Why should you attend?

CeFPro are pleased to announce the launch of our 9th Annual of Vendor and Third Party Risk Congress in New York City on June 5-6, 2024. Selling out yearly and highly anticipated, Vendor & Third Party Risk USA is the must-attend conference for TPRM professionals to expand their knowledge.

The agenda for 2024 has been re-vamped after much demand for increased focus on resilience and some of the regulatory changes that have increased the prominence of TPRM over the last year. The agenda features two streams, the first being the main event, the second a breakout on resilience, including a number of regulatory initiatives.

As an attendee you will gain insight from 40+ TPRM professionals as they delve into key challenges being faced within the industry through in-depth presentations and lively panel discussions.

Over 30 sessions across 2 interactive workstreams:

THIRD PARTY RISK MANAGEMENT

RESILIENCE

  • TPRM
  • Due Diligence
  • Fourth Party Risk
  • Vendor management capabilities
  • Vendor Relationships
  • Contract Management
  • AI
  • ERM
  • Interagency Guidance 
  • Resilience
  • Critical Relationships 
  • BCM 
  • Cyber Resilience 
  • Ransomware
  • Technology
  • Exit Planning

Interact with industry front-runners paving the way in third party risk

Industry leading interactive agenda spread across 2 days

With the demand of resilience within firms and from regulatory expectations CeFPro has revamped its previous events to include two interactive workstream’s focusing on third party risk management and resilience.

Gain in-depth knowledge from an extensive line up of subject matter experts

Be part of North America’s industry leading vendor and third party risk congress, where you will hear from 40+ industry professionals sharing their knowledge on top of mind challenges.

7+ hours of available networking opportunities

Continue conversations from inside the auditorium over coffee, lunch, and at our complimentary drinks reception. Make meaningful career-long industry connections to use to your professional advantage.

Key speakers for the 2024 Congress

Dolly_Singh_Head_Shot

Dolly Singh
MD, Global Head of Third Party Oversight
JPMorgan Chase

Tom_Kartanowicz

Tom Kartanowicz
Regional CISO, Europe and Americas
Standard Chartered Bank

Melissa Mellen

Melissa Mellen
Head of Third Party risk Management
Federal Reserve Bank of New York

SL_Workpic

Scot Lynch
Executive Director
Morgan Stanley

Profile_Picture_2023_Edited_Full_Res

Kristen Schneider
Director, Business Strategy and Planning
USAA

Kholo3

Kholofelo Mothibi
Head of TPRM
Corebridge Financial

David_Braxton-ezgifcom-jpg-to-webp-converter

David N. Braxton
SVP, Global Third Party Risk
Bank of America

Sri_Intan

Sri Intan
Head of Vendor Risk Management for North America
Commerzbank AG

Spruille_Braden

Spruille Braden
Enterprise Head of Operational Resilience
Citi

scotiabank

Preety Tulsian
Head of Third-Party Risk US, Enterprise Risk
Scotiabank

Session previews and related insights

Get an insight of what to expect from the Congress with our past and present speaker session previews.

Evolving TPRM strategies to align with regulatory change and ensure security across supply chains

Evolving TPRM strategies to align with regulatory change and ensure security across supply chains Maya Goethals, Director, Compliance and Risk Management, Bank of America Merill Lynch Below is an insight into what can be expected from Stefano's session at Risk Evolve 2024. {{ vc_btn: title=Find+out+more+about+CeFPro%27s+Risk+Evolve+2024&style=outline-custom&outline_custom_color=%23001c64&outline_custom_hover_background=%23001c64&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Frisk-evolve%252F }} The views and opinions expressed in this article are those of the

Staying vigilant: 7 practical tips for ongoing TPRM monitoring

Staying vigilant: 7 practical tips for ongoing TPRM monitoring Matthew Moog, General Manager, Third-Party Risk Management, OneTrust Below is an insight into what can be expected from Matt's session at Third Party & Supply Chain Risk USA 2023. {{ vc_btn: title=Find+out+more+about+Third+Party+%26amp%3B+Supply+Chain+Risk+USA&style=outline-custom&outline_custom_color=%23d51224&outline_custom_hover_background=%23d51224&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fthird-party-supply-chain-risk%252F }} The views and opinions expressed in this article are those of the thought leader

Gaining visibility across suppliers and subcontractors and enhancing resilience

Gaining visibility across suppliers and subcontractors and enhancing resilience Sara Ricci, Information Risk Governance and Resilience Executive, HBC Below is an insight into what can be expected from Sara's session at Third Party & Supply Chain Risk USA 2023. {{ vc_btn: title=Find+out+more+about+Third+Party+%26amp%3B+Supply+Chain+Risk+USA&style=outline-custom&outline_custom_color=%23d51224&outline_custom_hover_background=%23d51224&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fthird-party-supply-chain-risk%252F }} The views and opinions expressed in this article are those of the thought

Human trafficking and exploitation risk exposure

Human trafficking and exploitation risk exposure Christopher Kemp, Senior Operations Manager, Anti-Human Trafficking Intelligence Initiative Below is an insight into what can be expected from Christopher's session at Third Party & Supply Chain Risk USA 2023. {{ vc_btn: title=Find+out+more+about+Third+Party+%26amp%3B+Supply+Chain+Risk+USA&style=outline-custom&outline_custom_color=%23d51224&outline_custom_hover_background=%23d51224&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fthird-party-supply-chain-risk%252F }} The views and opinions expressed in this article are those of the thought leader as an

Take a look at what was said about last year’s event

Get an insight of what to expect from the Congress with our past and present speaker session previews.

