Session Description:

The operational resilience session connects OSFI E 21, B 13, and Bill C 8 to actionable cyber and business resilience to enable uninterrupted operations. Learn what to strengthen now and what to measure next.

Audience: cyber, technology and risk executives and managers would benefit from this session. Practitioners in the 1st line, risk professionals in the 2nd line and internal audit in the 3rd line will all have some actionable takeaways 

Speakers:

Vivek Jassal, Partner, Cybersecurity

Vivek is a partner in KPMG's Cybersecurity Practice and serves as the Cyber Resilience Lead, specializing in helping financial institutions prepare for and respond effectively to cyber incidents. With a focus on human behaviour and culture, Vivek aims to protect against and prevent cyber incidents by designing and implementing cyber incident response plans, as well as conducting training and testing of these processes through cyber crisis simulations. He also focuses on integrating cyber resilience into financial institutions' overall enterprise risk management frameworks, developing and enhancing risk reporting practices across three lines of defence, and performing peer benchmarking. Before joining KPMG, Vivek was a Captain in the British Army, undertaking roles in bomb disposal, intelligence, and security.

Dave Knott, Executive Director, Technology Risk Consulting

Dave is an Executive Director in the Technology Risk Consulting practice at KPMG Canada. David has spent over 40 years focused on providing solutions-oriented IT security, risk, and governance services in direct support of business objectives and compliance requirements applying frameworks such as COBIT, COSO, ITIL, BS25999, and ISO 22301 / 22317. Dave has provided IT Consulting services for a wide range of industries including schedule 1 banking, power distribution companies, publicly listed companies, property management companies, and global retail organizations. Dave’s responsibilities include assisting clients in developing or enhancing their business resiliency capabilities by providing services such as Crisis Management, Business Continuity, Disaster Recovery Planning, and Pandemic Planning. Dave’s has been involved in all aspects of these services from the initial stages of a BIA, plan development and test, to working with 3rd party recovery service providers. Dave also is responsible for supporting KPMG’s internal BCM and Crisis management program.

Eugene Atangan, Executive Director, Technology Risk Consulting

Eugene is an Executive Director in the Technology Risk Consulting practice in Toronto specializing in technology, cybersecurity and third-party risk management, IT and data governance, operational resilience and IT compliance. Eugene started his career as an IT professional, focusing on IT service management, project management, network operations, strategic planning, and IT operations. He then transitioned to specialize in technology risk management, working for several large Canadian banks and financial institutions, as well as delivering governance, risk and compliance engagements to financial services firms. He has built a strong reputation for delivering excellence and quality as an industry executive and professional services consultant. Moreover, his experience in building, operationalizing and managing 1^st and 2^nd line of defence Operational, Technology, Cybersecurity and Third-Party risk teams at various financial institutions and working with regulators in Canada, US and Asia lend well to his role in helping organizations make better decisions.

Andrea McCausland, Director, Financial Risk Management & Regulatory

Andrea has over twenty years’ experience, with extensive knowledge in operational risk, compliance, resilience strategy, governance, and enterprise risk management, within top-tier financial institutions and federal regulatory bodies. She brings deep experience in strategic planning, organizational transformation, and operational resilience and oversight within highly regulated financial environments. Known for her ability to evaluate obstacles and influence multiple stakeholders for effective and successful problem solving while building strong cross-functional partnerships that foster a resilient, risk-aware culture.

Ivana Lukic-Miloloza, Senior Manager

Ivana has over a decade of experience in strategy development, program management, risk assessments, threat intelligence, and risk mitigation in supporting critical infrastructures and driving compliance and assurance initiatives across frameworks such as NIST, ISO 27001, OSFI, and CPMI-IOSCO. She has expertise in cross-framework mapping, conducting benchmarking exercises, automating reporting processes for executive oversight, and developing business continuity and disaster recovery plans to ensure organizational resilience.

Frances MacTaggart Manager, Cybersecurity

Frances is a Manager in KPMG’s Cyber Strategy and Governance practice and has dedicated her career to fostering resilience within cybersecurity. Her expertise involves combining cybersecurity, business continuity, sociocultural and emergency management considerations to create and implement methodologies that could be used to prepare and mitigate potential threats. Frances’ has assisted multiple private and public sector organizations with developing their cyber strategies, tabletop exercises, business continuity and disaster recovery capabilities, and governance models. While providing expertise to her clients, she provided the same level of expertise internally as part of KPMG Canada’s Business Continuity Team and as the National Administrator for the KPMG Emergency Notification System for 5 years.  She has applied her expertise in cyber resilience, risk and vulnerability assessments, crisis management communications, critical infrastructure assessments, business continuity, and disaster recovery across North America, Europe and Central Asia.