​​

Conference-at-a-G​lance​​​​​​​​​

​​

Download the Brochure​​The IIA’s 2017 International Conference features outstanding speakers whose shared goal is to deliver a world-class event reflective of The IIA's high standards of excellence.

The theme for the conference is “L.I.V.E. the Global Experience: Leadership. Innovation. Value. Effectiveness.” and we are focusing on delivering a program that delves into timely issues impacting the profession.

Downloadable ProgramGet a sneak peek at some of the sessions at this year’s conference from the speakers themselves. Check out our speaker previews​ now.​

Educational Streams

 

People And Relationships: Reinventing The Personality Of Internal Audit

Practice Management: Creating Innovation
And Effectiveness

Case Studies:
Auditing In Motion

Digital Dawn:
Pioneering The New Frontline

IT Auditing:
Addressing Digital Risks
And Opportunities

Risk Management:
Building New Value

Public Sector: Delivering Value For The Community

Financial Services:
Taking The Lead On
Good Governance

Social Business Engagement:
Engineering A Healthier Bottom Line

CIA Exam Review:
Prepare To Pass

 ​

The International Conference includes an exclusive Audit and Risk Committee (ARC) Forum. Learn More.​​

Sunday 23 July 2017
7:00 a.m. – 8:00 a.m.​​​​​ Pre-Conference Session Registration
 
​8:00 a.m. – 12:00 p.m. Pre-Conference Workshop
 ​​​​

Workshop 2: Auditing A Risk Management Framework

​​Michael Parkinson, CIA, CRMA
Principal
Michael Parkinson Consulting
Australia

Risk management is what managers do. This does not mean, however, that they do it well or even consciously. Even when an organisation documents its risks, it does not necessarily manage them the way it says:  much risk management documentation is irrelevant to actual operations. Yet when an organisation manages its risks well, it has a competitive advantage. Whether your organisation uses ISO or COSO, the purpose is the same: identify and deal with uncertainty.

In this session, participants will:

  • Understand the advantages obtained by managing risk well.
  • Explore the relationship between governance, risk management, and assurance frameworks.
  • Discuss the essential similarities and differences between ISO 31000 and COSO ERM and the internal auditor’s role in reviewing risk management.
  • Review where to obtain evidence in support of your review and options for reporting outcomes. 

Michael Parkinson has had a career of over 40 years in internal audit, IT, and finance, primarily in the public sector. He has worked for Australian government, ACT government, and Northern Territory government organisations as an employee and a consultant. He served as CAE in three Australian government agencies over a period of 15 years. Over 19 years as a director at a Big 4 firm, Parkinson provided internal audit services to a range of organisations, including five months advising the Royal Thai Government on establishment of modern internal audit capability. He has served at national and international levels on technical committees to develop risk management standards and guidance. Parkinson served nonconsecutive terms as international vice president of ISACA and served for two years on the IS Auditing Standards Board. He is a past president and board chair of IIA-Australia and served in other leadership roles within the organisation. Parkinson has served in several volunteer leadership position for The IIA at the global level, including the International Internal Auditing Standards Board and the recent task force examining the restructure of the International Professional Practices Framework (IPPF). In 2007 he was awarded IIA-Australia’s Bob McDonald Award, the highest award bestowed in Australia. He was The IIA’s 2015 recipient of the Victor Z. Brink Award for his significant contributions to the profession over a lifetime of service. Parkinson is currently an independent member of a number of audit committees and continues to provide training and mentoring to young internal auditors.

10:00 a.m. – 10:30 a.m.​​​​​ Networking Break
 
​10:00 a.m. – 6:00 p.m. Registration
 ​​​​
​1:00 p.m. – 5:00 p.m. Pre-Conference Workshops
 ​​​​

Deanna Sullivan, CIA, CRMA
Principal
SullivanSolutions
USA

The Red Flags of Fraud — those ominous indicators that something is going on within your organisation, your department, your process. Something that might be to your detriment or that of your group. What are those indicators and what are you doing about them? Behavioural red flags of perpetrators vary depending on the fraud scheme, and IIA Standards require that we evaluate the potential for the occurrence of fraud and how the organisation manages fraud risk. Are you doing your part or are the red flags waving at you?

In this session, participants will:

  • Review theories for why good people do bad things and learn how to identify the warning signs.
  • Understand various types of red flags and how these indicators can help detect fraudulent behaviour.
  • Discover how behavioural red flags of perpetrators vary depending on the fraud scheme.
  • Identify potential red flags within your own organisation.
  • Determine methods to strengthen your organisation's control environment.

Deanna Sullivan is an internationally recognized speaker, author, and trainer, and has made it her mission to ensure education is effective and fun. She is a frequent speaker for conferences and events around the globe and conducts programs for both technical and management development. Popular topics include ethics, fraud, COSO, report writing, leadership, and communications. Sullivan is certified to teach ethics for Texas CPAs, is a Zig Ziglar Legacy Certified Trainer, and facilitates courses for The IIA’s On-Site Group Training team.​​

Registration for Workshop 2: Auditing A Risk Management Framework on Sunday, 23 July from 1:00–5:00 p.m. is now closed. However, we have added a second presentation of this workshop that still has seats available. If you wish to attend this added workshop on Sunday, 23 July, from 8:00 a.m.–12:00 noon, please click on the “REGISTER NOW” button on the top right. You may also contact our registration team at iia2017@arinex.com.au,  by calling +61 2 9265 0700, or by faxing +61 2 9267 5443 for further information.

Michael Parkinson, CIA, CRMA
Principal
Michael Parkinson Consulting
Australia

Risk management is what managers do. This does not mean, however, that they do it well or even consciously. Even when an organisation documents its risks, it does not necessarily manage them the way it says:  much risk management documentation is irrelevant to actual operations. Yet when an organisation manages its risks well, it has a competitive advantage. Whether your organisation uses ISO or COSO, the purpose is the same: identify and deal with uncertainty.

In this session, participants will:

  • Understand the advantages obtained by managing risk well.
  • Explore the relationship between governance, risk management, and assurance frameworks.
  • Discuss the essential similarities and differences between ISO 31000 and COSO ERM and the internal auditor’s role in reviewing risk management.
  • Review where to obtain evidence in support of your review and options for reporting outcomes. 

Michael Parkinson has had a career of over 40 years in internal audit, IT, and finance, primarily in the public sector. He has worked for Australian government, ACT government, and Northern Territory government organisations as an employee and a consultant. He served as CAE in three Australian government agencies over a period of 15 years. Over 19 years as a director at a Big 4 firm, Parkinson provided internal audit services to a range of organisations, including five months advising the Royal Thai Government on establishment of modern internal audit capability. He has served at national and international levels on technical committees to develop risk management standards and guidance. Parkinson served nonconsecutive terms as international vice president of ISACA and served for two years on the IS Auditing Standards Board. He is a past president and board chair of IIA-Australia and served in other leadership roles within the organisation. Parkinson has served in several volunteer leadership position for The IIA at the global level, including the International Internal Auditing Standards Board and the recent task force examining the restructure of the International Professional Practices Framework (IPPF). In 2007 he was awarded IIA-Australia’s Bob McDonald Award, the highest award bestowed in Australia. He was The IIA’s 2015 recipient of the Victor Z. Brink Award for his significant contributions to the profession over a lifetime of service. Parkinson is currently an independent member of a number of audit committees and continues to provide training and mentoring to young internal auditors.

Steve Biskie
Managing Director
High Water Advisors​
USA

It is one thing to get an audit analytics programme going, but keeping it going and making it sustainable is quite another. Doing so involves more than implementing technology; it requires making fundamental changes to the audit process as well as changing the audit culture and process. It involves knowing which characteristics require incremental measurements in both early and late stages to indicate whether you are on track for success and how to move from reporting on data to reporting on​ risk.

In this session, participants will:

  • Recognize common barriers to success and strategies to deal with them.
  • Discuss fundamental process changes and how audit leadership can support them.
  • Learn to identify and prioritize potential analytics.
  • Understand how and when to use the data you have: data profile vs. risk analysis vs. exception-based analytics.
  • Share what successful organisations do that others do not.
  • Review free guidance available from The IIA to support a well-developed analytics program.

Steve Biskie is co-founder of a consultancy firm that helps organisations improve governance, risk management, compliance (GRC), and audit processes. He specializes in transforming inefficient, outdated, and compartmentalized processes and technologies to optimize GRC and audit performance and generate tangible value. A leader in the audit and compliance space for more than 20 years, Biskie has become well-known for his work helping Fortune Global 500 organisations understand and manage the risks within complex ERP systems such as SAP and Oracle. Additionally, he is a thought leader and strategic expert on implementing high-value, sustainable analytics and continuous auditing programs. He is a popular and frequent speaker at IIA and other industry events.

Mike Jacka, CIA
Chief Creative Pilot
FPACTS
USA

Mix in one part planning, budgeting, and organising; one part development, motivation, and leadership; and one part Baby Boomers, Gen Xers, and Millennials and you begin to see the challenges managers face in the 21st Century. For internal audit, this is further complicated with the increasing demands of a wide-range of customers. In this session, participants will hear and discuss ways everyone can work with and within teams to help ensure the successful achievement of organisational goals while building, developing, and motivating those teams.

In this session, participants will:

  • Identify approaches to build stronger teams through recruitment, training, and individual development.
  • Discover how to better use existing administrative processes (reviews, meetings, etc.) in building motivated teams.
  • Understand how departmental and organisational strategies impact the ability to maintain a team’s success.
  • Identify the similarities and differences between management and leadership.

Mike Jacka is an award-winning columnist, top-rated presenter, and author known for his work with Internal Auditor magazine, including the blog “From the Mind of Mike Jacka” and the magazine’s lighter side pieces. After a 30-year career in internal audit, he is now the Chief Creative Pilot for Flying Pig Audit, Consulting, and Training Solutions (FPACTS). He is the co-author of Business Process Mapping: Improving Customer Satisfaction; Auditing Social Media: A Governance and Risk Guide; and The Marketing Strategy: A Risk and Governance Guide to Building a Brand. He also recently published Auditing Humor and Other Oxymorons.

​​Jim Pelletier​, CIA, CGAP
Vice President, Professional Solutions
The IIA
USA

Doug Anderson, CIA, CRMA
Managing Director, CAE Solutions
The IIA
USA

T​he CAE role is not getting any easier. This highly interactive session will leverage the best thinking of The IIA and your fellow CAEs to improve your performance by executing a data analytics program the right way, handling difficult interpersonal interactions with management, and improving your performance in addressing risk management with your board and management.

In this session, participants will:

  • ​Learn how to pursue a data analytics programme that will succeed.
  • Identify common pitfalls and how to avoid them.
  • Resolve challenging interpersonal relationships with management (and the board) leveraging knowledge of human behaviour, reliable techniques, and knowing when to stand strong.
  • Use the advances in risk management thinking to improve stakeholders’ understanding of risk measurement, management, mitigation, and monitoring.
  • Discuss the importance of owning the risk conversation with stakeholders and how to do it.

Jim Pelletier has more than 15 years of internal auditing experience in both the public and private sectors. In his current role, he provides direction for The IIA’s Audit Executive Center; Financial Services Audit Center; American Center for Government Auditing; Environmental, Health and Safety Audit Center; and Global and North American Advocacy. Prior to joining The IIA, Pelletier served as city auditor for Palo Alto, California, and was the chief of audits for the County of San Diego. His diverse auditing experience also includes roles at the California State University System, PETCO Animal Supplies, Inc., State Street Corporation, and General Electric. Pelletier received The IIA’s John B. Thurston Award for outstanding paper in the field of internal auditing for his article “Adding Risk Back into the Audit Process.” His new book, Collaborative Auditing, is available through The IIA’s Bookstore, powered by the Internal Audit Foundation. 

Doug Anderson joined The IIA in 2016 after serving as an assistant professor at Saginaw Valley State University. Until 2013 Anderson worked with The Dow Chemical Company for 22 years. His roles at Dow included 16 years in internal audit (9 years as CAE), a global finance director in corporate controllers supporting acquisitions, divestitures, and joint ventures, and the finance leader for the global Dow latex business. Previously he spent 10 years with PriceWaterhouseCoopers.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course gives candidates a high level introduction and overview of the topics covered with Part 3 of the CIA exam, intended to reinforce your CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive the updated Part 3 CIA Learning System self-study print and online software materials.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.

​3:00 p.m. – 3:30 p.m. Networking Break​ ​​​
Monday 24 July 2017
​7:00 a.m. – 7:00 p.m. ​Registration
​​7:00 a.m. – 8:00 a.m. ​Networking Breakfast
​​8​​:00 a.m. – 9:40 a.m.​
Chris Riddell

GS 1: The Future Is Already Here. So What About Tomorrow?​​

​​Chris Riddell
Global Futurist, Digital Evangelist, Media Commentator, Board Director
Australia

Every business is now in the business of digital and technology. The technology revolution has already happened, and the game has changed forever. Our ability to keep up with the speed of change is now the biggest challenge and poses the biggest threat for any business around the world. How will you keep up with this new era of volatility, and ensure you are maintaining relevance into the future for your customers?

In this session, participants will:

  • Learn about new and associated risks from changes occurring from the speed of change.
  • Identify emerging trends in digital and what the future may hold.
  • Discuss the impact of disruptive technology on human behaviour.
  • Explore how individuals and organisations can prepare for, embrace, and manage risk in the future business environment.

Chris Riddell is a globally sought-after futurist and award-winning keynote speaker on all things digital. He is also a renowned media commentator and global emerging trend spotter for businesses and leaders in today’s highly disrupted world. A global trailblazer, Riddell has worked for some of the largest and most successful companies and brands in our modern world. He was the first-ever Chief Digital Officer (CDO) for MARS Incorporated in Australia and New Zealand, architecting the corporate digital strategy behind brands including Whiskas, Pedigree, Wrigley, Starburst, Masterfoods, Snickers, and Maltesers. Riddell is frequently called on as a futurist, speaker, and expert commentator to give insights into consumer technology trends within traditional media. As a regular on internationally recognized prime time shows and radio programs, Riddell’s insights and expertise as a trend spotter extend far beyond the walls of the corporate world.

