Tuesday April 5, 2016 3:00-6:00 PM WRK: 1 Bank Secrecy Act (BSA) Risk Assessment Bryant Richards, CIA, CRMA Director of Corporate Governance The Mohegan Tribal Government Kimberly Suchora Senior Internal Auditor Hard Rock Rocksino Northfield Park (HRRNP) In this session, participants will: Discuss the importance of an effective risk assessment. Identify and describe the key elements of a risk assessment. Discuss data used in quantifying risk. Using the key elements, assess the risk of properties given circumstances provided in scenarios Evaluate a sample risk assessment for completeness, accuracy, and reasonability given information provided in scenarios. Bryant Richards brings nearly 20 years of experience to his role in which he is responsible for the internal audit, compliance, and record retention departments. Richards is qualified facilitator for The IIA and a visiting assistant professor of hospitality management at Nichols College. Kimberly Suchora joined HRRNP in 2014 and oversees all internal audit functions at the Rocksino. Suchora started her career at Amscot Financial and has worked at other financial institutions as well as a third-party compliance consulting company. Her background is in audit, compliance, risk assessment, loss prevention, and fraud. Wednesday April 6, 2016 8:30-9:45 AM GS 1 The Business of Body Language Jan Hargrave CEO Jan Hargrave & Associates In this session, participants will: Discover how to display confidence and create a more positive impression. Identify ways to communicate ideas more powerfully. Detect the “micro-expressions” of deception. Recognize cultural nonverbal diversity and global customs. Develop nonverbal leadership competencies. Gain an understanding of how to read others — what they say and, more importantly, what they try desperately not to say. Understand quick ways to sharpen rapport, including mirroring and matching. Identify verbal objections before they are expressed. Jan Hargrave is an expert in the field of nonverbal communication and has written books including Let Me See Your Body Talk, Freeway of Love, Judge the Jury, Strictly Business Body Language, and Poker Face. For her expertise as a forensic examiner, she has been a contributing author to publications including New York Post, Golf Magazine, The Forensic Examiner, Cosmopolitan, Redbook, Us Weekly, and more. Some of the world’s most famous brand names have consulted her, including Starbucks, Cisco Systems, Johnson & Johnson Pharmaceutical, The Boeing Company, MARS Chocolate, NASA Johnson Space Center, BlackRock Investments, and Johns Hopkins Space Telescope Institute. Additionally, she has been featured on television shows including ABC News, Fox News, The Learning Channel, E! Entertainment, and talk shows including Steve Harvey, Montel Williams, and Maury Povich. Wednesday April 6, 2016 10:05-10:55 AM CS 1-1 Affordable Care Act – 2016: Key Risks to Employers Tonya Rule Senior Tax Manager Eide Bailly LLP In this session, participants will: Review key provisions of the Patient Protection and Affordable Care Act and recent updates going into effect this year. Define and identify measurements periods, and discuss documentation processes. Discuss current reporting requirements under IRC Sections 6055 and 6056. Tonya Rule has more than 16 years of public accounting experience providing tax and consulting services to individuals and businesses. She works with clients in various industries including health care, transportation, retail, and personal service. She leads Eide Bailly’s Health Care Reform initiative and serves as a resource related to the Affordable Care Act for clients throughout the United States. CS 1-2 Checking In for Internal Audit Transformation: A Panel Discussion Moderator: Court Maton US Leader, Risk Assurance Real Estate and Hospitality PwC Panelists: Brian Macnamara Senior Vice President, & Corporate Controller Host Hotels & Resorts, Inc. Glenn Robertson Chief Audit Executive Wyndham Worldwide James Werner Senior Vice President, Internal Audit Hyatt Hotels Corporation Keri Day Chief Audit Executive Marriott International In this session, participants will: Discuss develop an integrated approach for addressing property-level risks. Explore internal audit's role within loyalty programs. Address emerging technologies as they apply to the hospitality industries. Debate how to meet the challenges of rapid global expansion. Brian Macnamara has held numerous leadership roles at Host Hotels & Resorts, Inc. since he joined the organization in 1996. He was promoted to his current role in 2007. Prior to joining Host Hotels & Resorts, Macnamara worked at the U.S. Securities & Exchange Commission and Deloitte & Touche. Court Maton serves as PwC's Real Estate and Hospitality Internal