Why should you attend?
Over the years, the understanding of operational risk – of people, processes, and systems – has altered and adapted to the changing times and climate. A more contemporary view is for professionals to view this as non-financial and operational risks, which better outlines the aspects that are not specifically financial risk.
The ever-changing role and responsibility of the risk professional, especially during the challenging and unprecedented times, requires new thinking, stringent processes, and greater understanding of the diversity of systems. CeFPro’s Non-Financial and Operational Risk Congress provides a clear path on the current challenges, and future path and opportunities.
By registering for this Congress, you will also gain access to our Climate Risk USA Congress which will be help concurrently at the same venue.
Key highlights
- REGULATION:
Managing regulatory requirements to manage disparities in an everchanging landscape
- LINES OF DEFENCE:
Coordinating risk silos across the three lines of defences whilst increasing collaboration for full risk oversight
- CYBERSECURITY:
Managing evolution of cybersecurity and developing defence strategies to mitigate risk
- THIRD PARTY RISK:
Controlling and managing third party risk to manage risk exposure
- RCSA:
Developing tangible outcomes by leveraging benefits of RCSA beyond a tick box exercise
- RESILIENCE:
The implementation of an overarching resilience framework to capture all risks
- MODEL RISK:
Developing a model risk output to address errors and improve accuracy of reporting.
- CONVERGENCE:
Covering the integration of compliance, operational risk, and enterprise risk under one framework
An engaging and interactive agenda spread across 2-days
Participate in a comprehensive exploration of the topics at hand via presentations, panel discussions, and live Q&As to facilitate learning and engagement.
Subject matter experts share their knowledge and experiences
30+ senior risk professionals presenting on the critical challenges, providing insight and case studies, and offering fresh perspectives to new and long-standing challenges.
7+ hours of available networking opportunities
Continue conversations from inside the auditorium over coffee, lunch, and at our complimentary drinks reception. Make meaningful career-long industry connections to use to your professional advantage.
Key speakers
Amy Butler
Chief Risk Officer
Legal & General
Michael Steinhoefel
Director, Operational Risk Management
Barclays
Sabeena Liconte
Chief of Compliance
ICBC
Madiha Fatima
Executive Director, Operational & Outsourcing Risk
J.P.Morgan
Dominique Benz
Managing Director, Americas Head of Business Controls
Mizuho
Christopher Nestore
Head of Enterprise and Operational Risk Management
TD Bank
Zhi Chung
Director, Non-Financial Risk Management
Credit Suisse
Thomas Mangine
Director, AML & MLRO
BMO
Melissa Mellen
Director, Third Party Risk Management
Federal Reserve Bank of New York
Gustavo Ortega
Head of Technology, Innovation and Operations Risk Management
Voya Financial
I found [Operational Risk Management USA] to be exceptional, the topics, the experience of the speakers, the interaction with the audience, I have a lot of great examples to bring back to my own firm that can hopefully help us manage risk better.
I’ve been to this conference several times and what I’ve always liked is the size of the conference… It’s smaller in size and as a result, my communication and interaction with my peers are more which is something that I like… There’s a lot of interaction within the sessions, a lot of takeaways.
I came away from [Operational Risk Management USA] with some new and different ways to think about operational resiliency and how to properly account for and manage non-financial risks in an ever changing monitoring and control environment.
It was a great series of discussions. I was very happy that I had the opportunity to participate.
Great conference with a variety of operational risk topics. Learned a lot and exchanged some valuable ideas.
I’ve attended 6 of the 7 Operational Risk USA conferences over the years and always find engaging dialogue and breakout sessions on a variety of emerging risks.
Fun and engaging conversation [at Operational Risk USA]. Thanks CeFPro and all the participants for a great show.
Session previews and related insights
Get an insight of what to expect from the Congress with our past and present speaker session previews.