Would your organization like to partner with us on this event?

To discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities, please contact sales@cefpro.com or call us on +1 888 677 7007 for more information.

2024 Sponsors

Co-sponsors

Aravo logo
Black Kite are associate sponsors for CeFPro Events' Third Party & Supply Chain Risk USA: Cross Industry Congress
Security Scorecard are co-sponsors to Third Party & Supply Chain Risk USA by CeFPro Events

Associate sponsors

Archer-logo-RGB1

Content and media partners

CeFPro Connect, Knowledge sharing platform for risk professionals

Agenda

8:00 – 8:50

Registration and breakfast

8:50 – 9:00

Chair’s opening remarks

9:00 – 9:45

REGULATION – PANEL DISCUSSION
Understanding and effectively managing multiple regulatory agendas and managing third party risk

View Session Details

  • Overcoming and managing risk in a space with a heavy focus on compliance
  • Reviewing the current regulatory expansion on third party risk
  • Realigning procedures and policies to meet regulatory demands
  • Fed requirements for increased governance on risk reporting
  • Reviewing SEC proposal for conflict of interest in the third party risk space
  • Basel committee consultation on outsourcing principles
  • Managing the NYDFS cybersecurity regulation
  • Finalization of FSB’s third party risk management toolkit
1634700032052-ezgifcom-jpg-to-webp-converter

Melissa Mellen, Head of Third Party Risk Management, Federal Reserve Bank of New York

Stuart_Hoffman_Head_shot-ezgifcom-jpg-to-webp-converter

Stuart Hoffman, Bank Examiner, OCC

Babette_Reynolds_-_Professional_Photo_2-ezgifcom-jpg-to-webp-converter

Babette Reynolds, Compliance Senior Director, Head of Enterprise Compliance Program Office, Truist

9:45-10:20

THIRD PARTY RISK MANAGEMENT
Reviewing how to develop current third party risk programs to enhance maturity and risk mitigation

View Session Details

  • Understanding the interconnectedness of third parties used
  • Leveraging risk intelligence to effectively manage third party risk
  • Reviewing enhanced monitoring requirements of third parties
  • Ensuring effective oversight of third parties
  • Enhanced expectations of a third party deemed critical at the system level
  • Improving value proposition in third party risk programs
  • Responsibility of reporting risks found in the program

10:20-10:50

Morning refreshment break and networking

TPRM

10:50-11:35

FOURTH PARTY RISK – PANEL DISCUSSION
Developing capabilities to monitor and review the increased risk across fourth parties

View Session Details

  • Expanding programs to include fourth, fifth and nth parties
  • Ensuring a sufficient inventory list of your fourth parties
  • Assurance of fourth parties through tools and third parties
  • Advancing policies and procedures around fourth parties
  • Utilizing data gathered from fourth parties
  • Assessing vulnerabilities of fourth parties
  • Enforcing controls with a fourth party
Madiha--ezgifcom-jpg-to-webp-converter

Madiha Fatima, Executive Director, JP Morgan

Kholo3-ezgifcom-jpg-to-webp-converter

Kholofelo Mothibi, Head of TPRM, Corebridge Financial

David_Braxton-ezgifcom-jpg-to-webp-converter

David N. Braxton, SVP, Global Third Party Risk, Bank of America

RESILIENCE

10:50-11:35

BCM – PANEL DISCUSSION
Collaborating with third parties to ensure business continuity and stability across the supply chain

View Session Details

  • Effectively reviewing third party business continuity controls
  • Integration of business continuity plans between the client and third parties
  • Importance of an effective business continuity plan on supply chains
  • Challenges of fully integrating continuity between different systems
  • Importance of a fully integrated business continuity playbook
  • Purpose of sharing access to individual networks
Spruille_Braden-ezgifcom-jpg-to-webp-converter

Spruille Braden, Enterprise Head of Operational Resilience, Citi

Screenshot_2022-03-08_at_153415-ezgifcom-jpg-to-webp-converter

Olga Voytenko, Managing Director, Head of Operational Resilience,
Forbright Bank

Brett_Turk-ezgifcom-jpg-to-webp-converter

Brett Turk, Global Head of Business Continuity and Crisis Management, Vangaurd

fusion-logo_rgb

Industry Expert, Fusion Risk Management

11:35-12:10

TPRM IN AN UNSTABLE WORLD
Assessing the results of Aravo’s third party risk maturity survey and report

