Course Agenda

Course Agenda

Course Agenda

08:3009:00

Registration and refreshments

08:30 - 09:00

09:0010:30

Governing, creating and implementing an op risk framework

09:00 - 10:30

  • Background – drivers of risk management, high levels of enforcement and fines
  • Designing effective op risk governance:
    • Common risk language
    • Risk management steering committees
    • Linkage to policy framework
    • Building blocks for information security risk
    • Roles and responsibilities across the board
  • Implementing a proper first, second and third LoD
  • Non-financial risk, enterprise risk & op risk – differences and similarities
  • Creating an integrated approach to op risk
  • Challenges and opportunities for op risk frameworks
Wieger Muntingh

Manager Non Financial Risk

Van Lanschot Kempen

Lives in Amsterdam with his wife Tania and our 2 children, Yuna of 3 and Iskay of 2.

Before joining ABN AMRO in 2004  he studied Communication and later also Business.

At ABN AMRO Wieger has started as an Operational Risk analyst leading up to managing an team of operational risk managers for the ABN AMRO back office.

After ABN AMRO he was appointed head of operational risk management at Triodos Bank, a mid-sized independent sustainable bank that operates in various countries in Europe. At Triodos Wieger was responsible for the design and implementation of the Operational Risk framework, key control testing and a Governance risk and Compliance tool.  Currently he is responsible for Non Financial Risk at VanLanschotKempen, a publicly traded private bank and asset manager.

In these various roles Wieger gained experience in the implementation and execution of the elements of Operational Risk.

Wieger enjoys spending time with his family, running and cooking.

10:3010:45

Break

10:30 - 10:45

10:4512:00

RCSA’s

10:45 - 12:00

  • ORMF and Role of RCSA; Value of Effective RCSA
  • RCSA Lifecycle and Approaches
  • Key Components of the RCSA Process
    • Planning and Preparation
    • Risk Profiling and Inherent Risk Assessment
    • Controls Design and Control Landscape Assessment
    • Residual Risk and Risk Responses
    • Governance and Reporting
  • Common Pitfalls and Challenges with RCSA
Ravi Gupta

Operational risk/risk transformation leader

Credit Suisse

Ravi Gupta is a senior operational risk manager at Credit Suisse, responsible for driving the design and development  of the risk and control framework and ensuring compliance with policy and relevant regulations within Operations. He is a risk and business transformation practitioner with 17+ years of analytical and program management experience in line and consulting roles at global financial services firms. He was previously part of the leadership team of The Institute of Operational Risk (IOR), England and Wales Chapter where he hosted discussions and raised awareness on Operational Risk.

12:0013:00

Lunch

12:00 - 13:00

13:0014:30

Risk Appetite

13:00 - 14:30

  • Definitions and governance
  • How do risk appetite frameworks differ across financial services (banks, asset managers, pension funds, insurers?)
  • Who should own the risk appetite? First or second LoD?
  • Statements on risk appetite
  • How can you utilise risk appetite to drive forward business strategy and decisions?
  • Key risks and controls in relation to key effectiveness testing
Bart Harmsen

Head of risk management

Actiam

Bart is currently Head of Risk Management at ACTIAM. ACTIAM is the captive asset manager for VIVAT, Zwitserleven and REAAL as well as the manager for the ACTIAM range of sustainable and impact funds. Bart started his career as market maker on the European Options Exhange before moving into  risk management and consulting roles. Bart holds a degree in Law and Business Administration.

14:3014:45

Break

10:30 - 10:45

14:4516:15

Incident management perspective – loss events

14:45 - 16:15

  • Defining and implementing incident & loss management approaches and processes
  • Should we incorporate near misses?
  • Loss events as input in the new regulatory capital standard
  • Regulatory loss event reporting to regulator
  • Internal vs. external loss events
Eelco Van-Dijk

Senior operational risk analyst capital management

ING

Eelco van Dijk joined ING Bank in 2008 and started working in the modelling and scenario team of Group Operational Risk.

Since 2013 ING reports operational risk regulatory capital according to the AMA model.

The AMA model uses among other internal loss events. Therefore Eelco deals with many aspects of internal loss events (data quality, completeness, etc)

Prior to moving to ING Eelco worked at ABN AMRO in a variety of risk roles for almost 20 years.

