Agenda* - April 7th 2015
09:00-09:05	Welcome & Introduction To The Conference.
09:05-09:20	Inaugural keynote How can Indian companies comply with the regulatory requirements of audit - fraud and compliance S Raman, Whole Time Member Securities and Exchange Board of India (SEBI)
09:20-09:40	Disclosure of holdings by promoters/ directors in listed companies and issues of regulatory compliance Ananta Barua, Executive Director, SEBI
09:40-10:00	Data-centric Governance in the Age of Nomadic Data Zubin Dalal, Director - Product Management Seclore
10:00-10:45	Panel discussion and Q&A Session Moderated by: Kersi Porbunderwalla & Rahul Magan Panelists: - Ananta Barua, Executive Director, SEBI - Zubin Dalal, Director - Product Management, Seclore
10:45-11:00	Coffee Break
11:00-11:20	Smarter Moves In local and global Bribery Fraud Corruption Risk Assessment Better analytics of operational and financial transactions Moving to continuous monitoring og BFC Finding gaps in your BFC controls? Rohit Mahajan, Senior Director and Head, Deloitte Forensic
11:20-11:40	"Managing Stakeholders Expectations" - the role of Internal Audit and GRC S Bhaskar, Chief Internal Auditor, Tata Capital
11:40-12:00	Establishing The Right GRC Oversight Structure throughout the organisation Where does the boardroom governance intersect with GRC functions What are the governance, risk, compliance, and audit functions that can be merged How to develop GRC roadmaps and frameworks for individual GRC components and functions Kersi F Porbunderwalla, Secretary General, Copenhagen Compliance
12:00-12:20	Data Privacy and IT Compliance What is Data Privacy Law and Scenario in India. How IT compliance and data privacy functions should be addressed and structured for a collective compliance effort What are the new global Privacy mandates. Cases of Data Privacy Violation in India ? Adv Prashant Mali, President, Cyber Law Consulting (Advocates & Attorneys)
12:20-13:00	Panel discussion and Q&A Session Moderated by: Kersi Porbunderwalla & Rahul Magan Panelists: - S Bhaskar, Chief Internal Auditor, Tata Capital - Rohit Mahajan, Senior Director and Head, Deloitte Forensic - Adv Prashant Mali, President, Cyber Law Consulting (Advocates & Attorneys)
13:00-13:50	Lunch Break
13:50-14:10	Global FCPA Enforcement- And Audit Recent developments require that global companies take an updated look at their FCPA enforcement. What are the lessons learned from recent settlements. How to develop the FCPA audit process that uncovers and assesses bribery and corruption risks. How to analyse and collect the necessary data and information to flag FCPA concerns that require investigation Gaurav Ajmani, Sr. Corporate Counsel, Amazon
14:10-14:30	Automating Governance, Risk Management and Compliance (GRC) for efficient IT processes Risks are often unavoidable; however when the daily processes are managed with governance, risk, and compliance (GRC) components, businesses can strategically balance risk and opportunity. As global oversight authorities and mandates continue to impose new regulations, GRC can help streamline businesses processes for: Improved management of compliance and risk Better protect value - proactively avoid risk events; reduce the cost of violations Better perform - active link risk and performance management and objectives Raghu Boddu, Director - SAP Services & Innovation, Clematis Technology Solutions
14:30-14:50	Third-Party Risk Management on a Large Scale Third parties pose risks to all companies-however the ability to impose policies and controls is that much harder at a global enterprise level. This session will explore ways to train and monitor third parties when you have more than a handful of them; how to work your local business units so they can do at least some of that oversight for you. Risk assessments, policy management, and reports back to compliance headquarters (you) will all be covered Amit Pradhan, Chief Information Security Office (CISO), Cipla Limited
14:50-15:10	Smarter moves in local and global bribary fraud corruption risk assessment Rahul Magan, Group Corporate Treasurer, EXL Service Holdings, Inc.
15:10-15:50	Panel discussion and Q&A Session Moderated by: Kersi Porbunderwalla & Rahul Magan Panelists: - Gaurav Ajmani, Sr. Corporate Counsel, Amazon - Raghu Boddu, Director - SAP Services & Innovation, Clematis Technology Solutions - Amit Pradhan, Chief Information Security Office (CISO), Cipla Limited
15:50-16:00	Coffee Break
16:00-16:20	Digital Forensics- Integral part of Information Security. Trends in Digital Forensics - reactive to proactive to predictive Digital Forensics for regulatory and compliance requirements Digital Forensic Standards Krishna Sastry Pendyala, Head-Fraud Management and Forensics, Tata Consultancy Services Limited
16:20-16:40	GRC on Cloud Anil Nama, CIO, CtrlS Datacenters Ltd
16:40-17:00	Implementing And Monitoring Operative Incident Reporting Systems Building large-scale risk monitoring systems to encourage reporting The structure of a large-scale compliance systems cumulative analysis Restoring the GRC mistakes & accidents from culture flaws Venkatesh Subramaniam, Head - Information Security & Privacy, Idea Cellular Ltd
17:00-17:40	Panel discussion and Q&A Session Moderated by: Kersi Porbunderwalla & Rahul Magan Panelists: - Krishna Sastry Pendyala, Head-Fraud Management and Forensics, Tata Consultancy Services Limited - Anil Nama, CIO, CtrlS Datacenters Ltd - Venkatesh Subramaniam, Head - Information Security & Privacy, Idea Cellular Ltd
17:40-17:45	Conclusion and Final Remarks

*Program is subject to changes.

