Despite continued uncertainty in the global economy, Companies must rebuild business practices and establish a solid processes and foundation to encourage growth in the organization in spite of increasingly complex business conditions and Governance, Risk & Compliance (GRC) structures and practices.

The aim and goal of the Copenhagen Compliance Conference is to bring together, local and international knowledge and experts to share with you the latest and updated information so that you can achieve the best results in an increasingly demanding practice area.

Copenhagen Compliance Conference will be equip you to Plan, Prepare and Implement the current GRC legislation, standards and best practices to ensure that you and your team are fully updated on the regulatory developments and furnish you with the tactics and strategies to achieve the best results for your entire Organization.

Our experts will address the current challenges and provide you with examples of solutions and strategies that will help you build your GRC plan to monitor activity and maximise the array of potential opportunities that exist despite the continued uncertainty in the global economy.

Main Topics, Key Notes and Presentations at the 6th European GRC Summit will include:

Day 1 - June 6th 2012 | Morning Session


Good Governance, if correctly implemented and communicated, is an excellent vehicle to enhance the organization or the company's Compliance and Risk management capabilities. This year's conference themes focus on several issues related to optimization of processes, record keeping, reporting, disclosures and automation. This session on Good Governance will check (that even a diversified organization with 'part-time' Governance Officers) to identify the crevices in Governance gaps.

Companies and Organisations need to focus on developing solutions utilizing existing in-house expertise, with the primary focus to create a holistic vision of how Corporate Governance can support their Compliance and Risk Management requirements, without creating additional burdens or bureaucratic processes in the organization.
09:00-09:10 Welcome & introduction to the conference. Opening remarks from the chairman & co-chair.

Speaker: Lady Olga Maitland and Mariano A. Davies
09:10-09:50 Sweeping changes in European Financial Markets: How the crisis has fundamentally changed the way financial markets are regulated and supervised.

Speaker: Jesper Lau Hansen, dr. jur. & LL.M. Professor of Financial Markets Law, University of Copenhagen
09:50-10:20 The significance, value and integration of Enterprise Risk Management to Governance and Compliance.
How to rationalize compliance and risk-management initiatives with a unified model, use automation to facilitate controls validation, and embed contextual controls within business processes to achieve operational efficiency
Speaker: Paul Grainger, MD, Institutional Division, Resources Compliance
10:20-10:45 Coffee Break
10:45-11:15 Embarking on The GRC Journey - How to develop An Integrated Approach Towards Governance, Audit, Risk and Compliance
  • BWise - a brief introduction
  • The GRC Journey: Think big, start small
  • We speak different languages, but we do speak the same risk language - Why companies should use an integrated approach into practice
  • International customer cases

Speaker: Marcel Starink, Senior Vice President Sales EMEA, BWise
11:15-11:45 Simplifying GRC disclosures & Financial, Accounting & Auditing Standards
Let's explore how changes in accounting and auditing standards can alter a corporation's strategic operations as well as its financial reporting processes.
  • Disclosure and reporting demands from regulators, oversight authorities, and other stakeholders are extensive. How can you improve your ability to demonstrate effective compliance. Only if the processes are properly crafted to meet stakeholder demands.
  • Reporting and visualization tools can provide you with full visibility into and across GRC operations, including your controls, policies, and attestations your company or your employees make to ethical conduct.
  • Focus on revenue recognition, leasing, financial instruments, and more

Speaker: Jens Røder, CPA, Secretary General Nordic Auditors Association
11:45-12:15 Investors expectations and concerns
  • What risk and governance information do investors need?
  • What should directors and senior management report and inform, based on the vast array of data and concerns, to what boards of directors truly need to know, understand, and act upon.

Speaker: Hege Sjø, Senior advisor, Hermes Fund Managers, UK
12:15-12:45 The Challenges and perspectives of Governance issues in China and Asian countries
  • What are the specialties and implication for the EU and USA ?

