Conference Day 1 - 25 April, 2018




Keynote address: Why is risk assessment so bad at warning about the most serious risks?

Outside of narrow technical situations, there is very little evidence to suggest that risk assessment produces accurate or useful results. In this talk, Dr. Drew Rae will examine examples of when risk assessment processes have become complicit in creating disasters and will make the case that these are not isolated examples of risk-assessment gone wrong, but symptoms of systematic problems with how risk assessment is used.

Dr. Drew Rae, Manager, Safety Science Innovation Lab, Griffith University (Brisbane)


Panel Discussion: Defining roles across the three lines of defence
  • How can the three lines be optimised to increase efficiency and accountability?
  • Who should own the risk appetite – The first or second line? How is the line drawn?
  • Focusing on the relationship between the first and second lines of defence
  • Communication between the second line and senior managers at the board level

Lee Hsia Foo, Head of Operational Risk, Asia-Pacific, Westpac
Eva Gessner, Head Business Risk & Regulatory Management, UBS Wealth Management
Harkanwal Sodhi, Director, Risk Framework and Initiatives, Credit Suisse




Presentation: A review of the cyber risk landscape
  • Obtaining adequate data to measure and quantify cyber risks
  • The latest threat vectors to be aware of
  • How to apply stress testing and scenario analysis to cyber risk
  • What types of cyber risk insurance are available and what tools are used in their quantification of risk?

Theo Nassiokas, Director, APAC Cyber Security, Barclays


Interactive session: Business continuity and disaster recovery in operational risk
Hosted by: Willem Hoekstra, Head of Business Continuity Management (Asia ex Japan), Nomura

PART I: Scenario dissection and strategising

Participants will be introduced to an unfolding operational risk scenario and asked to consider the immediate steps they would advise their firm to take based on the information available at each stage


PART II: Harvest session

Each host will summarise their discussion and present it back to the table participants with comments


Learning outcomes:

  • What immediate actions would you advise your firm to conduct in the scenario?
  • What is the role of the 1st and 2nd lines of defence in this situation?
  • How do you measure and assess the impact of the disaster on your firm?
  • What are you crisis management protocols?
  • What are the best practices in business continuity strategy, both from an employee and an infrastructure standpoint?




Presentation: Scenario Analysis - Lessons learned from 10 years of practice
  • Behind the scene of "best practices"
  • Use structured assessment to proactively involve the business
  • Regulatory requirements are the question, not the answer

Patrick Naim, CEO, Elseware


Presentation: Best practices in fraud and AML detection and prevention
  • Identifying and mitigating the key risks and threats in financial technologies
  • Proactively identify potential threats by leveraging machine learning and data analytics
  • Implementing strategies for monitoring compliance and ethics programs
  • Utilising the internet and other emerging technologies in fraud investigation




Presentation: The risk manager of the future
  • FinTech and new operational risk challenges in the year to come
  • How has operational risk evolved over time?
  • What will be the top regulatory requirements and risk priorities in the coming years?
  • Best practices for conducting the risk self-assessment

Claudia Marcusson, Former Head of Risk Management APAC ex-Japan, NN Investment Partners


Spectrogram Interactive Session: Strengthening the conduct risk culture

Delegates will begin at a neutral point on a spectrum and will then be asked a set of key questions about their thoughts and opinions about the role of conduct risk in operational risk. Depending on their answer will determine where they will then move to on the spectrum. The session moderator will then interview people at different points on the spectrum about the opinions they hold, creating a shared experience while demonstrating the range of opinions on the topic.

Liz Bell, Chief Controls Office, Barclays



Conference Day 2 -26 April, 2018




C-Level keynote panel discussion
  • What emerging risks are of most concern to C-level?
  • How is operational risk appetite established in your firm and what goes into decisions behind resource and capital allocation for the risk functions?
  • What are your biggest regulatory challenges and what impact do they have in your firm-wide risk frameworks and innovation?
  • How can we drive collaboration between the compliance and OpRisk functions?

Urban Wilde, Regional Chief Risk Officer, EFG Bank
Benedicte Gardner, Managing Director, Head of Operational Risk APAC, Credit Suisse
Venkatesh Subbaraman, Regional Chief Operating Officer, Institutional Banking, ANZ
Markus Blattmann, Chief Risk Officer, Bank Julius Baer


Presentation: Enterprise risk management: (How) does it create value?
  • Dusting off existing ERM processes
  • What to take into account when running ERM
  • Case studies of transferring individual risks scenarios

Wolfgang Boffo, Corporate Insurance Partner (CIP) Asia, Munich Re




Presentation: Managing risk in the cloud
  • Isn't this just outsourcing?
  • Examining the cloud landscape and the latest regulatory expectations
  • Software really is eating the world - how do we build an effective end-to-end risk assessment framework?
  • Effective communication with third party vendors to mitigate fourth party risk

Anthony Hodge, Head, Cloud Governance and Regulatory Compliance, Standard Chartered Bank




Presentation: Utilising artificial intelligence and machine learning to increase efficiency in operational risk
  • Isn't this just outsourcing?
  • Examining the cloud landscape and the latest regulatory expectations
  • Software really is eating the world - how do we build an effective end-to-end risk assessment framework?
  • Effective communication with third party vendors to mitigate fourth party risk


Panel discussion: Best practices in developing KRIs to prevent damaging risks

Risk managers need to be aware of how unforeseen risks can quickly manifest and damage a firm. Key risk indicators play a significant role in risk mitigation, but how to establish a KRI framework and put the concepts into action can be a daunting task. This interactive panel will address the role and attributes of KRIs in financial services to allow for participants to clarify some of the more complex ideas that go into these frameworks.

Sanchit Maini, Regional Director, Risk, Prudential
Yusuf Yasin, Director, Operational Risk - Financial Markets, Standard Chartered Bank
Aurélie Saada, Former Head of Enterprise Risk Management, AIG




Startup showcase

The startup showcase will feature five startup and growth-stage companies who are utilising new technologies to address the latest operational risk challenges. As new technologies are helping to accelerate productivity and deliver innovative capabilities, it is important for practitioners to get a chance to see which products might be able to create new value for your firm


Roundtable discussions: Bring your questions, leave with your answers!

From session to roundtable- Take the day's most contentious issues and fully engage with your peers in small interactive roundtable discussions to drill down, share best practice and take away diverse approaches to the same challenge from your fellow industry peers.