​9:40 a.m. – 10:20 a.m. Networking Break​
10:20 a.m. – 11:15 a.m.​ Concurrent Session Tracks​

Kathryn McLay
Senior Vice President, Logistics
Walmart U.S. Flow
Walmart Stores, Inc.
Australia

This session will outline a development pathway that you can follow to build your own leadership capability through the story of journey of McLay from her role as an internal auditor in Australia to her current role. McLay will explore the attributes of a business / departmental leader and highlight the key characteristics of the internal audit profession that can help shape you into a better leader within or outside the internal audit profession.

In this session, participants will:

  • ​Learn the definition of the practical attributes of leadership. 
  • Uncover the advantage of why internal auditors can become great leaders.
  • Address the issues that may hold internal auditors back in taking on leadership roles.
  • Gain practical insights on journey from internal auditor to business leader.
  • Build confidence in their own leadership capability.
  • Hear how to develop and lead  a team that is structured for success.

Kathryn McLay is tasked today with transforming Walmart’s supply chain to a digital organisation. Her portfolio spans supply chain operations from imports to returns; leading 6,500 associates flowing 860 million cases per annum. She’s been with Walmart since April 2015 in the role of vice president of U.S. finance and strategy, where she led the legacy strategy.  After seven years in both external and internal audit, she moved to Qantas where she was promoted to internal audit manager. In 2001 she joined Woolworths as the corporate audit manager. She was later appointed head of audit reporting to the CEO and the Audit Committee chair and shortly thereafter joined The IIA’s Board as a Director. In 2007 she was appointed a general manager for business development, as well as the President and Chairman of IIA-Australia. She also served as general manager of replenishment and the board of the ECRA, an industry board made up of retailers and suppliers.

Tania Stegemann, CIA, CCSA, CRMA
Internal Audit Executive
CIMIC
Australia

We’ve all heard it many times – the need to work smarter, harder, cheaper, faster – just to keep up in our 24/7 world. As organisations strive to stay ahead in a competitive market place, a greater emphasis is being placed on utilising agile methodologies. How does this relate to the internal audit function and how do you balance the need for structure vs. flexibility in the audit cycle?

In this session, participants will:

  • Review agile methodologies and understand how these might apply in the auditing context.
  • Develop simple yet effective ways to introduce agility into the audit cycle – from planning and execution through to communication and reporting.
  • Determine ways to build knowledge and capability in the audit team and provide an avenue for innovation and creativity.
  • Learn how to build a sustainable platform for maintaining agile practices, thus ensuring you keep pace with the business as risks and circumstances change.

Tania Stegemann has more than 25 years of experience in audit and accounting and has held senior roles in government, public accounting, and the corporate sector, spanning a variety of industries including gaming, mining, and construction. She spent 10 years working for Big 4 accounting firms. Stegemann has been involved with The IIA at the state, national, and global level for many years. She currently serves as the Victorian chapter chair as well as the Australian representative on the Committee of Research and Education Advisors (CREA), and is IIA-Australia’s representative on the Standards Australia Risk Management Committee.

Jor​ge Badillo, CIA, CGAP, CCSA, CRMA
Internal Audit Manager
SCM Minera Lumina Copper
Chile

As organisations work toward achieving greater effectiveness and efficiency, many look to joint venture (JV) and partner arrangements to achieve this goal. A well-defined framework for corporate governance, risk management, and internal control is critical to the success of the JV, including the internal audit approach to be applied. Using case study examples, this session will explore how internal audit can deliver real value-add in JV and partner arrangements, as well as provide practical insights on how to audit some of the gray areas in these arrangements.

  • ​Address the concern of JV and partnership dangers of having full risk exposure but less control.
  • Consider the JV corporate governance structure to define the internal audit approach.
  • Discuss reviewing contractual arrangements to ensure the “right” right-to-audit clauses.
  • Define protocols for auditing a JV (owner’s internal audit functions and/or JV internal audit function).
  • Recognize gray areas across audit teams of who is auditing what.
  • Review share findings and relying on each other’s audit work to get the job done.

Jorge Badillo has over 20 years of experience in audit works: internal, financial, performance, forensic, and IT. Prior to his current role, he served as internal audit manager of Sierra Gorda (KGHM – Poland & Sumitomo – Japan); before that he worked as regional internal audit manager for Kinross Minera Chile (KGC – Canada). Badillo also previously worked in the United Nations as comptroller of the International Organisation for Migration Mission in Ecuador, was postulant to the role of general comptroller of the Republic of Ecuador, as a manager for EY, and CAE for the Internal Revenue Service in Ecuador. Badillo has served The IIA at the global level as a member of the Board of Directors and on numerous committees and task forces, and serves as board chair of the Latin American Federation of Internal Auditors (FLAI). He also served a term as board chair of IIA-Ecuador.​

Nick Abrahams
Partner
Norton Rose Fulbright
Australia

Explore the potential benefits and challenges of applying Blockchain for financial and business transactions. This session will provide an overview of the opportunities for better controls and governance as well highlight some of the potentials pitfalls and risks and what impacts elements such as technology could have on the internal audit profession.

In this session, participants will:

  • Identify the various applications opportunities of Blockchain, such as financial transaction notarisations, voting systems, crowdfunding, and identity verification.
  • Review regulatory and complian​​ce challenges when operating across jurisdictions.
  • Discuss methods to regulate Blockchain to ensure safe use and adoption by users.
  • Identify key operational risks in using Blockchain.

Nick Abrahams is a digital transformation expert. He leads the Asia-Pac innovation practice for his law firm and has worked on over $3 billion of innovation transactions in the last five years. Abrahams is a co-founder of an online legal disruptor, LawPath, and wrote Digital Disruption in Australia: A guide for entrepreneurs, investors and corporates, proceeds of which have gone to Alzheimers Australia. He is past president of the Australian Communications and Media Law Association, and is the only private practice lawyer on the federal government’s Consultative Working Group on Cyber Safety. Abrahams was appointed by the NSW Finance Minister to the government’s Procurement Advisory Board and is on the Committee for Sydney’s Financial Services Knowledge Hub. He is a non-executive director for Integrated Research; a director of the Institute for Economics and Peace, a not-for-profit dedicated to researching the linkage between peace and prosperity globally; and a governor of the American Chamber of Commerce. Abrahams served as COO of Spike Networks and as a creative executive at Warner Brothers in Los Angeles where he worked on the development of popular television shows including ER and The West Wing.​

T​ichaona Zororo, CIA, CRMA, CISA, CISM, CRISC, CGEIT
Director
Enterprise Governance of IT (EGIT)
South Africa

Cybersecurity is probably the most discussed IT topic among executives, internal auditors, audit committees, and the board of directors. Neither has the topic escaped the notice of the general public at large around the world, with breaches making headlines with alarming frequency. Internal auditors can play an integral role in an organisation to ensure that cybersecurity risks are addressed appropriately.

In this session, participants will:

  • ​Discuss emerging trends in the world of cybersecurity.
  • Learn why cybersecurity is a hot issue for boards and management.
  • Review what factors may predispose an organisation as an easy target.
  • Identify elements an audit plan should include to mitigate cyber threats.
  • Exchange ideas on who is ultimately responsible for an organisation’s cybersecurity.

Tichaona Zororo has many years of in-depth experience in mainstream IT, IT auditing, IT governance, and risk across private and public sectors in Africa, Europe, and Asia. He is an advisor to a number of boards, IT, and business leaders across the globe, on the utilisation of disruptive technologies, governance, and management of enterprise IT, IT risk, cybersecurity, and IT auditing. Zororo, who is a director on ISACA’s Board of Directors and serves as president of the South Africa Chapter, has been involved in the development of numerous ISACA whitepapers and COBIT 5 publications. A renowned COBIT 5 expert, advisor, and accredited trainer, he is the first certified COBIT 5 assessor in Southern Africa.​

Bob Hirth
Chairman
COSO
USA

Developing and implementing an effective set of Enterprise Risk Management (ERM) activities can be challenging, and adapting to rapidly changing business models, new technologies, or globalisation requires any ERM programme to be agile. This session will explore the benefits applying the COSO framework in achieving this aim as well explaining the recent changes to the framework.

In this session, participants will:

  • Gain an understanding of the proposed COSO 2017 ERM framework.
  • Discuss the major changes in this new framework from the 2004 version and how they may affect internal auditing and your organisation.
  • Understand the interaction of COSO with other risk frameworks such ISO 31000.
  • Discover practical benefits of applying the new framework.

Bob Hirth has served as COSO chair since 2013. His experience includes all of COSO’s mission disciplines: ERM, internal control, and fraud deterrence. He has worked on assignments and made presentations in over 20 countries, serving more than 50 organizations and working closely with board members, C-level executives, finance and accounting personnel, and accounting firm partners and employees. Hirth worked for Protiviti and Arthur Anderson for the majority of his career. He is a recognized leader in the internal audit profession, having been inducted into The IIA’s American Hall of Distinguished Audit Practitioners in 2013. Hirth has served as a volunteer leader/committee member for The IIA and its IPPF Relook Task Force. He is currently serving on the Standing Advisory Group of the Public Company Accounting Oversight Board (PCAOB) and serves on the board of the Sustainability Accounting Standards Board.

Yi Hsin (Doris) Wang, Ph.D., CIA, CGAP, CRMA

Professor of Accountancy
National Taipei University
Taiwan

Shu-Juan Huang
Director, Senior Examination for Civil Service of Accountant and Auditor (ROC)
Department of Planning
Directorate-General of Budget
Accounting and Statistics (DGBAS) Executive
Yuan, Taiwan (ROC)

Public sector programs and projects are frequently in the spotlight, criticised for not achieving objectives, having poor performance measures, being over budget, late, or failing to deliver on expectations. Many governments have taken steps to enhance governance guidelines and requirements over programs and projects. This session will explore the steps the Taiwanese public sector has taken to improve governance and controls over programs and projects and the specific requirements of the internal audit function to achieve this aim.

In this session, participants will:

  • Understand the implementation of internal control and internal audit within Taiwan’s public sector.
  • Define large-scale public sector programs and the assurance framework required.
  • Review practical examples of auditing programs and project management.
  • Link audit activities and key performance indicators to assess project efficiency and effectiveness.
  • Discuss the application of assurance frameworks and models to monitor programme and project performance. 
  • Define the role of internal audit to increase the economy, efficiency, and effectiveness of the public sector.

Doris Wang teaches corporate governance, risk management, internal control, and internal audit. She chairs the Accounting Research and Development Foundation and is a member of IIA-Chinese Taiwan’s executive committee. She developed the internal control framework and balanced score card performance system for the university library from 2002 to 2010. In addition, Dr. Wang has been a board member of Yu Da University and First Financial Holding Corporation for more than 10 years. She is also chair of the audit committee of Transcends information.

Shu-Juan Huang is a frequent lecturer on the internal control for many government departments and agencies, and has received numerous awards and commendations as a civil servant.​

Nicola Rimmer, CIA, QIAL

General Manager, Audit Wealth
ANZ
Australia

Mark Carawan, Ph.D., CIA, QIAL, CFIIA
Chief Compliance Officer
Citigroup
USA

Naohiro Mouri, CIA, CCSA
Executive Officer
Chief Auditor
AIG
Japan

Jenitha John, CIA, QIAL
Chief Audit Executive
FirstRand Limited
South Africa

Facilitator:
Rick Magliozzi, CRMA
Managing Director
Protiviti
USA

The audit executive in the financial services realm faces many challenges as well as opportunities that shape the new risk landscape. Today’s discussion with distinguished financial services audit leaders will focus on their insights and strategic audit views of trends and challenges in the financial services industry.

In this session, participants will:

  • ​Enjoy an engaging session from global experts in financial internal auditing.
  • Discuss FinTech opportunities and financial services disruptions.
  • Explore worldwide competitive and regulatory trends. 
  • Learn about global audit trends and emerging risks at local and global levels.

Nicola Rimmer has more than 15 years’ internal audit experience, predominantly in financial services. She started her career in the UK, working in banks, life insurance companies, and the UK Regulator. Rimmer is a member of The IIA’s Financial Services Guidance Committee and is leading a project to develop guidance on auditing risk culture. She is currently working with IIA-Australia on a project to provide guidance to boards on risk culture.

Mark Carawan is responsible for independent compliance risk management across Citi, reporting to the Citigroup CEO. He was formerly the chief auditor and managing director responsible for the internal audit department, responsible for internal audit’s delivery of audit assurance on governance, risk management, and control across Citigroup globally to the board and executive management. Prior to joining Citi, Carawan was the chief internal auditor for Barclays Group where he led a major transformation of the internal audit function. Previously, he was managing partner responsible for enterprisewide assurance to wholesale financial services institutions at Deloitte (UK), engaged in various assignments involving risk management and internal control transformation, particularly as a result of regulatory requirements. Prior to joining Deloitte, Carawan was managing partner for Andersen’s global privatisation and emerging markets practice with responsibility for overseeing business activities in over 50 non-OECD countries, while also being the lead partner on a number of financial sector restructuring and individual bank rehabilitation assignments around the world. He began his professional career within the London Office of Andersen’s accountancy practice before moving into consultancy after qualification as a Chartered Accountant. Carawan serves on the board of the Chartered Institute of Internal Auditors, The IIA’s Global Board of Directors, and as chair The IIA’s Financial Services Guidance Committee.

Naohiro Mouri oversees more than 50 auditors. Previously he was with MetLife Alico Japan where he served as statutory executive officer, senior vice president, and chief auditor. Naohiro also held chief auditor positions for JP Morgan/Asia Pacific Shinsei Bank, Morgan Stanley Japan, and Deutsche Bank Japan. He started his audit career at Arthur Andersen in the U.S. Mouri has served on the Board of IIA‒Japan and The IIA’s global board in several positions, as well as serving five years as the ACIIA’s first president. Naohiro is a frequent lecturer for universities and trade organisations and co-authored a book on auditing financial institutions.

Jenitha John has held various financial and audit related roles at inter alia, Discovery Holdings Ltd, Telkom SA (Ltd), Eskom, Toyota SA, and RMBT Property Services (Marriott Group) prior to joining the FirstRand Group. She has served on many boards of both public and private sector entities, and is currently the lead independent non-executive director and the chairman of the audit committee of Tongaat Hulett, an agri-processing (sugar and starch) land management business. John is also a trustee on the FNB Pension Fund and serves on the organisation’s audit committee. She has served in volunteer leadership roles with The IIA, including the Committee of Research and Education Advisors and the Professional Practices Re-look Task Force, and currently serves on the Financial Services Guidance Committee. In 2014, John was recognized as “South Africa’s Internal Auditor of the Year.”