Speaker: Luka Lu, Capital Associates, Managing Partner
12:45-13:00 Panel Discussion. Is Good Governance is Good Business?
A common GRC challenge all over the world, is in finding fresh ways to make enterprise GRC Strategies That Increase Efficiencies Across the Organization
  • How to reduce redundancy and repetition, improve efficiency and consistency, and keep everyone aware of what's going on across risk, compliance, and audit functions.
  • How do we address and unify GRC initiatives that deliver an integrated program that empowers decision making and enables cross collaboration across different business units as they tackle diverse key initiatives to gain stronger insights, and make all elements of GRC relevant for the global workforce.

Panelists: Marcel Starink, Jens Røder, Hege Sjø, Luka Lu, Anne Ehrenreich
Moderator: Lady Olga Maitland
Co-chair: Mariano A. Davies

Day 1 - June 6th 2012 | Afternoon Session


We continue to experience sweeping reforms to comply in almost all sectors and trades. The high profile frauds and failures of oversight have impacted the end-investors and put into question existing systems and methods of control. In spite of the rules and regulations aiming to alleviate the worst impacts of the Compliance crisis, Copenhagen Compliance continues its efforts to establish an international framework to prevent and mitigate future problems. The financial sector, which has de facto privatised profits and socialised losses:
13:40-13:45 Introduction to the afternoon session. Remarks from The conference Chairman and Co-chair.
Lady Olga Maitland and Mariano A. Davies
13:45-14:05 Starting a Program to Build a Risk and Compliance Organization
  • Implement an International Compliance program using a holistic GRC model that takes into consideration a wide range of Risks incl. Cultural differences, disparate regulatory regimes, new business environments etc.
  • Learn how to develop a strategic approach to risk management, controls, and assurance processes, to ensure compliance programs are aligned with corporate strategy-improving performance, mitigating risks, and achieving compliance goals all in one stroke.
  • The holistic approach to GRC can promote ethical behavior and encourage a more resilient global risk-management program.

Speaker: Paul Grainger, MD, Institutional Division, Resources Compliance
14:05-14:30 When developing a Strategy for Finance – how to deal with all the GRC issues – and how to implement, clarify and decide upon
  • The Roles & Responsibilities, Mandates, and Segregation of Duties as related to the office of the CFO, Finance committee, Regional shared service centers, Group Finance Functions, Divisional Finance and Finance Centers-of-Expertise.

Speaker: Soeren Leopold, Managing Partner CFO Consulting
14:30-14:45 Integrated GRC program to empower the decision making process
  • How to unify and implement GRC processes and systems to reduce redundancy and repetition, improve efficiency and consistency, and keep everyone aware of what's going on across risk, compliance, and audit functions.
  • How to enable cross collaboration across different business units to deal with diverse key initiatives related to key government and international oversights and regulations;
  • Anti-Money Laundering, Anti-Bribery and Fraud, Third-party risks, Compliance issues such as HIPPA, Dodd-Frank, PCI and many more

Speaker: Frank Hailstones, CPA CPFA ACA IIA
14:45-15:00 Coffee Break
15:00-15:20 The Challenges and perspectives for compliance. Governance issues in China and other Asian countries.
  • What are the Implications for the EU and USA?

Speaker: Luka Lu, Capital Associates, Managing Partner, Lawyer
15:20-15:45 Liquidity Risk Management, New Compliance Burdens, Incentive Based Reporting Structures, Process and Risk Management in the Financial Services Sector.
  • Incentivizing the policies and procedures and processes that govern a corporations day-to-day operations related to Risk Management, Regulatory Compliance, Effective Reporting Structures and Process brings its own set of challenges
  • How to keep these Policies current, communicating them to employees, addressing exception requests and violations to the oversight authorities.
  • Effective Risk Identification Policies with Key Risk Indicators and evaluation of mitigation strategies

