Wednesday, April 28, 2010
10:00 am - 6:00 pm	REGISTRATION OPEN
10:00 am - 12:00 pm	PRE-FORUM WORKSHOP (Included in Registration Fee) ACH Breach Scenario - What Do You Do? Corporate Account Hijacking: A Table Top Exercise Account hijacking, either via ACH or wire, has become an increasing problem for banks and their small business customers. In this table top exercise, participants will be presented with an ACH hijacking scenario and asked to step through the incident report process. Gain: A better understanding of the malicious software and criminal supply chain behind the exploits. A run-through of how ACH operating rules and UCC apply. Recommendations on how to better protect your bank and your business customers from hijackings. Landy Dutton, Operational Risk Manager, FirstBank Holly Ford, Senior Vice President-Risk Management, Bank of Marin Doug Johnson, Vice President and Senior Advisor, Risk Management Policy, American Bankers Association Bill Nelson, President and CEO, FS-ISAC
1:00 pm - 2:30 pm	OPENING GENERAL SESSION 1:00 - 1:30 pm ECONOMIC OUTLOOK James Chessen, Chief Economist, American Bankers Association   1:30 - 2:30 pm REGULATORY HOT BUTTONS PANEL - NEW EXAM FOCUS: BE PREPARED, NOT SURPRISED   Moderator: Mary Frances Monroe, Vice President, Financial Institution Policy & Regulatory Affairs, American Bankers Association Panelists: Steven D. Fritts, Associate Director, Risk Management Policy, FDIC Art Goodhand, Deputy Director, OTS Southeast Region Sabeth Siddique, Assistant Director for Credit Risk, Board of Governors of the Federal Reserve System Mark L. O'Dell, Deputy Comptroller, Operational Risk, OCC
2:45 pm - 4:00 pm	CONCURRENT SESSIONS (3) 1. REMOTE DEPOSIT CAPTURE Understanding the new channels and regulatory expectations   John G. Feldman Jr. , Senior Vice President; Business Transformation Exec., Consumer Deposits-Admin, Bank of America Leton L. Harding, Executive Vice President, The First Bank & Trust Company   2.  RISK AWARENESS DIALOGUE In this dialogue session, our moderator, audience, and panel of successful risk managers from banks both large and small will engage in a directed conversation about risk awareness and risk culture.  Our discussion will focus on: The importance of risk awareness and risk culture to the risk management program and to the organization; Practical ideas, tools and resources to create or enhance risk awareness and foster a strong risk culture throughout the organization as well as with the board, customers, business partners and other stakeholders; How to overcome some common risk program.   Jim Bedsole, CRCM, CBA, CFSA, Executive Vice President/Chief Risk Officer, Tidelands Bank Ana Foster, Vice President, Risk and Compliance Manager, Cambridge Trust Company Aurelija Jucaitis, MBA, CMA, Vice President, Operational Risk Team Lead, KeyBank NA Ann Marie Tarantino, CRCM, CRP, Vice President, Bank of Smithtown   3. CURRENT TECHNIQUES AND CHALLENGES IN CAPITAL MODELING (for banks $20B+)   Discussion of current challenges and different approaches for addressing: Combining the four elements of the Advanced Measurement Approach Regulators' guidance Model risk Anupam Sahay, Director, Risk Models & Operational Risk, KeyBank, NA   I-Sing Fan, Quantitative Modeling, PNC Financial Services Group
4:15 pm - 5:30 pm	CONCURRENT SESSIONS (3) 1.   PCI COMPLIANCE Is PCI Compliance enough to keep a company secure? Are the standards helpful and necessary? New guidelines to be issued this summer will likely address end-to-end encryption, tokenization and virtualization technologies with the emphasis on practical guidelines you can use immediately.   Eddie Ho, Senior Vice President and CIO, OmniAmerican Bank Nathan Johns, Crowe Horwath, LLP    2.  AMA—CURRENT PRACTICES AND REGULATORS' EXPECTATIONS  (for Banks $20B+) AMA Implementation update: internal data external data scenario analysis BEICF Victoria Garrity, Senior Quantitative Analyst, Federal Reserve Bank of Boston Mark L. O'Dell, Deputy Comptroller, Operational RIsk, OCC   3.  ANATOMY OF A BANK FAILURE:  LESSONS LEARNED AT THE SCHOOL OF HARD KNOCKS (for Community Banks) The basis for the session will be several of the FDIC Inspector General's Office Material Loss Analysis reports that have followed some of the recent bank failures.  We'll examine database of external risk loss events – case studies, key triggers, contributing factors, management responses, lessons learned   Jim Bedsole, CRCM, CBA, CFSA, Executive Vice President/Chief Risk Officer, Tidelands Bank Rita Silverstein, Product Management. Algorithmics
5:30 pm - 6:30 pm	OPENING RECEPTION IN THE MARKETPLACE
Thursday, April 29, 2010
7:00 am - 5:30 pm	REGISTRATION OPEN