Rick Magliozzi is a founding member of Protiviti and serves as the FSI audit leader for the company’s East Region. Prior to joining Protiviti, Magliozzi was a leader in the audit and business advisory practice of Arthur Andersen. He has worked with many Fortune 500 financial institutions throughout his career and he is a frequent speaker at industry events regarding Sarbanes-Oxley and internal audit topics.

​Doug Anderson, CIA, CRMA
Managing Director, CAE Solutions
The IIA
USA

As stakeholders and wider community groups demand that organisations employ sustainable business practices, identifying, measuring, and reporting nonfinancial performance measures is becoming a key priority across the globe. This session will provide an overview of some of the challenges in getting nonfinancial reporting right and how the internal audit function can add value in the process.

In this session, participants will:

  • ​Understand why the nature of nonfinancial reporting is often poorly defined.
  • Identify risks associated with nonfinancial reporting.
  • Explore why the related processes within organisations are typically immature.
  • Discover the specific responsibilities internal audit can fill to help navigate these new risks.

Doug Anderson joined The IIA in 2016 after serving as an assistant professor at Saginaw Valley State University. Until 2013 Anderson worked with The Dow Chemical Company for 22 years. His roles at Dow included 16 years in internal audit (9 years as CAE), a global finance director in corporate controllers supporting acquisitions, divestitures, and joint ventures, and the finance leader for the global Dow latex business. Previously he spent 10 years with PriceWaterhouseCoopers.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course gives candidates a high level introduction and overview of the topics covered with Part 3 of the CIA exam, intended to reinforce your CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive the updated Part 3 CIA Learning System self-study print and online software materials.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.​

11:15 a.m. – 11:25 p.m.​Transition Break
​11:25 a.m. – 12:20 p.m. Concurrent Session Tracks ​​

​Petris Lapis
Director
Extollo
Australia

Experience for yourself the tools mindfulness has to help you cope when things get stressful, chaotic, or painful. This tool is so effective, it is being used by organisations ranging from the U.S. Army, to Google, to universities, to law firms, to global corporations, to doctors and even their patients. It can help you remain calm, focused, and effective in the most challenging of situations.

In this session, participants will:

  • ​Experience simple tools for coping with stressful and difficult situations.
  • Discover simple things you can do to halt stress when it starts.
  • Discover the power of simple changes in mindset that can have an enormous impact on how you feel in challenging circumstances.
  • Experience a brief mindfulness practice.

Petris Lapis has worked in the taxation division of one of the world’s largest professional organisations, in banking, been a university law lecturer specialising in advanced legal subjects for post-graduate students, an external author for CCH Australia, the director and senior trainer of a tax training organisation, a senior trainer with the world’s leading corporate mindfulness organisation, and the director and senior trainer of Petris Lapis Pty Ltd, providing non-technical skills to business. She has consulted with corporate, government, and non-profit sectors. Lapis has provided training programs for some of Australia’s largest service providers across a range of industries and coached/mentored senior business executives. She has nearly 25 years’ experience as a conference and seminar presenter. Lapis has been a committee member of a number of professional bodies and contributed to their education programmes as a presenter, author, and advisor. She has published a number of books and hundreds of papers.

Andrew Wearne, MIIA (Australia)
Chief Risk Officer, Organisational Risk and Security
Coca-Cola Amatil Ltd
Australia

​Matt Graham
Managing Partner, Assurance
PwC
Australia

​This session will explore the benefits of embedding data analytics into the audit and risk management process to enable internal auditors and their stakeholders to have a visual view of key risks, progress on audits in progress, and snapshot reporting of critical issues.

​In this session, participants will:

  • Identify ways to meeting the demand for shorter reports, real time, and faster reporting.
  • Determine the effectiveness of dashboard reporting.
  • Receive an update on tools and techniques for delivering effective visual reports.
  • Understand how digital reporting can streamline the internal audit process.

​Andrew Wearne has more 15 years of risk management experience in the financial, property, and FMCG industries. He joined CCA in 2009 responsible for the implementation of their risk management framework, which encompasses internal audit, operational risk management, business continuity management, fraud and security and in 2016, his role expanded to include treasury and insurance. Prior to that, Wearne was the global head of risk for Goodman Property Services and has held other key positions including the head of operational risk for Westpac’s Institutional Bank and as a senior manager with KPMG’s Risk Advisory practice.

​Matt Graham has worked with PwC for 22 years and is a member of PwC Australia’s Executive Board and the national managing partner of PwC Australia’s Assurance Practice. He is also a member of the PwC Global Assurance leadership team. In addition to his role as an external and internal auditor for ASX100 companies, Graham has extensive experience delivering confidence and insight to boards and senior management of some of Australia’s largest companies on risk and internal audit, transactions, accounting advice, and board and audit committee effectiveness. He is a member of the Foundation Council for Western Sydney University (WSU), advocating for young Australians who might not otherwise be afforded a tertiary education. Graham is also a member of WSU’s Risk and Audit Committee.

Syed Imran Zia, CIA
Chief Internal Auditor
Gulf Drilling International
Qatar

Business is constantly disrupted by emerging technologies and evolving business models, and internal audit must be at the forefront of these winds of change that bring risks. As organisations strive for greater efficiencies, constant business transformation is occurring in which internal audit can play a critical role, keeping change and transformation programs on track.

In this session, participants will:

  • ​Understand the impact of a changing business environment on internal audit processes.
  • Discuss the significance and consequence of change in business risks, and how to integrate these risks into an audit plan. 
  • Identify and create a plan to manage the potential control gaps during transformational business changes.
  • Develop an agile reporting process for prompt, effective communication of risks during change programmes.
  • Determine how internal audit can effectively enable the process and highlight the value that can be brought to the table.

Imran Zia is a seasoned audit professional with his internal audit experience spanning over a decade. He has worked for various multinationals, Big Four Firms and national and International corporations. Zia has hands-on experience of setting up internal audit functions for various organisations in the Middle East, and is considered a subject matter expert. He won the "Internal Audit Excellence Award" from ICAEW in 2016. Zia serves on advisory committees of various professional bodies including ACCA and ACFE.

Paul Jackson
Managing Director
Stroz Friedberg, an Aon Company
Hong Kong

​As organizations move to digital and online transactional platforms, fraudsters are working feverishly to make the most of the technology, too. Share in this discussion of current cyber fraud statistics as we drill down to specific fraud schemes such as electronic banking fraud, loan fraud, identity theft, and cybersecurity fraud. Each area’s common weaknesses will be addressed with possible preventive measures.

In this session, participants will:   

  • Explore various fraud schemes perpetrated in the cyber world.
  • Identify the weaknesses in controls that allowed the fraud schemes to occur.
  • Identify various preventive techniques to deter the discussed fraud schemes.

Paul Jackson has more than 25 years’ experience working in the financial and cybersecurity industries, law enforcement, and legal community within Asia. He has built a global reputation as a leader in digital forensics, breach investigations, crimes against financial institutions, online fraud, insider threat, and investigative eDiscovery. Prior to joining Stroz Friedberg, Jackson spent five years at JPMorgan Chase in roles including head of Asia Pacific investigations in Hong Kong before moving to New York area to head the global high tech investigations team and rebuild the forensic infrastructure, hire experts, and design policies and procedures, and the evidence management systems. He helped develop the internal capacity to combat online fraud and organised crime activities against the firm and customers as well as working on the insider threat programme. Before joining JPMorgan, Jackson held a senior position in the Hong Kong Police Force for nearly 22 years, pioneering many law enforcement techniques for digital forensics and cyber investigation/intelligence. Additionally, he developed forensic lab standards used by law enforcement throughout the world. Jackson authored and facilitated training programmes for the HK Police College in digital forensics, network forensics, online intelligence, and cybercrime investigation. He was engaged by Interpol as the training director for courses and capacity building around the Asia Pacific Region and Europe and has facilitated training for over 50 police forces.

Junichi Sakurai
Internal Audit Associate Director, General Manager
Sompo Japan Nipponkoa Insurance Inc.
Japan

Haruo Ohno
Section Manager, Internal Audit Department
Sompo Japan Nipponkoa Insurance Inc.
Japan

A large portion of IT’s budget is spent on system development projects. To remain viable, many organisations are developing or updating their technology systems at a rapid pace. To ensure IT project success, internal audit must be involved in the project process using methodologies to keep pace with the implementation of fast-moving and large-scale IT projects.

In this session, participants will:

  • ​Explore the changing landscape of an IT project: the journey from traditional IT roll outs to agile IT projects.
  • Discuss getting the proper balance between governance and control vs. speed of IT deployment.
  • Identify the critical risks and red flags in IT projects. 
  • Create a dynamic audit plan to keep pace with IT projects.

Junichi Sakurai oversees the organization’s internal audit department and plays an important role in improving the function of internal audit. His extensive career includes leadership positions in corporate marketing, corporate business planning, global business planning, commercial risk solutions, compliance, and claims service. He was instrumental in his organization’s receipt of an annual award from IIA–Japan in 2016.​​

​Haruo Ohno has more than 16 years of experience in IT audit, providing assessment of large IT development projects, cybersecurity, and IT governance. He worked for three major consulting firms (EY, IBM Business Consulting Services, and PwC Consulting) for financial institutions in the insurance, banking, and securities sectors. Ohno has served as engagement manager on a numerous IT risk advisory, internal audit, regulatory compliance, and security assessment projects.​​

​​Nick Abrahim
Acting Deputy Chief Executive Officer
NSW Taxi Council Ltd
Australia

The worldwide phenomenon that is Uber has had a major impact on established public and private transportation systems in many metropolitan areas of the world. Through the experiences of NSW taxi service, candid insights of how a long-established, successful industry has had to adapt to manage the disruption risks brought about by Uber crashing into the market will be shared.

In this session, participants will:

  • ​Define disruption risk: Can it be foreseen and does it fit in your risk framework? 
  • Debate whether these types of disruptions are Black Swans or the new business norm.
  • Analyse and risk-assess the potential impact of disruptive forces.
  • Develop a process to identify, rate, measure, and react to potential disruptive forces.
  • Learn practical steps in addressing disruption risk to make the most of change.

Nick Abrahim began his role with NSW Taxi Council in 2015, with his first introduction to the organisation in 2008 when he obtained his taxi authority to drive. Since that time he has operated his own wheelchair accessible taxi business for over 5 years. Prior to joining the NSW taxi industry, his roles included regional sales manager with Kellogg’s Australia, national account manager with GlaxoSmithKline Pharmaceuticals, district sales manager with Coca-Cola Amatil, and manager with McDonald’s Australia. Along with his knowledge of the taxi industry, Abrahim comes to the Taxi Council with expertise in operations, training and development, and a strong record of customer engagement and negotiation.

​Kim Curtain
Head of Infrastructure and Structure Finance
NSW Treasury
Australia

Aman Chand, CIA, CFSA
Chief Audit Executive
NSW Treasury
Australia

As public sector organisations transition to a commercialization of their business models, ensuring good governance Public Private Partnerships (PPPs) arrangements is critical.

In this session, participants will:

  • ​Hear an overview of the PPP landscape in the state of New South Wales (Australia).
  • Gain insight into transparency and robust governance of PPPs through effective probity. 
  • Find out how to develop frameworks to effectively monitor, measure and report on PPP performance.
  • Learn about risk and assurance over PPPs for a successful outcome.

Kim Curtain is a senior commercial and finance professional with around 20 years of experience in relation to project finance, procurement, commercial and deal advisory, contract management, management accounting and financial modelling.  This experience developed a well-rounded understanding of not only how to structure and negotiate a deal but also how to make it work in practice. With a focus on complex service enabling infrastructure projects, Curtain has a passion for social infrastructure and is focused on optimising service outcomes.

Aman Chand has more than 20 years of finance and audit leadership roles in both the public and private sectors and has held senior executive positions throughout his career spanning a variety of industries, predominantly in financial services. In his current role, he is responsible for transforming the internal audit function of NSW Treasury and is the founder and leader of CAE Network for the Public Sector. Prior to joining NSW Treasury, Chand served as the Executive Audit Manager for Commonwealth Bank of Australia for more than 10 years, specialising in consumer banking, regulatory risk, operational risk and finance.


​Karl Riem, CPA, CISA
Senior Vice President, General Auditor
Federal Reserve Bank of Minneapolis
USA

This session will explore practical and innovative approaches to effectively plan and execute your audit plan. Attendees ‎will learn about practices that have provided high value and impact when implemented effectively providing an opportunity to take away tangible solutions to apply immediately after the conference.

In this session, participants will:

  • ​Learn approaches to aligning the audit framework to the organisational strategy.
  • Develop an agile audit plan to effectively respond to emerging risks.
  • Discuss prioritising critical risk areas. 
  • Project-plan audit plans to create a snapshot of progress and areas of concern.
  • Receive insights on practical tools and methodologies to deliver quality audits with greater efficiency.

Karl Riem is responsible for providing audit coverage over the Ninth District bank activities based in Minneapolis, Minnesota (USA), and has audit responsibility for some activities conducted across the Federal Reserve System nationwide. Overall, Riem has 33 years of risk management experience consisting of leadership roles in internal audit and front line production/operational risk leadership roles. He has created several industry leading risk management processes around merger and acquisition due diligence, system conversions, emerging risks, and continuous auditing.

​​John Neil
Co-Head, Advice & Education
The Ethics Centre
Australia

Ethical decision-making in day-to-day business operations can prove to be challenging for organisations — especially internal auditors who may be privy to wider information at their workplaces. This session will explore an ethical dilemma to provide insights on the decision making processes, with the goal of helping participants make better ethical decisions.

In this session, participants will:

  • ​Define your personal ethical compass, and understand how it aligns with your organisation’s ethical culture.
  • Understand strategies and decision-making frameworks to navigate through ethical dilemmas.
  • Explore factors that impact the ability to navigate through an ethical dilemma.

