilience
    • Risk of terrorist attacks or outages
    • Coronavirus outbreak: Pandemic planning
  • Disaster recovery testing on identified critical systems
  • Cyber resilience and financial crime
    • Managing risk of attacks by hostile actors
    • Protecting systems from penetration
  • Business appetite for resource allocation
  • Security architecture investment for resilience

10:15 Morning refreshment break and networking

THREAT LANDSCAPE – PANEL DISCUSSION
10:45 Identifying and monitoring the evolving threat landscape and ensuring resilience to continued change

  • Scaling up technologies without fully understanding
    • From lab to scale – Machine learning, AI, neural networks
  • Understanding how the introduction of new technologies can impact the financial landscape
  • Increasing ransomware, malware and data encryption
  • Impact of operational resilience and customer focus on shareholder models
  • Keeping up with threat actors and hackers – increasing sophistication of tools
  • Fragility of IT infrastructure
  • New technologies and FinTechs entering the market

Svetlana Belyalova, Head of Operational Risk Management, Rosbank, Member of Société Générale Group
Craig Rice, Director of Resilience, Aviva
Terri Duhon, Non Executive Director and Risk Chair, Morgan Stanley

THREAT INTELLIGENCE
11:25 Leveraging threat intelligence to improve decision making and benefit the business

Simon Cross, Senior Enterprise Architect, Lloyds Banking Group

THIRD PARTY RESILIENCE
12:00 Monitoring risks across the supply chain and identifying exposures and over dependency to increase resilience

  • Leveraging a consistent approach to shared assessments
  • Understanding robustness of third party frameworks
  • Use of third parties to provide cyber services and operate key controls
  • Contract management to ensure controls, accountability and security are legally upheld
  • Downstream and systemic impact of supply chain failure on cyber capability
  • Understanding exposure to third party and impact on criticality of services to customers
  • Inherent security weaknesses within supply chain
    • Managing vendor incidents and crises

Praveen Singh, Director of Technology Risk, ICBC Standard Bank

12:35 Lunch break and networking

CLOUD
1:35 Developing mitigation processes and controls to manage vulnerabilities and systemic risk of leveraging cloud services

  • Levels of migration to public cloud – In house, hybrid, off premises
  • Critical considerations to ensure continuity
  • Resilience of cloud storage services
    • Increased concentration risk with major cloud providers
    • Testing servers to same level as internally
  • Regulatory guidance on concentration risks
  • Systemic impact on the industry if a cloud provider fails
    • Requirements for substitutability
  • Third party dependency risk and business disruption risk
  • Reputational damage associated with attacks on cloud providers

Angela Johnson, Head of Risk across New Technology and Technology Change, Lloyds Banking Group

CYBER INSURANCE
2:10 Reviewing the use of cyber insurance and increasing cyber hygiene to meet policy requirements

  • Concentration risk with cloud providers: Systemic exposure and increased claims Insurance
  • Impact of cyber hygiene on claims
  • Incentivizing good cyber awareness
  • How does cyber insurance fit into overall cyber security frameworks
  • Insurances role in defining business continuity standards
  • Responding to cyber incidents
  • Including vendors in security assessment

Sydonie Williams, Underwriter, Cyber & Technology, Beazley Group

CRITICAL SERVICES
2:45 Identifying critical services and business dependencies to ensure resilience and develop recovery plans

  • Mapping company dependency
  • Testing systems and platforms
  • Approaches to scenario testing – Scenarios for evolving types of cyber risk
    • Third party scenario testing
    • What are the assumptions for failure, response and recovery actions?
  • How granular should you be in identifying your business services
  • Change programme around business services

Amit Lakhani, Global Head of IT and Third Party Risk Management, BNP Paribas

3:20 Afternoon refreshment break and networking

CONTINUITY
3:50 Understanding vulnerabilities and potential loss in a cyber incident and maintaining continuity of critical business functions

  • Understanding critical services and data and ensuring a back up
  • Replicating systems and data to continue business
  • Updating business continuity and disaster recovery to manage cyber attacks
  • Identifying where systems and data has been corrupted
  • Business continuity planning
    • Enhancing plans towards resilience objectives
    • Maintaining and implementing contingency plans
  • Setting contingency measures around data, systems, cloud and third parties

RECOVERY – PANEL DISCUSSION
4:25 Understanding business recovery from a resilience perspective and testing on identified critical services