7:00 am - 8:00 am	POWER BREAKFAST Next Generation Credit Risk Analytics Effective credit risk analysis is a critical business issue facing financial institutions. Many banks recognize that credit models have been compromised and are looking at alternative approaches. Credit risk analysis must move substantially beyond current capabilities.     Gordon Burnes, Vice President, OpenPages, Inc. Vikas Krishna, Senior Technical Staff Member and Manager, IBM Steve Smeltzer, Practice Area Leader, Risk Management, IBM
8:00 am - 9:00 am	GENERAL SESSION Perspective on the Current Risk Environment   Mark W. Olson, Co-Chairman. Corporate Risk Advisors LLC and former Federal Reserve Board Governor and former Chairman of the Public Company Accounting Oversight Board will discuss the impact of regulatory and market changes on risk management and governance, as wel as the opportunities and challenges of the new business models and risk environment.   Mark W. Olson, Co-Chairman, Corporate Risk Advisors LLC
9:15 am - 10:15 am	CONCURRENT SESSIONS (3) 1.  Insidious - How Trusted Employees Steal Millions - Combating Insider Theft Why is employee fraud so hard to stop?  We'll look at real-world fraud schemes that generate significant losses, send customers fleeing, and damage reputations for years and learn what banks can do to address the problem?   Shirley W. Inscoe, Director of Financial Services Solutions, Memento, Inc.   2.  Managing the Corporate Insurance Function - Insurance Risk Management 101 (for Community Banks) These hands on session will review all the fundamentals.  We'll look at: ·         How to buy insurance ·         Broker / underwriter selections ·         What is a bond ·         New World Acronyms And you'll take home action steps and sample RFPs and policies & procedures   Roger A. Haynes, Executive Vice President, Practice Leader , WGA Financial Risks, William Gallagher Associates Insurance Brokers, Inc    3.  Risk Tolerance – How to Articulate Your Risk Appetite How to measure – common sense measurement people can use How to report Aligning company strategy to risk appetite Linda A. Grandstaff, Chief Operational Risk Officer and Chief Bank Secrecy Act Officer and Executive Vice President, KeyBank, NA
10:15 am - 10:45 am	BREAK IN THE MARKETPLACE
10:45 am - 12:00 pm	CONCURRENT SESSIONS (3) 1. Cloud Computing Best Practices Questions to ask to balance risks and business benefits 2. Dialogue on the Value of Scenario Analysis (for banks $20b+ assets) How can banks get value from scenario analyses for: capital estimation preparing for rare events Richard L. Campbell, Operational Risk Analytics & Reporting, Wachovia Corporation - A Wells Fargo Company Robert Cornwell, Vice President, Wachovia Corporation – A Wells Fargo Company Alison I. Urbina, Vice President, Corporate Operational Risk Management, Northern Trust   3.  ACH & Cash Management Issues (for Community Banks) Understanding & communicating risk Components of ACH Risk Management - credit side - operations customer education marketing Prevention & incident response – best practices   Leesa Blazic, CIA, AAP, Vice President & Director - Risk Administration, Treasury Managements Services, Comerica Bank Holly Ford, Vice President, Risk Management, Bank of Marin
12:00 pm - 1:00 pm	BANKERS ROUNDTABLE PEER GROUP LUNCHEON and facilitated dialogue session - an informal opportunity to share thoughts, ideas and concerns.   Tables will be labeled by topic - you can choose which topic you are most interested in and go to that area of the room to meet with other colleagues interested in the same topic - a great networking opportunity and learning experience. Topics will include: ACH, Risk Awareness, Insider Threats
1:00 pm - 1:45 pm	GENERAL SESSION Creative Risk Mitigation – Optimizing Decisions & Managing Judgement Risk Poor decisions and reckless risk taking have cost the global economy trillions in losses and led to an unprecedented number of bankruptcies, home foreclosures and job losses. "Judgment risk" is an area of risk management that is often neglected and one that most organizations would prefer to ignore.  Looking at human decision making. our speaker will discuss o Judgment biases and the key risk factors in the decision making process o The role risk appetite plays in catastrophic loss o Strategies to help mitigate judgment risk   Research shows that everybody, even the best managers and executives, are susceptible to judgment biases. In most cases we do not even realize they exist. Like having spinach in your teeth, you don't know it's there until someone points it out or you see it yourself in the mirror. As a result of attending the presentation, you will learn how to: ·         Improve capabilities in strategic planning and implementation ·         Think objectively when weighing options ·         Identify judgment biases in your own decision making and in others ·         Think twice before repeating the same mistakes over and over again   Tyler D. Nunnally, Founder/CEO, UPSIDE RISK
1:45 pm - 2:15 pm	DESSERT IN THE MARKETPLACE