John Neil is a philosopher and provided consultation services to The Ethics Centre for four years before joining it in 2012. Previously an academic, Neil consulted with a wide range of organisations and was a lecturer and researcher in business ethics and innovation at the University of Technology (UTS) Business School. Since joining The Ethics Centre, Neil has worked with corporations, government, and civil society to bring ethics into decision making. As principal consultant, he is responsible for leading major projects as well as the development of consulting, leadership, and education services, which aim to embed ethics into culture, policies, and systems, and building individuals’ ethical decision making capabilities in the workplace.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course gives candidates a high level introduction and overview of the topics covered with Part 3 of the CIA exam, intended to reinforce your CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive the updated Part 3 CIA Learning System self-study print and online software materials.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.

​​
​12:20 p.m. – 1:50 p.m. Lunch
1​:50 p.m. – 2:45 p.m. Concurrent Session Tracks

​Dominic Siow
Principal Consultant
Transformation Coach
EQ Strategist
Australia

EQ is a powerful tool that can provide internal audit professionals with the right mindset to enhance their leadership skills and job satisfaction while improving their performance and level of fulfilment at work. This session will give participants a toolkit of how to apply the essentials of EQ to better manage and sustain a high level of performance in their internal audit work.

In this session, participants will:

  • ​Understand emotional intelligence and the role it plays in leadership and high performance.Recognise the impacts of emotion in the business environment.
  • Develop and project greater self-confidence.
  • Understand and manage others' perceptions and expectations.
  • Building influence through EQ to achieve better outcomes.

Dominic Siow is an internationally recognized transformation coach, trainer, consultant, and author on the subjects of leadership, emotional intelligence, change management, project management, teamwork, customer service excellence, and self-mastery. Over the past decade, his work has impacted thousands across more than 100 organisations and 10 countries in the Asia Pacific and Middle East regions. Siow’s passion for helping bring out the best in people has resulted in his training and coaching regularly drawing high praise from participants. Prior to this present vocation, Siow was a senior operations manager at IBM and VP of product development at Grapevine Technologies.

​J. Michael Peppers, CIA, QIAL, CRMA
Chief Audit Executive
University of Texas System
USA

In repeated surveys, the fear of speaking in public often ranks higher than the fear of death. Even if you are not quite in that category, most of us know the feeling of anxiety that comes with making a presentation to clients, boards of directors, executive management, audit committees, colleagues, or even the general public. But there are simple, practical suggestions on how we can overcome these self-limiting obstacles.

In this session, participants will:

  • ​Learn techniques to help overcome fears of presenting, including the simple question of what to wear.
  • Discuss presentation structure and pacing conducive to creating a learning atmosphere.
  • Explore how to enhance learning with visual aids.
  • Find out how to deal with challenges from an audience.

Mike Peppers has enjoyed a 25-year career which began in public accounting and includes having serving as CAE at major health care and higher education institutions in Florida and Texas. He has held numerous leadership roles during his career and within the volunteer leadership of The IIA at the highest levels, currently serving on the executive committee of the Global Board of Directors and as its current senior vice chair.​

​Mark Carawan, Ph.D., CIA, QIAL, CFIIA
Chief Compliance Officer
Citigroup
USA

This session will explore the challenges of rolling out a global audit plan within organisations that have operations in all corners of the world. Using Citigroup as a case study, practical insights will be shared on the challenges and solutions to effectively audit across different locations and cultures within one organisation, which can be applied on a global or national scale.

In this session, participants will:

  • ​Understand the unique challenges and obstacles in auditing a global organisation, and achieve a strong “signal strength” of control across the world.
  • Identify ways to gain effective coverage and sufficient assurance in often compromised control environments.
  • Discuss ways to achieve compliance with both global and local requirements, making use of technology.
  • Develop an effective communication and reporting process for a widely dispersed team.
  • Learn innovative ways to leverage the COSO framework and other tools such as analytics to enable internal audit to be more effective on a global scale.

Mark Carawan is responsible for independent compliance risk management across Citi, reporting to the Citigroup CEO. He was formerly the chief auditor and managing director responsible for the internal audit department, responsible for internal audit’s delivery of audit assurance on governance, risk management, and control across Citigroup globally to the board and executive management. Prior to joining Citi, Carawan was the chief internal auditor for Barclays Group where he led a major transformation of the internal audit function. Previously, he was managing partner responsible for enterprisewide assurance to wholesale financial services institutions at Deloitte (UK), engaged in various assignments involving risk management and internal control transformation, particularly as a result of regulatory requirements. Prior to joining Deloitte, Carawan was managing partner for Andersen’s global privatisation and emerging markets practice with responsibility for overseeing business activities in over 50 non-OECD countries, while also being the lead partner on a number of financial sector restructuring and individual bank rehabilitation assignments around the world. He began his professional career within the London Office of Andersen’s accountancy practice before moving into consultancy after qualification as a Chartered Accountant. Carawan serves on the board of the Chartered Institute of Internal Auditors, The IIA’s Global Board of Directors, and as chair The IIA’s Financial Services Guidance Committee.

Glynn Austen-Brown
Partner, FSO Advisory
EY
Australia

Technology advances continue enabling the automation of business processes more quickly and cost effectively than ever before. Robotic Process Automation (RPA) is one of these disruptive technologies, and can deliver material improvements in customer experience, efficiency, and control environments. RPA and other technologies, such as Artificial Intelligence (AI), are changing the nature of work. This session will explore these automation technologies and what it means for risk management and internal auditors.

In this session, participants will:

  • Learn about RPA and how it fits into the broader landscape of automation technologies available to transform business operations.
  • Discuss how businesses have been, are currently, and are planning to using RPA to achieve key business objectives.
  • Talk about managing the impact of technology on areas such as risk management and the workforce.
  • Share ideas on what this may mean for internal audit functions.
  • Look through the technological lens, discussing a future that might join RPA and AI together.

Glynn Austen-Brown has over 16 years of experience of working with financial service organisations in London, Australia, South East Asia, and Africa. He specialises in leading strategic transformations with multinational insurers that focus on global operating models and process simplification, alignment, and automation. Austen-Brown’s area of expertise is in designing and implementing operational excellence programmes, and assisting organisations design operating models that deliver effective change. He has also delivered large scale offshoring arrangements and re-defined strategies for a number of global insurance companies.

Alistair MacGibbon
Special Adviser to the Prime Minister of Cyber Security
Department of Prime Minister & Cabinet
Australia

In today’s business environment, it would be fair to say that cybersecurity is the number one risk on the minds of organisational stakeholders. However, the dynamic nature of cybersecurity can make it challenge for stakeholders to understand the real risks associated with cybersecurity. This session will explore approaches on effectively reporting cybersecurity risk to key stakeholders.

In this session, participants will:

  • Explore how to clearly define cybersecurity risks.
  • Learn how to effectively rank threat levels.
  • Discuss best practices in articulating assurance.
  • Prepare plans for recommending actions.
  • Review the importance of presenting the facts in plain talk.

Alastair MacGibbon provides national leadership and advocacy on cybersecurity policy and the implementation of the government's cybersecurity strategy, having been appointed to the role in 2016. His role is to ensure effective partnerships between Australian governments, the private sector, nongovernmental organisations, the research community, and international partners. Working closely with the Ambassador for Cyber Issues and the Australian Cyber Security Centre Coordinator, MacGibbon sets clear objectives and priorities to government's operational cybersecurity agencies and oversees their implementation. MacGibbon was Australia's first children's eSafety commissioner, leading online safety education and protection for the country’s children and young people, and managed complaints about offensive or illegal online content. He worked for 15 years as an agent with the Australian Federal Police, including as the founding director of the Australian High Tech Crime Centre. Along with private sector roles such as senior director of trust, safety and customer support at eBay, MacGibbon was a director of the Centre for Internet Safety at the University of Canberra.

Malcolm Davis, Ph.D.
Senior Analyst, Defence Strategy and Capability
The Australian Strategic Policy Institute
Australia

Political unrest can seem another world away, but as has been the case all too frequently, in today's interconnected global marketplace, a geopolitical event anywhere in the world can affect operations locally.

In this session, participants will:

  • ​Dissect three key geopolitical risks – the rise of China and Asian security; the return of Russia and potential threats to Europe; and the polarisation (and weakening) of western liberal democracy.
  • Explore the intersection points of major power competition: the Middle East and the South China Sea.
  • Debate the diffusion of power and “hybrid warfare” in an interdependent and globalised world – the rise of the rest.
  • Learn about Australia’s challenging security calculus in an Asian century.
  • Discuss the risk of strategic shocks, black swans, and how to prepare for the unexpected.

Dr. Malcolm Davis joined ASPI in 2016, focusing on defence strategy and capability development, military technology, and the future of warfare. Prior to this he was a post-doctoral research fellow in China-Western Relations with the Faculty of Society and Design at Bond University for about four years, and he retains an honorary assistant professor position on the faculty. Dr. Davis has worked with the Department of Defence, both in Navy Headquarters in the strategy and force structure area, and with strategic policy division in the strategic policy guidance and strategic external relations and education sections for over four years. Prior to this appointment, he was a lecturer in Defence Studies with Kings College London at the Joint Services Command and Staff College in Shrivenham, UK.

Felicity McNeill, PSM
Chief Executive Officer
Organ and Tissues Authority
Australia

The nature of politics in the public sector can increase risks and create challenges in maintaining a good governance in an environment where there is political uncertainty and constant change of political direction. This session will explore that environment and provide strategies for navigating muddy waters.

In this session, participants will:

  • Identify and understand what the risk governance roadblocks are in a politically challenging environment.
  • Address the challenge of making corporate governance immune to political changes.
  • Develop a risk governance framework that engages the entire organization.
  • Explore the critical roles of internal audit, risk, and governance professionals in building and keeping good governance in the public sector.

Felicity McNeill joined Australia’s public service in 1997 and has been a leader and instigator of reforms and service improvement. Her first 12 years were spent at the Department of Finance working in roles relating to the federal budget, procurement and contracting, assets management and financial policy. After that, McNeill moved to the Department of Infrastructure, with oversight of the Australian Government’s Nation Building Roads projects in Queensland, Northern Territory, South Australia, and Western Australia. In 2010 she joined the Australian Government Department of Health, first as first assistant secretary of the Pharmaceutical Benefits Division and then as the head of the Office of Health Protection. McNeill was awarded a Public Service Medal on Australia Day 2016 in recognition of “outstanding public service in modernising and reforming the Pharmaceutical Benefits Scheme” for her achievement of saving approximately $20 billion and helping patients receive medications with without subsidy might cost in excess of $300,000 per annum. In 2016, she was appointed to her current role bringing together various networks, communities, clinical partners and government agencies to improve organ and tissue donation and transplantation rates across Australia.

​Liam Buckley​, CA
Group Head, Internal Audit
QBE Insurance Group Limited
Australia​

As financial services organisations globalise and regulation increases, providing internal audit services increases in complexity. This session will explore the role of internal audit functions in dealing with multiple regulators, some of the emerging global regulatory trends, and how internal audit functions are responding.

In this session, participants will:

  • ​Understand the complexities of entities with multiple regulators. 
  • Overview the common and not-so-common global compliance regulations that can catch you out.  
  • Explore the role of internal audit in working with multiple regulators and regulatory administrations. 
  • Discuss common themes from regulators and internal audit's response. 
  • Propose a framework for managing internal audit in a complex regulatory environment.

Liam Buckley leads a team of 80 internal auditors in 11 cities around the world that provide internal audit and assurance services to divisional and group wide boards and audit committees within the QBE Insurance Group across the 38 countries in which QBE operates. Previously with Commonwealth Bank of Australia, Macquarie Group, Vodafone, and PwC, he began his career with a predecessor firm of Deloitte. He has worked internationally for more than 25 years across Australasia, Asia, Europe, and the Americas.

Richard Chambers, CIA, QIAL, CGAP, CCSA, CRMA
President and Chief Executive Officer
The IIA
USA

Based on his new book, Trusted Advisors: Key Attributes of Outstanding Internal Auditors, Chambers reviews the top character traits of gifted practitioners who have gained the trust of stakeholders and the traits of great internal audit leaders. Based surveys and interviews of some of the profession’s most-respected CAEs, Chambers crafts a compelling message on what it takes to become a true trusted advisor.

In this session, participants will:

  • Identify the character traits most valued in trusted advisors.
  • Glean insights into becoming a trusted advisor from experiences and anecdotes shared by Fortune 500 and other top CAEs.
  • Learn the tools and techniques for enhancing the most desired and valued character traits.
  • Examine how enhancing these character traits will help your organisation.

Richard F. Chambers has more than four decades of internal audit and association management experience, mostly in leadership positions. Prior to taking the helm of The IIA in 2009, he was national practice leader in Internal Audit Advisory Services at PwC; inspector general of the Tennessee Valley Authority; deputy inspector general of the U.S. Postal Service; and director of the U.S. Army Worldwide Internal Review Organisation at the Pentagon. He currently serves on the Committee of Sponsoring Organisations of the Treadway Commission (COSO) Board of Directors; the International Integrated Reporting Council (IIRC); and The IIA Board of Directors. Previously, he served on the U.S. President’s Council on Integrity and Efficiency; the Audit Board of the City of Orlando, Fla.; The IIA Internal Audit Standards Board; and The IIA North American Board. Chambers received the Association of Government Accountants (AGA) Frank Greathouse Distinguished Leadership Award and the National Association of Black Accountants (NABA) Legacy Award. Accounting Today has named him one of the Top 100 Most Influential People in Accounting, as well as one of 10 tweeters worth following. The National Association of Corporate Directors (NACD) has named him one of the most influential leaders in corporate governance since 2013. In 2016, Chambers was honored by American City Business Journals’ Orlando Business Journal as a top CEO of the Year. Chambers authored the award-winning book, Lessons Learned on the Audit Trail, which is currently available in five languages, and recently released his second book, Trusted Advisors: Key Attributes of Outstanding Internal Auditors.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course gives candidates a high level introduction and overview of the topics covered with Part 3 of the CIA exam, intended to reinforce your CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive the updated Part 3 CIA Learning System self-study print and online software materials.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.