View Session Details

  • Review overall survey results and what they mean for the industry
  • Determine the current maturity of TPRM programs in the marketplace and why it may be a concern
  • Identifying critical elements for maturing and enhancing TPRM programs
  • Understanding the strategic value of investing in a competent, adaptable, and resilient TPRM progran
  • Examining how leadership defines performance, priorities, and next steps
  • Assessing the measurability and impact of mature TPRM programs on the business
Loren Johnson

Loren Johnson, Director of Product Marketing, Aravo

11:35-12:10

INCIDENT MANAGEMENT
Developing effective response plans to manage incidents from vendors under attack

View Session Details

  • Ensuring better understanding around a vendors incident response
  • Reviewing incidents to potentially identify vulnerabilities
  • Joint testing incident management with vendors
  • Keeping up with the pace of incidents
  • Demand for more timely updates on incidents
  • Reviewing the increase of incidents due to cyber activity

12:10 – 12:45

TPRM STRATEGY
Strategically positioning third party risk programs to align with strategic goals

View Session Details

  • Understanding long term risks failure to align strategic goals with outsourcing
  • Importance of aligning goals with risk appetite when outsourcing
  • Correlation between aligning goals when outsourcing with a firm’s maturity
  • Managing a lack of maturity in programs to align strategic goals
  • Reducing unnecessary outsourcing
  • Neglection of planning outsourcing from firms and its impacts
  • Effective due diligence in planning and selecting a correct vendor
Jeffrey Wheatman, Cyber Risk Evangelist, Black Kite is speaking at Third Party & Supply Chain Risk USA

Jeffrey Wheatman, Cyber Risk Evangelist, BlackKite

12:10-12:45

INTERAGENCY GUIDANCE – JOINT PRESENTATION
Leveraging interagency guidance as a framework to effectively set up and manage third party risk management programs

View Session Details

  • Alignment and clear understanding of guidelines
  • Increased continuous monitoring requirements
  • Understanding the broader definition of a third party
  • Increased board oversight on critical relationships
  • Impact of guidance on smaller-mid-sized firms
  • Preparing for implementation deadline of inter-agency guidance
  • Impacted of guidance on current third party risk programs
Pro-ezgifcom-jpg-to-webp-converter

Tausif Khan, Director, Third Party Risk, DTCC

Kristin_Ciridon-ezgifcom-jpg-to-webp-converter

Kristin L. Ciridon, Head of Third Party Risk, DTCC

12:45-1:45

Lunch break and networking

1:45-2:20

VENDOR MANAGEMENT CAPABILITIES
Reviewing the evolution of vendor management: Understanding what it takes for firms to be “brilliant at the basics”

View Session Details

  • Ensuring clear alignment and understanding of what “good vendor management” looks like
  • Importance of winning trusted advisor status with stakeholders
  • Overcoming the challenges when building a relationship vendor management team
    • Skills, mindset and culture
  • Investing in process and platforms to ensure performance goals are achieved
  • Understanding the importance of balancing supplier risk vs. supplier commercials
Naveen_B_HS-ezgifcom-jpg-to-webp-converter

Naveen Balakrishnan, Head of Third Party Risk Management,
TD Bank

1:45-2:20

CRITICAL RELATIONSHIPS
Assessing the maturity of third parties and updating processes for effective oversight of critical relationships

View Session Details

  • Assessing a firms resilience when outsourcing to critical third party relationships
  • Addressing the influence the UK critical third party regimes will have on US firms
  • Determining the definition of a critical third party
  • Enhancing operating models to better manage critical relationships
  • Overcoming difficulties of identifying critical third parties
  • Critical relationship approval requirements from the board
Donovan_Tanner-ezgifcom-jpg-to-webp-converter

Donovan Tanner, Third Party Industry Expert

2:20-3:05

VENDOR RELATIONSHIPS – PANEL DISCUSSION
Managing and monitoring third party relationships in line with policy requirements and contractual agreements

View Session Details

  • Expanding focus and control to better manage non-traditional contracted vendors
  • Identifying and mitigating risks beyond traditional contracted vendors
  • Adaptation of relationship management as outsourcing increases
  • Importance of relationship manager monitoring changes to a third party
  • Challenges of actively managing complex vendor relationships
  • Developing a managed service model to improve vendor relationships
  • Increased credible challenges on issues identified
Thomas-Brandt-120x120

Thomas Brandt, Chief Risk Officer / Director, Office of Planning and Risk, Federal Retirement Thrift and Investment Board

Charmi_Patel-ezgifcom-jpg-to-webp-converter

Charmi Patel, VP, Vendor Risk Management, Israel Discount Bank of New York

Headshot-ezgifcom-jpg-to-webp-converter 1

Chelsea Tieken, Business Strategy and Planning Director, TPRM Strategy and Initiatives, USAA

Andrew-Moyad

Andrew Moyad, Chief Executive Officer, Shared Assessments

2:20-3:05

SUPPLY CHAIN – PANEL DISCUSSION 
Assessing and mitigating the risks of upcoming supply chain crisis

