Delve in deeper and join our ALL-DAY PRE-EVENT (12th March) and POST-EVENT (15th March) MASTERCLASSES Places are selling out fast! Find out more on pages 4 & 8

4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE 13-14 MARCH 2018 | LONDON

Just some of the keynote topics to be addressed: HEAR FROM MORE THAN 30 SENIOR OPERATIONAL RISK PROFESSIONALS FCA KEYNOTE ADDRESS An FCA perspective on operational risk and looking ahead INCLUDING: Future of risk management Embedding operational risk management as part of decision Paul Dyer, making process Head of Operational Risk, Compliance and Risk Aligning departments Review, Financial Conduct Authority Aligning departments and functions for a holistic view of operational risk Paul Berry, Mark Cooke, Chief Risk Officer, Global Head of Data Using operational risk data to support informed business Operational Risk, Mizuho International HSBC decision making Cyber Anthony Brown, Lav Bernfest, Director, Group Risk, Reviewing the landscape and management of internal and Head of Group Operational external risks Prudential Risk, Erste Group Regulatory change Mark Jesurasa, Managing volume of upcoming regulatory requirements whilst Head of Operational demonstrating value of operational risk management Risk APAC and ME and Marike Dokter, Director Internal Audit, Global Enterprise Risk, Barclays Columbia Threadneedle NEW FOR 2018 - TWO FOCUSED STREAMS ON DAY 2 Investments Pam McDonagh, STREAM ONE STREAM TWO John Joyce Global Head of RISK MANAGEMENT RISK MEASUREMENT Head of Enterprise Risk Operational Risk Management, Risk appetite Fixing op risk capital Framework, UBS Allianz Insurance Key risk indicators Operational risk capital regime Three lines of defence Stress testing Control, monitoring and testing KNOWLEDE PARTNER: Scenario analysis Self assessments Reputational Risk Conduct risk Vendor & third party risk Recent significant operational CO-SPONSORS: risk events Emerging risks

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON

EVENT OVERVIEW We love the Center for Financial Over the last 10 years the operational risk landscape has evolved year-on-year, as regulators have placed a large focus on ensuring that financial institutions manage operational risk effectively. The 4th Professionals because Annual New Generation Operational Risk: Europe Summit will look at navigating this ever-changing landscape to increase efficiency and value they bring the across the organisation. It will also discuss the utilisation of approaches for the measurement and management of risks. community of like- Operational risk is one of the biggest challenges facing FIs in recent years, stemming from the 2007/2008 financial crisis. With resources minded professionals constantly strained there is a need for operational risk processes, procedures and frameworks to be run as efficiently and effectively as possible, whilst continuing to comply with regulatory guidelines. at very senior levels Couple this resource strain with the increased regulatory scrutiny on ORACLE FINANCIAL SERVICES FIs demanding effective operational risk management, as well as the heightened media attention in recent years to areas that fall under the operational risk umbrella, then it is no surprise that operational risk departments have their hands full. With such increased scrutiny and uncertainty The Center for Financial professionals look to bring together over 200 operational risk experts across two days to discuss how to navigate this complex landscape, increase efficiency and add value across the organisation. 2018’s event boasts a range of institutions from both the buy and sell-side, with attendees benefiting from keynote sessions on Day 1 on the broader operational risk themes and more in-depth discussions during concurrent workstreams on Day 2.

WHAT’S NEW FOR 2018

EVEN MORE SPEAKERS AND KEYNOTE DISCUSSIONS Hear from over 25 senior operational risk experts give TWO DEDICATED WORK STREAMS their expert knowledge on a variety of topics within the We have expanded even further upon 2017’s 3rd Annual operational risk landscape. Join an audience of over 200 Summit to incorporate two new workstreams into Day operational risk professionals, hearing insights on a variety Two. The 4th Annual New Generation Operational Risk: of keynote discussions including: Embedding operational Europe Summit will include individual work streams on ‘Risk risk into the decision making process, GDPR, Cyber risk, AI Management’ and ‘Risk Measurement’. Attendees will be and robotics, aligning departments and regulatory change together on Day One and then after the morning break on day two have the opportunity to join a single stream or Join the keynote sessions with insights from: create a tailor-made event by joining individual sessions across each stream. The Financial Conduct Authority, HSBC, Allianz Insurance, Swiss Re, Raffeissen bank, Societe Generale, RBS and more