The future of operational risk: Technology integration for effective risk management in an evolving landscape
The future of operational risk: Technology integration for effective risk management in an evolving landscape Nick Woods, Chief Auditor, NatWest Below is an insight into what can be expected from Nick's session at Risk Evolve 2024. {{ vc_btn: title=Find+out+more+about+CeFPro%27s+Risk+Evolve+2024&style=outline-custom&outline_custom_color=%23001c64&outline_custom_hover_background=%23001c64&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Frisk-evolve%252F }} The views and opinions expressed in this article are those of the thought leader as an individual,
Consumer duty: Benchmarking progress and embedding best practices for compliance
Consumer duty: Benchmarking progress and embedding best practices for compliance Paul Gill, Chief Risk Officer, Mortgage Advice Bureau Below is an insight into what can be expected from Paul's session at Risk Evolve 2024. {{ vc_btn: title=Find+out+more+about+CeFPro%27s+Risk+Evolve+2024&style=outline-custom&outline_custom_color=%23001c64&outline_custom_hover_background=%23001c64&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Frisk-evolve%252F }} The views and opinions expressed in this article are those of the thought leader as an individual, and are not
Reviewing the changing FFC landscape
Reviewing the changing FFC landscape Thomas Mangine, former Director, AML and MLRO, BMO Below is an insight into what can be expected from Thomas's session at Non-Financial & Operational Risk USA 2023. {{ vc_btn: title=Find+out+more+about+Non-Financial+%26amp%3B+Operational+Risk+USA&style=outline-custom&outline_custom_color=%23d51224&outline_custom_hover_background=%23d51224&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fnon-financial-and-operational-risk-usa%252F }} The views and opinions expressed in this article are those of the thought leader as an individual, and are not attributed
Regulations around AI and machine learning
Regulations around AI and machine learning Sandeep Maira, former Head of Strategic Systems, The OCC Below is an insight into what can be expected from Sandeep's session at Non-Financial & Operational Risk USA 2023. {{ vc_btn: title=Find+out+more+about+Non-Financial+%26amp%3B+Operational+Risk+USA&style=outline-custom&outline_custom_color=%23d51224&outline_custom_hover_background=%23d51224&outline_custom_hover_text=%23ffffff&link=url%3Ahttps%253A%252F%252Fwww.cefpro.com%252Fforthcoming-events%252Fnon-financial-and-operational-risk-usa%252F }} The views and opinions expressed in this article are those of the thought leader as an individual, and are
Sponsors
Co-sponsor
Associate Sponsor
Content and media partners
Agenda
8:00 – 8:50
Registration and breakfast
8:50 – 9:00
Chair’s opening remarks
9:00 – 9:35
GEOPOLITICAL RISK
Evaluating the operational risks associated with geopolitical risk and predicting the unknown
- Brexit: Impact on regulation and laws and interpretation in a short time
- Rapid change of geopolitical risks
- Risk of confiscation of assets
- Changes to tax laws and currency convertibility laws
- Supply chain disruptions
- The role of natural disasters on operational risk
- Preparing for the unknown – war and acts of terrorism
 |
Amy Butler, Chief Risk Officer, Legal & General |
9:35 – 10:10
REGULATION
Managing regulatory requirements as a multi-jurisdictional organization and managing disparities
- Cross border regulatory requirements
- Managing increase in compliance challenges and penalties
- Reviewing disclosure requirements
- Balancing priorities with influx of regulatory change
- Minimizing duplication of work across teams
- Increased focus on cross boundary requirements
 |
Sabeena Liconte, Chief Compliance Officer, ICBC Standard Bank |
10:10 – 10:40
Morning refreshment break and networking
Main agenda
CeFPro has assembled a variety of sessions and panel discussions, with an outstanding line-up of thought-leaders to share their experience.
