Why should you attend?

Join us in London on June 15-16 for our anticipated 9th Edition Summit.

Following two sold out events in 2022, Vendor & Third Party Risk Europe is the go-to risk Summit for vendor and third party industry experts and professionals at global institutions looking to advance their professional development and make meaningful connections.

Key highlights

  • RESILIENCE:
    Reviewing and managing the regulatory expectations on external services provide and driving resilience of supply chains
  • INFOSEC:
    Managing the increase of data breach risks through third parties with the usage of data sharing
  • GEOPOLITICAL RISK:
    Pre-empting the impact of geopolitical risks on vendors and the emerging effects within the supply chain
  • PROCUREMENT:
    Ensuring effective due diligence across vendor lifecycles by aligning procurement and rsks
  • NTH PARTY:
    Managing risk across supply chain and monitoring vulnerabilities beyond third parties
  • CYBER SECURITY:
    Managing risk and identifying vulnerabilities beyond a tick box exercise
  • EXIT PLANNING:
    Developing exit plans for material suppliers and testing planned and unplanned exits
  • ESG:
    Reviewing ESG frameworks for third parties and their considerations across the vendor lifecycle

Hear from subject matter experts and industry front-runners

An engaging and interactive agenda spread across 2-days

Participate in a comprehensive exploration of the topics at hand via presentations, panel discussions, and live Q&As to facilitate learning and engagement.

Listen in as subject matter experts share their knowledge

Our line-up of 30+ knowledgeable and experienced practitioners speakers bring the highest standard within the industry, offering fresh perspectives and insights for you to return to your department with.

7+ hours of available networking opportunities

Continue conversations from inside the auditorium over coffee, lunch, and at our complimentary drinks reception. Make meaningful career-long industry connections to use to your professional advantage.

Key speakers

Joanne Emmerson

Joanne Emmerson
Head of Third Party Risk Management Oversight
NatWest

Kishan Majitha

Kishan Majitha
Executive Director, Cyber and Technology Controls
J.P. Morgan Chase

Gemms_Stewart-120x120

Gemma Stewart
Global Head of Vendor Management
Zurich Insurance Company

1669827087271-1-120x120

Hasintha Gunawickrema
Chief Control Officer, Wealth & Personal Banking
HSBC

Ameet_Jugnauth-1-120x120

Ameet Jugnauth
Director, Cyber Governance, Risk and Compliance
Capital One

Joe_Bakowski_Metro_Bank-1-120x120

Joe Bakowski
Director of Procurement, Supplier Risk & Commercial Management
Metro Bank

1516872249165-2-120x120

Rosalyn Aryee
Head of Outsourcing & TPRM and Operational Resilience
Santander Corporate & Investment Banking

Des Campbell

Desmond Campbell
Vice President – Compliance Oversight and Operational Risk
Barclays Bank

Alex Dorlandt

Alex Dorlandt
Head of Risk and Policy
Lloyds Banking Group

1516234598423-2-120x120

Mike Day
Head of Group IT Procurement Third Party Management Programme
RSA Insurance

Session previews and related insights

Get an insight of what to expect from the Summit with our past and present speaker session previews.

Developing IT and operational resilience and reviewing progress towards implementation

Developing IT and operational resilience and reviewing progress towards implementation Benjamin Brundell, Head of Operational and Technology Risk, Lloyds Banking Group Below is an insight into what can be expected from Benjamin's session at Risk EMEA 2023 {{ vc_btn: title=Find+out+more+about+Risk+EMEA+2023&style=outline-custom&outline_custom_color=%23001c64&outline_custom_hover_background=%23001c64&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Frisk-emea%252F%7Ctarget%3A_blank }} The views and opinions expressed in this article are those of the thought leader as

Managing increased risk of data breaches through third parties with increased data sharing

Managing increased risk of data breaches through third parties with increased data sharing Matthew Browning, former Head of Cyber Oversight, Direct Line Group Below is an insight into what can be expected from Matthew's session at Vendor & Third Party Risk Europe 2023. {{ vc_btn: title=Find+out+more+about+Vendor+%26amp%3B+Third+Party+Risk+Europe&style=outline-custom&outline_custom_color=%23001c64&outline_custom_hover_background=%23001c64&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fvendor-third-party-risk-europe%252F }} The views and opinions expressed in this article are