PRE AND POST EVENT MASTERCLASS 2018 also features two Masterclasses. One pre event masterclass on March 12th discussing ‘Operational risk LUNCHEON ROUNDTABLES - Getting the fundamentals right’ led by The Institute To be released! We will be holding luncheon roundtable of Operational Risk and industry expert guest speakers, discussions during the lunch break on the first day. These to debate a number of areas around getting the basics will allow attendees to have an informal discussion with right. Also join the Masterclass on March 15th led by the industry leaders over the lunch break under Chatham Global Head of Operational Risk Framework and Director, house rules. Compliance and Operational Risk from UBS and industry guest speakers on sourcing the best ingredients to meet the needs of a healthy Risk Appetite framework.

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON

SPONSORSHIP & EXHIBITION Positive experience. Summit was very well organised and run. Agenda covered a lot of relevant topics. Speakers gave good insights from their own experience BANK OF IRELAND Advance your branding, awareness, industry expertise, thought-leadership and lead-generation at the 4th Annual New Generation Operational Risk: Europe Summit. Sponsorship and exhibition with the Center for Financial Professionals offers unique networking, brand recognition and thought-leadership deliverance opportunities with senior risk professionals from around the world. Whether you want full branding across the event or simply a well-positioned exhibition stand, our business development team will tailor the right package for you.

Call us on: +44 (0)207 164 6582 or email: [email protected] to find out more

KNOWLEDE PARTNER EXHIBITORS Whether complying with regulatory Inveniat is a leading risk and technology requirements or managing financial consulting firm offering specialised transactions, addressing a single solutions in the management of key risk, or working toward a holistic enterprise risk management Governance, Risk, and Compliance, with emphasis on Operational strategy, Wolters Kluwer works with customers worldwide to help Risk and regulatory compliance. them successfully navigate regulatory complexity, optimize risk and financial performance, and manage data to support critical decisions. Wolters Kluwer provides risk management, compliance, finance and RiskSpotlight (RS) provide specialised audit solutions that help financial organizations improve efficiency and consulting, content and training effectiveness across their enterprise, with more than 30 of offices in 20 services focused on operational risk management (ORM). The highly countries. experienced team have worked for many global clients across financial services (FS). Consulting: specialist consulting services within the ORM space CO-SPONSORS including: At BCS Consulting we only work with • Risk Management Framework – development & benchmarking clients across financial services. Our • Business Requirements – analysis & development portfolio includes a varied range of • Vendor Software – selection & implementation multinational and UK banks, smaller banks, asset managers, insurance • Risk Content – development & implementation. firms and payment and card companies. Across our 160+ strong team of permanent consultants, we have deep domain knowledge in Capital Markets, Retail and Corporate Banking, Risk and Finance. Xactium is a cloud based GRC software provider For more information about us, our work and our thinking, please visit that helps Risk Managers to transform the way www.bcsconsulting.com that Financial services organisations evaluate and manage their enterprise risk. The value of the risk process and its profile is raised through the use of risk intelligence that We have a simple to use solution that enables financial improves efficiency and creates insights that influence decisions across services companies to enhance their oversight the business. As the central risk platform used by the FCA to supervise capabilities by 1) effectively communicating their the market, it has also been adopted by a wide range of financial internal and external obligations and 2) minimising the cost/time of services organisations from across the industry. Companies such as collating and presenting proof of compliance. Governor Software Direct Line Group, JLT, MS Amlin and Argo Group. Xactium is the provides clients with the ability to deconstruct regulations, frameworks world’s first enterprise risk-intelligent system, with the revolutionary use and policies into visual maps that clearly communicate the obligations of embedded AI (Artificial Intelligence), 3D visualisation and automation that require oversight and then to be able to track the changes as they that dramatically improves efficiency and creates innovative analytics. are made to the obligations. Secondly the solution provides the 1st Reporting is made easy and timely, and predictive insights enable line of defence with Key Indicators and assessment points, in order senior managers to prioritise resources. to record compliance and areas of concern, which may be interfaced to your internal systems. It enables business updates and comments to flow back to the 2nd line in a seamless manner. Finally, it presents ENDORSED BY: the status of individual and overall compliance in the structure of the original regulation, framework or policy. All of this is completed in a structured and auditable process so that review and audit becomes less fraught. Unlike the current piecemeal approach, using spreadsheets, presentations and email, which makes creating a structured, comprehensive and auditable oversight process, either impossible or extremely inefficient. For Senior Risk & Compliance Executives who want to minimise the cost and enhance the quality of oversight at their firm.