2:15 pm - 3:15 pm	CONCURRENT SESSIONS (3) 1.  Internal Policies - Social Networking Risks and Policies Establishing acceptable use policies for employee social networking, cell phones, wireless computing and Internet Polices   Steven B. Adler, CIPP, IBM Data Governance Solutions Sidney F. (Chip) Corbett, First Vice President, Hoyne Savings Bank Dean A. Trout, Senior Vice President, Information Systems, North Shore Bank     2.  Demand Deposit Risk Management:  The Next Magnificent Opportunity When bankers discuss risk management in the DDA space, the conversation usually turns to branch security, major catastrophe recovery, forged checks, employee theft and other fraud prevention. As well, most lending managers view the branch network only as a channel for acquiring new loan/credit customers.   Yet the application of even the most basic lending risk management techniques to the DDA space—that is, in the evaluation of a checking account applicant or account holder—can have a profound impact on both profitability and customer loyalty. In the face of a changing economy and tougher regulatory/legislative scrutiny, DDA risk has become more important than ever before. Losses in the DDA space can no longer be considered simply the cost of doing business.   In this session, we will present a framework for approaching DDA risk management with analytical rigor. The discussion will cover risk management best practices across the lifecycle of the DDA account, as well as a case study discussion demonstrating the power of traditional lending risk management approaches when applied to the DDA space. Ezra D. Becker, Director, Consulting & Strategy--Financial Services, TransUnion, LLC   3.  Integration of Operational and Compliance Risk Management (for banks $20B+ in assets) Leveraging risk assessment platform to link risks Streamline assessment process Achieve seamless view of risk landscape for organization Breaking Down Silos  - leverage operational risk management to improve performance in other risk management Improve collaboration between business units James E. Sproull, Jr., Senior Vice President, Chief Operational Risk Officer, SunTrust Bank
3:30 pm - 4:30 pm	CONCURRENT SESSIONS (3) 1.    Doing More With Less - Leveraging your investment in existing technologies to fight fraud ·         Demonstrating how banks can leverage their existing report writing capabilities to improve their fraud detection programs ·         Maximizing vendor relationships to receive additional services without a large increase in costs   Joe Saling, Senior Vice President/CIO, Stoneham Bank Deanna M. Wachsmuth, CISA, Regional Director-New England, Sheshunoff Consulting   2.  Loss Data Collection (for Community and Mid-Size Banks ) – Improve the use and effectiveness of loss data; – What data is helpful – Measurement tools for Community & Mid-Size Banks - Benchmarking   Jonathan Davies, Managing Director, The Americas, RiskBusiness Gordon M. Burnes, Vice President, Marketing, OpenPages, Inc.   3.  Loss Data Collection (for banks $20B+ assets) – Improve the use and effectiveness of loss data expanding beyond Basel requirements   MaryAnn DiPinto, Vice President, Senior Operational Risk Analyst, Union Bank of California, NA Rosse Barrantes, Vice President, Operational Risk Strategy and Analysis, SunTrust Bank
4:45 pm - 5:45 pm	CONCURRENT SESSIONS (3) 1.  Holistic Penetration Testing Web Application penetration testing: External penetration testing: Cost Effective Managed Security Solutions Social Engineering Identifying and Assessing a Managed Security Services   Provider Charles Henderson, Practice Manager, Application Security, Trustwave - Spider Labs Terence McCarthy, Business Development, Trstwave - Spider Labs   2. Mobile Banking: Developing a Strategy & Making It Work How are mobile financial services different from online banking and payments? ·         How do you make the business case for a mobile program? ·         Should medium and community banks offer mobile financial services? What qualities are important in a mobile technology vendor? ·         How do you get your clients to use the service? ·         What are the options for community banks? ·         What new technology is on the horizon and how should that integrate into your long term mobile strategy?   Matthew Friend, Principal, Global Information Technology/Finance, Booz Allen Hamilton Matthew Harper, CISM, CISA, CISSP, Vice President, Manager - Client Authentication, Enterprise Fraud Management, SunTrust Bank   3.  Dialogue on Improving RCSA Processes & Reporting (of interest to all bank sizes) Our speakers will review their individual programs looking at: • How to identify risks in certain areas • Methodology and Process • What do you do with data?  Sharing lessons learned from reporting to senior management And we’ll have an open discussion, on how to create a program that adds value to business line management and makes data meaningful to senior management across the organization.   Lori Loken-King,  CIA, CPA, Vice President, and Risk Manager, Union Bank of California, NA Kathy Mooney, Vice President, Risk Management, First horizon National Corporation Alison Urbina, Vice President, Corporate Operational Risk Management, Northern Trust