​​
2:45 p.m. – 3:25 p.m. Networking Break
​2:45 p.m. – 3:25 p.m.​Book Signing: Richard Chambers, CIA, QIAL, CGAP, CCSA, CRMA, President and Chief Executive Officer, The IIA, USA
Trusted Advisors: Key Attributes of Outstanding Internal Auditors
3:25 p.m. – 4:20 p.m. Concurrent Session Tracks​​ ​​

​Robert Cockerell​
Partner
KordaMentha Forensic
Australia

The interview process is an important component of the work of an internal auditor. This presentation will use video clips and interview transcripts to provide insights into the use of word analysis and changes in body behaviour to detect deception and improve the interview skills.

In this session, participants will:

  • ​Learn the importance of question formulation.
  • Define and practice active listening skills.
  • Discuss the fine art of word analysis in detecting deception.
  • Find out how changes in body behaviour can assist in detecting deception.

Robert Cockerell is a licensed investigator with more than 30 years’ experience and an expert in the investigation of complex crimes and the management of fraud prevention and detection, having conducted investigations and anti-fraud and corruption engagements around the world. He joined KordaMentha in 2010 leading the fraud investigations team and undertaking prevention reviews for organisations across a broad range of industry sectors. Holding advanced training qualifications in interview techniques, Cockerell is an expert in the detection of deception by interview and has authored critically acclaimed training programs for the CPA and The IIA. Twice presented the Chief of Commissioners’ Award for Investigative Excellence, his career both in the private and public sector is founded on successful outcomes with a full recovery of funds on the majority of his investigations. Cockerell helped design the graduate certificate in fraud investigation at La Trobe University in Melbourne, Australia.

​Corina St-Jacques
General Manager
Performance Alchemy Indonesia
Indonesia

Customer Experience (CX) is a fast growing area that is strategic to improving organisational performance. Auditors can and should play a role in ensuring that the processes and systems that underpin the CX are actually effective.

In the session, participants will:

  • Use a customer journey map to plan their audit.
  • Link poor customer experience (CX) to failed/missing internal controls.
  • Frame audit recommendations in terms of Return on Experience (RoX).

Corina St-Jacques has been helping create and build better customer and employee experiences for companies including Emirates Airline and Procter & Gamble for the last 15 years.

Yulia Gurman
Director, Internal Audit & Corporate Security
Packaging Corporation of America

USA

​Warren Stippich, CIA, CPA
Global Co-Leader, Business Risk Services
Grant Thornton LLP
USA

Many internal audit functions want to work with management and play a role in strategic initiatives, but are unsure of how to get started/get a seat at the strategic table. This session will explore the important role internal audit can play in identifying strategic risk and the value-add they can bring to the business in providing assurance over strategic risk.

In this session, participants will:

  • ​Define and identify strategic risk, and determine how to tie strategy to risk and audit.
  • Learn how to play a role in strategic initiatives and stay connected to the business.
  • Develop a framework for providing assurance over strategic risks.
  • Understand the skill set needed to audit strategic risks and how to build this within the audit team.
  • Explore techniques required for effective internal audit consulting to move the realm of strategic internal auditor.

Yulia Gurman is responsible for internal audit, internal controls and corporate security. Prior to joining PCA, she served as Vice President of Internal Audit at Retail Properties of America, Inc. (RPAI) where she established the internal audit function soon after RPAI went public, and oversaw internal controls and enterprise risk management. Gurman also served as Director of Internal Audit at OfficeMax where she managed a team responsible for operational, financial and compliance audits throughout the organisation.  She serves on the Board of Governors for the IIA’s Chicago Chapter, and serves on the Committee of Research and Education Advisors for the IIA.  She has previously spoken at SuperStrategies conferences and the American Accounting Association’s annual meeting.

Warren Stippich is the Chicago based Advisory Quality and Risk National Managing Partner for the U.S. member firm, and has more than 25 years’ experience working with multinational, entrepreneurial, and high-growth public companies, including boards of directors and audit committees. He brings experience to the business risk consulting and internal audit services areas from both the public accounting firm and industry perspectives.

​Michelle Moffatt, CIA, CISA, CA
Chief Executive Officer
Spaceship
Australia

Jessica Ellerm
Chief Executive Officer
Zuper
Australia

Rich customer experiences are built on payments innovation – Apple Pay, Alipay, and Snapcash to name a few. Being across the terminology and technology in this rapidly changing sector is crucial for the modern day internal auditor. In this session we will explore some of the future digital mobile payment technologies you and your business may encounter in the coming years, and the risks and opportunities this could present.

In this session, participants will:

  • ​Learn about digital mobile payments – how they work and what to expect in the future.
  • Discuss opportunities, risks, security, and assurance issues surrounding digital mobile payments.
  • Explore the role the internal audit function can play in the transition.

Michelle Moffatt has spent over 15 years in audit in organizations such as PwC and Barclays Bank in London. In Australia she joined Tyro, a payments company which became Australia's first tech company to obtain a full banking licence. At Tyro Moffatt successfully developed an Agile audit methodology, and met the challenge of balancing innovation and digital banking with regulation and good governance. She recently joined Spaceship, which focuses on helping millennials invest in their future, as the chief risk office developing their governance frameworks and control environment.

Jessica Ellerm recently co-founded Australian fintech startup Zuper Superannuation. She is also a fintech commentator, writing her own blog and providing guest posts for BankNXT and the fintech blog, Daily Fintech Advisers, specialising in small business banking. Prior to Zuper, Ellerm spent more than six years at payments company and small business startup bank Tyro. She is a contributor to Brett King's Breaking Banks, and has freelanced as a finance news journalist for Australia's leading online markets channel Finance News Network.

​Eric Allegakoen, CIA, CRMA, CPA, FCA, FCPA, CISA, CFE
Vice President, Finance
Head of Global Audit & Business Assurance
Adobe
USA

Abhi Pandit, CPA, CISA
Senior Director
Head of Technology Audit & Assurance
Adobe
USA

As organisations make the move to establishing their IT services in the cloud, it can expose them to new and unseen risks around their critical IT infrastructure. Taking lessons learned for Adobe’s cloud transformation program, this session will outline how to use a unified framework for auditing cloud-based technology and security risks.

In this session, participants will:

  • ​Review Adobe's transformation journey into a cloud technology company.
  • Discover how and what the key risks identified were during the move to the cloud.
  • Define the role of the internal audit function in developing a unified framework for managing cloud computing risks,
  • Explore the benefits of implementing a unified framework and other frameworks for auditing technology and security risks.
  • Examine assurance reporting on cloud-based IT services.

Abhi Pandit oversees the team that focuses on providing risk management, security compliance, audit and assurance services to Adobe’s engineering, IT, finance, and sales organisations. Prior to joining Adobe, he worked at various firms including Deloitte’s enterprise risk services group providing advisory, audit, compliance, product development, and product management services.

Eric Allegakoen has more than two decades of global experience in internal audit, ERM, and business process consulting. Prior to joining Adobe in 2001, he was at EY serving clients in the technology sector. Allegakoen currently serves on the board of directors of The IIA.

Javier Sánchez-Rico
Director, Risk Management
Telefonica, S.A.
Spain

Ana Jimenez, CIA, CRMA, CMIRM
Risk Manager
Telefonica, S.A.
Spain

Our environment and organisations are evolving rapidly through various transformation initiatives. Are we prepared to audit to the speed of risks? Should we change our mind and procedures to pace this new era? What are the main areas to focus our activities as internal auditors? This session will share the experiences Telefonica Group, a multinational telecommunications company, on the evolution of their risk management framework on adopting new trends over risk governance to deliver additional value.

In this session, participants will:

  • Assess promoting innovation and alternative approaches to enhance internal control.
  • Discuss increasing internal audit leadership.
  • Explore new possibilities for risk management applications.
  • Learn how to manage the new trends in the evolution of the risks.

Javier Sánchez-Rico has experience in internal control, internal audit, and risk management activities within several organisations. He currently heads risk management at one of the largest telecommunications companies in the world in terms of market capitalization and number of customers.  Sánchez-Rico regularly speaks at different seminars organised by IIA Spain and addressed the audience at The IIA’s 2008 International Conference in San Francisco, California, USA.​

Ana Jimenez has almost 20 years of experience at Telefonica, leading various positions in risk management, internal audit, and management control. She participated on an IIA committee as a contributor to its thought paper, Definition and Implementation of the Risk Appetite. Jimenez has spoken on panels and at forums in Europe on her topics of expertise throughout Europe and for The IIA.

​Richard Stanwix
Director, Risk Advisory Practice
Deloitte
Australia

Justin Morghem
National Crisis, Emergency & Security Manager
Jemena
Australia

Critical infrastructure resilience ensures the safe, secure, and consistent supply of essential services to communities in BAU operations, and the capability of owners and operators to prepare for, respond to and recover from major disruptions. Critical infrastructure has multiple stakeholders, so understanding the interdependencies between them, as well as commercial and regulatory requirements of each, is paramount in managing risk and continuity. Internal auditors play a critical role in validating the effectiveness of, and improvement opportunities for, key controls.

In this session, participants will:

  • Gain an overview of the importance of protecting critical infrastructure.
  • Hear about the compliance regime and risk management issues involved.
  • Learn to identify key risks and their link to strategy.
  • Get insight into risk stewardship, ownership, and associated responsibilities.
  • Identify internal audit’s plans to underpin the achievement of strategy. 
  • Define how to monitor and report key controls - the value-add that internal audit brings to the table.

Richard Stanwix has 25 years of experience as an enterprise risk and resilience specialist in government (law enforcement), private sector, and Fortune 500 and ASX 100 organisations. He currently oversees risk advisory from Victoria’s largest (ASX 100) energy infrastructure corporation - designated as “vital critical infrastructure” in the government’s resilience regime. As the manager of risk and resilience he led four departments collectively tasked with ensuring that the energy networks servicing over two million customers were risk managed, resilient, secure, and able to respond to and recover from disruptions from natural disasters and human impacts including activism, terrorism and crime. Stanwix has served state and federal government entities and a host of ASX listed corporations both in Australia and overseas. This has included consultation on the advancement of all “three lines of defence.”

Justin Morghem leads the national approach to resilience at Jemena. He also chairs the Victorian Electricity Emergency Committee, providing government, industry, and members improved situational awareness in relation to emergencies and issues affecting the sector. Previously consulting to global and domestic corporations to enhance their ability to mitigate consequences and bounce back from crises as well as withstand future shocks, Morghem utilises his experience across anti-terrorism, anti-corruption, and tactical operations as a retired detective of the Metropolitan Police in London.

Riaan Thiart
Audit Director: OM plc Head Office & GIA COO
Old Mutual Group Life
UK

Shazia Aly, CIA, CRMA
Vice President
Head of Regional Audit Asia
MetLife Insurance Limited
Australia

Mark Worthington
Chief Audit Executive
Commonwealth Bank
Australia​​

Facilitator:
Kelly-Ann McHugh, CISA
Head of Regulatory Intelligence & Enterprise Risk, Proposition
Thomson Reuters
Asia Pacific and Japan

Effective compliance is fundamental to good governance and risk management. However, each organisation faces unique challenges on this topic. The Three Lines of Defence (3LoD) model is sufficient for most, as long as it is customized. This globally influenced panel session will discuss the essential requirements in taking an integrated approach to effectively manage risk and compliance while improving business process.

In this session, participants will:

  • ​Learn to map and align the providers of assurance across the business. 
  • Understand the responsibilities, expectations, and interactions among assurance providers and the relationship among risk, compliance, control, and operations. 
  • Address the challenges of roadblocks, duplication, and reliance among the assurance functions. 
  • Explore resourcing structural models to deliver effective assurance.
  • Discuss what may be required to assure board members that all bases are covered.

Riaan Thiart has 28 years of experience in internal audit and has held roles across all spectrums of the internal audit activity, ranging from senior internal auditor to Chief Audit Executive, with audit portfolios across Africa, Europe, Latin America, the US, and the UK. As an audit director in a large, multi-national financial services organisation, he provided assurance on the effective working of the three lines of defence model, and recently represented internal audit on Old Mutual’s working committee that provided feedback on the King IV exposure draft in South Africa. Thiart has serve as IIA South Africa’s Regional Governor, Senior Vice President and Chairman of the Board.  He has served two terms on the International Internal Auditing Standards Board, and is a member of the IIA’s Professional Certifications Board.

Shazia Aly is responsible for the leadership and oversight of internal audit activities across MetLife’s Asia Region with all country internal audit leaders and regional staff reporting to her. She has more than 20 years of specialist expertise in areas across audit, governance, risk management, and consulting, and has led multidisciplinary teams of international internal audit professionals spanning diverse geographies at a local and regional level. She has also represented the Internal Audit function to board and audit committees and regulatory agencies. Her work experience has allowed her to develop a broad understanding of several European and Asian geographic, cultural and regulatory environments.  At MetLife, she also served as the chief auditor for MetLife’s European interests.

Mark Worthington joined the CBA Group as the Chief Financial Officer of the Group’s insurance business before being promoted to his current role. Previously he was a partner in the audit and advisory division of KPMG specialising in the financial services sector for five years, and spent two years as a senior manager in its London insurance department. Mark’s key responsibilities include coordinating the activities of the Group’s internal audit functions across multiple countries.  He reports directly to the Chairman of the CBA Group’s Audit Committee and has an operational reporting line to the Group CFO. His prior experience was with Tower Australia Limited, MBF Australia Limited Group, and CBA Group.

Kelly-Ann McHugh leads the growth and retention of Thomson Reuters’ suite of solutions providing compliance officers with news, analysis, and global regulatory event monitoring for banking, financial services, and insurance markets. She represents clients’ interests to the global product management teams to enhance and develop regulatory solutions, ensuring the needs of Asia are met. McHugh manages Thomson Reuters’ compliance, audit, and risk workflow solutions and leading financial regulatory change management solutions. She has nearly 10 years of experience in the risk management industry including both as a practitioner, and as a provider, she joined Thomson Reuters from Queensland University of Technology where she conducted IT audits and risk advisory services. Previously McHugh worked at Deloitte within Enterprise Risk Solutions.

​Nicola Rimmer, CIA, QIAL
General Manager, ​Audit Wealth
ANZ
Australia

Since the financial crisis, the concept of risk culture, and the importance of a “good” risk culture in organisations has increased. Some regulators now require internal audit to formally offer an opinion on risk culture, and others require Boards to assess risk culture. Other regulators are following suit. But what is risk culture? And how do you audit it?