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON

PRE-EVENT MASTERCLASS - FULL DAY 12 MARCH 2018 OPERATIONAL RISK – GETTING THE FUNDAMENTALS RIGHT Join this interactive one day Masterclass a hear insights from industry experts from the Institute of Operational Risk (IOR), along with guest speakers from Santander, Credit Suisse and more.

OVERVIEW OF THE DAY

09:00 WELCOME AND INTRODUCTION George Clark, Chairman, IOR

09:10 Operational Risk and regulation: Where are we, how did we get here and where are we going • Basel 2 • SMA • Outlook for modelling • Sound practices Jimi Hinchliffe, England & Wales Chapter Chair, IOR

09:55 Loss data as a core Operational risk tool and its changing nature following the introduction of Conduct risk Elena Pykhova, Director for Education, IOR

10:45 MORNING REFRESHMENT BREAK & NETWORKING

11:15 Scenarios TBC

12:00 RCSA Denis Lyons, Professional Member, IOR

12:45 LUNCH BREAK & NETWORKING

13:45 Organising the operational risk function to build accountability in the firm • Challenges around organising the function • 3LODs • SMCR Cathy Hampson, IOR Fellow, IOR

PANEL DISCUSSION 14:30 A Day in the Life of an Operational Risk Manager: The value of operational risk management • A practical exploration of what operational risk managers can/should be involved in within the firm CHAIR: Ravi Gupta, Risk and Control frameworks EMEA, Credit Suisse Jennifer Moodie, Director of Operational Risk, Santander George Clark, Chairman, IOR John Thirlwell, Council Member, IOR and Co Author of ‘Mastering Operational Risk’

15:30 AFTERNOON REFRESHMENT BREAK & NETWORKING

16:00 Current and Emerging Challenges and how to overcome them • Regulation • Geopolitics • Cyber • AI and robotics • Increased pressure on costs and budgets Andrew Sheen, Head of Operational Risk Regulatory Advisory, Credit Suisse

16:45 CLOSING REMARKS George Clark, Chairman, IOR

Certificate in Operational Risk (CORM) Building accountability is a key focus for regulators, and you will hear how the design of the operational risk function can help embed a culture of accountability. Finally, you will learn from experienced Operational Risk managers about the practicalities of doing the job and the challenges, including of scoping the role.

REGISTER FOR ONLY £499 BY 15 DECEMBER - SAVE £400 For more information on the Masterclass and agenda, visit www.cefpro.com/erm-masterclass

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON AGENDA | DAY ONE | 13 MARCH

GDPR 08:00 MORNING REGISTRATION & COFFEE 14:15 GDPR implementation: Managing system and process changes for timely and effective compliance 08:50 CHAIR’S OPENING REMARKS • Ensuring compliance: Consequences of potential fines • Adapting to local interpretations of rules • Identifying how data is: Stored, secured, monitored, accessed, KEYNOTE ADDRESS - FINANCIAL CONDUCT AUTHORITY catalogued, governed and deleted 09:00 An FCA perspective on operational risk • Changes to underlying processes and procedures • Overview of the FCA approach to operational risk • Building robust interim solution to capture requirements and • How operational risk fits within the FCAs enterprise wide risk migrating to a more robust platform overtime management framework • Effective co-existence of GDPR risk assessments and operational • Challenges and opportunities for the next 12 months and risk assessments beyond • Resource opportunity cost of GDPR • Ability to manage GDPR post-implementation Paul Dyer, Head of Operational Risk, Compliance & Risk Review, Financial Conduct Authority Dave Evans, Data Protection Officer, UK & EMEA, Swiss Re

