Why GRC Summit 2011?
Good Governance, Effective and Real-time Risk Management and adhering to
regulatory Compliances have direct impact on your organizations Reputation,
Valuation and Profitability
There is a need to simplify internal processes and not make them more complex
There is an urgent and immediate need to cut complexities brought by necessity to manage
governance, risk management and regulatory compliances which are now overseen by a
number of departments including internal audit, information technology, compliance and
regulatory management, enterprise risk management (ERM), operational risk and incident
management amongst others.
Ground Reality is that multiple groups bear responsibility for several functions and
processes; they operate in silos, with insufficient sharing of information and following
multiplicity of frameworks and systems.
A number of thought leaders are now talking about the business sense to optimize
resources and these intersecting activities as a Singular Function to bring about efficiencies,
reduce or eliminate repetitions of same task by multi departments, need to come beyond
the paper trail to practices in real time by formulating a common GRC Framework.
Thoughts on GRC have been discussed for some time, yet real-time and inclusive
integration is still work in process. However the main question remains on How do develop
a GRC Framework and Program for your organization?
Especially since it is hard to bring all the stakeholders together in an integrated GRC
framework.
Audits, Finance, Compliance, Risk and Legal have their own functioning styles and process.
Business line managers and IT bring in their own perspectives, which complicate adoption.
Understanding and reconciling these disparities and conflicts is critical to success when
driving an enterprise-wide GRC program.
This inclusive two day conference bring together all stakeholders on a common discussion
platform to see, hear and determine best practices in inter-linking people, processes and
technology for the most appropriate GRC framework and a practical adoption roadmap
that will work in todays work environment !
08-09 2011, New Delhi
Organisations manage their governance, risk management, legal and regulatory compliance in an unconnected manner,
separated through functional lines, multi locations and sub units
Join this interactive, comprehensive, wide ranging and new thought generating forum which discusses
best practices in Governance, Risk Management & Compliance and
process for integrating and harmonizing people and process for a workable, practical
Integrated and Unified GRC Framework
Who Should Attend:-
CXO ,
Chief Risk Officers
Chief Legal Counsel
Chief Compliance Officer
Chief Internal Audit
Chief Information Officer
Chief Information Security
Vice Presidents, General Managers,
Head, Functional Managers &
Consultants of:-
Finance
Corporate Governance
Treasury
Controllers
Compliance
Accounts
Enterprise Risk Management
Legal and Regulatory
Ethics
Operational Risk
Audit & Internal Controls
Information Technology
Information Security
Management Assurance
Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
GRC is about linking together your business processes, people and technology in an integrated manner.
Consider this:
Risks are now more diverse and interrelated
The management of enterprise risk and compliance has become a critical business issue and can
provide a strategic competitive advantage. Reaction to positive risk are often delayed
opportunities missed
Departments have their individual mandates, but often work is duplicated
As companies grow, expanding presence across state and international borders, Good
Governance is the most effective measurement criteria for current and future stakeholders
There are so many regulations, central, state, municipal and also your industry regulator giving
you limited time and resources to comply
Even with mature risk management strategies in place, communication of the same to board
members or top management is not effectively done. Adequate mitigation strategies in place
organizations are not ready to adjust to new or emerging risk
Laws and regulations have become more complicated. Boards and executives are now more
accountable
Why should you participate in GRC SUMMIT 2011?
The key SUCCESS for a GRC PROGRAM is a coordinated effort by audit, legal,
risk and compliance functions and among key administrative, operational
personnel and business lines in both the implementation of the systems and
the interpretation of the data generated
What Differentiates GRC SUMMIT 2011?
The Summit brings together ALL STAKEHOLDERS involved in implementing a successful GRC
Program in an interactive and shared learning environment to discuss real time execution paths,
way around practical roadblocks, so that you start applying your learnings immediately in your
work environment
The challenge is to bring together all the stakeholders in an integrated GRC
Framework. Audits, Finance, Compliance, Risk and Legal have their own
functioning styles and process.
Business line managers and IT bring in their own perspectives, which complicate
adoption.
IMAGES FROM MUMBAI GRC SUMMIT
Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
08.00
Registration and morning refreshment
09.30
Mainstreaming of GRC into Business Process
Keynote address by session chair
10.00
Key Note Panel:
Where & Why is GRC integration needed most?
Cost saving or Effective functioning?