---

Internal Audit and Controls

Establishing The Right GRC Oversight Structure throughout the organisation

• Where does the boardroom governance intersect with GRC functions
• What are the governance, risk, compliance, and audit functions that can be merged
• How to demonstrate sufficient independence within the functions

From Entity-Level Internal Controls To Automated ERP System Controls

• Imposing enterprise wide entity-level controls at a global company
• How to address cross jurisdiction issues, where laws are in conflict
• How to ensure reporting accuracy across multiple global IT systems and platforms

Getting The GRC Accuracy through Data and Management Review

• Deciding where in the organization to place a review control
• How to ensure to collect the correct data for management review
• The different controls for Internal Controls over Financial Reporting compliance

Re-Invigorating Internal Controls Compliance Via Project Management

• How to incorporate oversight and audit inspections and warnings into compliance
• Re-assessing your internal controls for disclosures and growth
• Using project management skills to implement and testing & remediation program

Bribery, Fraud and Corruption Issues

Smarter Moves In local and global Bribery Fraud Corruption Risk Assessment

• Better analytics of operational and financial transactions
• Moving to continuous monitoring og BFC
• Finding gaps in your BFC controls

Regulatory Compliance Issues

Assessing Your Risks In Anti-Trust and Competition Law issues

• Understanding the current focus of global anti-trusts regulatory risks
• Examining the current business model & processes for anti-trust risks
• Assembling an enterprise-wide sense of competition law risk exposure

Managing Cross-Border Investigations

• Privacy concerns, data transfer, interviewing techniques
• Rearranging parallel probes to fulfill requirements from multiple regulators
• Deciding on the materiality and disclosures to multiple audiences

Regulatory requirements for Adequate Procedures in the current Period of Big Analytics

• What do the oversight and regulators expect from GRC risk analytics
• What are the prerequisites affecting manual processes when moving to automated workflow?
• The components of the analytic processes to particular types of risk (corruption, fraud, bribery, crossborder/global transactions)

RISK Management Issues

Assessing The Control and Reporting Risks Of Business Process Re-Engineering

• Segregating the risks of outsourcing to GRC components
• Separating the risks of centralization of GRC controls
• Connect the GRC risks to financial monitoring and reporting values

Implementing And Monitoring Operative Incident Reporting Systems

• Building large-scale risk monitoring systems to encourage reporting
• The structure of a large-scale compliance systems cumulative analysis
• Restoring the GRC mistakes & accidents from culture flaws

Third-Party Risk Management on a Large Scale
Third parties pose risks to all companies-however the ability to impose policies and controls is that much harder at a global enterprise level. This session will explore ways to train and monitor third parties when you have more than a handful of them; how to work your local business units so they can do at least some of that oversight for you. Risk assessments, policy management, and reports back to compliance headquarters (you) will all be covered.

Enterprise risk management (ERM) and sustainability
Incorporating sustainability issues are top priorities for corporate boards, stakeholders and management. The issues relate to ERM and the company's overall business strategy.

• Successful implementation promotes faster growth and reduces risk
• How to integrate sustainability into the ERM framework that includes;
• Governance; Risk assessment and quantification
• Risk management; Reporting, monitoring and assessments.

Cloud, Big data and IT Security and Controls

The role of an IT Compliance Officer in India
Data Privacy and IT compliance programs must coexist. They can either work together or work against each other.

• How to develop a strong process and organizational relationship between data privacy and IT compliance.
• Should each GRC function report to another GRC process?
• Should the separate functions reporting to different departments?
• How they manage such organisational relationships and avoid tension.

Data Privacy and IT Compliance

• How IT compliance and data privacy functions should be addressed and structured for a collective compliance effort
• What are the new global Privacy mandates, directives and components, so that multinationals can navigate between the various regulatory commissions?

Lifecycle Management For IT and Data

• Developing strategies for retention & destruction
• Matching your IT controls to implement GRC policies
• How to address the cloud and forensic issues at third-party data storage

Parallel Session on The Financial Services Industry

Will the New banking models and rules create greater stability in the Indian Financial services Industry?
The role of banks and financial institutions are changing all over the world. This chaning role is not just a result of the technologpcal changes, but more realted to what the public, oversight and policy-makers are expecting of the new role that banks and financial instituions play io the global economy.

• Are regulatory authorities interfering in the operations of the individual national banking services?
• Will the global centralisation of oversight ensure a coherent supervisory architecture and change India's Supervisory and Resolution Mechanisms and Authority (indian equivalent of ESAs, ESRB and ECB)
• Is there over-regulation, high capital requirements, and returns on equity that pose an obstacles to investment-led growth in India?
• How can Indian-banks play a key role in India's economic recovery and growth?