PANEL DISCUSSION - CYBER PANEL DISCUSSION 14:55 Reviewing the cyber risk landscape and effective 09:40 The future of risk management: Embedding operational management of internal and external risks to ensure a secure risk management as part of decision making process environment • Making operational risk management part of day to day decision • Managing speed and increasing sophistication of attacks making • Preventing access breaches, mitigation and damage limitation • Operational becomes BAU • Adapting infrastructure and systems to new technology • Effective first line management of operational risk • Measurement and quantification of cyber risk: Obtaining useful • Limiting risk assessments data • Implementing a front-line cost centre to quantify new products • Use of scenario analysis to quantify severe events and accountability • Identifying unusual patterns of behaviour through AI, machine • Evolution trend of increased complexity learning and big data Paul Berry, Chief Risk Officer, Mizuho International • Prioritisation of areas that pose biggest threat Simon Cartlidge, Head of Operational Risk Governance, Gilles Mawas, Global Head of ORC Cyber & Third Party Risk – Legal & General Risk CIB, BNP Paribas Securities Services Laura David, Head of Operational Risk Controlling, Irina Lazar Visu, Head of Operational Risk Department of IBFS, Raiffeisen Bank SA Romania Societe Generale John Joyce, Head of Enterprise Risk, Allianz Insurance 15:45 AFTERNOON REFRESHMENT BREAK & NETWORKING 11:00 Can the Operational Risk ‘umbrella function’ provide more value to Financial Services? TECHNOLOGY: ARTIFICAL INTELLIGENCE AND ROBOTICS • Where do we see the greatest systemic threat to the financial 16:15 Utilising Artificial intelligence and robotics to increase system and does this align to today’s risk management agenda? efficiency in operational risk measurement and management • How does risk management evolve to meet the broad scope of • Replacing people, process and systems with a more automated non-financial risks? robot: Operational risk implications and management • What drives a sound risk management culture? • Level of assessment required if management becomes automated Mark Cooke, Global Head of Operational Risk, HSBC • AI and robotics learning behaviours and expectations • AI increasing recognition to manage conduct 11:40 Aligning departments and functions for a holistic view • Responsibility if something goes wrong of operational risk • Governance and oversight of robotics and AI at board level • Aligning departments: Operational risk, compliance, financial crime etc. PANEL DISCUSSION - CHALLENGER BANKS • Making functions more efficient and streamlined 16:55 Comparison of established banks vs. start-ups and • Using common tools to align departments leveraging lessons learnt • Demonstrating value • Techniques to manage operational risk • Aligning terminology and systems • RCSA on a monthly basis as opposed to annual exercise? • Capturing similar risks on different systems and interpretations • A blank canvas: How challenger banks have done things John Joyce, Head of Enterprise Risk, Allianz Insurance differently • Building out an operational risk programme Laura David, Head of Operational Risk Controlling, Raiffeisen 12:20 LUNCH BREAK & LUNCHEON ROUNDTABLE Bank SA Romania DISCUSSIONS Campbell Davidson, Head of Operational Risk Framework, Please find all Luncheon Roundtable Topics and Leaders on Page 9 Royal Bank of Scotland Claire Black, Head of Operational Risk, Metro Bank (UK) DATA 13:35 Using operational risk data to support informed 17:45 CHAIRS CLOSING REMARKS business decision making • Accessing and using information in operational risk in an 17:55 END OF DAY ONE & EVENING COCKTAIL DRINKS efficient way RECEPTION • Using data analytics to flag up key issues, risks and exposures • Leveraging data mining techniques for operational risk • Big data and what it means for operational risk Campbell Davidson, Head of Operational Risk Framework, Royal Bank of Scotland

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON

AGENDA | DAY TWO | 14 MARCH

08:15 MORNING REGISTRATION & COFFEE

08:50 CHAIR’S OPENING REMARKS

PANEL DISCUSSION - REGULATORY CHANGE GLOBAL SURVEY RESULTS 09:00 Managing the volume of upcoming regulatory 09:50 Release of the results from the international requirements and ensuring compliance whilst demonstrating operational risk survey undertaken by Center for the value of operational risk management Financial Professionals in partnership with the Institute of • Managing volume of regulatory changes across the business Operational Risk and different jurisdictions • Overview of process and results of survey • Changes to systems and processes: Costs and diversion of • Interactive session with comparison of audience polls and management time and resource survey results • Application of BCBS 239 to operational risk • Key findings and highlights • Geopolitical risk and Brexit • Managing regulatory expectations and increasing regulatory involvement • Demonstrating value beyond compliance Marike Dokter, Director Internal Audit, Barclays Naz Shabir, AM EMEA Head of Regulatory Developments and Product Advisory Compliance, UBS Asset Management