In this session, participants will:

  • ​Examine different definitions of risk and corporate culture.
  • Explore different methods of auditing risk culture, including top-down and bottom-up approaches.
  • Determine the skills needed by internal auditors to assess and review risk culture.
  • Determine how to understand where your organisation current stands with measuring and reporting on culture. 
  • Discuss ways of providing an opinion on risk culture and how this can be used to drive appropriate organizational behaviours.
  • Share successes and lessons learned with peers.

Nicola Rimmer has more than 15 years’ internal audit experience, predominantly in financial services. She started her career in the UK, working in banks, life insurance companies, and the UK Regulator. Rimmer is a member of The IIA’s Financial Services Guidance Committee and is leading a project to develop guidance on auditing risk culture. She is currently working with IIA-Australia on a project to provide guidance to boards on risk culture.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course gives candidates a high level introduction and overview of the topics covered with Part 3 of the CIA exam, intended to reinforce your CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive the updated Part 3 CIA Learning System self-study print and online software materials.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.

​​​
​4:20 p.m. – 4:30 p.m. Transition Break
​​4:30 p.m. – 5:30 p.m.​
Jonathan Calvert

GS 2: Bend It Like FIFA!​​

Jonathan Calvert
Editor, Insight Investigations Team
The Sunday Times (UK)
UK

In one of the greatest scandals in sporting history, FIFA were caught offside with a professional foul that exposed corruption on a grand scale within this sporting body’s governing elite. Calvert burst the bubble on FIFA and tells the story of how such grand corruption can escape the normal checks and balances we rely on.

In this session, participants will:

  • ​Review the FIFA governance structure – Was it broken or part of the plan?
  • Explore the organization’s corruption culture and how was it allowed to occur.
  • Discuss how the corruption eventually uncovered.
  • Delve into the scandal investigation.
  • Learn how and what risk management and internal controls were missed.
  • Share lessons for the future and what can be learned from this.

​Jonathan Calvert is the longest serving editor of the Insight team in its 50 year history, having held the job for a decade. His first scoop was exposing a cash for questions scandal as an undercover Insight reporter in 1994. He left the Times to become investigations editor at The Observer. Since returning to The Sunday Times, Calvert has worked on a long line of famous exclusives, most recently the FIFA files investigation, for which he subsequently co-authored The Ugly Game, The Qatari Plot to Buy the World Cup, which made waves around the world. He has won numerous journalism awards and was recently named Journalist of the Year at the British Press Awards.

​5:30 p.m. – 6:10 p.m. Book Signing: Jonathan Calvert, Editor, Insight Investigations Team, The Sunday Times, UK
The Ugly Game: The Qatari Plot to Buy the World Cup
​5:30 p.m. – 7:00 p.m. Welcome Reception​​​
Tuesday 25 July 2017
​​​
​7:00 a.m. – 6:00 p.m. ​Registration
​​7:00 a.m. – 8:00 a.m. ​Networking Break
​​8​​:00 a.m. – 9:40 a.m.​
Dr. Phillipa "Pippa" Malmgren

GS 3: The Big Shift: Reading the Signals of Geopolitical Risks and Opportunities​​

Dr. Philippa Malmgren
Founder
DRPM Group
UK

She predicted the financial crisis, the slowdown in China, Trump, Brexit, the return of inflation and the rise of geopolitics. Now she'll tell us what comes next: Grexit, China's One Belt One Road, Russia's Arc of Steel, North Korea's missiles, and innovation on a scale that is hard to imagine. Pippa Malmgren, one of the world’s leading economic commentators on politics, economics, and geopolitics will share her views and insights on the tell-tale signs that signal where the world economy is going next.

In this session, participants will:

  • Learn to make sense of the big picture of the (potential) new world order.
  • Understand what immediate and future risks organisations may face in today’s dynamic global marketplace.​​
  • Discuss winners and losers — who will be in business and who may be out of business.
  • Explore how to prepare for and keep up with the impact of geopolitics and innovation​.

Dr. Pippa Malmgren specializes in explaining the economic drivers behind geopolitics. She is the author of Geopolitics for Investors, and crowdfunded her 2015 book, Signals: the Breakdown of the Social Contract and the Rise of Geopolitics, an Amazon best-seller. Dr. Malmgren participates in the British Ministry of Defence working group on global strategic trends and has written on the geopolitical stress between the U.S./NATO and both Russia and China. Through DRPM Group, she advises institutional investors worldwide about the risks not easily quantifed: politics, policy, and geopolitics. She served in the White House and on the National Economic Council as the President’s advisor on financial markets. Dr. Malmgren worked on Enron and then, after Sept. 11, 2001, she also dealt with terrorism risks to the economy on the NEC. She was the deputy head of strategy for UBS and the chief currency strategist for Bankers Trust, where she ran their asset management business in Asia. Prior to that Dr. Malmgren worked at the OECD in Paris and for the Trade Policy Research Centre in London. She has run her own consulting practice since 1999, outside her time in government. Dr. Malmgren serves on advisory boards at MIT and is part of the Manufacturing Initiative and the Advisory Board at Indiana University, and serves on the Management Committee at the Ditchley Foundation. She is also part of the Maker Movement and owns a robotics company. Dr. Malmgren is a guest anchor for CNBC, Bloomberg, and the BBC (radio and TV). She was named a Global Leader for Tomorrow by the World Economic Forum twice, served on the board of the Aspen Institute in France and was a Young Leader of the French American Foundation, and won the Intelligence Squared Debate on Robotics alongside Walter Isaacson in 2015. Dr. Malmgren has written for The International Economy, Economia, Monocle, Wired Magazine, Institutional Investor, and other publications. She is a popular lecturer speaker worldwide, receiving glowing reviews from broadcasters and publishers alike.

​9:40 a.m. – 9:50 a.m. Transition Break​​​​
​9:40 a.m. – 10:00 a.m. Book Signing: Dr Philippa Malmgren, Founder, DRPM Group, UK
Signals
​9:50 a.m. – 10:40 a.m. ​Special Interest Discussion Forum Session Tracks

​The special interest discussion forums are informal discussion opportunities for like-minded internal audit professionals to gather and network to exchange knowledge and ideas on key areas of interests within each particular foru​m. Each session will be led by a facilitator with an expert interest on the special interest topic who will get the conversation going. In the weeks prior to the conference, input from conference attendees will be sought to help shape the discussion agenda for each forum. ​

Special Interest Discussion Forum​ 1: Women in Audit

Jenitha John, CIA, QIAL
Chief Audit Executive
FirstRand Limited
South Africa

Jenitha John has held various financial and audit related roles at inter alia, Discovery Holdings Ltd, Telkom SA (Ltd), Eskom, Toyota SA, and RMBT Property Services (Marriott Group) prior to joining the FirstRand Group. She has served on many boards of both public and private sector entities, and is currently the lead independent non-executive director and the chairman of the audit committee of Tongaat Hulett, an agri-processing (sugar and starch) land management business. John is also a trustee on the FNB Pension Fund and serves on the organisation’s audit committee. She has served in volunteer leadership roles with The IIA, including the Committee of Research and Education Advisors and the Professional Practices Re-look Task Force, and currently serves on the Financial Services Guidance Committee. In 2014, John was recognized as “South Africa’s Internal Auditor of the Year.”

Special Interest Discussion Forum​ 2: Small Audit Shops

Sally-Anne Pitt, CIA, CGAP
Managing Partner
Pitt Group
Australia

Sally-Anne Pitt established her firm in 2003, specialising in complex performance auditing, audit planning, and assurance mapping and is recognised globally as an expert in internal audit quality. She has performed external quality assessments (EQAs) in more than 60 major public and private sector organisations. Pitt also works with small audit functions, providing technical support, resourcing, and advice. Prior to starting her firm, she had had a successful career as a senior executive within government, as well as working in internal audit and risk management in both the public and private sectors. Pitt is the chair of The IIA's Professional Responsibility and Ethics Committee and has presented on internal audit around the world. She has written or contributed as an author to several IIA guidance publications and wrote Internal Audit Quality: Developing a Quality Assurance and Improvement Program, published in 2014.

Special Interest Discussion Forum​ 3: Ins and Outs of Internal Audit Quality

Andrew Cox, CIA, CGAP
Manager
Quality Services, IIA Australia

Andrew Cox is a corporate governance professional with extensive global experience in governance, audit, and risk management, having worked in nearly 20 countries. He has managed internal audit functions including senior executive roles as national manager of internal audit at Centrelink and director of risk management services for the Northern Territory Government. Cox previously worked with the federal government of the United Arab Emirates on a major capacity building project to develop external audit, implement performance audit, and implement fraud control programs. He is considered a subject matter expert of internal audit quality assessment and has performed nearly 150 quality assessments in corporate and public sector organisations in Australia, Qatar, Saudi Arabia, and the United Arab Emirates. Cox has taught internal auditing and made presentations on internal auditing and risk management internationally. He recently authored Internal Audit in Australia for IIA–Australia. Cox serves as an independent member of several audit committees.

Special Interest Discussion Forum​ 4: Addressing Technology in Audit

Frank Yam
Chairman & Chief Executive Officer
Focus Strategic Group Inc. & Governor
IIA Hong Kong

Frank Yam started his career in international auditing and information security in 1984. In his current role, he focuses on providing business and technology advisory services, with a concentration on IT auditing, Sarbanes-Oxley Act compliance, internal auditing, risk management, and cybersecurity. He held management positions at KPMG and several multinational corporations, including leading international financial institutions. Yam has been an adjunct professor and part-time lecturer for universities in four countries plus Hong Kong, and frequently contributes articles to professional journals. He is a popular speaker of a variety of topics at industry events for professional organisations Including The IIA, ISACA, and ACFE, and government agencies, including the INTERPOL and the Asian Development Bank. In recent years, Yam has focused on promoting the awareness and best practices of corporate governance, IT governance, risk management and controls, fraud, as well as the COSO and COBIT frameworks, in the Asia Pacific Region. He has served in high-ranking leadership roles for organisations including ISACA, ACIIA, and ACFE, at the local and national levels. Yam has received numerous awards for his contributions to the profession, including the International Best Speaker Award by ISACA International.

Special Interest Discussion Forum​ 5: Health Sector

Karen Brady
Corporate Vice President, Audit and Chief Compliance Officer
Baptist Health South Florida
USA​​

Karen Brady has been with Baptist Health for more than 20 years, and has implemented a robust, world-class, and award winning compliance and internal audit program. Under her leadership, Baptist Health has been recognized by the Ethisphere Institute as one on the World’s Most Ethical Companies for the past six years. Brady began her career with Ernst & Young, serving in various executive positions within the hospitality industry, including controller and CAE. She has served as a volunteer leader of The IIA as a member of both the North American and Global Boards. Brady is past president of the Florida Health Care Compliance Association and serves as the chair of the Finance Committee on the Board of Riverside House, a charitable organisation.

Special Interest Discussion Forum​ 6: Getting the Most From the Revised COSO ERM and ISO 31000

Doug Anderson, CIA, CRMA
Managing Director, CAE Solutions
The IIA
USA

Doug Anderson joined The IIA in 2016 after serving as an assistant professor at Saginaw Valley State University. Until 2013 Anderson worked with The Dow Chemical Company for 22 years. His roles at Dow included 16 years in internal audit (9 years as CAE), a global finance director in corporate controllers supporting acquisitions, divestitures, and joint ventures, and the finance leader for the global Dow latex business. Previously he spent 10 years with PriceWaterhouseCoopers.

Special Interest Discussion Forum​ 7: Public Sector

Phillip Draber, CIA, CRMA, FCPA
Director, Risk & Assurance Services Centre, Edith Cowan University
Member, Public Sector Guidance Committee
IIA Australia

Stephen Horne, CIA, CGAP, CRMA
Non-executive Director, Special Adviser, and Consultant
IIA USA

Phillip Draber has been with ECU since 2001. Prior that he was director of internal audit at Murdoch University, and manager of internal audit of the Treasury Department of Western Australia. Draber gained additional audit experience with  the Building Management Authority and the Office of the Auditor General in Western Australia. He held the rank of lieutenant colonel in the Australian Army with a background in transport, movements, and logistics. Draber also held staff officer, teaching, and training roles and was involved with the implementation of risk management as the principal staff officer responsible for safety governance, risk management training, and the implementation of risk management within the Australian Army. He is a graduate of the Australian Institute of Company Directors, and has served as a member of the Audit & Risk Committee of the Southern Metropolitan Regional Council, the Fremantle City Council’s Audit & Risk Committee, and as a board member for the Returned and Services League (RSL) of Western Australia. Since 2015, Draber has been a member of The IIA’s Public Sector Guidance Committee.

Stephen Horne established himself in 2015 as a consultant and trainer in the fields of integrity services, compliance, and organisation performance improvement. For the previous decade, he held executive roles in Australia’s NSW public sector, as chief executive of the Internal Audit Bureau, a full-competition government trading enterprise with $16 million annual revenue, and assistant auditor-general in performance audit. Horne was a co-founder of the Corruption Prevention Network, and is the immediate past president of IIA–Australia and serves as global chair of The IIA’s Public Sector Guidance Committee.

Special Interest Discussion Forum​ 8: Financial Services

Nicola Rimmer, CIA, QIAL
General Manager, Audit Wealth
ANZ
Australia

Nicola Rimmer has more than 15 years’ internal audit experience, predominantly in financial services. She started her career in the UK, working in banks, life insurance companies, and the UK Regulator. Rimmer is a member of The IIA’s Financial Services Guidance Committee and is leading a project to develop guidance on auditing risk culture. She is currently working with IIA-Australia on a project to provide guidance to boards on risk culture.

Special Interest Discussion Forum​ 9: Internal Audit Opinions

J. Michael Peppers, CIA, QIAL, CRMA
Chief Audit Executive
University of Texas System
USA

Mike Peppers has enjoyed a 25-year career which began in public accounting and includes having serving as CAE at major health care and higher education institutions in Florida and Texas. He has held numerous leadership roles during his career and within the volunteer leadership of The IIA at the highest levels, currently serving on the executive committee of the Global Board of Directors and as its current senior vice chair​.

