Programme

Pete Williams
Continuity & Risk Assurance Manager
VODAFONE UK

Risk Governance - a practical guide in a changing environment

• Reasons for change and the drivers for implementation 
• Building the framework and training the key people
• Turning the cogs: fly the machine - problems encountered such as expectations of risk originators use of pilots
• Risk reporting - ensuring key information is available and that the process is transparent

Rudolf Wohlfahrt
Head of Finance
Administration
Processes
& ICS CC
MOBILKOM AUSTRIA

Elvira Bertow
Internal Audit
MOBILKOM AUSTRIA

From Sarbanes Oxley compliance to process and risk management as business drivers

• Future/changed compliance requirements - how to use the opportunity of a reorientation in the post SOX phase
• Business drivers and interests - how to integrate risk management and internal control system into daily business
• Case study - what were The Mobilkom Austria group experiences in implementation, solutions and lessons learnt?

Hemy Fintsy
AVP Marketing & Business development
ECtel 

Integrated view of risk and fraud

• The risk exposure dilemma
• Risk exposure management in traditional FMS
• New approaches driven by intensified competition combined with new offerings
• Presenting an holistic view of risk and credit management

Managing Revenue Assurance procedures as part of an internal audit to enhance business performance and to improve bottom-line results

• Assessing the current and future situation as well as the priorities of Revenue Assurance from a historical perspective
• Identifying, defining, monitoring and measuring the key business processes
• Detecting failures to comply with company policies and procedures
• Maintaining historic data about revenue leakage and audit evidence
• Leveraging internal control for business performance improvements

Lukas Sramek
Head Strategic Risk Management/Corporate Governance
SWISSCOM MOBILE

Realizing a risk- based approach from opportunity management to revenue maximisation to project management and to fraud management

• Turning risk into opportunity - example of an integrated approach based on risk management practices
• Setting the risk appetite and improving risk culture in a telecom company
• How to asses the risks – probability and impact on the company
• How to make smart decisions - mapping of strategic risks and opportunities
• Assurance of project success - risk management for the EURO 08 project at Swisscom
• How a risk management approach has helped to implement a convergent fraud management practice at Swisscom

Lunch

Clarifying the mission of corporate risk management

• Meeting the expectations of top management - from risk mapping to value for the company
• Embedding risk management - from creating a new process to making the existing ones work
• Relations with Sarbanes Oxley certification - clarifying purposes

Managing a risk based approach from planning to execution

• How to turn risk into opportunity - case business continuity
• Developing effective key risk performance indicators
• Assessment of risk and forecasting the effects on the enterprise
• Marketing of risk management efforts in order to generate insurance premiums savings

Developing an internal audit approach that reflects the needs of the organisation

• Maximising revenues with the internal audit function
• Integrating internal audit with control and risk self-assessment
• Identifying strengths and weaknesses within an organisation
• Enhancing the effectiveness of the operation

Improving internal audit through efficient risk assessment

• Risk based auditing - critical for corporate internal audit success   
• Back to basics - lightweight risk assessment
• More with less - improving the efficiency of the internal audit function and SOX 404 assessment

Interactive panel discussion: Effective risk assessment and management

• Challenges of managing the audit and risk management team
• Aligning internal audit with an ERM framework
• Mapping internal business processes and measuring performance effectiveness
  

End of Day One

Jump to start of Day One

Registration and coffee

Claudio Cerasoli
Senior Consultant, Enterprise Risk Management Solutions
HEWLETT-PACKARD COMPANY 

Lassi Vaisanen
Vice President, Chief Risk Officer
TELIASONERA

Experiences from a successful implementation of the Enterprise Risk Management concept

• Share of responsibilities between Chief Risk Officer, top and business management and various head office functions
• Risk management values; transparency, simplicity and business mindedness
• Scope and coverage of risk management process
• Integration between business planning and risk management
• From hard copies to dialogs
• Processing of weeks indicators
• Continuous audit of process and content – operation with business controllers and auditors

Erik Wisløff
CISA, CISM, Senior Risk Management Advisor
TELENOR

Making Enterprise Risk Management work in practice

• Goals for Enterprise Risk Management
• Drawing up, rolling out and supporting a policy framework
• Aggregating and using risk assessment results
• The role of metrics, uncertainty and volatility

Implementing Enterprise Risk Management within Telefonica Group

• Internal control based on COSO II - alignment with laws and recommendations
• Telefonica risk management model
• Corporate project for deploying risk management strategy
• Providing value to the organisation through risk management
• Lessons learnt and next steps

The changing marketplace: unlocking the power of data for better control and analytics

• Extending the usefulness of existing fraud management and revenue assurance assets
• Transforming under-exploited data into enhanced risk management and KPI’s
• Leveraging current assets for improved management of subscription fraud, dealer fraud, churn, subscriber campaigns, content provider transactions, etc.
• Addressing internal information requests faster and more accurately
• Securing a trail for audit purposes
• Uncovering the data treasures at your disposal

A risk management instrument – comprehensive data protection monitoring by self - assessment tools

• Data protection management requirements
• How to create sustainability – tools and internal control systems
• How to measure the data protection level of a company or corporate group
• Different cultures – different approach?
• The systematic approach via a self assessment audit tool
• The Deutsche Telekom group’s results and experiences

Auditing outsourced functions

• Risks associated with outsourcing, advantages and disadvantages
• Approach to the audit of an outsourced IT function
• Key issues related to an outsourcing contract
• Preparedness to manage a “remote function”
• Role of cost in the decision making
• Operational monitoring

Risks in Virtual Communities and Web Money

• Understanding the Virtual Community business model
• Understanding Web Money
• Tax and banking compliance implications
• Fraud and security issues
• Anti-cyber - laundering issues
• Cyber-terrorism issues
  

Interactive panel discussion: Optimising fraud and data management operations

• Implementing a fraud prevention strategy
• Examining the challenges of data life-cycle management and customer data protection
• What are the sources of data integrity and syntheses problems?
  

Closing remarks from the Chair and Champagne prize draw

End of conference