Session Description:

In today’s dynamic risk landscape, security and risk management shouldn’t just be seen as operational necessities, but rather a key part of your organization’s overall strategy. This session will explore how aligning controls, culture, and leadership can strengthen your organization’s risk posture and drive long-term value. We’ll also dive into insider threats—an often underestimated but increasingly significant risk area—and how organizations can proactively address them without compromising trust or culture. Additionally, we’ll explore how these core elements intersect with broader themes such as cybersecurity, third-party risk management, and operational resilience—emphasizing the need for a cohesive, enterprise-wide approach to managing risk.

Speaker Profile:

Dishank Rustogi

Dishank is the National Leader for Cyber Risk Management and Transformation in BDO Canada’s Consulting Practice. He brings over 15 years of experience delivering cybersecurity risk management, third-party assessments, and data protection services and is known for his excellence in service delivery across multiple sectors including Financial Services, Not-for-Profit, Technology, Retail, Public, Energy, Power, and Utilities.

Dishank has extensive experience in building enterprise information/cyber security programs including the definition of security requirements for end-to-end business processes to meet compliance requirements, including PCI, Sarbanes Oxley Service Organization Controls (SOC) Reports, NIST CSF, ISO 27001:2013, ISO27001:2022, NIST 800-37, CIS v8, Baseline Cybersecurity Controls. Dishank has helped organizations build vendor risk management programs, identifying critical vendors and performing security risk assessments for the organization’s vendors.

Winnie Phung

Winnie is a seasoned risk professional with over 6 years of experience in IT audit and more than 9 years in the financial services industry.

As a Senior Manager at BDO Canada, Winnie specializes in Third Party Assurance (TPA), leading SOC 1, SOC 2, and ISO 27001 engagements. She partners with clients across financial services, fintech, and other technology-driven sectors to deliver tailored assurance solutions that meet compliance requirements while aligning with broader business objectives.

Prior to joining BDO, Winnie held several risk management roles within the financial services sector. A Certified Public Accountant (CPA), she is known for her collaborative leadership approach and is passionate about mentoring emerging professionals.

Tosh Mathur

Tosh has over 15 years of experience in IT risk, compliance, and assurance, and supports organizations in navigating complex regulatory requirements and digital transformation.

As a Senior Manager at BDO, Tosh has led a wide range of TPA engagements, including SOC 2, CSAE 3416, SOC 2+ (ISO 27001, HIPAA), and Microsoft SSPA assessments, across sectors such as financial services, public sector, and emerging tech. His strength lies in designing scalable, resilient, and business-aligned control environments.

He holds an MBA, a Masters in Information Systems, and is a Certified Information Systems Auditor (CISA). Known for his collaborative approach, Tosh also mentors emerging professionals and contributes to innovation in audit and assurance practices.

Benjamin Akanoh

Benjamin is a detail-oriented IT Auditor with a strong background in information systems and risk management. With over 5 years of experience in auditing IT processes, infrastructure, and compliance frameworks, Benjamin has worked with organizations across diverse sectors to strengthen internal controls and ensure alignment with regulatory standards such as SOC, and ISO.

A Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), and Certified in Risk and Information Systems Control (CRISC), Benjamin brings a collaborative mindset and a commitment to continuous improvement in today's rapidly evolving tech landscape.

Charlene Wetherill

Charlene is a risk compliance expert and leader with over nine years of experience driving risk advisory and assurance excellence.

As a Senior Manager at BDO, she leads complex Third Party Assurance engagements—including SOC 1, SOC 2 and ISO audits—guiding organizations through the evolving landscape of compliance and cybersecurity. She has delivered trusted insights across global environments, and is a Certified Information Systems Auditor (CISA).

Charlene also trains and mentors rising professionals and champions the integration of innovative in audit processes to shape the future of digital risk management.

CPE: 4.0 Hrs

Please Note:  There is a cancellation policy in effect