Speaker: Prof. Caspar Rose, Ph.D. Director of the Center for Corporate Governance CBS
15:45-16:10 From Watchdog to custodian to a strategic business partner. Adding value to the organisation & bottom line.
The financial uncertainty has forced companies to involve its Governance, Risk and Compliance Officers more responsibly to provide solutions to the new challenges with increased demands for farsighted results due to their specific skills to oversee Governance Risk and Compliance processes. The GRC officers are also playing a role in identifying the company's growth pattern and have a greater say in which direction it should go to avoid serious pitfalls.
  • Provide input to strategy, analysis, coaching and growth
  • Ensure timely information and good GRC management
  • Deliver strong economic GRC analyzes on key business units
  • Compliance to increased regulation and complexity of managing across borders
  • Solutions to technological limitations and outdated IT systems
  • Working towards greater efficiency and better exchange of information

Speaker: Paul Grainger, Managing Director Resources Compliance, UK
16:10-16:30 Round Table/Panel discussion and Q&A session with all speakers
  • There is a widely prevalent political will to make financial markets, and institutions pay more for the costs of explicit or implicit guarantees provided by national governments
  • There is a desire to force changes to the business models of financial institutions
  • There is an increased emphasis on ensuring taxes are collected on revenues from profitable investments
  • The micro-economic behavior of financial markets is under scrutiny, including trading strategies such as naked short-selling

Panelists: Søren Leopold, Luka Lu, Frank Hailstones, Prof. Caspar Rose, Paul Grainger.
Moderator : Lady Olga Maitland
Co-chair: Mariano A. Davies

Day 2 - June 7th 2012 | Morning Session


This morning session will provide you with the annual update to the components of Effective Enterprise Risk Management and learn how other trades are coping with Risk and Compliance. Attaining maturity in risk management is difficult because typically most organizations conduct enterprise risk management through periodic risk assessments and monitoring of historical data thru the use of certain metrics. The results are then rolled up into management reports to get the executive nod.

This year's focus on Effective Enterprise Risk Management spotlights on a few tactical themes that are essential to create a foundation for a changeover, unless you are happy with business as usual and want guidance for in-depth adjustments to attain benefit from an ERM program.

Unlock the true value of effective and efficient Enterprise Risk Management to enforce accountability, embed risk management across the organization and link risk management to strategic decision making process where you can measure performance and communicate the status on risks to all stakeholders.
09:00-09:15 Welcome & Introduction. Review from yesterday's sessions, Opening on Risk Management.
Lady Olga Maitland and Mariano Davies
09:15-10:00 Compliance in financial companies. - Requirements and supervision
  • The role of Compliance in financial legislation
  • The requirements for compliance in financial institutions and companies, including organization, competencies, roles and staffing
  • Supervision and oversight of Compliance
  • The FSA's response and options

Speaker: Stig Nielsen, Head of Compliance Finanstilsynet (FSA)
10:00-10:30 Effective risk management and internal control environments in international organisations
Internal controls are an key component of effective management of any business. Increased regulations have increased awareness of risk management and internal controls across organisations. The challenge associated with implementing and maintaining an effective control is ongoing. Significant challenges include.
  • Ensuring that your organisation is prepared for changes and are acting accordingly when the business may span a large number of different cultures
  • Anchoring of risk management and internal control processes in your day-to-day work
  • Monitoring of the internal control environment

Speaker: Thomas Bøgballe, Senior Manager PriceWaterhouseCoopers
10:30-11:00 Coffee Break
11:00-11:30 How can Audit Committees provide Risk Assurance
The financial reporting of many larger companies are particularly complex including the impairment test problems (Impairment issues), counter party risks, going concern relationship etc. These problems present complex issues matters that challenge the audit Committee. Jesper's critical attitude is that it's not okay to equip AC' without the participation of a single auditor trained director. This corresponds to set up a Medical Council to assess patients' diagnoses, without a single doctor sitting in council.

