Day 1 Agenda — 2019 AFERM Summit (Tentative)

Sponsor

Speakers

Nicole Puri, Chair, 2019 ERM Summit Planning Committee
Meredith Stein, Co-Chair, 2019 ERM Summit Planning Committee
Tom Brandt, President, Association for Federal Enterprise Risk Management (AFERM)

In this session, we discuss the ERM obstacle most commonly-reported: A lack of buy-in by key stakeholders. Philip Sherrill will explore this challenge in depth and discuss how the largest health insurer in Arkansas has successfully applied practical yet advanced ERM tools and techniques – both technical and communications-related – to build buy-in, enhance risk culture, fully implement the ERM program, and begin integrating ERM information into the strategic planning process.

Sponsor

The ability to effectively communicate the value of ERM is a key soft skill for ERM practitioners and executive champions. One of the most powerful tools that ERM practitioners and executives have at their disposal to advance the next generation of ERM, is telling compelling stories about ERM successes. Compelling storytelling about ERM success can help leaders and staff emotionally buy into ERM as a mindset, and can help raise the visibility and impact of ERM across the organization.

This is a great time to be an ERM professional, especially in the federal government.  While federal ERM has been growing for over 10 years, OMB’s revision to Circular A-123 in 2016 has rapidly expanded the profession, and the demand for federal employees with ERM skills is at an all-time high.  Many government professionals that are now thriving in the federal ERM space have found their way there from unique backgrounds.  To be successful as a risk professional, there are a variety of skills and attributes needed.  This session will explore these professional qualities through the journeys of multiple current federal ERM practitioners and discuss ERM education and career development opportunities for federal ERM professionals at all levels.

This session will focus on two major aspects: (1) what risk practices the US Department of Defense (DoD) currently has in place that can jump start DoD ERM programs, and (2) what risk practices, techniques, and tools DoD utilizes that can enhance ERM programs across the public sector.

Safeguarding the security and privacy of sensitive customer data has become a business critical requirement. Unfortunately, most struggle to effectively prioritize among the myriad cyber risks and to make a persuasive business case for mitigation, due to an inability to quantify cyber risks and a lack of a value-based ERM approach to cyber risk management. In this session, we discuss the cybersecurity and data privacy threat landscape and how a value-based ERM approach is used to identify and mitigate the key cyber risks and help a CISO align their priorities within the ERM program.

Speaker

Sim Segal, Columbia University
Shahryar Shaghaghi, CohnReznick Advisory

KPMG will present tools that will enable management to benchmark your agency’s ERM program’s development, as well as tools that will assist risk owners to manage identified risks. KPMG’s Risk Management Maturity Model is a federalized multidimensional maturity measurement tool for agency ERM programs. KPMG’s process automation tools also support automated financial transactions and the establishment of internal control testing regimes.

ERM strategic processes support decision-making at diverse levels in the organization, but the breadth and complexity of organizations today make it very difficult to effectively execute an ERM program without ERM technology. Learn the key elements necessary to establish the full business context of enterprise risk, to operationalize your ERM program, and how and why technology remains a core requirement. This session will include a demonstration of the RSA Archer EORM Suite.

AFERM Awards Presented by

The session will address the role of the Office of Inspectors Generals (OIG) in combating fraud, waste and abuse and promoting efficiency and effectiveness. The session will focus on: 1)  balancing the complexities associated with a dual reporting requirement (both to the head of agency and congress — "straddling the barbed wire fence"), and public transparency obligations; 2) OIG responsibilities in countering fraud, including program fraud and official misconduct (case examples and areas of collaboration to be discussed); and 3) challenges and opportunities, including leveraging emerging trends, data analytics and risk assessments across the federal landscape to counter fraud.

This session explores the intersection between the Federal data strategy, IT modernization initiatives, and Enterprise Risk Management (ERM). During the session, we will discuss how leveraging data as a strategic asset and implementing cloud technology can improve agencies' ERM programs.

While the tools in the ERM playbook are helpful in gathering information on risk and then prioritizing risk, often a more fruitful examination of cross-functional risk may be accomplished through gaming, experimentation, or scenario-based planning. These techniques involve examining/walking through a given scenario (or set of scenarios) with pertinent organizational stakeholders, employing various methodologies to frame the problem and provide as much (or as little) structure, as needed. The scenario may be supported by technology (gaming tools, Google maps with data overlays, etc.) however the keys to success is having a facilitation team, skilled in expert elicitation, guiding the discussion, capturing the interchanges, then analyzing the results to assess and prioritize potential outputs to better inform risk management.

Typically, organizations face three kinds of strategic risks: risks to their strategy; risks from their strategy; and misalignment between strategy and culture and/or stakeholder expectations. This session will examine risks and opportunities inherent in: setting strategy; aligning strategy with internal organizational culture and external stakeholder expectations; and translating strategy into successful program implementation. Seven selected strategic risk tools and “How-To-Apply Tips” will be highlighted.

Join Crowe for a 30 minute demonstration of their RSA Archer A-123 ERM Accelerator, modeled after OMB A-123 and the CFOC/PIC Playbook. Crowe has combined an industry leading enterprise tool with subject matter expertise to create a comprehensive solution for federal agencies to manage all aspects of their ERM programs. By pre-configuring a COTS solution to meet government wide requirements we reduce implementation costs and risks, and accelerate adoption.

This session will look back at how Enterprise Risk Management (ERM) has evolved in the recent years since the 2008 Financial Crisis and will look forward to the next frontier and evolution for ERM.

Speakers

Tom Brandt, President, AFERM
Ken Fletcher, President-Elect, AFERM

Please join us for networking and the Digital Demo Expo following Day 1 of the Summit, in the open area outside the Amphitheater and near the registration desk. The Expo will showcase digital solutions and software that support ERM programs.  This is an excellent opportunity for you to get a better understanding of available products, chat with ERM colleagues, relax and let traffic taper off before your commute!