  • Managing IT incidents and data storage
  • Business continuity for cyber impact
  • Disaster recovery from data corruption
  • Doing business in the face of malware or data corruption
  • Automation and management of delivery
  • Resources to understand cyber resilience and recovery
  • Risk assessing disaster recovery and business continuity plans
  • Impact of recovery on customers and business

Svetlana Belyalova, Head of Operational Risk Management, Rosbank, Member of Société Générale Group
Ben Davis, Head of Business Risk & Controls, Sainsbury’s Bank
Charlotte Branfield, Head of Info Sec Internal Standards & Cyber Advocacy, Global Information Secuirty, Citi (tbc)
Neil Atkinson, Head of Information and Cyber Resilience, Standard Chartered Bank

5:05 Chair’s closing remarks

5:15 End of Forum

View full speaker line up
Register here
Download the brochure here
Hear from cyber, Technology and resilience professionals including:
Fox Ahmed

Fox Ahmed
Global Head of Regulatory Affairs / Cybersecurity and Technology
BNP Paribas

Terri Duhon

Terri Duhon
Non Executive Director and Risk Chair
Morgan Stanley

Angela Johnson

Angela Johnson
Head of Risk across New Technology and Technology Change
Lloyds Banking Group

Neil Atkinson

Neil Atkinson
Head of Information and Cyber Resilience
Standard Chartered Bank

Charles Forde

Charles Forde
Group Head of Operational Risk
AIB

Praveen Singh

Praveen Singh
Director of Technology Risk
ICBC Standard Bank

Craig Rice

Craig Rice
Director of Resilience
Aviva

Svetlana Belyalova

Svetlana Belyalova
Head of Operational Risk Management, Rosbank
Member of Société Générale Group

View full speaker line up
Register here
Download the brochure here
Co-Sponsors

Aravo


Aravo Solutions delivers award-winning, market leading cloud-based solutions for managing third party governance, risk, compliance and performance. We help companies protect their business value and reputation by managing the risks associated with third parties and suppliers, and to build business value by ensuring that their third
party relationships are optimized. Aravo TPRM for Financial Services allows firms to centralize all their third parties into a single, quickstart cloud solution for assessing risk, conducting initial and ongoing due-diligence, managing and monitoring contractual compliance
and performance, and transitioning and off-boarding third parties. Providing unrivaled regulatory agility and ease-of-use, together with actionable executive reporting, Aravo supports a user base of 124,000 corporate users, managing more than 4.3 million third party users in 36 languages and 154 countries. Learn more at aravo.com

IHS Markit


KY3P® is the first centralized data hub that simplifies and standardizes third-party risk management processes. Third-party relationships are under growing scrutiny by global regulators, including the US Office of the Comptroller of the Currency (OCC), FINRA, the UK Financial Conduct Authority, and the Monetary Authority of Singapore. As firms increase reliance on third parties to deliver business-critical processes and services, oversight complexity also increases. The lack of standardization around collecting due diligence data can lead to duplicate efforts, creating inefficient processes that might result in delays in response times, revenue recognition, increased costs and overall inconsistency of information. KY3P®, developed in partnership with global banks, asset managers, and Big 4 consulting firms, is designed to help you simplify third-party risk management processes. By standardizing due diligence questionnaires and storing third-party information centrally, the service minimizes efforts around information requests and responses.

OneTrust


OneTrust Vendorpedia™ is the largest and most widely used technology platform to operationalize third party risk, security, and privacy management. More than 5,000 customers of all sizes use OneTrust, which is powered by 75 awarded patents, to offer the most depth and breadth of any third party risk, security, and privacy solution in the market. OneTrust Vendorpedia is purpose-built software designed to help organizations manage vendor relationships with confidence and integrates seamlessly with the entire OneTrust platform, including – OneTrust Privacy, OneTrust GRC, OneTrust DataGuidance™, and OneTrust PreferenceChoice™.

To learn more, visit vendorpedia.com or connect on LinkedIn, Twitter and Facebook.

SFG


SFG are co-sponsoring Vendor & Third Party Risk Europe 2020.
Associate sponsors

Hellios


Hellios is a supplier information and risk management company founded by people with more than 30 years’ experience each within this niche area.

Hellios collects, validates and monitors supplier information provided by relevant vendors.

Our particular expertise is developing and managing industry communities to create a single pool of accurate and up to date supplier information.

We achieve this by combining world class software, validation services and audit capabilities.