​10:40 a.m. – 11:20 a.m. Networking Break
11:20 a.m. – 12:15 p.m. Concurrent Session Tracks ​​​​​​​​​
​​​

Angela Witzany, CIA, QIAL, CRMA

Head of Internal Audit
Sparkassen Versicherung
AG Vienna Insurance Group​
Austria

Kng Hwee Tin
Executive Director, Chief Executive Officer
OCBC Wing Hang Bank (China) Limited (formerly CAE)
China

Thomas Sanglier, CIA, CRMA, CPA
Director, Internal Audit
Raytheon Company​​
USA

Facilitator:
Richard Chambers, CIA, QIAL, CGAP, CCSA, CRMA
President and Chief Executive Officer
The IIA​​
USA

This panel session will provide global insights from experienced CAEs on what it takes to build and lead a great internal audit department. Panelists will explore various internal audit models and structures that enable their teams to deliver real value for their organisations. The discussion will also focus on the people side of the equation in building talented teams and creating the right environment for effective leadership.

In this session, participants will:

  • ​Discuss developing an audit function model that works for and drives engagement across your internal team. 
  • Identify strategies to motivate and get the best from your team by creating a great team culture.
  • Explore how to win the war for talent, attracting and retaining the best internal auditors. 
  • Debate the traditional vs. non-traditional auditor.
  • Plan and develop a career progression model for internal auditors.

Angela Witzany has been an internal auditor in the insurance sector since 1997, when she developed Sparkassen Versicherung’s new internal audit function. She has served there as head of internal audit since 2001, and now has responsibility for internal audit activities in Austria and Central Eastern Europe. Further, Witzany serves as the Austrian Insurance Association’s vice president of the Committee of Internal Audit and Control. She is the 2016–2017 chair of The IIA’s Global Board of Directors and has served in numerous leadership roles for about 10 years, including the Finance Committee, Professional Guidance Advisory Council, and on the Professional Certifications Board. She also served as a board member of the European Confederation of Institutes of Internal Auditing (ECIIA) and completed a term as vice president in 2015. Witzany is a frequent speaker and moderator at internal audit conferences and has written about internal audit-related topics for a number of publications. She is a lecturer and trainer on internal auditing in the insurance industry at Johannes Kepler University Linz in Austria.

Thomas Sanglier is responsible for all internal audit risk assessments and the execution of projects. He joined Raytheon in 2010 from EY, where he was a partner in its advisory services practice. Sanglier is a frequent speaker at industry conferences on topics such as governance, risk assessment, anti-fraud and corruption, internal control, and audit leadership. He serves The IIA on a global level as a member of the Guidance Development Committee and has been published in Internal Auditor magazine.

Kng Hwee Tin has been with OCBC Bank (China) Limited since 2012, which was recently rebranded OCBC Wing Hang Bank (China) Limited. She also serves on the boards of OCBC Group companies, including OCBC Wing Hang Bank Limited (in Hong Kong), Banco OCBC Weng Hang, S.A. (in Macau) as well as OCBC Yuanshen Properties (Shanghai) Company Limited.

Richard Chambers has more than four decades of internal audit and association management experience, mostly in leadership positions. Prior to taking the helm of The IIA in 2009, he was national practice leader in Internal Audit Advisory Services at PwC; inspector general of the Tennessee Valley Authority; deputy inspector general of the U.S. Postal Service; and director of the U.S. Army Worldwide Internal Review Organisation at the Pentagon. He currently serves on the Committee of Sponsoring Organisations of the Treadway Commission (COSO) Board of Directors; the International Integrated Reporting Council (IIRC); and The IIA Board of Directors. Previously, he served on the U.S. President’s Council on Integrity and Efficiency; the Audit Board of the City of Orlando, Fla.; The IIA Internal Audit Standards Board; and The IIA North American Board. Chambers received the Association of Government Accountants (AGA) Frank Greathouse Distinguished Leadership Award and the National Association of Black Accountants (NABA) Legacy Award. Accounting Today has named him one of the Top 100 Most Influential People in Accounting, as well as one of 10 tweeters worth following. The National Association of Corporate Directors (NACD) has named him one of the most influential leaders in corporate governance since 2013. In 2016, Chambers was honored by American City Business Journals’ Orlando Business Journal as a top CEO of the Year. Chambers authored the award-winning book, Lessons Learned on the Audit Trail, which is currently available in five languages, and recently released his second book, Trusted Advisors: Key Attributes of Outstanding Internal Auditors.

Justin Pawlowski, CIA, CRMA
Manager, Audit – Governance & Assurance Services
KPMG
Germany

Process mining addresses the visualization of the as-is business process based on system data. Visualization is not about the process or process design, but visualizing actual processes as they occurred by examining chronological data, which often shows a process has deviated from a designed model over time. Applying process mining in internal auditing has vast potential — shortening timelines and saving money. This discipline is ready to expand beyond its current European borders. It is not a matter of whether process mining will be applied in the future, but a matter of when.

In this session, participants will:

  • ​Understand how process mining can revolutionize the audit of business processes.
  • Identify different use cases (e.g., as part of the internal audit of the purchase-to-pay process).
  • Learn the possibilities of visualizing process inefficiencies, control weaknesses, and control gaps.
  • Review the key success factors for applying process mining in internal auditing.
  • See how internal auditors can make a difference in deriving value-add by applying process mining.

Justin Pawlowski focuses on applying data analytics in internal auditing, challenging manual proceedings from the past to develop new ways of auditing. This includes applying the emerging discipline of process mining in internal audits of business processes. Before joining KPMG, he worked for IBM Germany in Berlin with assignments in Spain and the USA. In 2015 Pawlowski was recognized as Emerging Leader by Internal Auditor magazine, and he serves on The IIA’s IT Guidance Committee.

Roger Darvall-Stevens, CFE
National Head of Fraud & Forensic Services
RSM
Australia

Foreign bribery and corruption prosecutions around the world have exploded on the corporate and personal liability fronts with criminal action, civil penalties, and financial and reputation risk repercussions. Organisations with overseas operations or dealings including importing, exporting, using agents, or intermediaries are at risk of foreign bribery and corruption which requires the attention of your internal audit programme.

In this session, participants will:

  • Discuss the size, scope, and impact of foreign bribery and corruption.
  • Use case studies of prosecution data to exemplify the risk to companies and individuals.
  • Explore how internal audit can use case studies insights to inform detection and prevention.
  • Identify ways foreign bribery and corruption risk can be mitigated by ensuring a compliance program is in place to prevent, detect, and respond.

Roger Darvall-Stevens has over 25 years of experience in forensic investigations and forensic accounting, fraud, bribery, and corruption control including prevention, detection, response, related training, forensic IT, compliance, and corporate security. He is a licensed investigator in multiple locations across Australia and New Zealand, former police detective in the areas of fraud and counter-terrorism, and a regent emeritus board member of the Association of Certified Fraud Examiners (ACFE) global Board, as well as an authorised trainer for the CFE exam review courses in Australia, having trained and practised in advanced interview techniques. Prior to RSM, Darvall-Stevens was a partner in forensics for a Big 4 firm for 13 years. He held similar roles in the private sector and also served as a police detective. He regularly presents at international and local conferences and seminars, and authors related articles and publications.

Dan Zitting
Chief Product Officer
ACL
Canada

This interactive session will explore three case-studies of organisations using ACL systems. Audience members will have the opportunity to participate in a live-run data analytics simulation to crunch the data captured and prepare a benchmarked report for each participating audience member that ranks and relates them to other session participants.

In this session, participants will:

  • Be invited to ask questions about key points and assess their own related capabilities and competence.
  • Participate in a quantified benchmarking assessment that explores internal audit value delivery relative to peers.
  • Take away a set of KPIs on audit value delivery that may be measured and communicated to management and the audit committee on an ongoing basis.
  • Learn how to use tangible benchmarking and analytics tools and techniques with your own organisation.

Dan Zitting is dedicated to the advancement of cloud and "big data" technologies for helping corporations and governments perform better while operating with integrity, having been quoted and covered in numerous well respected national publications and broadcast channels. Prior to ACL, Zitting spent 10 years in professional services with the IT risk advisory services practice at EY and as a partner and co-founder at Linford & Company LLP, a provider of GRC consulting services. While building the firm, he developed a software platform used by clients, which led to founding Workpapers.com, the first cloud-based audit and compliance management system in the market. It was acquired by ACL in 2011. Zitting is a multiple-time winner of CPA Practice Advisor Magazine’s 40 under 40, The IIA’s Emerging Leaders, BCTIA Team of the Year, and GRC 20/20 Technology Innovation awards.

​Patricia Kordesch, CIA, CRMA
International Consultant and Director
Financial Services, Hospitality, Gaming
Singapore

Organisations face the challenge of keeping up with today’s social media platforms, which are the new normal in business. To leverage the opportunities these platforms provide while the speed of communication can expose organisations to risk at rapid rate, they must define social media policies and procedures as well as formal risk and control frameworks. Internal audit can play a material role in addressing these risks through social media auditing.

In this session, participants will:

  • ​Address risk categories for social media, including reputation risk.
  • Learn an audit approach encompassing a company's strategic objectives, code of conduct, employee behaviour, data privacy, IP, process, and IT-related controls.
  • Understand the related challenges for stakeholders such as HR and business managers along with potential solutions.
  • Identify methods to monitor and report social media risk.

Patricia Kordesch is an international audit and risk management professional with leadership and operating experience in the Three Lines of Defence. Her career spans from client coverage in international private wealth management, through operational risk management, and director/head of audit. In addition, she brings extensive project experience, through assignments in EU AML Directive and MiFID transposition projects, strategic development of AML monitoring and e-commerce platforms, and set-up of an asset manager. Kordesch worked for Deutsche Bank Group and Las Vegas Sands Corporation in global outposts, forming and leading diverse, multicultural teams across business disciplines and geographies.

​Michael Gowell
General Manager, Senior Vice President
Wolters Kluwer, TeamMate
USA

Michael Sekoni, CIA, CFSA, CISA, CPA, CFE, CGMA
Vice President & General Auditor
Corporate Audit & Advisory Services
AF Group
BCBSM Emerging Markets
USA

Leveraging insights gained from a 2016 survey of leading audit departments, this presentation will explore 10 recommendations for internal auditors to consider as they review the adequacy of their current risk assessment and audit planning processes.

In this session, participants will:

  • Learn 10 areas for possible enhancements of risk assessment and audit planning processes.
  • Understand how 2016 survey respondents are addressing each topical area.
  • Identify developing practices being implemented by select respondents.
  • Challenge organisational practices against benchmarking questions related to the 10 areas.
  • Identify specific practices to take back to enhance your risk assessment and audit planning processes.

Michael Gowell leads all aspects of the company’s global operations and is responsible for the overall product strategy. With more than 25 years of audit, audit methodology, and audit management software experience, Gowell is a leading expert on audit technology and audit management systems. As project director at PwC, he founded TeamMate in 1993, and has personally implemented TeamMate at over 300 corporations. Gowell is a frequent keynote speaker at national and international industry conferences.

Michael Sekoni directs internal audits and advisory services, ensuring that AF Group and its brands meet their business objectives. As CAE, he is responsible for developing and executing a comprehensive audit programme for the evaluation of the company’s governance, risk, and compliance. Sekoni joined AF in 1998 as a senior information systems auditor and has since served in leadership roles of progressive responsibility. Before joining AF, he worked as a research assistant to a World Bank economist and as an analyst/network coordinator at University of California, Santa Barbara. He also worked as an internal auditor for Farm Bureau Insurance.

John Delaney, CIA, CRMA
Manager, Integrated Risk Management
Royal Canadian Navy
Canada

Using a case study of the Royal Canadian Navy (RCN), this session will explore the challenges of managing risk in the public sector to ensure that "mission critical" capabilities are effectively delivered.

In this session, participants will:

  • ​Chart a course to develop an effective risk management system.
  • Adapt an established framework to meet the specific needs of an organisation.
  • Align various risk collection mechanisms with an organisation's strategic governance.
  • Employ practical techniques to communicate and support adoption of an integrated approach to risk reduction.
  • Develop productive working relationships and align the risk management work of assurance providers.

John Delaney has 26 years of combined experience in comprehensive audit, strategic planning, control self-assessment, and integrated risk management. As an experienced leader and advocate for both internal audit and risk management, Delaney shares his knowledge, experience, and ground-breaking practices through speaking engagements in Canada and the U.S.

Greg Medcraft
Chairman
Australian Securities and Investments Commission
Australia

With conduct in the financial services sector being under the spotlight in recent times, regulators are focusing their efforts on this area to ensure continued confidence in the financial system.

In this session, participants will:

  • Discuss the ways in which conduct risk matters and why.
  • Review the importance of culture in managing conduct risk.
  • Learn how ASIC is focusing on culture and conduct risk.
  • Identify techniques to manage of conflicts of interest and confidential information.

Greg Medcraft has been with ASIC since 2009 and previously served as CEO and executive director at the Australian Securitisation Forum (ASF). He spent nearly 30 years in investment banking at Société Générale in Australia, Asia, Europe and the Americas. More recently, he was the managing director and global head of securitisation, based in New York. In 2002, Medcraft co-founded the American Securitization Forum and was its chairman from 2005 until 2007 when he returned to Australia. Before joining Société Générale, he worked as a Chartered Accountant with KPMG. Medcraft was chair of the IOSCO Board from 2013 to 2016 and is member of the Standing Committee on Supervisory and Regulatory Cooperation (SRC) of the Financial Stability Board, which reports to the G20.

​Mike Jacka, CIA
Chief Creative Pilot
FPACTS
USA

Reputation risk has always been a top-five concern for executives and board members. Internal auditors are only now including this within their audit universes and as a consideration within all of their audit work. This session will include a discussion of what is meant by reputation risk, brand management, and the role of the marketing process, and how organizations can develop effective approaches to crisis management that result from adverse reputational impact.

In this session, participants will:

  • ​Discover the impact of reputation and brand management on the organization’s ability to achieve its objectives.
  • Explore the role of marketing activities in promoting and protecting organizational image.
  • Learn the role of internal audit in assuring proper mitigation of reputation, brand, and image risks.

