Agenda

Agenda

The Fundamentals of Operational Risk | Agenda

**************************************************
Course Tutor: Andrew Jefford, Consultant Trainer, Risk Reward

Live virtual course | Agenda timing is in GMT

Respective time in AEST:
Start: 5:30 pm
Break: 6:30 pm
Finish: 7:45 pm
**************************************************

08:3009:30

Building an ORM framework

08:30 - 09:30

  • Governance of operational risk
  • Relationship between 1st and 2nd lines of defence
  • Creating an integrated approach to operational risk
  • Challenges and opportunities for ORM frameworks

09:3009:45

Break

15:00 - 15:15

09:4510:45

Lessons learned during COVID-19

15:15 - 16:15

  • Operational risk priorities and focus: changed during the pandemic?
  • Risks and opportunities: key areas of focus
  • Control environment: which controls have weakened?
  • Three things that differentiated winning operational risk teams
  • Return to new normal: what next?

08:3009:30

Understanding risk culture

10:00 - 11:00

  • What does a good risk culture look like?
  • Risk culture framework?
  • Internal and external factors affecting risk culture
  • Effective tools for managing and assessing risk culture
  • An integrated approach to risk culture change

09:3009:45

Break

15:00 - 15:15

09:4510:45

Assessing your risk appetite

10:00 - 11:00

  • Definitions and governance
  • How to assess your risk appetite and the factors affecting it
  • Understanding what your risk profile is against your risk appetite
  • Quantifying qualitative operational risk
  • How to utilise risk appetite to drive forward business strategy and decisions

08:3009:30

Data compromise and Information security

14:00 - 15:00

  • Controls to prevent mismanagement and data breach
  • Protecting data from external malicious attacks
  • Operational and reputational risk
  • Compliance with legislation – MiFID II, CCAR, BCBS 239

09:3009:45

Break

15:00 - 15:15

09:4510:45

Cyber security and cyber risk

15:15 - 16:15

  • Where do cyber security and operational risk management meet?
  • How do cyber security and cyber risk affect one another?
  • Aligning operational risk and cyber security processes
  • Managing risks associated with remote working under Covid-19

08:3009:30

Third party risk management

14:00 - 15:00

  • Third party risk management cycle
  • Key third party management risks and the snowballing challenges
  • Internal vs. external outsourcing
  • Risk assessment, effective controls, best practices

09:3009:45

Break

15:00 - 15:15

09:4510:45

Operational resilience

15:15 - 16:15

  • Understanding regulatory requirements
  • Operational resilience vs. business continuity management
  • Determining impact tolerance
  • Establishing appropriate crisis management