The business impacts of TPRM technology in 2023

The business impacts of TPRM technology in 2023 Brian Shaw, Director of Financial Services, Mirato Below is an insight into what can be expected from Brian's session at Vendor & Third Party Risk Europe 2023. {{ vc_btn: title=Find+out+more+about+Vendor+%26amp%3B+Third+Party+Risk+Europe&style=outline-custom&outline_custom_color=%23001c64&outline_custom_hover_background=%23001c64&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fvendor-third-party-risk-europe%252F }} The views and opinions expressed in this article are those of the thought leader as an individual,

Third-party management success secrets: mastering the art of due diligence and risk management

Third-party management success secrets: mastering the art of due diligence and risk management Nikki Stoy, GRC Cloud Specialist, OneTrust Below is an insight into what can be expected from Nikki's session at Vendor & Third Party Risk Europe 2023. {{ vc_btn: title=Find+out+more+about+Vendor+%26amp%3B+Third+Party+Risk+Europe&style=outline-custom&outline_custom_color=%23001c64&outline_custom_hover_background=%23001c64&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fvendor-third-party-risk-europe%252F }} The views and opinions expressed in this article are those of the thought

Sponsors

Knowledge partners

Co-sponsors

Associate sponsors

Content and media partners

Agenda

8:00 – 8:50

Registration and breakfast

8:50 – 9:00

Chair’s opening remarks

Penny Flint

Penny Flint, Partner, PwC UK

9:00 – 9:45

RESILIENCE – PANEL DISCUSSION
Reviewing regulatory expectations and driving resilience of supply chains

Identifying important businesses and systems
Determining tolerance levels
Scenario testing to reflect emerging risks
Proactive and continuous monitoring
Regulatory approach to operational resilience
Managing geopolitical repercussions
Overlaps of third party risk and resilience requirements

1516872249165-120x120

Rosalyn Aryee,  Head of Outsourcing & TPRM and Operational Resilience, Santander Corporate & Investment Banking

1652041136014-120x120

Sonia Sordini, Head of Group Third Party Risk Management and Governance, QBE Insurance

1669827087271-120x120

Hasintha Gunawickrema, Chief Control Officer, Wealth & Personal Banking, HSBC

Sundeep Gupta

Sundeep Gupta, Associate Partner, PA Consulting

Wayne Scott.png

Wayne Scott, Regulatory Compliance Lead, NCC Group

9:45 – 10:20

EXIT PLANNING
Reviewing current legislation for exit and stressed exit planning of third parties

Updating exit plans
Prioritizing material and high risk third parties
Frequency of tests and testing exit plans
Practicality of running tests
Testing exit plans for a stressed exit scenario
Developing and testing enhanced exit plans
Understanding contingencies and alternative providers

Margaret Mitchell Ofori

Michelle Adu-Darko, VP TPRM and Outsourcing, Santander Corporate & Investment Bank

10:20-10:50

Morning refreshment break and networking

10:50-11:25

CONCENTRATION RISK
Approaches to measure and quantify concentration risk and translating to decision making

Measurement strategies of concentration risk
Application of methodologies
Establishing an industry wide consensus
Determining risk appetite
Managing supply chain interlinkages
Identifying measurable tolerances
Inclusion of third party subcontractors
Establishing limits and thresholds for concentration risk
Reviewing EBA guidelines on concentration risk

1516234598423-1-120x120

Mike Day, Head of Third Party Management, RSA Insurance

11:25-12:10

CRITICAL SUPPLIERS – PANEL DISCUSSION
Developing a consistent and standardized approach to criticality and materiality

Defining criteria for definition of critical
Defining services and suppliers
Industry approaches to identifying criticality
Comparing industry and regulatory view of critical
Effective oversight of critical third parties
Managing concentration of critical suppliers
Determining level of scrutiny over critical third parties
Regulation of critical third parties
Due diligence on an ongoing basis

