NEACS: CRO Perspective William Feher Vice President, Internal Audit and Chief Risk Officer October 27, 2015.

Slides:

Advertisements

Similar presentations

Organizational Governance

Advertisements

. . . a step-by-step guide to world-class internal auditing

Aligning Internal Audit & Risk Management Under the Governance Umbrella An Audit Committee Chair’s perspective Jon Isaacs NSW Public Sector Audit & Risk.

Towards More Effective Board Functioning Fall Lausanne Confidential to CEO-CF and CEO-CF members.

W. Richard Frederick Governance Consultant. 1. Is the board effective, passive, or dysfunctional? 2. Is the board composition good?  Skills, experience,

The Right Issues Exceeds Expectations Meets Expectations Needs Improvement N/A 1. The Board focuses on activities that will help the Company maximize shareholder.

Department of Environmental Quality Environmental Management System Overview.

Mark Carey, CPA, CISA President Toll free: x101 International: x101 Enterprise Risk Management:

Introduction to Enterprise Risk Management (ERM)

Executive Insight through Enhanced Enterprise Risk Management Leverage Value From Your Risk Management Investment.

Welcome! Internal Auditing CHAPTER 1. Definition Internal auditing is an independent, objective, assurance and consulting activity designed to add value.

CHAPTER 16 Auditing and corporate governance. Contents  Corporate governance  Independent directors  Chairman of the board and chief executive officer.

© The McGraw-Hill Companies, Inc., 2008 McGraw-Hill/Irwin 1-1 Financial Accounting THIRTEENTH EDITION Williams Haka Bettner Carcello.

6/2/20151 Enterprise Risk & Assurance Management in Zurich North America Brian Selby MA (Audit), FIIA, QiCA, MBCS, CISA.

By Saurabh Sardesai October 2014.

How to Grow Revenues Through Supply Chain Relationship Management Bill Burke President, CEO ePlains, Inc.

Presented by: G. Lawrence Buhl, CPA Retired Audit Partner at Ernst & Young 1 Risk Management & ERM: What Insurer Boards Need to Know.

“The Impact of Sarbanes Oxley, An Evolving Best Practice” Ellen C. Wolf Senior Vice President & Chief Financial Officer American Water National Association.

ERM 203 – When Storming the Castle Alone Doesn’t Work: Internal Audit as Ally Wednesday, April 18, 2012.

Corporate Governance Best Practices: Implications for Commercial Underwriters Dr. Gail S. Russ Dr. Meredith Downes Associate Professors of Management Illinois.

How can projects be controlled?

Chapter 11.  The board is ultimately responsible for risk management  Oversee strategic risks, operational risks, and financial risks  Many federal.

Planning for the Future Board approved Board approved o 10+ Year Envisioned Future o 3-5 Year Strategy Map o FY14 Operational Objectives o Input was obtained.

chapter 1 – Introducing the concepts

Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.

WHERE WE ARE 22 member associations in 20 countries Over 4300 individual members who are responsible for risk management and/or insurance in their organisations.

Background and Perspective Making the Business Case for Supplier Relationship Management 1 Annual Meeting April , 2013 Orlando, Florida.

Permission to reprint or distribute any content from this presentation requires the prior written approval of Standard & Poor’s. Copyright (c) 2008 Standard.

Corporate Structure & Companies

Organize to improve Data Quality Data Quality?. © 2012 GS1 To fully exploit and utilize the data available, a strategic approach to data governance at.

1 1 BRANCH: CORPORATE AFFAIRS 1. CORPORATE MANAGEMENT SERVICES To provide financial and strategic support services that enhance service delivery by the.

MANAGERIAL ACCOUNTING AND THE BUSINESS ENVIRONMENT Chapter 1.

Lecture 03. Overview of Lecture 02 Theory of Comparative Advantage International Business Methods Business Strategies Business Stakeholders Organizational.

Challenges in Infosecurity Practices at IT Organizations

BPK Strategic Planning: Briefing for Denpasar Regional Office Leadership Team Craig Anderson Ahmed Fajarprana August 11-12, 2005.