10:30 MORNING REFRESHMENT BREAK & NETWORKING

STREAM ONE | RISK MANAGEMENT STREAM TWO | RISK MEASUREMENT RISK APPETITE OPERATIONAL RISK CAPITAL 11:00 Developing an effective and measurable operational 11:00 Fixing op risk capital risk appetite that aligns with business strategy • What is it about op risk that makes it difficult to model? • Defining, structuring, categorising, measuring and managing • How did the different modelling approaches perform in the operational risk appetite aftermath of the crisis • Meaningful and measurable risk appetite statements • What are the alternative solutions? • Monitoring and tracking risk appetite Michael Grimwade, Head of Operational Risk Management, • Group wide appetite for operational risk International, MUFG Securities • Implications if appetite is breached: Setting up remediation activities • Setting and quantifying risk appetite for emerging areas Pam McDonagh, Global Head of Operational Risk Framework, UBS

PANEL DISCUSSION - KEY RISK INDICATORS PANEL DISCUSSION 11:40 Key indicators: Finding forward looking indicators to 11:40 The operational risk capital regime: Ensuring better understand and mitigate against threats adaptability of current models to plan for future changes • Tying key risk indicators into risk appetite • If AMA dies what replaces it and is SMA still relevant? • Ownership and accountabilities • Treating wind down subsidiaries • Sourcing predictive data • Dealing with models in interim until SMA goes live • Obtaining information out of systems • Utilising AMA model for stress testing and capital allocation • Turning backward looking indicators into forward looking • Balancing compliance indicators Lav Bernfest, Head of Group Operational Risk, Erste Group Mark Jesurasa, Head of Operational Risk APAC and ME and Michael Grimwade, Head of Operational Risk Management, Global Enterprise Risk, Columbia Threadneedle Investments International MUFG Securities Marike Dokter, Director Internal Audit, Barclays Dimitris Bartzilas, Global Head of Operational Risk Capital & Sean Titley, Head of Operational Risk Risk, Europe & Asia Pacific, Modelling, Credit Suisse Toronto Dominion Bank

12:30 LUNCH BREAK & NETWORKING

THREE LINES OF DEFENCE STRESS TESTING 13:30 Defining roles and responsibilities to increase 13:30 Using stress testing as a tool to identify and manage effectiveness and accountability operational risk losses • Is a three lines of defence operating model still relevant and • Understanding drivers of risk and losses effective? • What to include in the stress tests and tying losses to the • Optimising the three lines of defence to add maximum value economy • A focus on the relationship between the first and second line • CCAR as a replacement capital measure Simon Cartlidge, Head of Operational Risk Governance, • Jurisdictional differences in stress testing approach • Translation of stressed scenarios in macroeconomic situation Legal & General into framework • Stress testing under pillar 2b and links with scenario analysis Philip Umande, Head of Operational Risk Capital and Analytics, Lloyds Banking Group

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON AGENDA | DAY TWO | 14 MARCH

STREAM ONE | RISK MANAGEMENT STREAM TWO | RISK MEASUREMENT CONTROL, MONITORING & TESTING SCENARIO ANALYSIS 14:10 Establishing effective control, monitoring and testing 14:10 Scenario analysis: Constructing meaningful frameworks to increase process efficiency operational risk scenarios to understand risks and make • Demonstrating effective controls informed decisions • Definition of a key control • Running scenarios to understand tail events • Identifying a key control and the level of risk • Challenge the business on scenarios post-crisis • Obtaining value for money • Producing numbers and inputs to understand risks • Utilising technology • Making scenarios realistic yet extreme • Ensuring more efficient and streamlined process • Gaining value from stress scenarios • The balance between monitoring and testing • Driving decision making whilst ensuring compliance • Integrating into framework and assessment process Will Martyn Head of Operational Risk Policy and Framework, HSBC Anit Deb, Deputy Head of OR Capital, Deutsche Bank

SELF ASSESSMENTS REPUTATIONAL RISK 14:50 Linking risk and control assessments back to process 14:50 Approaches for measuring reputational risk and for an enterprise view of operational risk management within an operational risk function • Responsibility: Driven by operational risk or business? • Does reputational risk sit within an operational risk • Regulatory requirements around self assessments framework? • Management of self assessment process • Measuring impact on customers • Embedding self assessment process in the business • Increased media and social media attention • Granularity and excess of information in assessments and • Managing the risk and linking with other functions processes • Developing reasonable and proportionate thresholds • The cluttering of risk systems • Putting metrics to behaviour driven risk • Stripping current practices back to understand material risks • Considering in relation to other risk areas and key controls Irina Lazar Visu, Head of Operational Risk Department of IBFS, Societe Generale