Anil Agarwal

Anil Agarwal, Third Party Governance, BNY Mellon

Shabbir Tahasildar

Shabbir Tahasildar, Operational Risk Lead for Technology, Information Security and Third-Party Risk, Handelsbanken plc. (UK)

Anne McGowan

Anne McGowan, Head of IT Supplier Management, Governance & Risk, Lloyds Banking Group

12:10-12:45


The business impacts of TPRM technology in 2023

Process improvement reduction
Realising human capital potential
Maximising the value of data
Reducing hidden risk
Continuous monitoring assessment
Transitioning from survival to innovation

Screenshot_2022-03-08_at_15.38.05-120x120

Brian Shaw,  Director of Financial Services, Mirato

12:45-1:45

Lunch break and networking

1:45-2:20

AUTOMATION
Making better Due Diligence decisions

Managing vendors in an ever-changing regulatory environment
Mitigating tedious processes that are prone to error
Assessing the impact of new technologies with their reliability and maturity
Staying ahead of the curve by leveraging crucial data, automated procedures, validated assessments and managed services.

1664373558209-120x120

Rogier Binsbergen,  Director, Commercial Lead EMEA, KY3P® S&P Global

Eustathios Triantafellou

Eustathios Triantafellou, Commercial Director, KY3P® S&P Global

2:20-2:55

CYBER SECURITY
How the approach to cyber security has altered in recent years

Highlighting the complications of cyber to navigate a clear landscape
What questions should I ask or be prepared to answer?
What head start can we make in preparing the way to procure or deliver a service with cyber security in mind?
What new risks are coming our way and how can we prepare ourselves?

THOM3548_ThomasMurrary-29

Simon Thomas, Executive Chairman, Thomas Murray

2:55-3:30


Identifying vulnerabilities and managing risk beyond a tick box exercise

Collecting real time intelligence
Partnering with suppliers to manage cyber risks
Enhancing cyber resilience
Moving to a holistic resilience position
Approaches to manage denial of service attacks
Continuous monitoring and control to alert of risks
Overlaps between data privacy and cyber requirements
Supplier assurance controls

Ameet_Jugnauth-120x120

Ameet Jugnauth, Director, Cyber Governance, Risk and Compliance, Capital One

3:30-4:00

Afternoon refreshment break and networking

4:00-4:45

INFOSEC – PANEL DISCUSSION
Managing increased risk of data breaches through third parties with increased data sharing

Ensuring security of smaller vendors
Reviewing cybersecurity protection and maturity
Gaining visibility of entire supply chain
Moving ratings from declarative to evidence based
Ensuring maturity of vendor cybersecurity practices
Alignment of risk and procurement to gain visibility of supply chain
Ensuring effective handling and treatment of data
Understanding supply chain vulnerabilities beyond third parties
Risk assessing third party cybersecurity

Kishan-120x120

Kishan Majitha, Executive Director, Cyber and Technology Controls, JP Morgan Chase

image-8-120x120

Haydn Brooks, CEO, Risk Ledger

1517416708078-120x120

Matthew Browning,  former Head of Cyber Oversight, Direct Line Group

Anders Norremo

Anders Norremo, VP Product Management for TPRM, Bitsight

4:45-5:20

CYBER SECURITY
How to manage the cybersecurity footprint of an expanding network?

The network cyber challenge: Third parties – the weakest link
A necessary cooperation: InfoSecurity, Procurement and Business collaboration on cyber risks mitigation
Why is an evidence-based assessment the only reliable way to evaluate your cyber risks?
Assessed? What’s next? An efficient remediation process and scale up

Thibault_Lapedagne_1-scaled-120x120

Thibault Lapedagne, Cybersecurity Research Director, CyberVadis

5:20-5:30

Chair’s closing remarks

5:30

End of day 1 and networking drinks reception

8:00 – 8:50

Registration and breakfast

8:50 – 9:00

Chair’s opening remarks

1664373558209-120x120

Day two moderator:
Rogier Binsbergen, Director, Commercial Lead EMEA, KY3P®, S&P Global

9:00 – 9:35

PROCUREMENT
Aligning procurement and risks to ensure effective due diligence across vendor lifecycle