10:40 – 11:15
LINES OF DEFENCE – PANEL DISCUSSION
Coordinating risk silos across the three lines and increasing collaboration for full risk oversight
- Engaging first line in risk management
- Managing disclosure requirements
- Demonstrating value of risk management to senior management
- Scalability within smaller organizations
- Identifying segregation of duties between lines
- Readjusting target operating models
- Increasing transparency around accountability of roles and responsibilities
 |
Madiha Fatima, Executive Director, Operational & Outsourcing Risk, J.P.Morgan |
 |
Dominique Benz, Managing Director, Head of Business Controls, Mizuho |
 |
Giancarlo J Berrocal, SVP Operational Risk Management, Citi |
11:15 – 12:00
QUANTIFYING OPERATIONAL RISK – PANEL DISCUSSION
Evolution of quantification techniques within operational risk management
- Identifying exposure and rating controls separately
- Quantifying exposure in stress events
- Identifying impact to the business
- Changing methodologies to stay ahead of changing practices
- Evolution of material risk identification practices
- Key drivers
- Emerging themes in scenario analysis
- Uses as a monitoring tool in identifying risk exposure of portfolios
 |
Gustavo Ortega, Head of Technology, Innovation and Operations Risk Management, Voya Financial |
 |
Arindam Majumdar, Deputy Chief Risk Officer, Bank OZK |
Interactive cyber breakout
The interactive stream is designed as a deep dive with extended session times to allow the presenters an opportunity to provide additional examples, case studies and explore the theme more than a traditional presentation. Attendees will be provided opportunities to engage, ask questions and interact in the session. Depending on the subject, pre-registration may be required.
10:40 – 11:15
CYBER SECURITY
Managing continued evolution of highly disruptive cyber-attacks and defence strategies
- Managing infinite risk and potential damage
- Complexity of ecosystem to manage threat vectors
- Ongoing race between attacker and defender
- Enhanced risk with geopolitical tensions
- Impact of geopolitical risk and macroeconomics on cyber security
- Potential for attacks on US infrastructure
- Weaponization of cyber warfare with state actors
- Costs to rebuild or recover infrastructure
- Ensuring prioritization of CISO projects: Network security development and penetration testing
- Stress testing cyber systems
- Incentivizing security teams
- Balancing incentive model with criminals working round the clock
- Identifying the next big cybersecurity threat
- Enhancing, strengthening and identifying existing gaps
- Remediating gaps
 |
Yogesh Mudgal, Senior Risk & Controls Leader, Undisclosed Tier One Bank |
 |
Philip Masquelette, Chief Risk Officer, Ulsters Savings Bank |
12:00 – 1:00
Lunch break and networking
Main agenda
1:00 – 1:35
ESG
Future direction of ESG regulation and driving best practice strategies
- Monitoring ESG across supply chains
- Impact of suppliers ESG strategies on reputation
- Managing vague nature of regulations
- Future regulation to mandate ESG governance
- Monitoring risks across the supply chain
- Inclusion of ESG as a filtering criterion for assessment
- Managing data limitations as expectations evolve
- Data requirements: Quality and controls for decisioning
 |
Varun Agarwal, Director, Enterprise Risk Management, Western Alliance Bank |
1:35 – 2:20
DEI
Incorporating diversity, equity and inclusion within strategy to diversify views
- Managing resistance to DEI initiatives
- Receptivity, flexibility and adaptability to change
- Leveraging DEI as a tool to retain talent
- Implementing structural change
- Equitable policies, processes, and procedures
- Impact of attrition on teams
 |
Daniel E Worrel, Head of Non-Financial Risk Department, Federal Reserve Bank of New York (tbc) |
2:20 – 3:55
CRYPTOCURRENCY
Reviewing the use of crypto/digital assets and their potential disruption to business operations
- Identifying and managing potential systemic risk
- Understanding digital money at a deeper level
- Inclusion of digital money to business models
- Cost and technological challenges in ensuring systems can manage change
- Developing and introducing new controls
- Enhanced scrutiny and changing regulation within crypto
- Impact on fraud landscape
Cyber breakout
1:00 – 3:55
VENDOR SECURITY
Managing cyber risk across supply chains and potential reputational fallout of breach in the ecosystem
- Level of transparency across third parties and suppliers
- Identifying and managing concentration risk