Eelco is member of the Risk Committee of the Dutch VBA CFA chapter  

 

08:3009:00

Refreshments

08:30 - 09:00

09:0010:30

Risk Culture

09:00 - 10:30

  • What does a good risk culture look like?
  • Risk culture framework
  • Understanding internal and external factors affecting risk cultures
  • Managing risk cultures: effective tools
  • Assessing risk culture
  • Risk culture change with an integrated approach
Amanda Burns

Director, Change within and previously head of risk culture, RBS

Amanda is an experienced senior Risk and Human Resources leader, with over 16 years experience in the financial sector. She has a wealth of experience leading teams in the delivery of global organisational and risk culture programs from design through to implementation and embedding. She has extensive experience in the design of organisational and risk culture measurement frameworks, which enable organisations to robustly assess their culture, measure progress and embed strategies to continuously improve decision-making, risk-taking, risk management, employee experience and organisational performance. Her recent role as Head of Risk Culture, involved her working across the three lines of defence, with Executives and their Senior Leadership teams to address risk culture findings and enhance business performance through targeted strategic programmes of activity.

 In addition to her financial services experience, Amanda has held leadership positions in Retail, Manufacturing and Petrochemical organisations.

 Amanda is currently the Director of Change Within. 

10:3010:45

Break

10:30 - 10:45

10:4512:00

KRI deep dive

10:45 - 12:00

  • The characteristics of a good KRI and preventative KRIs
  • Comparisons between KPIs and KRIs and reference to corporate strategy
  • KRI design
  • How can you leverage existing business processes?
  • Maximising op risk efficiency through revamped KRIs
  • KRI governance and reporting
Roger Meijer

Senior consultant (operational risk, compliance & change management)

KAS Bank, Owner, RMA

Roger Meijer has over 30 years’ experience within the financial services industry. He started his career at the Postbank and worked for more than 10 years “ING Direct”. He worked in different domains like Audit, Operations, Finance, Risk, Compliance, in different roles/functions and in all 3 lines of defense: he is pragmatic and likes to keep things as simple as possible.

After being responsible for coordinating the ING Direct Internal Audit departments, his last role at ING was Head ORM/Internal Control & Security. As of 2013, Roger is working as Senior Consultant for financial institutions such as KasBank, AEGON, SNS/de Volksbank & Nationale Nederlanden etc.

He is certified “Risk Manager For Financial Institutions” and officially registered in the RMFI register of the CFA. Roger also studied Lean management (Lean Sensei) and Six Sigma (Black Belt)

Roger is married, father of 3 children and proud “Opa” of grandchildren. Roger likes sports, gardening, building and fishing in the Dutch lakes

12:0013:00

Lunch

12:00 - 13:00

13:0014:30

IT security and cyber risk management

13:00 - 14:30

  • Introduction to IT security
    • IT security governance
    • IT risk management
    • IT security program development
    • IT incident management
    • IT frameworks
  • Where do IT security and operational risk meet?
    • Security management
    • Change management
    • Operations management
  • IT security vs cyber security
    • Overlap and differences
  • Integrating IT security and operational risk
  • Aligning operational risk and cyber security processes
Kaevin Rombaut

IT and operational risk expert for one of the largest French Banks

Financial services

14:3014:45

Break

10:30 - 10:45

14:4516:15

Operational Resilience

14:45 - 16:15

  • Operational resilience assessments
    • Overview about the resilience related risk types
    • Deep dive on risk types
      • 3rd party risk
      • Business process disruption risk
  • Understanding the regulatory requirements and standards implemented
  • Determining impact tolerance
  • Response and recovery- testing analysis on operational resilience scenarios
  • Establishing appropriate crisis management
  • The importance of a holistic approach to operational resilience
Achim Laube

Regional head non-financial risk management

Deutsche Bank

Achim Laube  Achim Laube is a Non-Financial Risk Manager at Deutsche Bank. He is Regional Head of NonFinancial Risk Management (NFRM) Risk Type Control, and in addition, he heads the regional supplier risk team and the operational resilience team for Europe, Middle East, and Africa. Achim started his career at Deutsche Bank in 1985 as an apprentice and started again after he finished university as a corporate banking trainee. He held different roles in corporate banking with a focus on process management, as well as on the internet as a banking channel. Afterwards, he worked for three years in human resources to build a web-based HR self-service tool for the bank. Since 2006, Achim has worked in the area of non-financial risk, first as Operational Risk Relationship Manager, and later as Regional Head of Business Continuity Management, and Vendor Risk Management before he took over additional responsibility for all resilience-related risk types in the region. Achim holds a diploma in economics from Christian-Albrechts-Universität, Kiel, and a master of business administration from Ashridge, Berkhamsted.