Perspective from Board of Directors
Governance vulnerabilities which make GRC integration a must
for corporate in India
Evaluating GAPS in governance, risk management & compliance
and ground realties which are the real needs for effective
functioning of Board
GRC effect on increasing transparency and business assurance
Perspective from Management (CEO and MD)
Gaps in risk management, compliance which hinder
organisational top line and bottom-line
How can GRC help in effective functioning and managing of
companies? Key expectations from CXO
GRC as a Business Enabler
CFO Perspective
Cost benefit analysis and value creation of GRC integration
Perspective from Business Process Facilitators
(Legal, Audit, Risk Management, Compliance)
Case Examples of GRC Implementation in Indian Corporate
11.30 Refreshment and networking break
12.00 GRC International Perspective:
Observations on the development of GRC in global companies
Learnings from GRC implementation in leading companies
What are the main drivers for GRC and the cost benefit analysis
which have lead these companies to initiate and actively pursue
an integrated GRC program?
How do we leverage the current experiences to a unified GRC
framework which adds value?
Technology and information management in GRC which have
enabled the transformation
12.30
Presentation of Research Report by Knowledge Partners
13.00 Expert View:
Evaluating the return on your GRC Investment
The key for implementing a new process or program in organization
is to have a very clear view on advantages it offers, monetary, short
term and long term benefits. This presentation analyses the benefit
of GRC program on
Enterprises brand and reputation
Stakeholders and share price
Resources utilization
New business strategies
Competitive differentiation
13.30 Networking Lunch
14.30 Practical Road Map for GRC Convergence
Establishing a practical roadmap for an integrated
Governance, Risk Management and Compliance organizational
structures to work
The need for an integrated GRC framework is well recognized in
todays business environment, however only a few companies have
been able to succeed in implementing an integrated GRC strategy
due tocomplexities as well as structural overlays This session will
examine and discuss the critical patterns for adapting a successful
GRC framework
Discussion Focus one:
Identifying current challenges and business benefits for a
unified GRC framework?
Is the corporate world looking at GRC as a strategic tool or
Monitoring / Control concept or value creation? Why?
What are the current challenges in organization in aligning
governance, risk management and compliance framework?
What are the business benefits seen?
What is the ideal GRC framework, state of future play and
business benefit for fast growing company or for a globally
expanding corporate and why?
Identifying common blocks?
Siloed functions and impact on your GRC strategy?
Discussion Focus Two: Change Management
How do you manage transition from silo assurance and
compliance functions to an integrated GRC - addressing
concerns of stakeholders at various levels, socializing GRC and
creating GRC culture in enterprise?
How do you bring different mindsets of different individuals to
collaborate and work on a uniform GRC platform?
How do you build ownership culture within the organization and
amongst key stakeholders related to GRC?
How do you increase sincerity of departmental heads in taking
Risk, Audit and Compliances seriously?
Communication plan for raising awareness level of management
and Board Of Directors about importance and benefits of GRC?
What are the key buy in factors to achieve a positive outcome?
16.00 Refreshment and networking break
16.45 Practical Road Map for GRC Convergence (Continued)
Discussion Focus Three: Methodology
Methodology to link process and technology for effectively
bridging together internal audit, risk management,
information security, operations and compliance functions
GRC Champion: Who should leads the initiative?
What are key steps in integrating GRC into the company culture
and work ethos?
How do you position GRC structures right in organizational
hierarchy?
Challenges and practical path for creating a sustainable structure
Identifying and bridging the GAP between department and a
unified GRC Framework?
Communication strategy in getting the right message across to all
stakeholders
How do you create harmony between business roles?
Accommodating stakeholder requirements
What is the ideal GRC framework and state of future play for fast
growth companies?
Cost of integrating of GRC with companys present system? How
do you work on lowering cost implications on size and nature of
organization
Discussion Focus Four: Role of Technology
Role of Technology as key differentiator factor for a successful
or a failed GRC Framework
Current technology environment and available platforms which
can be integrated in your existing infrastructure
How is the GRC solutions and tools expanding are they hype or
provided a practical solution to ease your governance, risk
management and compliance activities?
Implementation costs, investment and RoI
Key consideration before choosing your technology partner
Case Examples: Analyzing failed and successful implementation
17.30 Summation and end of day one
CONFERENCE DAY ONE: THURSDAY, 08 December 2011
Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
08.30
Registration and morning refreshment
09.15
Opening remarks by session chair
09.30 Instilling a culture of good corporate governance for GRC
success
Changing approaches to corporate governance
Involving senior management and drive from the top
Ethics and corporate governance, Education and enforcement
Integrating corporate governance with CSR
Integration with internal and external stakeholders and extending it
to third-party business partners
Linking good governance to your GRC strategy?
