Professional Documents
Culture Documents
Knowledge Partner
Platinum Partner
Silver Partners
Gold Partners
Bronze Partners
Media Partners
Technical Partner
Conceptualized &
Organized by
Good Governance, Effective and Real-time Risk Management and adhering to Regulatory Compliances have
direct impact on your organizations
There is an urgent and immediate need to cut complexities brought by necessity to manage governance, risk management and regulatory compliances which are now overseen by a number of departments including
internal audit, information technology, compliance and regulatory management, enterprise risk management (ERM), operational risk and incident management amongst others.
Ground Reality is that multiple groups bear responsibility for several functions and processes; they operate in silos, with i nsufficient sharing of information and following multiplicity of frameworks and systems.A
number of thought leaders are now talking about the business sense to optimize resources and these intersecting activities as a Singular Function to bring about efficiencies, reduce or eliminate repetitions of same task
by multi departments, need to come beyond the paper trail to practices in real time by formulating a common GRC Framework.
st
Thoughts on GRC have been discussed for some time as was during the 1 Edition of the GRC summit, yet real-time and inclusive integration is still work in process and what emerged is that the real work is to bring
all the stakeholders working together in an integrated GRC framework.
Audits, Finance, Compliance, Risk and Legal have their own functioning styles and process. Business line managers and IT bring in their own perspectives, which complicate adoption.
Understanding and reconciling these disparities and conflicts is critical to success when driving an enterprise-wide GRC program.
This inclusive two day conference bring together all stakeholders on a common discussion platform to see, hear and determine best practices in inter-linking people,
processes and technology for the most appropriate GRC framework and a practical adoption roadmap that will work in todays work and business environment !
The key SUCCESS for a GRC PROGRAM is a coordinated effort by AUDIT, LEGAL, RISK and COMPLIANCE functions and
among key administrative, operational personnel and business lines in both the implementation of the systems and the
interpretation of the data generated
Conference Chair Day One
Sanjay K Mathur,
Vice President & Head Management Assurance Group
Tata Communications Limited
Sanjay has more than 20 years of rich experience in the fields of Risk Management, Accounting, Controllership,
Business integration and ERP implementation. Over last ten years he has been focusing on the Risk
Management & Corporate Governance for manufacturing as well as service industries. Sanjay has extensive
experience and specializes in developing & implementing integrated Risk Management framework, which
includes synergizing Enterprise Risk Management, Risk Based Internal Audit, Sarbanes Oxley Compliance,
Revenue Assurance and Fraud Management.
In his current position as the Head of Management Assurance Group at Tata Communications Limited, his focus
is to converge various governance functions into an integrated Governance Risk & Compliance (GRC) function.
Sanjay has extensive & varied experiences of working with Fortune 500 & large India companies like Monsanto,
Shell Petroleum, Ranbaxy & Reliance Communications
Angie Chew,
Vice-President,
NIIT Technologies
Angie Chew is the Vice-President of NIIT Technologies and is
responsible for the GRC product, Assure Easy.
Prior to joining NIIT Technologies she was the CIO of the Ministry of
Communications & the Arts and the National Heritage Board, VicePresident at Singapore Airlines, Principal at the Ministry of Health
Holdings Regional Director at Visa International and Senior Manager
at Accenture. Angie is currently based in Singapore
CXO
Finance
Corporate Governance
Treasury
Controllers
Compliance
Accounts
Ethics
Operational Risk
Information Technology
Information Security
Management Assurance
Identify, manage, monitor, and analyze risk across the enterprise in a single, integrated solution by eliminating the silos o f
Compliance, Audit, IT Risk, Operational Risk Management etc.
Integrate risk management and compliance processes to meet the persistent challenge of regulatory oversight
Leverage GRC information to make better business decisions
Empower decision makers with fully scalable and interactive reporting and trending tool
Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
th
09.15
09.30
Key Note Panel: Where & Why is GRC integration needed most?
Cost saving or Effective functioning?
11.30
14.30
The presenter shall seek to understand why statutory compliance is such a challenge in India.
He proposes that the problem is a complex of:
1. Indian historic experience,
2. The Indian cultural context, and
3. The structure of our laws and the democracy tax we pay.
In conclusion, comment is made on the dynamics of our changing legal and statutory
landscape
Networking lunch
16.30
16.45
17.45
Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
09.15
09.30
14.00
Panel Chair
Rajdeep Premkumar Pai,
Senior Governance Risk Compliance Professional
Expert Panel Members:
Gagan Palta, Country Compliance Officer India, ALSTOM
11.00
11.30
Expert Analysis:
GRC Tools Evaluating Enterprise GRC Platforms
Distinctive needs to manage risk associated with different partners, vendors and
outsourced service providers.
What are the challenges and main problems with the current Vendor Risk
Management Process
Aggregating information related to Vendors & applicable standards/terms
Continuous monitoring of risk associated with Vendors
Why you as a vendor should be concerned about managing the risk of vendors
Simple yet effective risk management & reporting of individual/multiple Vendors with
GRC
15.45
An open session with 6 Hosted Discussion tables which are intended to cover GRC
convergence issues specific to industries and are a perfect environment for shared learning.