View Session Details

  • Interconnected nature of third parties impact on supply chain
  • Formulation of principles around supply chain at the global and jurisdictional level
  • Understanding the impact geopolitical risk has on supply chains
  • Effectively managing cybersecurity risk across the supply chain
  • Applying a proportionate risk based approach to supply chain risk management
  • Difficulties with subcontracting supply chain risk management
  • Introduction of supply chain consultation in June 2024
  • Mitigating strategies to ensure operational resilience in your supply chain
  • Importance of nearshoring to avoid supply chain risks
PennyCagan

Penny Cagan, former Managing Director, Americas Head of Operational Risk, UBS

Carl Miller

Carl Miller, Head of Change Management & Third Party Management,
Western Alliance Bank

3:05-3:40

CONTRACT MANAGEMENT
Monitoring contracts to ensure adherence to and maintenance of terms

View Session Details

  • Ensure all parties within a contract comply with contract terms
  • Amending agreements to ensure ‘right to ask’ for certain information
  • Demand for increased assessments on contract terms
  • Enforcing contractual agreements on your third parties to disclose required information
  • Business continuity and information security of contract management
  • Difficulty with managing scale of terms and conditions in a contract
IMG_0524-2-ezgifcom-jpg-to-webp-converter

James McPherson, Director & Counsel, Credit Agricole

3:05-3:40

RESILIENCE
Incorporating additional testing expectations on operational resilience

View Session Details

  • Ensuring contracts are effective and supportive of resilience
  • Aligning contract resilience between firm and vendor
  • Ensuring resilience of vendors can withstand a stress event
  • Testing resilience with vendors to and ensure capabilities are met
  • Developing and creating new testing programs on firm and vendor side
  • Use of resilience testing to address supplier vulnerabilities
  • Relationship between operational resilience and third party risk management
Spruille_Braden-ezgifcom-jpg-to-webp-converter

Spruille Braden, Enterprise Head of Operational Resilience, Citi

3:40-4:10

Afternoon refreshment break and networking

4:10-4:45

STRATEGIC RISK
Reviewing evolving third party risk management to effectively address strategic risks

View Session Details

  • Identifying the impact of emerging strategic risks for third party risk management
    • Geopolitical, cloud concentration, resilience, data protection
  • Understanding the disruption and delays of strategic risk on third party risk management
  • Importance of approaching strategic risks holistically
  • Establishing risk appetite for strategic risks taking
  • Overcoming a lack of clarity around outsourcing trade offs
Headshot-ezgifcom-jpg-to-webp-converter

Stefan Smith, Director, Enterprise Risk Office and Head of Third Party Risk,
Bank of Canada

4:10-4:45

GEOLOCATION
Leveraging vendors in different jurisdictions and offshoring to mitigate the impact of unforeseen risks

View Session Details

  • Effective support from vendors in different geolocations
  • Reviewing business continuity of locations used for outsourcing
  • Monitoring locations where critical vendors are based
  • Lack of data to determine where third parties are located
  • Impact of outsourcing to a vendor with geolocational risks e.g. hurricanes, floods
  • Assessing the impact of geolocation challenges on supply chain
  • Importance of sharing vendor geolocation data with other arms of the firm

4:45-5:20

ERM
Reviewing how vendor risk is being integrated to observe at the enterprise level

View Session Details

  • Importance and benefits of viewing third party risk across the business
  • Ensuring organizations holistically understand TPRM goals
  • Introducing a holistic model for risk teams to develop management of all risks
  • Reviewing how third party information can support other areas of the business
  • Scaling outsourcing to the enterprise level
  • Case study of effective integration
Speaker-HS-1-2-100x100-1

Preety Tulsian, Head of Third Party Risk US, Enterprise Risk, Scotiabank

4:45-5:20

TECHNOLOGY
Reviewing the technology landscape and its impact on the resilience of third party risk

View Session Details

  • Managing enhanced technology requirements requiring more timely and transparent reporting
  • Exploring new technologies to improve efficiencies
  • Timeliness of notification of technology subcontractors in the supply chain
  • Increased concern of technology outsourcing longer chains and widely spread risks
  • Data challenges of using vendor technology
  • Pushback from technology suppliers on what data they are willing to share
SL_Workpic

Scot Lynch, Executive Director, Morgan Stanley

5:20-5:30

Chair’s closing remarks

5:30

End of day one and networking drinks reception

8:00 – 8:50

Registration and breakfast

8:50 – 9:00

Chair’s opening remarks

9:00 – 9:45

GEOPOLITICAL – PANEL DISCUSSION
Assessing the impact of global volatility on third parties and managing uncertainty

View Session Details

  • Understanding how geopolitical risks are impacting global and regional supply chains
  • Carrying out geopolitical analysis on where your third parties are centered
  • Assessing why geopolitical risk have been overlooked by firms
  • Impact of geopolitical conflicts on vendor services provided
  • Anticipating how future geopolitical crisis can impact your firm
  • Reviewing the impact of the 2024 US election result on vendor and TPRM programs
  • Mitigating the impact of increased geopolitical risks
Profile_Picture_2023_Edited_Full_Res-ezgifcom-jpg-to-webp-converter

