Menu Close

SCCE Compliance Risk Assessment and Management


12:45 PM:

2:15 PM:


Speakers:

Greg Triguba
Principal, Compliance Integrity Solutions, LLC

View Bio

Caroline McMichen
Principal, McMichen Consulting LLC and Strategic Advisor, SAI360

View Bio

Gwendolyn Hassan
Deputy Chief Compliance Officer/Counsel, Unisys

View Bio


Tuesday February 20, 2024

9:00 AM – 10:15 AM (CT)IntroductionGreg Triguba
Principal, Compliance Integrity Solutions, LLC
• Identify the expectations for and value of compliance risk assessments
• Define key terms and concepts associated with compliance risk management
• Identify the key elements of a compliance risk management cycle
• Identify key practice objectives, relationships, and frameworks that can be applied to the management of compliance risks
10:15 AM – 10:30 AM (CT)Break
10:30 AM – 11:45 AM (CT)Identification of Compliance RisksGreg Triguba
Principal, Compliance Integrity Solutions, LLC
• Identify compliance risks and define a risk universe
• Classify and group identified compliance risks and create a risk inventory
• Leverage risk identification methodologies to effectively identify and manage risk
11:45 AM – 12:45 PM (CT)Mid-Conference Break
12:45 PM – 2:00 PM (CT)Risk Appetite and ToleranceCaroline McMichen
Principal, McMichen Consulting LLC and Strategic Advisor, SAI360
• Define risk appetite and tolerance
• Understand how they are established by an organization and how they inform business strategy and objective-setting
• Apply these concepts to compliance and ethics risks, risk management, and mitigation
2:00 PM – 2:15 PM (CT)Break
2:15 PM – 3:45 PM (CT)Assessing Severity
Gwendolyn Hassan
Deputy Chief Compliance Officer/Counsel, Unisys
• Identify and define the factors that comprise risk severity
• Identify and implement different methods for assessing risk severity
• Apply techniques for assessing the severity of compliance risks to real-world scenarios
• Identify techniques for enhancing your risk assessment process using more advanced techniques

Wednesday February 21, 2024

9:00 AM – 10:30 AM (CT)Assessing Internal Controls over ComplianceCaroline McMichen
Principal, McMichen Consulting LLC and Strategic Advisor, SAI360
• Differentiate between the different types of internal controls
• Differentiate between design and operating effectiveness of internal controls
• Design and develop tests to measure the design and effectiveness of internal controls over compliance
• Differentiate between monitoring and auditing of internal controls
10:30 AM – 10:45 AM (CT)Break
10:45 AM – 12:00 PM (CT)Risk Response and MitigationGwendolyn Hassan
Deputy Chief Compliance Officer/Counsel, Unisys
• Assess whether a response is necessary based on target and actual risk
• Differentiate between preventive and detective controls over compliance
• Design an appropriate response based on the results of a compliance risk assessment
• Implement and follow up on a risk response plan
12:00 PM – 1:00 PM (CT)Mid-Conference Break
1:00 PM – 2:00 PM (CT)Supporting COSO ERM Principles with Best Practices in C&E ProgramsCaroline McMichen
Principal, McMichen Consulting LLC and Strategic Advisor, SAI360
• Discuss the principles of ERM as defined by COSO and their relationship to the requirements for an effective Compliance and Ethics program
•Identify compliance and ethics program activities and best practices that help an organization meet those objectives
2:00 PM – 2:15 PM (CT)Break
2:15 PM – 3:15 PM (CT)Continuous Improvement and Best PracticesGwendolyn Hassan
Deputy Chief Compliance Officer/Counsel, Unisys
• Identify drivers of compliance risk in your organization
• Identify and apply techniques for creating a risk-aware culture
• Apply the concepts covered in this workshop to improve the compliance risk assessment and management processes in your organization

We are actively monitoring attendance. At random times throughout this session, you will be prompted with a pop-up to confirm that you are still actively participating in the virtual session. You will not see the pop ups if you are in full screen mode or your pop-up blocker is on. In addition, make sure you are disconnected from any VPN as they can also cause interference and that you have a stable internet connection (hard line is always best).Active attendance monitoring is only required if you will be requesting external CEUs for NASBA or CLE credits. If you only need Compliance Certification Board (CCB)® CEUs, it is not required to participate in active monitoring.