Information security considerations at procurement stage
Ensuring cybersecurity checks at onboarding
ESG considerations during tender process
Managing onboarding within procurement framework
Enhancing third party risk and due diligence
Onboarding practices and due diligence
Ensuring robustness of due diligence processes

Gemms_Stewart-120x120 (1)

Gemma Stewart, Global Head of Vendor Management, Zurich Insurance Company

9:35-10:10

STRATEGIC SUPPLIER MANAGEMENT
Journey to standardisation – optimising efficiency and maturation of strategic supplier management programs

How can standards and regulations align?
The integrated acceptance of standard risk frameworks and diligence practices.
Achieving common set of set of third-party diligence and management.
Focus on cyber, ESG, and privacy standards
Guidance to program managers and risk professionals – so does and don’t dos

1644519167897-1-120x120

Andrew Moyad, Chief Executive Officer, Shared Assessments

10:10-10:40

Morning refreshment break and networking

10:40-11:15

DUE DILIGENCE
Third-party management success secrets: mastering the art of due diligence and risk management

The primary goals of successful TPRM and TPDD programs
The distinction between the two discipline areas
Details about the unique risk domains for both programs
How to align your TPRM and TPDD programs to achieve workflow efficiencies

image-32-120x120

Nikki Stoy, GRC Cloud Specialist, OneTrust

11:15-11:40

CONTINUOUS RESILIENCE
Carve through the noise by prioritizing the most critical security threats

Identify threats to your security posture to make proactive, informed decisions
Stay one step ahead of threat actors with actionable insights
Prioritize remediation of critical threats using limited resources
Achieve continuous, outside-in visibility to reduce your cyber risk exposure
Optimize and automate third-party risk management
Consolidate and integrate vendor risk data into your existing security stack
Set KPIs, track ROI, and communicate clearly to stakeholders
Ruthlessly prioritize to keep your organization secure
Use your security posture to help make your organization the vendor of choice

Will Gray

Will Gray, Field Sales Director EMEA, SecurityScorecard

11:40-12:25

TECHNOLOGY & DATA
Leveraging data insights and technology capabilities to better understand supply chain risks

Data integration and visualization tools for a holistic view
Gathering data beyond questionnaire responses
Collecting monitoring information
Leveraging data to represent true risks
Integrating technology into systems
Using third party tools to provide AI

1676647776314-120x120

Hannah Macdonald, Head of Procurement & Third Party Risk, Supplier Operations Lead, Monzo

12:25-1:25

Lunch break and networking

1:25-2:00

HOLISTIC VIEW
Viewing suppliers on aggregate across portfolio for a holistic view of risk

Developing tangible actions off of data
Monitoring risks beyond cyber
Reviewing capabilities to manage end to end risk lifecycle
Providing board and senior management full visibility
Developing a centralized oversight function
Creation of oversight and ongoing monitoring
Gaining a full view of outsourced activities

image-58-scaled-120x120 (1)

Joanne Emmerson, Head of Third-Party Risk Management, NatWest

2:00-2:45

GEOPOLITICAL RISK – PANEL DISCUSSION
Pre-empting and managing the impact of geopolitical risks on vendors and supply chain

Repercussions and ripple effect of Russia invasion of Ukraine
Identifying emerging risks
Monitoring instabilities globally
Energy crisis impact on supply chains
Increased financial health risks
Impact of European crises on supply chains
Long term repercussions from Covid-19

Alex Dorlandt

Alex Dorlandt, Head of Risk and Policy, Lloyds Banking Group

MErlin-Linehan-120x120

Merlin Linehan, Risk Manager, EBRD

2:45-3:15

Afternoon refreshment break and networking

3:15-3:50

NTH PARTY
Reviewing potential risks within supply chain ecosystem

Contractual requirements for fourth party oversight
Mapping critical third parties and outsourcing
Expectations to map extended supply chain
Including contractual provisions for fourth parties
Developing controls at fourth party level
Reviewing cross sector best practice mapping supply chains
Auditability and onsite review requirements of material subcontractors

1517609665008-120x120

Desmond Campbell, Vice President, Compliance Oversight and Operational Risk, Barclays

3:50-4:35

ESG – PANEL DISCUSSION
Reviewing footprint of third parties and including ESG considerations across lifecycle