- Controls and oversight of monopoly third parties
- Demonstrating effective management and maintenance of infosec controls
- Increased regulatory scrutiny for third party providers
- Enforcement of regulations to third parties to same level as regulated firms
- Dependency management in event of third-party breach
- Deep dive into ION security breach and ripple effect across the industry
3:55 – 3:25
Afternoon refreshment break and networking
Main agenda
3:25 – 4:00
THIRD PARTY RISK
Controlling the third party risk management process end to end to understand and manage risk exposure
- Supply chain risk management with increased third-party outsourcing
- Interpretation of regulatory guidance and application to TPRM end to end prcoesses
- TPRM Program exclusions
- Resilience and business continuity plan applicability
 |
Melissa Mellen, Director, Third Party Risk Management, Federal Reserve Bank of New York |
4:00 – 4:35
Managing third party risks in a changing ecosystem with increased interaction with fintech and bigtech companies
- New ecosystems with smaller players and fintechs
- Limitations with limited data and process documentation
- Partnering with fintech’s
- Due diligence capabilities in comparison to large vendors
- Evaluating risk of fintech or smaller third parties
- Impact of M&A activity on working with third parties
- Benchmarking risk events and near misses
- Defining an effective disaster recovery process
- Concentration risk considerations for tier one vendors
 |
Michael Steinhoefel, Director, Operational Risk Management, Barclays |
4:35 – 5:10
RCSA
Leveraging the benefits of RCSA beyond a tick box exercise and developing tangible outcomes
- Leveraging as part of risk decision strategy
- Documentation of risks and controls
- Developing communication across business lines
- Driving efficiency in risk assessments to limit duplications
- Risk assessment criteria for operational risk subsets
- Regulatory expectation for robustness of RCSA
 |
Patricia Catharino, US Head of Internal Controls and Risk Management, Banco Itau International |
Interactive breakout
3:25 – 4:00
RANSOMWARE
Response strategies to ransomware attacks and understanding ripple effects across the industry
- Managing ransomware and denial of service attacks
- Impact of payment for ransomware attack
- Ethical dilemma managing ransomware attacks
- Uses of bitcoin in ransomware transactions
- Expectations before an attack to mitigate impact
- Use of cyber insurance
5:10 – 5:20
Chair’s closing remarks
5:20
End of day 1 and drinks reception
8:15 – 8:50
Registration and breakfast
8:50 – 9:00
Chair’s opening remarks
9:00 – 9:45
RESILIENCE – PANEL DISCUSSION
Implementing a standardized overarching resilience framework to capture all risks
- Difficulties mapping data and sources
- Identifying systems and vendors across geographies
- Defining level of importance and criticality
- Managing disparities across regulatory jurisdictions
- Mapping across requirements and identifying minimum standard
- Enhancing collaboration across enterprise architecture
- Aligning the five core pillars of operational resilience
- Ensuring plans are fluid to keep up with changing environment
- Identifying critical business services
- Ensuring continuity of critical business services
 |
Marc Kantor, Director Operational Risk Resilience Lead, Barclays |
|
|
Patricia Catharino, US Head of Internal Controls and Risk Management, Banco Itau International |
9:45- 10:20
STRATEGIC PLANNING
Aligning operational risk with strategic planning and business objectives
- Aligning risk appetite with business strategy
- Understanding strategy and direction
- Implications on risk
- Setting a risk strategy aligned with business strategy
- Periodic valuation/assessment of the businesses strategic plans
- Demonstrating value of operational risk
- Developing a strategy aligned with market events
|
|
Arindam Majumdar, Deputy Chief Risk Officer, Bank OZK |
10:20 – 10:50
Morning refreshment break and networking
Stream one: Operational Risk Frameworks
10:50 – 11:25
FINANCIAL CRIME
Reviewing the changing landscape of techniques and tactics within fraud and financial crime
- Monitoring social engineering techniques and scams
- Increased physical theft techniques and check fraud
- Speed to investigate, resolve and remediate
- Forward looking reporting metrics to monitor emerging risk
- Reviewing FinCEN Anti-Money Laundering Act requirements
- Application to financial institutions
- Managing expectation of change
- Requirements for beneficial ownership
- Managing and reporting discrepancies