Kristen Schneider, Director, Business Strategy and Planning, USAA

Nita Kohli

Nita Kohli, Board Advisor & former Global Head of Enterprise Resilience, Citi

RogerParsley

Roger Parsley, MD, Global Head of Technology and Cybersecurity Risk Governance, State Street 

9:45-10:20

AI USE
Reviewing practical uses of generative AI to further advance third party risk teams

View Session Details

  • Leveraging efficiencies of AI to enhance internal processes
  • Ensuring workforce in place can understand AI and how to assess it
  • Providing AI services and support to clients and customers
  • Generative AI use through third party risk programs
  • Data gathering on third parties
  • Ensuring AI understands risk appetite and tolerances
  • Policy and procedure alignment with the use of AI
  • Effectively assessing AI data sets
  • Partnering with vendors to enhance AI use in industry

10:20-10:50

Morning refreshment break and networking

TPRM

Nicholas_Kula-ezgifcom-jpg-to-webp-converter

Nicholas Kula, Global TPRM and Resilience Leader, Archer

10:50-11:35

AI EXTERNAL – PANEL DISCUSSION
Reviewing the evolving AI landscape and oversight of use of AI by third parties

View Session Details

  • Reviewing the evolving AI landscape and use of AI by third parties
  • Importance and difficulties with validating AI use by vendors
  • Data privacy concerns with the use of AI by third parties
  • Ensuring governance on AI use by third parties and vendors
  • Effectively integrating AI into the vendor risk management process
  • Monitoring the use of AI across the supply chain
  • Anticipating laws and legislation on the horizon
  • Ensuring solutions meet with policies and risk tolerances
Dolly_Singh_Head_Shot

Dolly Singh, MD, Global Head of Third Party Oversight,
JPMorgan Chase 

JarvisHeadshot-ezgifcom-jpg-to-webp-converter

Sonia Jarvis, Director, Quantitative Modeling, Fannie Mae

Sri_Intan-ezgifcom-jpg-to-webp-converter

Sri Intan, Head of Vendor Risk Management for North America,
Commerzbank AG

RESILIENCE

10:50-11:35

EXIT PLANNING – PANEL DISCUSSION
Enhancing exit strategies in the event of planned and unplanned exits

View Session Details

  • Ensuring effective design of an exit strategy
  • Understanding the importance of developing exit strategies
  • Incorporating geopolitical conflicts into exit strategies
  • Assessing business continuity of third parties when exit planning
  • Effectively aligning risk appetite when exit planning
  • Determining stress points of an exit plan
Rick_Cech-ezgifcom-jpg-to-webp-converter

Rick Cech, Senior Bank Manager, Federal Reserve Bank
of New York

David_LaFalce-ezgifcom-jpg-to-webp-converter

David LaFalce, SVP & Global Head of Operational Resilience,
Wells Fargo

Jeannie Pumphrey

Jeannie Pumphrey, Head of Third Party Risk and Change Management, MUFG

11:35-12:10

DATA
Monitoring and tracking accessibility and access to data across third parties

View Session Details

  • Overcoming the challenges of external data use
  • Adhering to varying data requirements in different jurisdictions
  • Improving use of data provided by vendors
  • Ensuring data compliance with CIPRA
  • Accessibility and security of data to third parties and vendors
  • Reviewing rapid evolution and increased sophistication of ratings service providers

11:35-12:10

CONCENTRATION RISK
Mitigating the varying types of concentration risks a firm can face

View Session Details

  • Assessing the risk of concentration with current vendors and third parties
  • Leveraging vendor concentration to manage multiple risk types
  • Effective reporting around concentration risk
  • Data requirements to understand and identify concentration risks
  • Correlation between concentration and geopolitical risk
  • Impact of conflict risk on your vendor concentration

12:10-1:10

Lunch break and networking

1:10-1:55

ESG – PANEL DISCUSSION
Assessing the current ESG landscape and understanding what it means for vendors and third party risk programs

View Session Details

  • Addressing a lack of legislation and guidance on ESG
  • Restriction ESG is putting on outsourcing activities
  • Impact of ESG in the context of responsible supply chain
  • Balancing level of protection and service whilst ensuring supplier diversity
  • Identifying verifiable data points
Ortiz

Javier Ortiz, Principal Technical Leader, Non-Financial Risk, Inter-American Development Bank

Leidy_-ezgifcom-jpg-to-webp-converter

Leidy Anderson, Third-Party Risk Director, Western Alliance Bancorporation

Ken_W_Headshot

Ken Wolckenhauer, Head of Vendor Risk, Nordea Bank

1:10-1:55

CYBER RESILIENCE – PANEL DISCUSSION
Effectively monitoring cyber threats across the supply chain to drive resilience

View Session Details

  • Assessing if providers are effectively protecting confidential information against cyber attacks
  • Obtaining timely and accurate security information from third party vendors
  • Importance of continuous monitoring of cyber risks
  • Managing cyber security stresses across third parties
  • Importance of data use to combat cyber attacks
  • Ensuring cybersecurity resilience
  • Benefits on partnering with vendors and sharing technologies
  • Impact of SEC guidance on CISO’s
Tom_Kartanowicz-ezgifcom-jpg-to-webp-converter