Assessing ERM Practices ERM Working Group North Carolina State University Raleigh, February 24 th 2006 Copyright © 2005 Standard & Poor's, a division of.

C H A P T E R 2 Stakeholder Relationships, Social Responsibility, and Corporate Governance.

Geneva Association/International Insurance Society Research Presentation, Chicago Enterprise Risk Management in the Insurance Industry Madhusudan.

© 2003 DelCreo, Inc. All rights reserved. | U.S. Toll-free 866.DELCREO | International 001/ |

APPA - Enterprise Risk Management LCRA’s ERM Journey Presented by JoEllen Peterman, ERM Program Manager September.

Strategic Management: Chapter 1 Basic Concepts of Strategic Management Page 1 Basic Concepts of Strategic Management Chapter 1.

Bank Audit. Internal Audit Internal audit is an independent, objective assurance activity and can give valuable insight in providing assurance that major.

© The McGraw-Hill Companies, Inc., 2008 McGraw-Hill/Irwin Principles of Accounting (Accounting 1 for BBA - Undergraduate) SBS Victor Yerris, PhD

1 The Auditor’s Role in Governance: Emulate, Evaluate, Educate Lori Cox, CIA, CGAP IIA Tucson Chapter President Director – Internal Audit, Pima Community.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

The Role of a Financial Manager Corporations Roles and Titles of Financial Managers Principal-Agent Problems Presentation – Dennis Spice.

Balancing Scores CMA Pankaj Jain Group CEO Logix Group ASSOCHAM National summit on Profit Re-Engineering ( ) Driving.

Hosted By Mike Gallagher October 2015 Risk Management And Compliance.

TREASURY REGULATIONS’ CHANGES AND POTENTIAL IMPACT

Chapter 3 Governance.

Pre-Decisional Involvement

CAS Spring Meeting June 2007 Introduction to ERM …The Measurements, Quadrants, Tools, and Solutions Prof. Mark C. Vonnahme Fox Family Clinical Professor.

A compliant value proposition Carsten Højlund, Head of Group Internal Audit.

The Center for Professional Education 11 Presentation AIG CIRC October 21 11:00-12:30 Seven Contributions of Enterprise Risk Management.

APPA - Enterprise Risk Management LCRA’s ERM Journey Presented by JoEllen Peterman, ERM Program Manager March 29, 2007.

12-CRS-0106 REVISED 8 FEB 2013 APO (Align, Plan and Organise)

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

I.U. Professional Opportunities Orientation Program Kristin Gaines IT Manager.

Governance, Risk and Ethics. 2 Section A: Governance and responsibility Section B: Internal control and review Section C: Identifying and assessing risk.

Organization  As a member of the Strategy & Business Development team, this position will support the development and execution of Corporate, Sector,

Risk Management Bill Ferguson, Ray Farmer, Tim Morris, Marty Wingate Insurance Summit

Dolly Dhamodiwala CEO, Business Beacon Management Consultants

Cisco Systems Amy Kwan Annual Revenue: US $40 Billion Worldwide Presence: Culture: Innovation, Quality, Teamwork Changing the way we work, play and learn.

Insurance Summit 2016 REGULATORY UPDATE. Panel Participants Ray Farmer (Director, South Carolina Department of Insurance) Tim Morris (Hanover Stone Solutions)

Chief Diversity Office, Dell Corporation

What Is Vendor Management And Why Is It Important To You?