How can the Financial Services Serve the the needs of Indian corporate world and society?
A debate of new ideas to encourage long-term investment in Indian companies.
Do indian financial markets work efficiently and fairly, to serve the copporate and private customers. India's financial markets are bank dominated, without a growing focus on alternative sources of finance like the rest of the world.

• Is there the right mix of funding and how level is the playing field in India?
• How should India tailor its financial strategy to meet the very different financing needs of small and medium size companies?
• Should banks and financial institutions support the governments' economic objectives, through innovative approach to promoting new entreprenours in the investment community?

Will the Banking Union work for Europe and what is the impact on Indian Financial Institutions?
Europe's banking system has been subjected to the most rigorous health check to date via the Asset Quality Review (AQR) and Stress Tests.

• How will the new review and stress tests impact the strength of Indian banks
• How can Indian banks implement effective systems and building blocks to carry out the new responsibilities and challenges that lie ahead?
• Can an Indian financial and banking structure legislation, reinforce assurance or will it hinder growth and market integration?
• Is India ready for tougher capital requirements in terms of Total Loss Absorbtion Capacaity(TLAC) as the largest global banks and other SIFIs are subjected to?

The Impact of Technology on Indian Financial Markets
The impact of information technology has had a profound effect in the operations and risk management of the financial markets.

As the combination of policy reforms and IT innovations continue to transform financial landscape, markets have experienced a new set of complex domestic and international financial transactions that are conducted rapidly and securely.

• What are the reforms in technology, oversight and policy changes needed to ensure compliance to the new vehicles or instruments that are required through which people and institutions can lend, invest, or raise money?
• What are the new data storage, risk analysis, and other data-dependent tasks associated with the complex transactions of financial institutions?
• When market actors have access to an extensive array of information on investment and borrowing opportunities, what are the impediments for Indian economic growth, trends, and policy developments?

The Regulatory Compliance overstrain on Capital Markets - What does it mean?
The overflow of new regulation of financial markets since the crisis of 2008 has yet to settle down to deliver the efects on compliance implementation. How can added compliance provide financial security to the financial services sector and get engaged in India's solution to economic growth?

• What role can a capital market play in promoting sustainable growth in India?
• What are the essential aspects of capital market financing that ndian oversight should give priority to?
• Is there a new role for regulatory change in helping drive Indian capital markets?

Can strengthened corporate governance support global economic stability? We have a look at the Nordic Governance model.
Good Governance can ensure self-discipline in resolving corporate business issues without the involvement of regulation and oversight. Can added attention to governance issues like shareholder rights, investor engagement, identification of shareholders enhance public confidence in capital and financial markets and attract investors?

• How important is financial governance in ensuring stability, fairness transparency and accountability of financial markets?
• What is the role of governance arrangements in fostering the changes in the Indian business culture of financial institutions?
• What is the best approach to ensure that short-term trading pressures do not lead to behavior in contradiction of corporate interests and corporate policies?

Financial services Workshop.

The workshop will focus on the financial regulation reforms in India for the financial markets, Banks, Insurance and other financial undertakings for the coming years to provide the knowledge and recommendations for implementing the program and framework including the integrated IT tool required to achieve the processes and systems.

The global Financial Regulation Programs provide the principles, procedures, framework, structure and organization to support the supervision for governing the formation of the Indian Banking sector and the implementation of systems, processes, controls and IT tools for the financial control program.

What are the components and plans to comply with the proposed/adopted financial reforms that provide a relatively straightforward answer on how the Indian financial industry must run the Governance, Risk Management, Compliance and IT security procedures and controls so that the financial and regulatory systems are on track.

Therefore, the directors, managers and employees including outside stakeholders in the Indian financial services industry must understand and accurately assess the consequences of the reforms for their business or organization. The timeframe is an issue, therefore, start learning and understanding the process now. The deadlines are strict, and the complexities require undivided attention on how the key players will implement the new reforms and regulations without damaging the operations.

This workshop will focus on disseminating the Indian Financial directives, information and guidelines to create a modern legal framework for a regulatory financial compliance, Indian company law and recommendations for a more engaged shareholders and sustainable corporate governance must be a priority for all.

Agenda

• The financial regulation. - Description/Overview of framework, Exercise of Oversight and Controls
• The financial regulation . - Reporting and Disclosures, IT Platform, Reporting and Follow-up
• MiFID II, CRD 4, Solvency II, Insurance Mediation and UCITS Frameworks - Status & possible consequences for compliance
• A single Supervisory Framework - Consequences for the financial industry
• The future of the indian equivalent of EBA, ESMA and FSA. Their role & the legal status
• Data protection, security and Privacy issues - the new directive & consequences in practice
• The IT tool for legal and compliance risks - a substantial input from outside
• Whistleblowing, transparency and accountability issues in the financial sector - the consequences, updates, experience & reflections that need to be accommodated.
• Best practices guidelines - a new role of oversight. The centralised and decentralized functions
• The optimal scope of compliance functions for your organisation - The what and the why
• Oversight requirements and expectations of the compliance function