Tom Kartanowicz, CISO, Europe and Americas, Standard Chartered Bank

Mahi_Screenshot_2023-06-12_135308-ezgifcom-jpg-to-webp-converter

Mahi Dontamsetti, EVP, Global Head of Non Financial Risk & CTRO, State Street

1663792520567-ezgifcom-jpg-to-webp-converter

Marta Palanques, Director, Methodologies and Practices, Technology Risk Management, Capital One 

1:55-2:30

DUE DILLIGENCE
Utilizing due diligence assessments as a tool to better understand and manage risk

View Session Details

  • Defining a standard of effective due diligence on firms
  • Moving away from a ‘one size fits all’ approach
  • Wider regulatory expectation when carrying out due diligence
  • Importance of timely information when conducting due diligence
  • Leveraging AI to better carry out due diligence
  • Overcoming lack of cooperation to obtain data
  • Raised due diligence concern with increased technology outsourcing
  • Focusing on inherent risks of vendors when carrying out due diligence
Brennan Lodge

Brennan Lodge, Head of Analytics Engines, Cybersecurity, HSBC

1:55-2:30

RANSOMWARE
Managing the increased risk of ransomware breaches and vulnerabilities firms are facing

View Session Details

  • Protection against ransomware attacks in a technologically enhanced environment
  • Keeping ahead of sophisticated ransomware attacks
  • Ensuring data is secure and protected against ransomware attacks
  • Understanding how ransomware attacks can impact your supply chain
  • Mitigating vulnerabilities to protect against ransomware
  • Importance of understanding if you have been impacted by a ransomware attack
    • Impact, escalation channels, mitigation plan, disconnect and reconnect timelines
Fabian_De_Jesus-ezgifcom-jpg-to-webp-converter

Fabian De Jesus, Director, Information Security Officer, Capital One

2:30-3:05

FINTECH
Managing the opportunity and balancing the risk of leveraging fintech’s as a third party

View Session Details

  • Working with organizations with less developed controls
  • Assessing the opportunities of enhanced controls and security on a fintech
  • Ensuring fintechs meet the standard of traditional third parties
  • Improved guidance to understand what regulations must be adhered to
  • Ensuring policies and procedures extend to fintechs as third party vendors
  • Mitigating an increased risk exposure to cybersecurity attacks
Firas_Mustapha-ezgifcom-jpg-to-webp-converter

Firas Mustapha, Senior Director of Compliance, Arvest Bank tbc

2:30-3:05

CONTINUOUS MONITORING
Importance of continuous monitoring to move beyond point in time assessments

View Session Details

  • Assessing best practice within the industry
  • Ensuring data quality and availability for continuous monitoring tools
  • Leveraging to better identify vulnerabilities in vendor data
  • Extracting value from continuous monitoring
  • Comparing effectiveness of continuous monitoring with due diligence
  • Use of continuous monitoring to identify threat intelligence
Patricia_Catharino-ezgifcom-jpg-to-webp-converter

Patricia Catharino, Head of Risk Management & Internal Controls, U.S. and Caribbean, SVP, Banco Itau International

3:05-3:35

Afternoon refreshment break

3:35-4:10

THE BOARD
Enhancing board reporting and defining information required to communicate risk

View Session Details

  • Regulatory influence on how firms report to the board
  • Leveraging due diligence to better report to the board
  • Assessing what risks are considered a board level concern
  • Reporting residual risk from vendors to the board
  • Efficiently reporting important information to ensure the board can make strategic decisions
  • Difficulty of creating processes around board approvals
Karina_Volvosky-ezgifcom-jpg-to-webp-converter

Karina Volvovsky, Senior Vice President, Business Control Officer for Entertainment, City National Bank

4:10-4:45

CLOUD
Overcoming the complexity of cloud computing and the concentration of providers

View Session Details

  • Ensuring compliance with vendors operating under Europe’s DORA Act
  • Assessing how implementation of DORA in Europe will impact US firms
  • Reviewing implementation requirements
  • Overcoming additional governance and document requirements
  • Alignment with other regulatory initiatives

4:45-4:55

Chair’s closing remarks

4:55

End of Vendor and Third Party Risk Management USA 2024 Congress

Speakers

Leidy_-ezgifcom-jpg-to-webp-converter

Leidy Anderson
Third-Party Risk Director
Western Alliance Bancorporation

Naveen_B_HS-ezgifcom-jpg-to-webp-converter

Naveen Balakrishnan
Head of Third Party Risk Management
TD Bank

Spruille_Braden-ezgifcom-jpg-to-webp-converter

Spruille Braden
Enterprise Head of Operational Resilience
Citi

Thomas-Brandt-120x120

Thomas Brandt
Chief Risk Officer / Director, Office of Planning and Risk
Federal Retirement Thrift and Investment Board