Speaker: Jesper Jarlbæk, CPA. Member of 4 stock listed Audit Committees
11:30-11:50 Leveraging Culture in a Company's approach to risk and compliance
  • What role can corporate culture play in a company’s compliance strategy?
  • Changing and strengthening corporate culture to encourage employees to embrace ethical conduct and shun non-compliant actions in large dynamic companies.
  • Can a Culture based approach address the challenges of different professions and nationalities in complex international organisations. Case study examples

Speaker: Gareth Garvey, Director of Consultancy, Copenhagen Charter on Bribery, Fraud & Corruption
11:50-12:15 AntiBribery@Work – a practical e-learning toolkit
In this presentation the participants will explore how best to organise compliance with anti corruption laws within the organisation and help ensure that the organisation lives up to the adequate procedures. The e-learning toolkit is a very practical and cost efficient way of handling compliance.

Speaker: Anders Lykke Pedersen, Eversheds
12:15-12:45 Anti corruption due diligence
Engaging third parties, whatever the location or nature of the arrangement, can expose any organisation to the risks in a number of areas including export controls, fraud, money laundering, conflicts of interest and other unethical business practices.
  • This can result in reputational if not financial damage to your organisation, if not well managed.
  • There are a number of well publicised cases of organisations being brought into disrepute by associations with third parties whose ethical practices are not aligned. There is now an expectation from certain prosecutors, that organisations proactively manage these business partner relationships.
  • Specifically in connection with bribery, we will consider the expectations of the prosecutors and what your organisation can do to address these.

Speaker: Judy Canning - Senior Manager PriceWaterhouseCoopers
12:45-13:00 Round Table/Panel Discussion.
Identify and stay on top of the increased operational risk management requirements Understanding the responsibilities to Risk Management as set out in the regulations, decide on a plan of action to comply with GRC issues, understand and position the legal documentation in place What are the imprecise risk management actions that may impact your ability to perform, what are the effective internal control environments in anti corruption due diligence

Speaker: Gareth Garvey, Judy Canning, Anders Pedersen, Jesper Jarlbæk, Thomas Bøgballe, Paul Grainger
Moderator: Lady Olga Maitland
Co-chair: Mariano A. Davies

Day 2 - June 7th 2012 | AFTERNOON SESSION


Any form of IT or data breach can impair your business transactions, from business interruption to business disruption. This ½ day session on IT issues focuses on the major costs and risks to companies that can flow from lack of up to date knowledge on technology trends in global governance, cloud computing, retooling IT Systems for better risk analysis and ensuring data security, data breaches and security alerts.

Introduction of new technologies offers a wealth of attractive business solutions and opportunities that are vital for business growth and development. We focus on the related risks and dangers.

Against a backdrop of data fatalities, all of the above IT issues should raise awareness amongst CFO, IT Managers and compliance officers. What are the steps your company should embark on protect data and information Management. Addressing the human element is another critical as part of that defense strategy
13:40-14:00 Welcome & Introduction. Review from yesterday's sessions, Opening on Risk Management.
Lady Olga Maitland and Mariano Davies
14:00-14:30 How to add value to your Governance, Risk & Compliance strategy by supporting IT tools

Speaker: Clive Coston, Public Sector Governance, Risk & Compliance Specialist
14:30-15:00 Data Security, Data Breaches and Security Alerts
Data security controls are crucial to ensure that customer and company information is protected. IT Risk-management programs with configured operating environments, robust and multi-factor authentication and other strategies that provide flexible controls and solutions.
  • How to safeguard against the risks associated with groups that are either employed, associated or business partners that have access to data and systems.
  • A review of updated controls, user access, separation of system infrastructure, limits and restrictions and proactive system monitoring
  • How to monitor periodic risk assessments of information security programs