Audit Leader. In that role he has worked with management companies and owners. His experience includes risk management consulting, internal audit operations management, financial operations management and assurance. Jim Werner joined Hyatt Hotels Corporation in 2007 to help transform the internal audit department in anticipation of the company’s IPO. He is responsible for Hyatt’s enterprise audit function, including corporate, IT, and hotel audit activities, and the Sarbanes-Oxley testing program. Werner also chairs the company’s Global Risk Council. He began his career at Arthur Andersen and took on roles of increasing responsibility, eventually becoming the CAE at Andersen Consulting (now Accenture) and then Hewitt Associates before joining Hyatt. Having a passion for improving organizational effectiveness through education, talent development, and enhanced communication, he is the architect of Hyatt’s Leadership Academy, Finance College, and the Internship program. Keri Day has responsibility for all internal audit functions, business integrity and ethics, and financial governance, including compliance with Marriott International Policies and the company’s Sarbanes-Oxley requirements in the United States. She joined Marriott in 2014 after nearly 23 years at EY, where she served as an audit partner providing audit services to public and private clients. Day advised numerous companies through complex transactions, including initial public offerings, secondary offerings, business combinations, venture capital and private equity raises, bankruptcy, and taking companies private. She worked with high-growth entrepreneurial clients primarily in technology, education-technology, consumer products and services, real estate, and government contracting. Day led EY’s Strategic Growth Markets practice and EY’s Entrepreneur of the Year in the Washington D.C. area. She also served as the technology industry area leader, assurance recruiting partner, and partner sponsor for the Women’s Innovative Group (WIN). CS 1-3 Cybersecurity: It's Not Just About IT Gina St. George Senior Manager Moss Adams LLP Troy Hawes Manager - IT Security Consulting Moss Adams LLP In this session, participants will: Learn how to effectively allocate and monitor sensitive data to the appropriate employees. Examine real-life case studies highlighting what led to the loss/compromise of sensitive data. Receive insight on the employee education and vendor reviews that may have helped to prevent it. Discuss IT internal controls that help prevent data breaches, as well as the reviews and assessments that can be performed to identify vulnerabilities before an attack. Gina St. George has more than 20 years of combined public accounting, hospitality, and gaming industry experience, including roles as a controller for a tribal gaming hotel and casino, financial and compliance auditor, and restaurant manager. Her experience includes auditing and financial reporting, compliance with state and federal regulations, forensic accounting, and developing and implementing operational and accounting internal controls. St. George serves as the lead on gaming and hospitality consulting engagements and her services include external and internal audits, forensic and fraud investigations, control system improvement, and operational assessment projects. Troy Hawes has more than 20 years of IT experience. He is the Tribal Practice Leader for the firm’s consulting group, and serves clients in industries including government and tribal entities, gaming, health care organizations, publicly traded entities, and private businesses. Hawes is the firm’s lead ethical hacker, and regularly performs penetration testing and vulnerability assessment engagements. He has extensive experience managing and leading IT audits, NIGC MICS IT audits, IT assessments, PCI DSS audits, HIPAA security and privacy audits, disaster recovery planning, alternatives analysis, network design and implementation, IT co-sourcing, and SSAE 16 audits. Hawes frequently leverages his security expertise to determine areas of potential security weakness and infrastructure needs. Wednesday April 6, 2016 11:05 – 11:55 AM CS 2-1 The Risks and Rewards of Mobile Technology on the Casino Floor Mackenzie Haugh Director of Engineering Gaming Laboratories International, LLC. In this session, participants will: Discuss ways organizations are using technology from marketing to wagering applications. Review possibilities for future tech applications. Explore regulatory and other risks that accompany the use of mobile technology as it applies to the gaming industry. Mackenzie Haugh joined GLI in 2001 and has extensive experience in the regulatory compliance testing of games, platforms, systems, hardware, and peripherals