Prevalent


Prevalent is a leader in third party risk management. We help global organizations manage and monitor the security threats and risks associated with third and fourth party vendors. With increasing regulatory pressure, our solutions help reduce risk and cyber exposure to global organizations of all sizes, across industries.

ProcessUnity


ProcessUnity’s cloud-based solutions help organizations of all sizes automate their risk and compliance programs. Our highly configurable, easy-to-use tools significantly reduce manual administrative tasks, allowing customers to spend more time on strategic risk mitigation. As a software-as-a-service technology, ProcessUnity deploys quickly with minimal effort from customers and their IT resources. The inherent efficiency our technology delivers faster, better results, and the ability to scale governance, risk, and compliance programs over time. ProcessUnity’s suite of applications includes Third-Party Risk Management, Policy and Procedure Management, Enterprise Risk Management, Regulatory Compliance Management, Product and Service Offer Management, and more. Learn more at www.processunity.com.
Sponsorship
CAN YOUR ORGANISATION CONTRIBUTE?

Please contact the Center for Financial Professionals today to discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities. For more information on what we can offer, please contact sales@cefpro.com or call us on +44 (0) 20 7164 6582 where a member of the team will be happy to tailor the right package for you.

FAQs
Can I present at the Vendor & Third Party Europe Summit?

Yes, the Center for Financial Professionals are happy to discuss speaking opportunities at the Vendor & Third Party Europe Summit. For further information on this please contact sophie.schembri@cefpro.com or call us on +44 (0) 20 7164 6582.

Are there any rules on the dress code?

Business attire is requested. The Forum is a formal opportunity to network with like-minded professionals and to gain knowledge from the industry’s finest risk management experts.

What is the cost and what is included in the registration fee?

We offer incentives for ‘early bird’ registrants of the Summit, as outlined on our pricing structure. Registration includes breakfast, refreshment breaks, lunches, the cocktail reception at the end of the day, full access to the sessions and exhibition area. Presentations from sessions are also available, subject to speaker approval.

Where can I find the Summit documentation and speaker presentations?

All registered attendees will receive an email with access to documentation and speaker presentations after the Summit* We will work with our presenters to include as many presentations as possible on our App during the Summit. *Please note that our speakers often have to gain permission from their relevant compliance departments to release their presentations. On rare occasions compliance may not allow presentations to be distributed.

Will breakfast, lunch and refreshment be provided?

Yes. As with all of our events the Center for Financial Professionals will be providing brilliant coffee, breakfast, lunch, refreshments, and smaller bites during the networking breaks.

Will there be opportunities to network with other attendees?

There are ample opportunities for networking and interaction throughout the Summit, such as

  • Breakfast, lunch and refreshment breaks
  • Cocktail reception at the end of the day (Subject to confirmation)
  • Q&A, panel discussions and audience participation technology available through the App
I have several colleagues that would like to attend, is there a group discount?

Certainly! We are pleased to offer you a 50% discount on the third registration or provide a fifth registration for free. If you would like to register more than five colleagues please contact us on +44 (0)20 7164 6582. Please note:

  • Registrations must be made at the same time
  • Registrations must come from the organisation
  • The lowest registration will be discounted
Are there opportunities to share my thought-leadership at the Vendor & Third Party Europe Summit?

Yes there are plenty of opportunities for the Center for Financial Professionals to share thought-leadership to the attendees of Vendor & Third Party Europe Summit and our wider risk professionals community. At the event we can distribute your material to the attendees, offer you an exhibition booth, and provide speaking opportunities so that you may enjoy a more prominent presence at the Summit. Visit the Sponsor tab for further information or contact sales@cefpro.com / +44 (0) 207 164 6582.

Are media partnerships available for the Vendor & Third Party Europe Summit?

Yes. As part of a media partnership we can offer a variety of options to increase the branding and awareness of your association, company, certificate, publication or media. We are flexible with what we can offer however we usually:

  • Provide a discounted rate to attend
  • Place your logo and profile on the Summit website
  • Place your logo on promotional content where applicable
  • Distribute your media/marketing at the Summit
  • Promote through social media channels

To discuss this further please contact james@cefpro.com or call +44 (0)20 7164 6582

Co-Sponsors
Aravo
IHS Markit
OneTrust Vendorpedia
SFG
Associate sponsors
Hellios
Prevalent
ProcessUnity

Connect With Us
#VRMEUROPE

Center for Financial Professionals tm