Speaker: Hans Henrik Aabenhus Berthing, CPA, CGEIT, CRISC, CISA, CIA
15:00-15:15 Coffee Break
15:15-15:45 Digital Forensics: How to Gather and Preserve Electronic Evidence
It takes a variety of expertise and discipline to conduct a successful financial investigation. Frank Hailstones will introduce you the concepts of computer forensic investigation and analysis.
  • How to structure a fraud examination.
  • What are the proper procedures for seizing and securing digital evidence?
  • What should your response to a suspicious “possible virus” detected on the computer be?
  • What are the forensic artifacts, webmail history, deleted files and encrypted volumes techniques
  • How to analyze digital evidence in fraud examinations
  • A review of updated controls, user access, separation of system infrastructure, limits and restrictions and proactive system monitoring
  • How to monitor periodic risk assessments of information security programs

Speaker: Frank Hailstones CPA, CPFA, ACA, IIA
15:45-16:15 Smart and secure Identification
Organizations are increasingly connected, in one way or another, to the digital world. As you conduct more and more of your operations online, you need to make sure your intellectual assets remain secure.

While, it has never been more important to protect all this information, it has also never been more challenging. So, how do you trust the identity of users and effectively manage their access to company assets?

Speaker: Henrik B. Granau, Founder of RFID i Danmark and CEO of Granau IT
16:15-16:45 Can you manage Fraud, Forensics, Audit and M&A Investigations from your I Pad
How to structure an investigation and using technology tools in order do it smarter-quicker-better. The many perspectives of a Fraud investigation

Speaker: Frank Hailstones CPA, CPFA, ACA, IIA
16:45-17:00 Panel discussion and Q&A session with all speakers

Speaker: Frank Hailstones, Hans Henrik A. Berthing, Henrik B. Granau, Andrew Moore.
Moderator: Lady Olga Maitland
Co-chair: Mariano A. Davies
15:00-15:15 Coffee Break
17:00-18:30 IT and technology Session

Speaker: Philip Nordfalk. Consultant. Followed by Demo of IT tools.

Day 2

IT Demo on the 7th June 2012, 1700-1800

IT is often trivialized in Good Governance, Risk Management and Compliance (GRC) processes. However, IT very often ends up with being a very considerable part of a GRC implementation project. The reason is mainly that most controls in today's businesses are automated and rests on well-functioning IT systems.

To gain efficiency and effectiveness in the monitoring and control environment, we suggest a rather strong coordination and alignment between IT controls, business processes and the financial reporting process.

This helps scoping for and selecting the right controls and is necessary to avoid costly control redundancies or control gaps that might cause compliance failures.

Our angle to GRC implementation is the business angle. Although FRC calls for control and compliance measures, these measures should naturally and consistently, melt into your day-to-day procedures effectively and efficiently.

This is easily said than done if you do not seize the opportunity to rethink and reorganize some of your processes – in other words to perform Business Process Improvements prior to a GRC implementation. The practical elements of GRC recognition must be prioritized over implementing internal controls.

In many cases it is often revealed that an area of the GRC processes shows a general lack of formal controls. When such an area has been identified, do not initiate a costly in-depth audit, but kick off an instant control remediation based on existing business controls and processes. If the tests fail, then initiate a walk thru based on revised or processes on an as is /to be procedure.

IT implementation is technology, process and people-oriented. When the GRC implementation phase is successful you and your company will be able to perform controls consistently in order to sustain future compliance.

Therefore we conduct an extra IT session on the 8th June to ensure that you are dressed for the future requirements related to controls, processes and knowledge sharing activities in a GRC implementation project. Other activities during the morning session include organizing and holding training sessions and workshops and facilitating controls design and implementation.

Program (For Futher information, please click)

17:00-17:10 Introductions and Presentations
17:10-17:30 Key Note Speech by
Philip Nordfalk

Segregation of Duties – Why and How
Synopsis: Properly implemented Segregation of Duties (SoD) could have prevented many headaches.
17:30-18:30 IT Demo by

    *Conference Program is subject to changes. The Conference Language is English