David_Braxton-ezgifcom-jpg-to-webp-converter

David N. Braxton
SVP, Global Third Party Risk
Bank of America

PennyCagan

Penny Cagan
former Managing Director, Americas Head of Operational Risk
UBS

Patricia_Catharino-ezgifcom-jpg-to-webp-converter

Patricia Catharino
Head of Risk Management & Internal Controls, U.S. and Caribbean, SVP
Banco Itau International

Rick_Cech-ezgifcom-jpg-to-webp-converter

Rick Cech
Senior Bank Manager
Federal Reserve Bank of New York

Kristin_Ciridon-ezgifcom-jpg-to-webp-converter

Kristin L. Ciridon
Head of Third Party Risk
DTCC

Mahi_Screenshot_2023-06-12_135308-ezgifcom-jpg-to-webp-converter

Mahi Dontamsetti
EVP, Global Head of Non Financial Risk & CTRO
State Street

Fabian_De_Jesus-ezgifcom-jpg-to-webp-converter

Fabian De Jesus
Director, Information Security Officer
Capital One

Madiha--ezgifcom-jpg-to-webp-converter

Madiha Fatima
Executive Director
JP Morgan

Stuart_Hoffman_Head_shot-ezgifcom-jpg-to-webp-converter

Stuart Hoffman
Bank Examiner
OCC

Sri_Intan-ezgifcom-jpg-to-webp-converter

Sri Intan
Head of Vendor Risk Management for North America
Commerzbank AG

JarvisHeadshot-ezgifcom-jpg-to-webp-converter

Sonia Jarvis
Director, Quantitative Modeling
Fannie Mae

Loren Johnson

Loren Johnson
Director of Product Marketing
Aravo

Tom_Kartanowicz-ezgifcom-jpg-to-webp-converter

Tom Kartanowicz
CISO, Europe and Americas
Standard Chartered Bank

Pro-ezgifcom-jpg-to-webp-converter

Tausif Khan
Director, Third Party Risk
DTCC

Nita Kohli

Nita Kohli
Board Advisor & former Global Head of Enterprise Resilience
Citi

Nicholas_Kula-ezgifcom-jpg-to-webp-converter

Nicholas Kula
Global TPRM and Resilience Leader
Archer

David_LaFalce-ezgifcom-jpg-to-webp-converter

David LaFalce
SVP & Global Head of Operational Resilience
Wells Fargo

Brennan Lodge

Brennan Lodge
Head of Analytics Engines, Cybersecurity
HSBC

SL_Workpic

Scot Lynch
Executive Director
Morgan Stanley

IMG_0524-2-ezgifcom-jpg-to-webp-converter

James McPherson
Director & Counsel
Credit Agricole

1634700032052-ezgifcom-jpg-to-webp-converter

Melissa Mellen
Head of Third Party Risk Management
Federal Reserve Bank of New York

Carl Miller

Carl Miller
Head of Change Management & Third Party Management
Western Alliance Bank

Kholo3-ezgifcom-jpg-to-webp-converter

Kholofelo Mothibi
Head of TPRM
Corebridge Financial

Andrew-Moyad

Andrew Moyad
Chief Executive Officer
Shared Assessments

Firas_Mustapha-ezgifcom-jpg-to-webp-converter

Firas Mustapha
Senior Director of Compliance
Arvest Bank tbc

Ortiz

Javier Ortiz
Principal Technical Leader, Non-Financial Risk
Inter-American Development Bank

1663792520567-ezgifcom-jpg-to-webp-converter

Marta Palanques
Director, Methodologies and Practices, Technology Risk Management
Capital One 

RogerParsley

Roger Parsley
MD, Global Head of Technology and Cybersecurity Risk Governance
State Street

Charmi_Patel-ezgifcom-jpg-to-webp-converter

Charmi Patel
VP, Vendor Risk Management
Israel Discount Bank of New York

Jeannie Pumphrey

Jeannie Pumphrey
Head of Third Party Risk and Change Management
MUFG 

Babette_Reynolds_-_Professional_Photo_2-ezgifcom-jpg-to-webp-converter

Babette Reynolds
Compliance Senior Director, Head of Enterprise Compliance Program Office
Truist

Profile_Picture_2023_Edited_Full_Res-ezgifcom-jpg-to-webp-converter

Kristen Schneider
Director, Business Strategy and Planning
USAA

Dolly_Singh_Head_Shot-ezgifcom-jpg-to-webp-converter

Dolly Singh
MD, Global Head of Third Party Oversight
JPMorgan Chase 

Headshot-ezgifcom-jpg-to-webp-converter

Stefan Smith
Director, Enterprise Risk Office and Head of Third Party Risk
Bank of Canada

Donovan_Tanner-ezgifcom-jpg-to-webp-converter

Donovan Tanner
Third Party Industry Expert

Headshot-ezgifcom-jpg-to-webp-converter 1

Chelsea Tieken
Business Strategy and Planning Director, TPRM Strategy and Initiatives
USAA