Responsibilities & Tasks Week 2

Board of Directors Roles and Responsibilities

©2003 South-Western Publishing Company

Presentation transcript:

NEACS: CRO Perspective William Feher Vice President, Internal Audit and Chief Risk Officer October 27, 2015

CRO Perspective Speaker’s Bio October 27, NEACS: CRO Perspective William Feher Vice President, Internal Audit and Chief Risk Officer Bill serves as Vice President Internal Audit and Chief Risk Officer for ITT Corporation where he is responsible for overseeing the activities of Internal Audit, Risk Management (Insurance and ERM) and Business Conduct (Ethics Programs). He has more than 28 years of experience, having previously worked for EMCOR Group, Inc., Gartner Inc., Ernst & Young LLP, and PricewaterhouseCoopers LLP. Bill is a board member and President of the Fairfield/Westchester County Chapter of the Institute of Internal Auditors, a member of Financial Executives International and the Connecticut Society of CPAs and a volunteer member of the Finance Committee of Make-a-Wish of Connecticut. About ITT Corporation: ITT is a diversified leading manufacturer of highly engineered critical components and customized technology solutions for the energy, transportation and industrial markets. Building on its heritage of innovation, ITT partners with its customers to deliver enduring solutions to the key industries that underpin our modern way of life. Founded in 1920, ITT is headquartered in White Plains, N.Y., with employees in more than 35 countries and sales in a total of approximately 125 countries. The company generated 2014 revenues of $2.7 billion.

3 CRO Perspective Speaker’s Bio NEACS: CRO Perspective October 27, 2015

CRO Perspective Theme for Today 4 “No longer is cyber security the concern of only the Chief Information Security Officer or the Chief Information Officer. Increasingly boards of directors and management teams are turning to their Chief Risk Officer for an independent view of how cyber risk is managed across the enterprise. An important part of the solution is a strong partnership with all of the stakeholders in cyber security. This session will share strategies and success stories.” October 27, 2015 NEACS: CRO Perspective

CRO Perspective Overview of Discussion Topics October 27, NEACS: CRO Perspective  Enterprise Risk Management and IT Risk  What does a Chief Risk Officer do?  How ITT Manages Risks  Solutions and Success Stories  Where do we go next?  Q&A

6October 27, 2015 NEACS: CRO Perspective CRO Perspective ERM and IT Risk

CRO Perspective What does a Chief Risk Officer do? October 27, NEACS: CRO Perspective  Aligns the company’s risk management approach with strategic objectives and oversees Enterprise Risk Management (ERM).  Communicates risk information to the Board of Directors and to management. The CRO is often the liaison between the Board, management and the risk management function.  Establishes and maintain adherence to risk appetite/ threshold.  Monitors emerging risks across the enterprise. Establish and maintain early warning systems/forward looking indicators to evaluate and asses emerging risks.  Drives a culture of risk awareness and discipline.  Fosters cross-functional collaboration, ownership and accountability for all employees with the appropriate responsibility commensurate with the job responsibilities.  Reports to the CFO (next most commonly to the CEO). Some CROs have direct board reporting, especially those who have a hybrid role in small to medium size companies (ITT structure). Stakeholders: Shareholders, Board, Management and Functional Leads, Regulatory Agencies, Customers, Suppliers, Lenders

CRO Perspective How ITT Manages Risks October 27, NEACS: CRO Perspective

CRO Perspective Solutions and Success Stories October 27, NEACS: CRO Perspective  Third Party/SaaS Reviews Approval committee participation to vet potential vendors Due diligence questionnaire and risk evaluation CRO support of the CISO and security team with business owners  Disaster Recovery/BCP Support Co-sponsorship of DR framework development with the CISO Management buy-in support Implementation advisor, strategist and Board communicator  Business Case Support Data Center strategy review Key IT Initiative Steering Committee support  Board of Director Reporting Enterprise Risk Management – Annual Cyber Security Assessment

CRO Perspective Where do we go next? October 27, NEACS: CRO Perspective  Evaluate effectiveness of Cyber Security Risk Management and constantly adjust  Partner with your CRO (and CAE) He/she can be a great supporter and catalyst  Focus on employee engagement and education Coordinate employee training activities with your CRO and other functional leads Other functions are your business partners  Finance – watch for phishing and spam, finance is a frequent target  Human Resources – consider core competency evaluation for strong cyber awareness and prevention techniques  Legal – coordinate on use of third parties and contract language  Insurance/risk – explore Cyber Insurance

CRO Perspective Q&A October 27, NEACS: CRO Perspective  Thank you for listening and your feedback is welcome! 