Reducing carbon footprint across supply chain
Measuring carbon footprint in an intangible supply chain
Engaging third parties in ESG requirements
Meeting regulatory and internal expectations
Aligning supplier management process with ethical values
Application of metrics to small organizations
Applying leverage to large organizations
Climate risk adaptation: Measuring physical risk through science and technology
Measuring financial impact of climate risk for the next two decades with confidence

Anita_Barber_2-120x120

Anita Barber, VP, Supplier Management, HSBC

Edit

Edit König-Bihari, Sustainable Supply Chain, Danske Bank

Joe_Bakowski_Metro_Bank-120x120

Joe Bakowski, Director of Procurement, Supplier Risk & Commercial Management, Metro Bank

Lukky Ahmed

Lukky Ahmed, CEO & Co-Founder, Climate X

4:35-5:10

RELIANCE
Managing the increased use and reliance on external service providers

Increased use of vendors as a result of Covid-19
Reliance on external services to enhance digitalization
Tracking data across vendors
Increased risk with increased reliance
Monitoring and oversight of non-critical vendors
Cybersecurity audit of all third parties
Aligning third parties with company strategy

1616187138808-120x120

Daniel Crease, former Managing Director, Third Party Risk Management and Operational Resilience, Deutsche Bank

5:10-5:20

Chair’s closing remarks

5:20

End of Summit

Would your organization like to partner with us on this event?

To discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities, please contact sales@cefpro.com or call us on +1 888 677 7007 ext. 207 for more information.

Sponsors

Knowledge partners

Co-sponsors

Associate sponsors

Content and media partners

Speakers

Margaret Mitchell Ofori

Michelle Adu-Darko
VP TPRM and Outsourcing
Santander Corporate & Investment Banking

Anil Agarwal

Anil Agarwal
Third Party Governance
BNY Mellon

Lukky Ahmed

Lucky Ahmed
CEO & Co-Founder
Climate X

1516872249165-120x120

Rosalyn Aryee
Head of Outsourcing & TPRM and Operational Resilience
Santander Corporate & Investment Banking

Joe_Bakowski_Metro_Bank-120x120

Joe Bakowski
Director of Procurement, Supplier Risk & Commercial Management
Metro Bank

Anita_Barber_2-120x120

Anita Barber
VP, Supplier Management
HSBC

1664373558209-120x120

Rogier Binsbergen
Director, Commercial Lead EMEA
KY3P® S&P Global

image-8-120x120

Haydn Brooks
CEO
Risk Ledger

1517416708078-120x120

Matthew Browning
former Head of Cyber Oversight
Direct Line Group

1517609665008-120x120

Desmond Campbell
Vice President Compliance Oversight and Operational Risk
Barclays

1616187138808-120x120

Daniel Crease
former Managing Director, Third Party Risk Management and Operational Resilience
Deutsche Bank

1516234598423-1-120x120

Mike Day 
Head of Third Party Management
RSA Insurance

Alex Dorlandt

Alex Dorlandt
Head of Risk & Policy
Lloyds Banking Group

image-58-scaled-120x120 (1)

Joanne Emmerson
Head of Third-Party Risk Management
NatWest

Penny Flint

Penny Flint
Partner
PwC UK

Will Gray

Will Gray
Field Sales Director
SecurityScorecard

1669827087271-120x120

Hasintha Gunawickrema
Chief Control Officer, Wealth & Personal Banking
HSBC

Sundeep Gupta

Sundeep Gupta
Associate Partner
PA Consulting

Ameet_Jugnauth-120x120

Ameet Jugnauth
Director, Cyber Governance, Risk and Compliance
Capital One

Edit

Edit König-Bihari
Sustainable Supply Chain
Danske Bank

Thibault_Lapedagne_1-scaled-120x120

Thibault Lapedagne
Cybersecurity Research Director  
CyberVadis

MErlin-Linehan-120x120

Merlin Linehan
Risk Manager
EBRD

1676647776314-120x120

Hannah Macdonald
Head of Procurement &Third Party Risk, Supplier Operations Lead
Monzo