5:45 pm - 6:30 pm	NETWORKING RECEPTION IN THE MARKETPLACE
6:45 pm	DINE AROUNDS (Special Networking Opportunity)
Friday, April 30, 2010
7:00 am - 12:00 pm	REGISTRATION OPEN
7:00 - 8:00 am                                         8:00 - 8:45 am	POWER BREAKFAST Using the Latest Consumer Credit Risk Insights to Find Lending Opportunities After the recession and credit crisis, competitive lenders must now strategically target creditworthy consumer segments for lending opportunities while pockets of the population that may continue to deteriorate in credit quality.  This session will provide insights into how to find the right credit quality consumers within the changed environment. Topics to be covered include:  New techniques for identifying stable or improving credit-quality consumers for lending opportunities while minimizing risk exposure;        Insights into how consumer credit quality and consumer credit scores have changed over the last two years; Impact from recent events such as credit line decreases, mortgage restructurings and the overall credit contraction; Shifts in consumer payment behavior.   Sarah Davies, Senior Vice President, Analytics & Product Management, VantageScore Solutions, LLC   GENERAL SESSION CRO Perspective How risk management can be leveraged for strategic advantage moving forward. Understand how risk convergence can play a role in reducing unexpected outcomes and improving business performance.  Importance of ERM – building a risk framework - importance of liquidity and capital Mary Tuuk, Chief Risk Officer, Fifth Third Bancorp
9:00 am - 10:15 am	CONCURRENT SESSIONS (3) 1.  Protecting Your Bank from Targeted Threats Dissecting Zeus and Man in the Browser: Insidious Attacks Against Financial Websites   Deep understanding of Zeus : how it works, how it is propagates, how it steals money Techiques on discovering customers that have been infected by Zeus Techniques for combating Zeus and other Trojans that support Man in the Browser attacks and real-time credential theft Multifactor Authentication Laura Mather, PhD, Founder and Vice President of Product Marketing, Silver Tail Systems    2. Strengthening Liquidity Risk Management Contingency Funding Plans Stress Testing Liquidity matters Why risk management and not forecasting is the key to success. Mike Hambrick, Senior Vice President, Treasurer, Tidelands Bank Thomas D. Wren, Senior Advisor, Promontory Financial Group, LLC   3.  Managing Customer Data Across the Enterprise   Organizations that have timely access to complete and up-to-date customer information have an advantage over the competition.  Accurate customer data fosters timely decision making, customer service, efficiency, compliance with regulations, risk and performance management and examination data collection.  This session will discuss best practices around standardization of data structure, change control management, quality control review, mass data exchange decisioning and integration for efficiency and optimal results.   Dennis Maicon, Vice President - Product and Market Solutions Management, FIS
10:15 am - 10:45 am	BREAK IN THE MARKETPLACE
10:45 am - 12:00 pm	CONCURRENT SESSIONS (3) 1.  ATM Security What's the latest in ATM fraud? From card skimming and forklifts to PINs and card data being stolen from POS and pay-at-the-pump terminals, we'll address the challenges customers — and banks — are facing. Learn best practices to secure trust in your brand as well as technologies being used in other countries to thwart ATM fraud. Christopher J. Carney, Business Development, Banking Solutions, ADT Jeffrey R. Rinehart, Special Agent, DHS IP Detailer, Banking and Finance Sector 2.  Beyond E-Discovery - Records Management Best Practices Best practices  - implementation beyond e-discovery Components of a robust program Security Retention Identifying vital records Imaging Understanding the critical importance of training and auditing in implementing a successful, enforceable program.   Scott C. Baranowski, CIA, Principal & Director, Internal Audit Services, Wolf & Co., PC Kenneth W. Proctor, Managing Director, Cornerstone Advisors, Inc.   3.  Update to the FFIEC Retail Payment Systems Handbook Lin Abbott, Vice President - Operational Risk Manager and Chief Information Security Officer, Citizens Bank Donald Saxinger, Acting Chief, Technology Supervision Branch, IT Section, FDIC Division of Supervision and Consumer Protection (Invited)
Noon	FORUM ADJOURNS