Welcome Remarks, IDMA President, Dana Reynolds, SAC Ravenelle

Transcription

1 Session: Program on Risk Management Date: Thursday, March 26, 2015 Schedule: Registration, Beverage and Breakfast Service Welcome Remarks, Dana Reynolds, SAC Ravenelle Main Program Location: Littleton Public Schools District Office, 5776 S. Crocker St., Littleton, 80120, Venue location - Parking (n/side, s/side lots, and on-street) Program Overview: Enterprise Risk Management principles and practices are continually evolving and are vital to your bottom line. Risk is never static, and those organizations who value its asymmetric properties are better prepared for business disruptions that can undermine your competitive advantage. This program seeks to bring together accomplished professionals with a knack for risk management from a variety of perspectives to educate, inform, and provide meaningful tools and advice that you can leverage immediately in your organization. This interactive program begins with presentations from our subject-matter experts and ends with dialogue to ensure your questions get answered. Your colleagues are always welcome to our functions as we are always seeking new members who can make a contribution to the chapter. Agenda Registration Welcome Remarks, IDMA President, Dana Reynolds, SAC Ravenelle Mr. David J. Young, Lecturer, Risk Management & Insurance Program, University of Colorado at Denver, Business School Speaker Bio David J. Young is the Managing Principal of Soteria Risk, an Enterprise Risk Management consulting firm that provides a cloud based tool to help organizations implement and manage Enterprise Risk Management programs. In addition, he teaches for the CU Denver Business School in Risk Management and Insurance. With more than 25 years of experience working in the insurance industry, he has previously worked for several of the world s largest insurance brokers. In 2013, he received a Risk & Insurance Power Broker Award and a Liberty Mutual Responsibility Leader of the Year for his efforts to increase awareness of career opportunities in the insurance and risk management industry.

2 Presentation Abstract Emerging Risk in Risk Management: Insurance and risk transfer remain the most common risk mitigation technique for organizations but emerging risks are trending towards strategic and operational risks that may not be insurable. By focusing on all categories of risk, organizations can better protect themselves from unprecedented disruptive change. Impending risk issues and the challenges in addressing them will also be discussed Mr. Brian Brown, Senior Examiner, Federal Reserve Bank, Kansas City Speaker Bio Brian Brown joined the Federal Reserve Bank of Kansas City in 1999 after spending 12 years performing Safety & Soundness, Information Technology and Trust examinations for the State of Missouri Division of Finance. His focus for the last four year has been on Information Technology examinations of banks, technology service providers, and software product reviews. He is a Certified Information Security Auditor (CISA) through ISACA and graduated from Mid America Nazarene University in 1983 with a B.A. in Marketing and Management. Presentation Abstract Cyber-Security risk avoidance and mitigation is a significant issue today. There are many examples of companies who have suffered significant reputational, legal, financial and operational risks due to inadequate protection from cyber-attacks. Disclosing cyber-incidents and cyber-security plans also poses challenges for companies, contrasting the need for both transparency and confidentiality. Ultimately the aim is to reduce the potential for harm from cyber-attacks, whatever the underlying motivation. Brian will include a review of the core cybersecurity functions of NIST s Cybersecurity Framework including identification, protection, detection, responding and recovering. Proper implementation of these functions will give you the ability to better protect or defend your organization from cyber-attacks by identifying the people, processes, tools and technologies you can use to reduce the potential and impact of a possible cyber-attack Networking Break

3 Mr. Ethan Rojhani, PWC Speaker Bio Ethan Rojhani is a director in PwC s performance governance, risk, and compliance (PGRC) practice with experience leading the full lifecycle of enterprise risk management (ERM) engagements. This includes leading engagements in risk consulting, compliance assessment, risk modeling, business process improvement, software system implementations, and internal control and monitoring assessments. His recent experience includes leading the development of an enterprise risk management program for a multi-billion dollar energy company, and leading the restructuring of organization-wide PGRC programs for manufacturing client. Mr. Rojhani was one of the primary authors for PwC s methodology for building enterprise risk management programs. His technical experience consists of financial analysis in development of risk and operational models over cost, risk, budget, and revenue redistribution. Mr. Rojhani also is skilled at costing of new technology implementations and supporting development of custom applications multiple programming frameworks. Mr. Rojhani is a Certified Public Accountant (CPA), a Project Management Professional (PMP), a Certified Governmental Financial Manager (CGFM) and a Certified SalesForce.Com Developer and Administrator. Mr. Rojhani has an MBA from the George Washington University, an MA in Communication University of Denver, and a BS in Biomedical Engineering from the University of Nebraska. Presentation Abstract In these extraordinary times, business is as complex as ever. As industries intersect and connect in more ways via digital technology, the complications only grow and cascade quickly. But there s an upside to all this risky business: Every new threat offers new possibility, too. And taking on risks with confidence means CEOs businesses can grow more resilient to the inevitable change that lies ahead. In fact, the majority of CEOs in 2015 acknowledge that they clearly see more opportunities in store. We will explore emerging trends from PwC s 2015 CEO survey, as well as PwC s recent State of Compliance, Global Economic Crime, and State of Cyber Crime Threats in an interactive session. We will also explore what organizations are doing to mitigate risks and take advantage of these new opportunities.

4 RSVP Required for this Event Members, Friends & Colleagues are Welcome to Attend Please RSVP to To become a member of InfraGard, visit

5 Calendar of Upcoming Events EMP-SIG Regional Meeting, Millennium Hotel, Boulder CO April 15, 2015, noon 2:15pm (Save the Date) This regional meeting is being held in conjunction with NOAA s Space Weather Workshop in Boulder, with keynotes by Mr. Bill Murtagh of NOAA's Space Weather Prediction Center, along with Chuck Manto, EMP-SIG Chair, and others. IT Summit, Colorado Convention Center April 22, 9:00am 3:00pm The $499 admission has been waived for InfraGard members and admission is complimentary if you hold an IT Professional title, for example (CIO, CTO, CISO, VP of IT, etc.) Use registration code IG2015 when signing up for the conference. Register at Information on parking can be found at PSA TEC Conference, Westin Hotel, Westminster, CO May 4-8, 2015 The Cyber Security education track is on May 7-8. Infragard members are invited to attend those two days as well as the exhibits on May 6 for only $250. This price includes access to the exhibit hall on May 6, access to all the TEC training courses on May 7-8, and all meals and networking events for those three days. Attached is a flyer with additional information. Registration is open now at and attendees should use promo code INFRAGARD to receive that special rate. Rocky Mountain Information Security Conference, Colorado Convention Center May 12-13, 2015 The Annual Rocky Mountain Information Security Conference (RMISC) is the only conference of its kind in the Rocky Mountain region. A convenient, affordable knowledge-builder for IT security, audit and compliance professionals at all levels. RMISC provides the perfect blend of education, networking and opportunities that are critical to your success in today's economy and security climate! RMISC is pleased to announce the availability of pre-conference specialty workshops! In addition to extending the conference to offer additional educational opportunities, we hope this will allow more of the industry professionals beyond the Metro Denver area to attend. Register at

6 InfraGard Regional Meeting, Casper, Wyoming May 19, 2015 Training for Energy Sector, Financial Services Sector and Transportation Sector (Rail) RSVP announcement and the draft agenda will be forthcoming! InfraGard Regional Meeting, Sheridan, Wyoming May 20, 2015 Training for Healthcare Sector, Transportation Sector (Rail), and Communications Sector. RSVP announcements and the draft agenda will be forthcoming!