Each round table will have an expert host to moderate and streamline the flow of
discussions. Typical flow will be
Governance, Risk & Compliance Challenges faced by round table participants
Practical examples of GRC Framework in industry, maturity models, failure and success
analysis
Scrutinizing tangible benefits of GRC Convergence
Industry Round Tables
Networking lunch
Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
Suparna Singh,
Vice President, Governance and Risk Management,
Essar Group
Smt Suparna Singh is an Electrical Engineer and an MBA from
IIM,Calcutta..Her work experience encompasses more than 20
years.
She started her career working on the shopfloor of Durgapur
Steel Plant in Steel Authority of India Ltd for several years as
well as in the supply chain section.In Essar Group, which is a
conglomerate of 8 businesses, Ms Singh reports directly to the
Promoters, the Ruias, and
manages the Corporate
Governance of the Group, the Risk Management processes of
the Group, the Business Development processes as well as
the synergies common across the Businesses and Functions.
Apart from tracking the strategies and performance of each of
the Businesses and Corporate Functions, Ms Suparna Singh is
also actively involved in building relationships for the Group
with delegates and senior members from Businesses and
Governments across the World while discussing win-win
ways to work together.
Ravi Raman,
Head Investment Analytics and Operations,
InfraHedge Ltd- A State Street Subsidiary.
Ranjeev C. Dubey,
Managing Partner,
N South Advocates
Admitted to the Bar in 1981, he is extensively experienced in main
stream corporate commercial legal practice including strategic and
general corporate advice, M&A, corporate contracting, corporate
finance, private equity and venture capital. He is widely known for his
cutting edge guidance on winning litigation strategies and has advised
on a number of highly talked about disputes between corporate houses.
As the Managing Partner of the firm, he is the team leader on many of
the firms leading assignments,He has been the principal speaker at
many of the business and legal conferences around the world. He has
also been principal trainer at several of corporate communication
initiatives undertaken under the umbrella of IALLM. He is a columnist for
many of Indias leading publications including Businessworld. He has
authored the pioneering litigation strategy book for top business and
legal executives Winning Legal Wars (Macmillan, 2003).
Anand Tatavarthi,
Vice President,
Cura Technologies Limited
Anand joined Cura March 2010 and handles general Corporate
functions from India including Delivery, Services & initiated India
Business Development. He has over 18 years of experience in IT SW
Products (including GIS, Embedded), Services, Consulting and
Manufacturing. He has worked for Global MNCs & large conglomerate
companies including Lanco Group, Rain Industries, Intelligroup &
Navionics
Amal Kundu,
Chief Risk Officer and Chief Ethics counselor,
Telco Constructions Equipment Company Limited
Amal Kundu is the Chief Risk Officer and Chief Ethics counselor of
Telco Constructions Equipment Company Limited, a TATA and Hitachi
joint venture company.Amal is a Cost and Management Accountant
with 27 years of experience in the field of Enterprise Risk Management,
GRC, Finance, Accounts, Fraud investigation ,Business assurance and
internal control.
Amal is experienced in handling detailed deals, creation of new
companies, SAP, SOX, J Sox implementations. He has has also
implemented the Enterprise Risk management and Business continuity
planning as part of strategic planning process of his company.
Devendra.Parulekar,
Partner
Ernst & Young Pvt. Ltd.
Devendra is a Partner with advisory services in Ernst & Young
(India). He is leading the Governance, Risk and Compliance
automation practice for Ernst & Young in India and also heads
the IT Risk and Assurance (ITRA) practice for Technology,
Communications and Entertainment in the western region. He
specializes in end to end GRC services such as design,
implementation and has 11+ years of experience in various
other projects related to Information Security, Risk
Assessment, IT Strategy, IT Assurance, Application Reviews,
due diligence, BCP & DR across various companies in India.
Devang Ashar,
Regional Director (APAC & ME region)
MODULO
Devang Ashar is a seasoned IS professional with 14 years of
experience working on many enterprise security solutions &
with regulations such as COBIT, HIPAA, PCI DSS, SOX, ISO
27001. He has extensively worked in various IS domains for
consulting projects with Banks & Telecoms across the world.
And has achieved several industry accreditations such as CISA,
CISSP, ISO 27001 LA, Six Sigma etc.
Devang is working as the Regional Director at Modulo
Security, LLC. and is responsible for driving their GRC
solutions across APAC region. He has also worked with Multinationals like Rolta group, Microland India Ltd, Yodlee
InfoTech & Amdocs India.
