The global epidemic and recent data breaches such as SolarWinds and NotPetya have highlighted the importance of maintaining smooth supply chain operations and the challenges in anticipating and preventing potentially catastrophic disruptions. This is coupled with increasing regulatory pressure being placed on demonstrable risk assurance efforts, with the PRA’s consultation on Operational Resilience, EBA guidelines on outsourcing arrangements, and now MAS requirements to assess suppliers of technology vendors showing us the shape of things to come.

Studies show 85% of financial organisations have suffered a breach because of a weakness in their supply chain yet only 38% use supplier risk data and analytics in their TPRM programs. With so many organisations still struggling to find effective ways to manage the cyber risks across their entire supply chain the need has arisen for organisations to reassess the reliability and cost-efficiency of their TPRM programs and the resources that support them.

In this interactive roundtable session, we’ll be exploring:

• What lessons are we learning about identifying and mitigating potential business disruptions and risk throughout the cyber supply chain?
• Should we re-evaluate the efficiency and costs of cyber risk data and reporting and how much valid actionable intelligence it delivers for your risk remediation?, and ultimately
• How can we create more effective, scalable and compliant models for Third-Party cyber risk management across the entire ecosystem?

Roundtable Speakers

Sean O’Brien, Managing Director DVV Solutions

Sean has over 25 years’ hands-on experience of delivering IT security and GRC managed services within highly regulated industries. Sean leads the consultancy team in defining the operational and regulatory requirements required to deliver a robust program of risk assurance and third-party due diligence and remains a practicing Certified Third Party Risk Professional and Assessor.

In addition, Sean is chairman of the EMEA Best Practices Steering Committee for the Shared Assessments Program, providing a regional commercial and regulatory perspective into the development of Shared Assessments’ global standards and practices for Third Party risk frameworks and programs.

Ewen O’Brien, SVP, BlueVoyant

As Senior Vice President, Ewen leads global Enterprise sales for Third Party Cyber Risk Services. He was previously at BitSight as VP EMEA. Ewen was part of the founding team in OpenPages EMEA, the market leading Governance, Risk and Compliance solution, that was acquired by IBM in 2012. He headed up financial services, where he helped expand the business, most notably in Europe, Africa and Asia.

Stefan Ward: BA (Risk Management), MIRM  

Stefan has worked in a variety of industries but primarily Financial Services including Retail and Investment Banking, and has gained a strong knowledge and understanding of risk gained from over 30 years in the discipline. His expertise covers all facets of risk including – Financial Crime, Compliance, Financial, Operational and Credit Risk giving him a unique perspective on retail banking and the UK payments industry.

Now running his own consultancy, recent engagements have included working with the 2^nd Line of Defence and advising on its structure prior to and during a major merger, and completing a 12-month assignment as Chief Risk and Compliance Officer for the first Clearing Bank set up in the UK in 250 years – which is both wholly digital, cloud based and focused on payment resilience which involved working closely with UK Financial Services regulators.

Stefan also joined the Wiltshire and Swindon Credit Union in August 2020 and has been responsible as the Volunteer Chair of the Supervisory Committee since October 2020. He also remains an active Member of the Institute of Risk Management. Stefan grew up in the far North East of Scotland, and after a short period in the RAF, studied Risk Management at Caledonian University in Glasgow.