15:30 AFTERNOON REFRESHMENT BREAK & NETWORKING

CONDUCT RISK VENDOR AND THIRD PARTY RISK 16:00 Understanding where conduct risk sits and educating 16:00 Demonstrating effective measurement of third party staff to mitigate the risk risk management controls and frameworks to increase • Regulatory implications defence and security • Identifying key vulnerabilities and reacting to conduct issues • Controls in place • Managing fall out from previous incidents • Demonstrating and evidencing regular assessment of • Differences in UK regulatory approach to conduct vs. rest of critical partnerships world • Doing on-site visits, risk assessments and performance • Risk appetite for conduct management • Assigning metrics to conduct • Financial stability of critical vendors • Working towards aligning conduct, finance and risk • SYSC 8 guidance Katrina May-Kwan, Head of EMEA International Risk Oversight, • Potential reputational damage Wells Fargo Abhishek Khare, Director, Operational Risk for Outsourced Services, Societe Generale

EMERGING RISKS 16:40 Assessing lessons learnt from key operational risk 16:40 Implementing effective frameworks to better events over last 12 months foresee, measure and mitigate emerging risks: Prudential’s • Significant operational risk loss events approach • Causality behind events • Aims and objectives • Wells Fargo fictitious account scandal, WannaCry ransomeware, • How our approach has evolved over time hacking of Sony content • Reviewing patterns before events • Where emerging risk fits into the risk management • Impact on industry and individual institutions framework • Risk measurement: The choice of qualitative versus quantitative approaches • Worked examples of emerging risks • Reflections on the future of emerging risk management as a discipline and function Gary Killick, Group Head of Emerging Risk, Prudential Anthony Brown, Director, Group Risk, Prudential

17:20 CHAIRS CLOSING REMARKS AND END OF NEW GENERATION OPERATIONAL RISK: EUROPE 2018

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON

POST-EVENT MASTERCLASS - FULL DAY 15 MARCH 2018 SOURCING THE BEST INGREDIENTS TO MEET THE NEEDS OF A HEALTHY RISK APPETITE FRAMEWORK To allow for interaction and discussion, as well as any exercises and case studies to examined in depth, the size of the class will be limited and available on a first come, first served basis.

09:00: REGISTRATION AND BREAKFAST Define quantitative and qualitative statements, which include a forward looking view of risk. 09:30: MASTERCLASS BEGINS • How to achieve the right balance between quantitative and qualitative inputs to define statements. Best communicate the risk Appetite Framework in a language • The difficulties seen in the different style and approach to that is commonly understood at Board Level. qualitative judgements between different divisions. • The importance of a single Risk Taxonomy for all divisions within Break-out white-board session; groups of 3-5 to discuss and an organisation. summarise examples where the absence of a forward looking view • Using industry standard terminology to facilitate improved resulted in statements missing events and how this was solved. regulatory understanding. • How to identify where training is needed for first line of defense Incorporate Conduct Risk measures in the Risk Appetite as well as Board level staff to understand the definition and measures and metrics. meaning of terminology. • The methods used to embed Conduct Risk into the statement definition. Identify the key stakeholders to be involved in defining and • How to avoid duplication of findings across conduct and approving the risk appetite statement, measures and metrics. operational risk. • The criticality of an established Roles and Responsibilities framework ahead of each Risk Assessment cycle. Practical approach to operational risk appetite in Raiffeisen Bank • The need for regular review of appropriate stakeholder Romania. engagement in light of evolving regulations. • Introduction on the operational risk management framework – • How to agree minimum standards in the use of measures and Organizational structure, governance, roles and responsibilities, metrics while preserving flexibility to utilise bespoke inputs. tools. Break-out white-board session; groups of 3-5 to discuss and • Stakeholders alignment. summarise examples where Risk Appetite Statements have been • Business strategy vs Risk strategy. adversely impacted by poorly defined terms and stakeholders and • Qualitative and quantitative objectives of the risk appetite. how they resolved this. Ensure breaches in risk appetite are promptly actioned. MORNING NETWORKING BREAK • Importance of action and ownership record keeping. • The value of an audit trail between governance challenge to Identify the best ownership model, for example First Line of ensure findings are acted upon. Defence versus Second Line of Defence ownership • The relative benefits of having a statement defined by the business to optimise SME content versus a second-line view. AFTERNOON NETWORKING BREAK • How these two options qualitatively impact the final statement Practical approach to operational risk appetite in RBS. – is second line challenge best introduced before or after • How Risk appetite inter-connects to the ORMF. publication of statement? • Level of set-up to deliver transformation. • Setting the right metrics – Board measures vs granular KRIs. Embed flexibility to accommodate different businesses while • Reporting appetite against exposure. keeping a consistent minimum standard and format • How to ensure guidance maintains minimum standards but allows for tailoring to account for different business divisions. 17:00 END OF MASTERCLASS • The importance of sound SME knowledge in the second line to ensure robust challenge. Break-out white-board session; groups of 3-5 to discuss and THE COURSE LEADERS summarise examples where divisional differences have led to inconsistent statements and how this was solved. NICK MAYER LUNCH NETWORKING BREAK Director, Compliance and Operational Risk Control, UBS Establish appropriate governance structures for the oversight of the risk appetite framework. • How to define governance within both functional management and the second line of defense which allows for flexibility to PAM MCDONAGH respond to findings. • The relative merits of mandating a common governance Global Head of Operational Risk structure versus allowing for divisional nuance. Framework, UBS