 |
Thomas Mangine, Director, AML & MLRO, BMO |
11:25 – 12:10
SANCTIONS – PANEL DISCUSSION
Managing the global geopolitical environment and techniques to stay ahead of fast-moving sanctions regimes
- Working with clients exposed to Russia sanctions
- Managing sanctions requirements in jurisdictions
- Challenges with fluid nature of borders
- Managing the risk of secondary sanctions
- Developing consolidated escalation protocols
- Managing continued uncertainty around sanctions expectations
- Identifying exposure to sanctioned individuals and entities
Stream two: The Future of Operational Risk
10:50 – 11:25
CLOUD
Treatment of cloud providers as a third party and monitoring security controls
- Reviewing cyber security controls
- Level of oversight available
- Managing risk of concentration of critical third party
- Reviewing financial solvency of cloud providers
- Contractual terms for notification of cyber-attacks or information breach
- Reviewing policies and controls to ensure security
 |
Sandeep Maira, Head of Enterprise Risk Technology, The OCC |
12:10 – 1:10
Lunch break and networking
1:10 – 1:45
MODEL RISK
Managing risks of model output errors and impact on accuracy of reporting
- Managing risk of inaccurate modeling estimates
- Ensuring reliance of models for decision making
- Risk of inappropriate adjustments on business decisions
- Developing in house policies and standards
- Reputation risk of reporting inaccurate data
- Managing risk of inaccurate modeling estimates
- Inappropriate adjustments to models
- Reporting risks with inaccurate model output
 |
George Soulellis, Chief Enterprise Risk Officer, Freddie Mac |
1:45 – 2:20
PRIVACY
Managing data privacy requirements across jurisdictions and monitoring flow of data across geographies and systems
- Developing data governance programs
- Controls and management
- Reviewing changes across jurisdictions in the US and globally
- Process mapping and workflow tools
- Controls around centralized data
- Tailoring approaches to different jurisdictions
- Identifying golden sources and ownership of data
- Managing fines and reputation fallout potential
2:20 – 2:55
DATA MANAGEMENT
Investment in systems and controls to monitor and manage data holistically
- Staying ahead of technology data requirements
- Aligning internal and external data
- Interconnectivity of data across systems
- Building definitive controls
- Ensuring completeness and accuracy of data for reporting and decision making
- Tracking data flow end to end across systems and applications
- Aggregating and monitoring data
- Managing technical and physical data
- Building a robust data dictionary across the enterprise
 |
Zhi Chung, Director, Non-Financial Risk Management, Credit Suisse |
1:10 – 2:55
TECHNOLOGY
Reviewing changing regulations around AI and machine learning and increased uses across silos
- Auditing algorithmic models for bias
- Governance and disclosure requirements
- Updated regulatory guidance on model risk
- Monitoring reliability and stability of AI tools
- Aligning technology and risk partners language
- Information risk with accuracy of information shared
2:55 – 3:25
Afternoon refreshment break and networking
3:25- 4:10
CONVERGENCE – PANEL DISCUSSION
Convergence and integration of compliance, operational risk and enterprise risk under one framework
- The roles of enterprise vs. operational risk
- Alignment of non-financial risks
- Compliance and technology
- Providing a holistic view
- Convergence between Operational risk, enterprise risk and compliance
- Inclusion of compliance under operational risk
- Aligning risk assessments to include compliance and operational risk
 |
Christopher Nestore, Head of Enterprise and Operational Risk Management, TD Bank |
 |
Antonio Gonzalez, former Head of Operational Risk, Bank of China |
 |
Veronica Baker-Adams, Director, Enterprise and Operational Risk, Navy Federal Credit Union |
4:10- 4:45
PEOPLE & INFRASTRUCTURE RISK
Navigating complexities within people risk as working environments and infrastructure requirements continue to evolve
- Managing skillset requirements as technology continues to evolve
- Recruiting and retaining talent at the right level
- Upskilling teams across the business
- Keeping up with changing work practices
- Remote, hybrid and in office capabilities
- Increased exposure to IT risks
- Enhancing IT controls and infrastructure
- Embedding business continuity and crisis management plans
4:45 – 4:55
Chair’s closing remarks
4:55
End of Congress
Would your organization like to partner with us on this event?
To discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities, please contact sales@cefpro.com or call us on +1 888 677 7007 ext. 207 for more information.
Sponsors
Co-sponsor
Associate sponsor
Content and media partners
Speakers
Hear from subject matter experts and industry thought leaders
Varun Agarwal
Director, Enterprise Risk Management
Western Alliance Bank
Veronica Baker-Adams
Director, Enterprise and Operational Risk
Navy Federal Credit Union
Dominique Benz
Managing Director, Head of Business Controls
Mizuho
Giancarlo J Berrocal
SVP Operational Risk Management
Citi
Amy Butler
Chief Risk Officer
Legal & General
Patricia Catharino
US Head of Internal Controls and Risk Management
Banco Itau International
Zhi Chung
Director, Non-Financial Risk Management
Credit Suisse
Madiha Fatima
Executive Director, Operational & Outsourcing Risk
J.P.Morgan
Antonio Gonzalez
former Head of Operational Risk
Bank of China
Marc Kantor
Director Operational Risk Resilience Lead
Barclays
Sabeena Liconte
Chief Compliance Officer
ICBC Standard Bank
Sandeep Maira
Head of Enterprise Risk Technology
The OCC
Arindam Majumdar
Deputy Chief Risk Officer
Bank OZK
Thomas Mangine
Director, AML & MLRO
BMO
Philip Masquelette
Chief Risk Officer
Ulsters Savings Bank
Yogesh Mudgal
Senior Risk & Controls Leader
Tier One Bank
Melissa Mellen
Director, Third Party Risk Management
Federal Reserve Bank of New York
Christopher Nestore
Head of Enterprise and Operational Risk Management
TD Bank
Gustavo Ortega
Head of Technology, Innovation and Operations Risk Management
Voya Financial
George Soulellis
Chief Enterprise Risk Officer
Freddie Mac
Michael Steinhoefel
Director, Operational Risk Management
Barclays
Sponsors
Co-sponsor
Associate sponsor
Content and media partners
Venue & FAQs
360 Madison Avenue | etc.venues
Madison Avenue
Midtown Manhattan
New York NY 10017
There is no accommodation available at the venue, however there are plenty of hotels available nearby. To view nearby accommodation based on recommendations by etc.venues, click here.
Frequently Asked Questions
Can I share my thought leadership at Non-Financial & Operational Risk USA?
Will there be opportunities to network with other attendees?
- Breakfast, lunch and refreshment breaks
- Drinks reception at the end of day-1
- Q&A, panel discussions and audience participation technology
What is included within the registration fee?
Where can I find the Congress documentation and speaker presentations?
* Please note that our speakers often have to gain permission from their relevant compliance departments to release their presentations. On rare occasions compliance may not allow presentations to be distributed.
Will breakfast, lunch and refreshment be provided?
Are CPE Credits available?
Are there any rules on dress code?
Register
Register for Non-Financial and Operational Risk Management USA today and join 150+ industry professionals and subject matter experts, while engaging in panel discussions, presentations, roundtables, networking, and interactive polls and Q&As.
Register before June 30 and take advantage of our launch rate special.
By registering for this Congress, you will also gain access to our Climate Risk USA Congress which will be help concurrently at the same venue.
Need assistance with your registration? Get in touch with us via email below, or call us on +1 888 677 7007.
Launch rate special | Expires June 30
E.g. Bank, Insurance company, Asset manager, Regulator
E.g. Consultant, Vendor, Executive search firm, Law firm
*To qualify for the preferential rates above, registration must be received by the close of business of the specific end date for each rate. Payment can be made at the time of registering, or up to a week after an invoice has been sent. CeFPro reserves the right to increase rates should payment be delayed significantly. Should a delegate register at a rate that is inaccurate, CeFPro reserves the right to issue an additional invoice for the outstanding amount.