Controlling cost of Corporate Governance
10.00 Expert View: GRC Quantification, Accountability, Reporting,
Disclosures & Maturity Models
What are the metrics and measurement to check the success and
progress of your GRC plan? What to track? Why? and how?
How do you establish and track GRC goals
Creating collaborative accountability across business function and
roles
GRC Maturity Models
10.30 GRC Tools: Evaluating Enterprise GRC Platforms
In this session 3 hand-picked GRC platform providers present for 7
minutes each, their latest innovations to Interested buyers who are
eager to learn about the latest solutions in the market. This session
provides a very unique opportunity to quickly determine which
solutions you may want to explore in greater depth to support your
GRC framework
11.00 Networking and refreshment break
11.30 GRC Tools:
Implementing continuous auditing & continuous monitoring
techniques to support your GRC Strategy
Continuous auditing (CA) and continuous monitoring (CM) methods
are ideal to address evolving, complex risk environment, meet ever-
changing regulatory, business, and industry requirements and can
form one of your core tools for an integrated GRC.
This session will discuss key success factors required for implementing
continuous auditing and continuous monitoring techniques in
organizations
12.00 GRC Enabler: Enterprise Risk Management
Linking Enterprise risk management to a unified GRC strategy
Everyone in an organisation plays a role in ensuring successful ERM
practices, it is important for all functional departments which include
information technology, finance, audits, compliance, legal and risk.
To understand larger picture for managing risk and involvement for
an effective ERM program which is linked to your GRC strategy, this
interactive session will discuss:-
How is GRC different from ERM?
How would you build a business case justifying and convincing the
Audit Committee on implementing GRC as a separate component
different from ERM?
If Organizations are in the process of implementing ERM, what
considerations should be made to ensure GRC is also mapped as
part of ERM?
Real Time Risk Alert Monitoring, Detection & Reporting
Importance of good governance and ERM strategy directors
duties, legislation & expectations
Organisations risk appetite link to stakeholders expectations
Committing to a risk Management programme
How do you create a common risk management communication
language?
Linking your ERM to a unified GRC strategy
Case study: Case analysis on successful ERM from industry sectors
and key factors in successful implementation
13.00 Networking lunch
14.00 GRC Enabler:
Information Governance and its role in a successful GRC strategy
Developing an enterprise-wide information governance strategy.
Identify current and target states on Information Governance Maturity
Model
Challenges and strategies in implementing roadmaps,
Learn about technologies that accelerate movement up
Information Management maturity curves
What are the significant forces affecting the governance of IT in
contemporary organizations?
How are organizations governing IT in order to manage the business
imperatives of the economy?
What is the new organizing logic for IT governance, and what are the
business implications?
What are best practices for Information Governance?
15.00 GRC Enabler: Compliance Strategy
Percolating GRC into day to day management at regulatory and legal
level benchmarking the same at various business unit levels
Evaluating how you can stay on top on regulatory requirements and
changes thereto with a unified GRC program
Achieving connectedness between compliance, audit and risk
programmes
Risk Identification & Management - Mapping of controls and
compliance requirements to specific business processes
16.00 Networking and refreshment break
16.30
OPEN SESSION:
Discussion which focus on questions and issues which lie between the line,
are in the back of everybody minds, but are not brought forward in public
discussions
GRC and Impact on Mergers and Acquisitions will it help you in the
negotiating and price valuation? Will GRC ensure a successful
amalgamation?
GRC and its role in influencing your stakeholders? Does it drive up your
stock valuation? Does it help when your stock prices are being driven
down by market manipulators?
How do you use GRC as an effective reputational tool building block for
up scaling company valuation and stakeholders perceptions
GRC what are the common issues which will result in this being one
more buzz word and practice which is just on paper?
Will GRC help in managing your organizational exposure to fraud from
external sources and fraudulent behaviors from internal employees?
Analysis: Could the recent scams and frauds been prevented with GRC
program in place
Ideation Focus
How can departments contribute positively in a unified GRC
Strategy?
Identifying the GRC Champion who should lead the initiative in
your organization
17.30 Summation and end of day two
CONFERENCE DAY TWO: FRIDAY 09 December 2011
* awaiting formal confirmation