with guest speakers from RBS & Raiffeisen Bank SA Romania

REGISTER FOR ONLY £499 BY 15 DECEMBER - SAVE £400 For more information on the Masterclass and agenda, visit www.cefpro.com/riskappetite

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON ROUNDTABLES | DAY ONE | 13 MARCH

Luncheon Roundtable Topics and Leaders:

Oprisk losses and The impact of the Importance of new regulations as digital world on scenario analysis part of new SMA capital operational risk Anit Deb, Deputy Head of OR Capital Marike Dokter, Director, Simon Cartlidge, Head of Deutsche Bank Internal Audit Operational Risk Governance Barclays Legal & General

Are ‘errors’ a cause Benefits from or a symptom of alignment of approach Operational risk Operational Risk to managing appetite non-financial risk Sean Titley, Head of Operational Lav Bernfest, Head of Group Risk, Europe & Asia Pacific Mark Cooke, Global Head of Operational Risk Toronto Dominion Operational Risk Erste Group Bank HSBC

Risk Management in a world of Topic TBC

automation Abhishek Khare, Director, Operational Risk for Outsourced Services Anthony Brown, Director, Société Générale Group Risk Prudential

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON

HEAR FROM OVER 30 SENIOR OPERATIONAL RISK PROFESSIONALS, INCLUDING:

PAUL DYER MARK COOKE PAUL BERRY Head of Operational Risk Global Head of Operational Chief Risk Officer Compliance and Risk Review Risk Mizuho International Financial Conduct Authority HSBC

LAV BERNFEST ANTHONY BROWN PAM MCDONAGH Head of Group Operational Director, Group Risk Global Head of Operational Risk Prudential Risk Framework Erste Group UBS

DIMITRIS BARTZILAS MARIKE DOKTER MARK JESURASA Global Head of Operational Director Internal Audit Head of Operational Risk Risk Capital & Modelling Barclays APAC and ME and Global Credit Suisse Enterprise Risk Columbia Threadneedle Investments

GILLES MAWAS JOHN JOYCE MICHAEL GRIMWADE Global Head of Operational Head of Enterrpise Risk Head of Operational Risk Risk and Permanent Control Management Management, International Global Head of ORC Cyber & Allianz Insurance MUFG Securities Third Party Risk – Risk CIB

SIMON CARTLIDGE ANIT DEB PHILIP UMANDE Head of Operational Risk Deputy Head OR Capital Head of Operational Risk Governance Deutsche Bank Capital & Analytics Legal & General Lloyds Banking Group

KATRINA MAY-KWAN SEAN TITLEY DAVE EVANS Head of EMEA International Head of Operational Risk Data Protection Officer Risk Oversight Europe & Asia Pacific UK & EMEA Wells Fargo Toronto Dominion Bank Swiss Re