Speaker-HS-1-2-100x100-1

Preety Tulsian
Head of Third-Party Risk US, Enterprise Risk
Scotiabank

Brett_Turk-ezgifcom-jpg-to-webp-converter

Brett Turk
Global Head of Business Continuity and Crisis Management
Vangaurd

Karina_Volvosky-ezgifcom-jpg-to-webp-converter

Karina Volvovsky
Senior Vice President, Business Control Officer for Entertainment
City National Bank

Screenshot_2022-03-08_at_153415-ezgifcom-jpg-to-webp-converter

Olga Voytenko
Managing Director, Head of Operational Resilience
Forbright Bank

Jeffrey Wheatman, Cyber Risk Evangelist, Black Kite is speaking at Third Party & Supply Chain Risk USA

Jeffrey Wheatman
Cyber Risk Evangelist
BlackKite

Ken_W_Headshot

Ken Wolckenhauer
Head of Vendor Risk
Nordea Bank

Would your organization like to partner with us on this event?

To discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities, please contact sales@cefpro.com or call us on +1 888 677 7007 for more information.

2024 Sponsors

Co-sponsors

Aravo logo
Black Kite are associate sponsors for CeFPro Events' Third Party & Supply Chain Risk USA: Cross Industry Congress
Security Scorecard are co-sponsors to Third Party & Supply Chain Risk USA by CeFPro Events

Associate sponsors

Archer are Co-sponsors at CeFPro's Vendor & Third Party Risk Congress
FUSION RISK WEBSITE
PWC - SPONSORS PAGE

Content and media partners

CeFPro Connect, Knowledge sharing platform for risk professionals

Venue & FAQs

360 Madison Avenue | etc.venues
Madison Avenue
Midtown Manhattan
New York NY 10017

There is no accommodation available at the venue, however, there are plenty of hotels available nearby. If you would like to view nearby hotels, please click here or on the button below.

 

 

 

Frequently Asked Questions

Can I share my thought leadership at Vendor & Third Party Risk USA?

CeFPro are happy to discuss speaking opportunities at the Vendor & Third Party Risk USA Congress. For further information on this please contact production@cefpro.com if you are from a financial institutions / sales@cefpro.com if you are an information/service provider or call us on +1 888 677 7007.

Will there be opportunities to network with other attendees?

There are ample opportunities for networking and interaction throughout the Congress, such as:

  • Breakfast, lunch and refreshment breaks
  • Drinks reception at the end of day-1
  • Q&A, panel discussions and audience participation technology

What is included within the registration fee?

Registration includes breakfast, refreshment breaks, lunches, the drinks reception at the end of day-1, full access to the sessions and exhibition area. Presentations from the sessions are also available via our post-event website, available on CeFPro Connect under Course Materials once the Summit has taken place.

Where can I find the Congress documentation and speaker presentations?

All registered attendees will receive an email with access to documentation and speaker presentations after the Congress*. We will work with our presenters to include as many presentations as possible on our App during the Congress.

* Please note that our speakers often have to gain permission from their relevant compliance departments to release their presentations. On rare occasions compliance may not allow presentations to be distributed.

Will breakfast, lunch and refreshment be provided?

Yes. As with all of our events, the Center for Financial Professionals will be providing brilliant coffee, breakfast, lunch, refreshments, and smaller bites during the networking breaks.

Are there any rules on dress code?

Business attire is requested. The Congress is a formal opportunity to network with like-minded professionals and to gain knowledge from the industry’s finest risk management experts.

Are CPE Credits available?

Yes, CPE Credits are available for the Congress upon request. Please contact marketing@cefpro.com for more information.

Register - Launch Rate - Available until March 15

Representing a financial institution or government body
$699

E.g. Bank, Insurance company, Asset manager, Regulator

Representing an information or service provider
$1399

E.g. Consultant, Vendor, Executive search firm, Law firm

Register

Register for Vendor & Third Party Risk USA today and join the likes of 150+ industry professionals and subject matter experts looking to engage in meaningful conversation and discuss the latest developments and challenges within the vendor and third party risk sector.

Register now and take advantage of our launch rate – our lowest rate available for this event.

Don’t miss out, we only have a limited number of tickets available.

Need assistance with your registration? Get in touch with us via email below, or call us on +1 888 677 7007.

*To qualify for the preferential ‘early bird’ rates, registration must be received by the close of the ‘early bird’ working day, and payment can be made at the time of registering, or up to a week after registration is made an invoice sent. CeFPro reserves the right to increase rates should payment be delayed significantly. For Group Rates to be valid, the whole group must register at the same time, though names can be changed at any time up to the event at no additional cost. Should a delegate register at a rate that is inaccurate, CeFPro reserves the right to issue an additional invoice for the outstanding amount.

Register your interest in Vendor & Third Party Risk USA

Please fill out the form below and register your interest for CeFPro’s Vendor & Third Party Risk USA and ensure your among the first to know about:

  • Receive timely alerts upon event launch
  • Stay updated with agenda updates
  • Enjoy exclusive discounts
  • Receive prompt speaker announcements
  • Gain unique access to insights shared by industry experts
  • Secure exclusive access to key sessions and high-profile speaker interviews
  • Access presentation materials curated by speakers
  • Obtain exclusive reports and market intelligence, and much more.