Agenda Day 1, April 18, 2024: (see Agenda Day 2) (back to GRC EMEA Event Summary)
(time zone used is Central European Time)
08.30 – Registration and Coffee
09.00 – Opening Remarks from the Chair
Leadership Compliance Accountability : Addressing Workforce Expectations
· From HR to compliance: what are the transferable skills?
· Compliance and the ‘employee experience’
· Generational and cultural compliance considerations
· Leadership and the compliance landscape: a complex relationship
Howard Gibson, Chief Compliance Officer, Landis+Gyr
10.00 – Listening for a Change - Understanding the Barriers of Traditional Whistleblowing Approaches
Martijn Boone, Enterprise Sales Director, SpeakUp
10.45 – panel: Setting up a Governance, Risk and Compliance Function in a Complex Business
· Dealing with a decentralized structure: several disparate systems/datasets
· GRC at the HQ level versus the local level: bridge the gap
· How we bring GRC to the 1st line of defense under challenging conditions
Pedro Montoya Santos, Chief Compliance & Risk Officer, Ferrovial
Victor Garcia, VP Internal Audit & Risk Management, Archroma
Kurt Wellens, Head of Assurance, TVH
Mark Olaf Schmitz, Division Compliance Officer, Hexagon
11.30 – Morning Coffee and Networking
12.00 – Intersection of GRC and Economic Sanctions: Current Status of Sanctions & “Horizon Scanning"
Jeffrey Cottle, Partner, Eversheds Sutherland
12.45 – Integrating ESG into Compliance and Risk (Fostering ESG into the Business)
· Review the key ESG risk megatrends and sub-trends as data points. Which ESG frameworks to follow (UN, SASB, EU)
· Looking for gaps in your existing risk inventory: reviewing current and future ESG issues as part of your ERM portfolio
· Practical new KPIs that are well-suited to these difficult-to-measure risks
· Incorporate effective governance structures to ensure that changing and new issues are addressed by your ERM and sustainability departments: Use a common language between ESG And ERM
Jeppe Kromann Haarsted, Group Compliance Manager, FLSmidth
13.30 – Lunch Break
14.30 – Internal Investigations: GRC Resource Allocation
· Handing Compliance and Fraud investigations
· Best practices in an in-house investigations function
· People and resource management in investigations
Darren Dunn, Director- Business Conduct Investigations, Salesforce
Carmen Ortiz de Ciolac, Senior Compliance Counsel - EMEA, ASICS Europe
Jeffrey Cottle, Partner, Eversheds Sutherland
15.15 - Information Security's independence from IT: myths and reality - Case study
· Background and context: why was this on the pipeline, factors that made this a legitimate discussion
· Objectives in the change, and levers to decision-making.
· The human impact of a change that touches upon People, Processes and Organization.
· Pro-cons of the change
· The new focus for Information Security: risk and business. Creating the new vision and getting the buy-in
Ramon Serres, Information Security Director, Almirall
16.00 – Afternoon Coffee Break
16.30 – Elevating the Robustness of the Internal Control System to New Heights (and get a better quality of sleep at night)
· Creating an iterative virtuous cycle involving risk identification, testing activity prioritization and mitigations needed to elevate the robustness of the Internal Control System
· Building on the newly developed Non-Financial Risk Management framework to better understand drivers of Non-Financial Risks and mitigation of business vulnerabilities
· Shifting from risk controlling to risk management focusing on preventive controls and effectiveness to determine remedial actions and improvements with clear accountabilities
· Deriving clear Non-Financial Risk appetite and better risk prioritization through a 5-year fully risk-based control testing plan
· Creating one single platform for top management to understand, discuss and take actions on the Governance & Control framework
Cristian Galizzi, SVP, Global Head of Non-Financial Risk Management, IVU, Functional Enablement, Allianz SE
17.15 – A Strong Enterprise Risk Management (ERM) Strategy for the Current Times
· Dealing with high level of uncertainty and complexity
· Leveraging the full potential of technology, including AI
· Building resilience in the extended enterprise
· Integration with financial steering
· Value of integrated assurance/GRC capabilities
Jennie Wallin, Head of Business Risk, Vattenfall
18.00 - Closing Remarks from the Chair and End of Day 1