#OPRISK18 www.cefpro.com/oprisk 4TH ANNUAL NEW GENERATION OPERATIONAL RISK: EUROPE | 13-14 MARCH 2018 | LONDON

ESSENTIAL INFORMATION

VENUE LUNCHEON ROUNTABLES The Tower – A Guoman Hotel To be released soon! Join one of the roundtable St Katharine’s Way, discussions in the lunch break on day one to further London E1W 1LD, UK engage, discuss and interact with peers on topical issues within the industry We have a preferential rate for our attendees to stay overnight at the venue for only £159 including VAT. To book your accommodation please call COCKTAIL RECEPTION +44 (0) 800 330 8005 or email Immediately following the end of day one, there will be [email protected] and a drinks reception to wrap up the first day. Unwind in a quote reference CFP140318 more informal setting with drinks and canapés to carry on the days discussions with colleagues and peers

DRESS CODE Business Attire BRIEFINGS Closed-door briefings will be held with like-minded professionals (By Invitations only), numbers are limited to bring together more intimate groups to discuss key subject matters. If you would like more RISK INSIGHTS information, or the opportunity to host a Briefing, Be sure to bring a mobile phone, tablet or laptop contact us at [email protected] to make the most of our technology benefits at the event. Search Risk Insights on your app store and download to access speaker insights, presentations, NETWORKING agenda and interact at the event. Ample networking opportunities are available through Also stay up to date on the latest news, articles and the two days; breakfast, lunch and refreshments will Q&As from presenters at Operational Risk Europe also be served across both days to allow for further 2018. discussion and networking, complementing the Briefings and Drinks Reception To stay up to date visit the event website at www.cefpro.com/oprisk/insights

#OPRISK18 www.cefpro.com/oprisk REGISTRATION FORM PLEASE REGISTER THE FOLLOWING DELEGATE(S) DELEGATE 1: Miss Ms Mrs Mr Dr Other Name Position VENUE: The Tower – A Guoman Hotel, St Katharine’s Way, London Organization E1W 1LD, UK Address

REGISTER NOW USING THIS FORM Country Zip/Postal Code Please complete the relevant fields Telephone Fax and select your payment and attendance options. When complete, please click E-mail Submit. You will receive confirmation within Signature 48 hours of your registration being received. OTHER METHODS TO REGISTER DELEGATE 2: By telephone: +44 (0)207 164 6582 Name Online: www.cefpro.com/oprisk Position Email: [email protected] Telephone E-mail

In all cases payment prior to the event is required. Fee includes DELEGATE 3 3RD DELEGATE 50% OFF attendance at sessions, refreshments and course documentation of GROUP RATES AVAILABLE FOR 3+ DELEGATES registered event. 3rd delegate gets 50% OFF when registering from the same company, at the same time. Call Confirmation: you will receive confirmation and joining instructions from or email for further information. us within two working days of registering. If this is not the case, please Name telephone us to ensure we have received your booking. Please note that credit cards will be debited within 7 days of your Position registration. Payment must be made within two weeks to ensure that Telephone E-mail discounted rate is retained. To ensure access to the event, payment must be made prior to the event.

SELECT EVENT OPTIONS SUPER EARLY BIRD EARLY BIRD STANDARD RATE Registrations Registrations Registrations before 2 February before 23 February after 23 February

MAIN SUMMIT £1,099* £1,399* £1,799* 13-14 MARCH SAVE £700 SAVE £400

RATE PER MASTERCLASS (please tick) £599* £699* £899*

12 MARCH 15 MARCH SAVE £700 SAVE £400

£1,698* £2,098* £2,698* MAIN SUMMIT + ONE MASTERCLASS SAVE £1,000 SAVE £600

MAIN SUMMIT + TWO £2,297* £2,797* £3,597* MASTERCLASSES SAVE £1,300 SAVE £800

* All rates are subject to UK VAT

PAYMENT OPTIONS Invoice: Please send me an invoice with wire transfer information. Billing Address

Credit Card. Please debit my: VISA MASTERCARD AmEx.

Card No: / / / Expiry Date: /

CVV/Security number: Country Zip/Postal Code Name of Card Holder Please click submit to complete. If a draft Signature: email window does not open in your email client, please forward this completed form to [email protected]

Please visit www.cefpro.com/terms-and-conditions/ for our Terms & Conditions