Devamalya Dey,
Group President Audit & Compliance,
YES Bank Limited
Mr. Dey oversights the Audit, Compliance, Fraud Investigations and
the Company Secretarial functions for Yes Bank. In this role he is
responsible for ensuring that Yes Bank functions according to the
highest Compliance standards and all functions are audited
thoroughly to ensure a robust risk containment and control
environment. Prior to joining Yes Bank he was with Citibank N.A.
for 16 years. He spent the first 10 years in various Operations roles
culminating with a stint as Senior Country Operations Officer of
Citibank N.A., Bangladesh. He spent the next 6 years in Citibanks
Internal Audit function initially covering the CEEMEA region and
later covering Asia. In his role in Citibanks Internal Audit he was
responsible for leading major audits covering Citigroups Global
Processing Centers in Mumbai & Penang, Transaction Service
Businesses and certain major countries in the CEEMEA & Asia
regions. Within Citigroup, Dev was globally recognized as a subject
matter expert in Trade Audits.
Manohar Ganshani,
Practice Partner, Governance, Risk and Compliance,
Wipro Consulting Services
Manohar Ganshani heads Governance Risk & Compliance practice
in Wipro Consulting Services. He is a Bachelor in Engineering in
Computer Science. Manohar has 21 years of experience in the field
of Information Technology with over 11 years in the area of
Information security, IT security, Cyber security, Data privacy,
Regulatory compliance, Security strategy, and policy and
architecture design.
As a practitioner, he has handled many complex engagements in
risk and compliance space for the clients in US, EU, APAC apart
from India.As a thought leader, he has written and spoken on
various issues like mobile security, cyber security, critical
infrastructure protection, privacy for telecom, insider threat, social
media security and social awareness etc in various forums
organized by industry and state governments.
Vinod Vasudevan,
Co-founder and COO,
Paladion
Vinod Vasudevan is a co-founder and COO of Paladion. He has 15
years of experience in technology and information risk
management domain. As the COO at Paladion, Vinod has serviced
large enterprise organizations across the globe for setting up of
integrated risk management systems and for stream lining system
based operations. He regularly presents in leading forums,
conferences, recent one being RSA conference, Europe. He sits on
the expert panel of industry consortiums. He is the lead author of
the book Application Security in the ISO 27001 Environment
from IT Governance, UK. Vinod is also the co-author of "Enhancing
Computer Security with Smart Technology" published by
Auerbach. He is a CISSP and a PCI QSA.
Arlene Laungayan,
Senior Director, Operational Risk,
IBM
Arlene Laungayan heads up Operational Risk Implementation
Services, Advisory & Content business in the Asia Pacific region.
Prior to IBM, she spent seven years at American Express where she
worked in various risk management areas, including Market, Credit
and Operational Risk. Within Operational Risk, she has helped
many clients in developing methodologies for loss data collection,
risk and control self assessment, management reporting, scenario
analysis and operational Risk capital modeling.
Arlene holds a MBA from Columbia Business School in New York
and is also an instructor for the Risk Management Association on
Internal Loss Data, External Loss Data and Scenario Analysis.
CISO
3% 2%
Copyright ITP Publishing India Pvt. Ltd. Any reproduction in part or full is prohibited without permission from ITP Publishing India Pvt. Ltd.
Legal Heads,
23%
Internal Audit
and Head of
Management
Assurance
12%
Compliance
Professionals,
25%
Wipro Ltd. (NYSE: WIT) is a $7 billion global enterprise which offers services in IT services
and consulting. Our services span financial services, retail, transportation, manufacturing,
healthcare services, energy and utilities, technology, telecom and media.
Wipro Consulting Services (WCS) is a division of the Wipro Ltd. WCS has 1350+
consultants based in Europe, N. America, India, Asia Pacific and the Middle East. The
integrated consulting services combine the benefits of expert proximity, with global
leverage to provide technology edge and speed to strategic programs. WCS offers
Business Advisory, IT Consulting and Risk & Compliance services designed to improve
business performance, drive operational efficiency and enhance the reputational capital
and competitive advantage of the organization. WCS focuses on enhancing business
performance of its clients by streamlining processes, reducing organizational risk and
leveraging the global sourcing / outsourcing organizational model.
The Governance, Risk and Compliance practice of the Wipro Consulting Services division
helps organizations transform their risk and security processes to achieve their business
goals.
The Enterprise Architecture practice offers services such as governance architecture,
service oriented architecture, information architecture and infrastructure architecture,
Business-IT alignment, Value Management office, IT strategy, IT portfolio rationalization
and Green IT.
In today's fast paced global economy, with emerging threats, coupled with ever more
regulations, organizations find themselves in a position that necessitates the active
management of Governance, Risk, Opportunity, and Compliance. As there is substantial
overlap across these functions, a co-ordinated approach is required. Ultimately, these
challenges can be reduced to risks and opportunities that the business faces. It is on this
idea that Cura was founded in 2002.
Cura provides smarter software solutions designed to enable businesses around the world
to quickly achieve the bottom line benefits of GRC Governance, Enterprise wide Risk
Management and Compliance linked to performance management. Cura does this
through faster implementation, easier configurability & true enterprise architecture.
Cura is used by over 200 amongst Global 1000 enterprises around the world, partnering
with Big Four consulting firms in focused areas of GRC and is recognised as a Challenger
by Gartner and as a Leader by Forrester Research in GRC domain
The MetricStream GRC Platform provides solutions for audit management, regulatory
compliance, risk management, policy management, IT GRC, supplier/vendor governance
and quality management.