Kishan-120x120

Kishan Majitha
Executive Director, Cyber and Technology Controls
JP Morgan Chase

Anne McGowan

Anne McGowan
Head of Supplier Management, Governance & Risk
Lloyds Banking Group

1644519167897-1-120x120

Andrew Moyad
Chief Executive Officer
Shared Assessments

Anders Norremo

Anders Norremo
VP, Product Management for TPRM
Bitsight

Wayne Scott.png

Wayne Scott
Regulatory Compliance Lead
NCC Group

Screenshot_2022-03-08_at_15.38.05-120x120

Brian Shaw
Director of Financial Services
Mirato

1652041136014-120x120

Sonia Sordini
Head of Group Third Party Risk Management and Governance
QBE Insurance

Gemms_Stewart-120x120 (1)

Gemma Stewart
Global Head of Vendor Management
Zurich Insurance Company

image-32-120x120

Nikki Stoy
GRC Cloud Specialist
OneTrust

Shabbir Tahasildar

Shabbir Tahasildar
Operational Risk Lead for Technology, Information Security and Third-Party Risk
Handelsbanken plc. (UK)

THOM3548_ThomasMurrary-29

Simon Thomas
Executive Chairman 
Thomas Murray

Eustathios Triantafellou

Eustathios Triantafellou
Commercial Director
KY3P® S&P Global

Sponsors

Knowledge partners

Co-sponsors

Associate sponsors

Content and media partners

Venue & FAQs

Leonardo Royal Hotel London
Tower Bridge
45 Prescot Street
London
E1 8GP

Accommodation is available at the venue.

Frequently Asked Questions

Can I share my thought leadership at Vendor & Third Party Risk Europe?

CeFPro are happy to discuss speaking opportunities at the Vendor & Third Party Risk Europe Summit. For further information on this please contact production@cefpro.com if you are from a financial institutions / sales@cefpro.com if you are an information/service provider or call us on +44 (0)207 164 6582.

Will there be opportunities to network with other attendees?

There are ample opportunities for networking and interaction throughout the Summit, such as:

  • Breakfast, lunch and refreshment breaks
  • Drinks reception at the end of day-1
  • Q&As, panel discussions, and audience participation technology

What is included within the registration fee?

Registration includes breakfast, refreshment breaks, lunches, the drinks reception at the end of day-1, full access to the sessions and exhibition area. Presentations from the sessions are also available via our post-event website, available on CeFPro Connect under Course Materials once the Summit has taken place.

Where can I find the Summit documentation and speaker presentations?

All registered attendees will receive an email with access to documentation and speaker presentations after the Summit* We will work with our presenters to include as many presentations as possible on our App during the Summit.

*Please note that our speakers often have to gain permission from their relevant compliance departments to release their presentations. On rare occasions compliance may not allow presentations to be distributed.

Will breakfast, lunch and refreshment be provided?

Yes. As with all of our events the Center for Financial Professionals will be providing brilliant coffee, breakfast, lunch, refreshments, and smaller bites during the networking breaks.

Are there any rules on dress code?

Business attire is requested. The Summit is a formal opportunity to network with like-minded professionals and to gain knowledge from the industry’s finest risk management experts.

Register

Register for Vendor & Third Party Risk Europe today and join the likes of 150+ industry professionals and subject matter experts looking to engage in meaningful conversation and discuss the latest developments and challenges within the vendor and third party risk sector.

Register before May 26 and take advantage of our early bird rate.

Don’t miss out, we only have a limited number available and prices will increase.

Need assistance with your registration? Get in touch with us via email below, or call us on +44 (0)207 164 6582.

Standard rate | After May 26

Representing a financial institution or government body
£999*

E.g. Bank, Insurance company, Asset manager, Regulator

Representing an information or service provider
£1799*

E.g. Consultant, Vendor, Executive search firm, Law firm

Prices do not include VAT

*To qualify for the preferential ‘early bird’ rates, registration must be received by the close of the ‘early bird’ working day, and payment can be made at the time of registering, or up to a week after registration is made an invoice sent. CeFPro reserves the right to increase rates should payment be delayed significantly. Should a delegate register at a rate that is inaccurate, CeFPro reserves the right to issue an additional invoice for the outstanding amount.