Mike Jacka is an award-winning columnist, top-rated presenter, and author known for his work with Internal Auditor magazine, including the blog “From the Mind of Mike Jacka” and the magazine’s lighter side pieces. After a 30-year career in internal audit, he is now the Chief Creative Pilot for Flying Pig Audit, Consulting, and Training Solutions (FPACTS). He is the co-author of Business Process Mapping: Improving Customer Satisfaction; Auditing Social Media: A Governance and Risk Guide; and The Marketing Strategy: A Risk and Governance Guide to Building a Brand. He also recently published Auditing Humor and Other Oxymorons.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course offers candidates a high-level introduction and overview of the topics covered on Part 2 of the CIA exam, intended to reinforce CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive Part 2 of The IIA’s CIA Learning System self-study print and online software materials.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.

​​​​​
​12:15 p.m. – 1:40 p.m. Lunch​
1:40 p.m. – 2:35 p.m. Concurrent Session Tracks

​Christine Young, CIA
Head of Internal Audit
Kiwibank
New Zealand

There is a branding issue with the internal audit profession; we are stereotyped and carry a stigma that precedes us. To overcome this, we must create a new brand. But brands are built on people. To transform the internal audit brand, you must transform yourself to become the auditor you always wanted to be. This session features practical “how to” steps to create a successful brand and shares examples from sport, business, and entertainment celebrities.

In this session, participants will:

  • ​Explore your personal brand and question whether it is by default or design.
  • Realise that image and professional credibility go hand in hand.
  • Learn to control your destiny by investing in building your personal brand.
  • Receive strategies to master the art of networking to support your personal and career growth.
  • Share in personal learnings, tips and tricks on networking, and developing your own personal brand to supercharge your career.

Christine Young has an extensive career in governance, risk management, audit, and assurance. With a global, multicultural perspective of the world through her education and career, Young has worked for organisations, including Kiwibank, where she brought the assurance function back in-house while overseeing the bank’s largest IT transformation programme. Additionally, she served as director of risk and assurance with the Ministry of Justice, transforming the assurance function from compliance to value-add assurance, and with the Department of Building and Housing, where she established the risk and assurance function from the ground up. For her achievements, Young was a finalist for Kiwibank’s Innovator of the Year in 2016, and nominated for New Zealand Woman of Influence 2015. In 2012/13, she was awarded the “Internal Auditor of the Year of New Zealand” by IIA-New Zealand.

​Mike Jacka, CIA
Chief Creative Pilot
FPACTS
USA

The application of creativity is the cornerstone of innovation, and innovation is the cornerstone of internal audit's ability to maintain relevance into the future. This session will discuss how auditors can instill creativity within themselves and their departments while also demonstrating how that creativity can be used to develop practical innovations within the department and the organization.

In this session, participants will:

  • ​Explore the roles of creativity and innovation in all business environments.
  • Gain an understanding of why creativity is important to the profession.
  • Learn techniques that can be used in building a creative environment.
  • Learn practical applications for using innovation to improve the internal audit process.

Mike Jacka is an award-winning columnist, top-rated presenter, and author known for his work with Internal Auditor magazine, including the blog “From the Mind of Mike Jacka” and the magazine’s lighter side pieces. After a 30-year career in internal audit, he is now the Chief Creative Pilot for Flying Pig Audit, Consulting, and Training Solutions (FPACTS). He is the co-author of Business Process Mapping: Improving Customer Satisfaction; Auditing Social Media: A Governance and Risk Guide; and The Marketing Strategy: A Risk and Governance Guide to Building a Brand. He also recently published Auditing Humor and Other Oxymorons.

Frances Alvarez-Pyne, CISA
Head of Internal Audit
Department of Education and Training
Australia

Kristiina Lagerstedt
Vice President, Audit & Assurance
Sanoma
Finland

Andrew Jones
Executive General Manager, Internal Audit
Suncorp
Australia

Facilitator:
Jim Pelletier
Vice President, Professional Solutions
The IIA
USA

These days many CAEs come in laterally from another part of an organisation, not having much — if any — prior experience in auditing, while others may have many years auditing experience, but new responsibilities as a CAE. This session will explore some of the challenges and solutions of stepping into a new CAE role from within the organisation.

In this session, participants will:

  • Understand the role and responsibilities of the 21st century CAE.
  • Define CAE success from the perspective of audit committee members, the CEO, and the C-Suite.
  • Determine the attributes for CAE excellence.
  • Develop metrics for measuring the effectiveness of the CAE.
  • Discover secrets to achieving "Trusted Advisor" status within the organisation.

Frances Alvarez-Pyne is responsible for the department's internal audit function, with specific responsibilities under section 78 of the Financial Accountability Act 2009 (Qld) for assessing and evaluating the effectiveness and efficiency of the department's financial and operation systems, reporting processes and activities, and assisting with risk management and identifying deficiencies therein. Alvarez-Pyne has more than 13 years' experience in internal audit. Prior to her current appointment, she was the information systems internal audit Manager at DET and has worked for a large accounting firm both in Australia and overseas.

Kristiina Lagerstedt is responsible for internal audit, risk management, and internal controls. Before Sanoma, she worked with Nokia Group for nine years, starting from M&A, moving to internal audit in 2007, and becoming head of internal audit for about three years. Lagerstedt has been on the ECIIA Management Board since 2015 and is a member of The IIA’s Guidance Development Committee. She is also a member of the board of Plc Uutechnic Group Oyj, a global technology company serving the process industry.

Andrew Jones assumed his current role earlier this year, previously serving as the head of group strategy and performance. He had held a variety of finance roles including CFO, head of investor relations, performance, and financial control. Jackson has worked in the U.K. and Australia, primarily focused on the financial services sector.

Jim Pelletier has more than 15 years of internal auditing experience in both the public and private sectors. In his current role, he provides direction for The IIA’s Audit Executive Center; Financial Services Audit Center; American Center for Government Auditing; Environmental, Health and Safety Audit Center; and Global and North American Advocacy. Prior to joining The IIA, Pelletier served as city auditor for Palo Alto, California, and was the chief of audits for the County of San Diego. His diverse auditing experience also includes roles at the California State University System, PETCO Animal Supplies, Inc., State Street Corporation, and General Electric. Pelletier received The IIA’s John B. Thurston Award for outstanding paper in the field of internal auditing for his article “Adding Risk Back into the Audit Process.” His new book, Collaborative Auditing, is available through The IIA’s Bookstore, powered by the Internal Audit Foundation.

​Steven Eng​
Vice President
Head of Regional Audit Office Asia Pacific
DHL
Singapore​​

As we live and work in an increasingly digitally connected world, the business risks posed by such an environment are multiplied. The impact from improperly managed digital risks could have a seismic impact on an organisation. From an internal audit perspective, how can we assist organisations in identifying and managing the business risks associated from the pervasive spread of digital footprints?

In this session, participants will:

  • ​Hear about some of the risks posed by a digitally connected business world.
  • Learn how to identify such risks in an organisation from the internal audit perspective.
  • Develop ideas on managing such risks.

Steven Eng has overall responsibility for managing the regional audit office covering audits and assignments in Asia Pacific, the Middle East, and parts of Africa. He has served in numerous, progressively responsible leadership roles with DHL in markets around the world, originally joining the company in 1992. Eng held senior roles before joining DHL with experience in the Big 4 auditing, management consultancy, telecommunications, and the motor vehicle industry.

​Brad Ames, CRMA, CPA, CISA
Director, Internal Audit
Hewlett Packard Enterprise
USA

Michael J. Lynn, CRMA, CPA
Principal Director
ARG Oversight LLC
USA

Internal audit leadership should have a thorough understanding of the opportunities and threats that smart devices present to both the organisation and the internal audit activity. The internal audit function can support management’s efforts to manage smart device use or non-use. This session is intended to help internal auditors better understand smart devices and how to assess smart device security and risks.

In this session, participants will:

  • ​Learn to assess risk and provide assurance over the smart device environment. 
  • Understanding the business case of smart BYOD – Getting the risk equation right between work and personal use.
  • Identify common and not-so-common risk areas in the use of smart devices.
  • Developing the right controls and policies to effectively maximise the use of smart devices.
  • Discuss the role of internal audit in monitoring smart device usage to provide effective assurance.
  • Receive practical sample audit activities to support a smart device security and risk assessment.

Brad Ames collaborates with HPE's governance groups, compliance functions, customers, and external auditors to gain an ongoing view of emerging risk enterprise wide. His team is responsible for innovating and deploying continuous auditing solutions for measuring risk to the business and shortening the time to management action. He is a member of The IIA’s IT Guidance Committee and serves volunteer leadership roles within AICPA.

Mike Lynn recently established his consulting venture, after leaving AIG in 2015 as a managing director with audit oversight for IT strategy, security, risk, compliance, and infrastructure. He left AXA Group in 2013, after spending over 20 years in various audit, risk management, and compliance leadership roles. Lynn started his audit career at EY, then worked as deputy director for Dun & Bradstreet before joining AXA Equitable in 1992 as the deputy CAE. Lynn serves in numerous volunteer leadership roles within The IIA, including the newly formed global IT Guidance Committee and as past vice chair of the Professional Issues Committee, among others. Additionally, he helped formulate The IIA’s responses to COSO on the recent ERM exposure draft and the 2012 framework. Lynn served as a board member and past president of the Insurance Internal Audit Group, and has been a speaker and panelist at numerous professional association meetings, including forums sponsored by CSO Magazine and ACCA. He has authored numerous articles and guidance on risk, control and audit-related topics, and emerging issues.​

​Charlie Wright, CIA
FDirector​ounder & CEO
BKD
USA

Organisations around the globe are demonstrating an increasing interest in strengthening ERM. However, with varying regulatory requirements and global frameworks that are constantly evolving, it is difficult for boards, executive management, and internal auditors to meet stakeholder expectations. Attendees will review mechanisms to assist them in measuring the effectiveness of an ERM process. This session will also highlight some key challenges and propose practical ideas about how to optimize ERM to add value.

In this session, participants will:

  • ​Review highlights of the new COSO ERM update.
  • Understand the role of internal audit in ERM.
  • Learn to identify important components of an organisation’s ERM framework.
  • Compare and contrast key performance indicators and key risk indicators.
  • Identify key measurement criteria to assess the effectiveness of ERM.

Charlie Wright is the national leader of the company’s ERM practice. Prior to joining BKD, he founded a company specializing in internal audit and ERM consulting. From 2005 to 2016, Wright was vice president of internal audit at Devon Energy Corporation. Prior to joining Devon in 2005, he was the general auditor at American Airlines. Wright serves as vice chairman of Professional Guidance on The IIA’s Global Board of Directors.

​Bronwyn Davies, CIA
Chief Auditor
Airservices
Australia

This presentation will explore how internal audit can undertake value-adding activities to help the organisation achieve greater control effectiveness and operational efficiency. Learn from the sharing of experiences, practices, and insights from both state and federal public sector jurisdictions outlining practical methodologies on how internal audit can improve the effectiveness of public sector organisations.

In this session, participants will:

  • Review integrated controls, examining how the three lines of defence are built and identifying how to eliminate overlaps.
  • Discuss how to meet the challenge of delivering efficiency and effectiveness with fewer resources.
  • Determine internal audit's role and identifying future possible improvements.
  • Develop a reporting and follow-up framework to ensure the work of internal audit realises its capability of adding value.

Bronwyn Davies has held head of internal audit roles for more than 10 years working across both the public and private sectors. She has worked across varied industries including chartered accounting, financial services, resources, and heavy infrastructure leading both large and small audit teams. Davies’ internal audit expertise is supplemented through responsibility for operational areas including risk management, compliance, anti-money laundering, and fraud and corruption awareness.

​Sandra Burns
General Manager
Australia Division
ANZ
Australia

In an extremely competitive financial services market, retaining customer value and the right customers is essential to ensure business success. This session will explore the role that internal audit can play in assisting the organisation in identifying and maintaining their most valuable customers.

In this session, participants will:

  • ​Understand the importance of the customer value chain and the role of internal audit in providing assurance on this.
  • Identify what customers see as value in end-to-end service and product delivery and determining whether the organisation delivers efficiently and effectively.
  • Identify key areas of focus for internal audit to add value to customer retention.
  • Explore the benefits of internal audit reviewing the end to end customer value chain.

Sandra Burns is an experienced senior risk management and internal audit professional with a unique skill set across operations, finance, enablement, technology, and projects, with global internal audit experience across a range of industries. Since joining ANZ in 2005, Burns has held general manager of audit roles for the Australia, technology services and operations, and corporate centre divisions. Prior to joining ANZ, she held positions at PwC and Deloitte in their internal audit and risk management divisions with specialisation in manufacturing.​

​Richard Burt
Chief Executive Officer
Racing and Wagering Western
Australia

With the racing industry under a constant spotlight, this session will explore the governance and compliance expectations of Racing and Wagering Western Australia and the processes involved in ensuring integrity across and within the racing industry and how they could be applied to other sectors.

In this session, participants will:

  • ​Examine the Australian racing industry as a case study, including managing fragmented structures, the business, industry livelihoods, gambling, and community expectations.
  • Learn of the high dependency upon single revenue streams and risks.
  • Appreciate the complexity of managing stakeholder expectations in addition to community expectations.
  • Understand the strategic drivers used to achieve desired outcomes.
  • Grasp the rapidly changing landscape and the need for diversification from traditional strategies.

Richard Burt has been with the organisation since 2007 overseeing its distinct business units: a commercial wagering business operating in a highly competitive market, and a governance business managing the integrity, welfare, and operations of three codes of racing in Western Australia. He previously worked for the Western Australian TAB from 1997 to 2004 in various strategic and operational roles, with his last senior executive role overseeing the wagering business of Racing and Wagering Western Australia. Burt also worked for organisations including Ampol Limited, BOC Gases, and Ezenet Limited.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course offers candidates a high-level introduction and overview of the topics covered on Part 2 of the CIA exam, intended to reinforce CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive Part 2 of The IIA’s CIA Learning System self-study print and online software materials.​​.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.

​​​​​
2:35 p.m. – 2:45 p.m. ​Transition Break
​​2:45 p.m. – 3:40 p.m. ​Concurrent Session Tracks

​Deanna Sullivan, CIA, CRMA
Principal
SullivanSolutions
USA

According to a recent Gallup Poll, only three of 10 workers are engaged in their work. This means about seven out of 10 employees, managers, etc., are doing just enough to get by. No more, no less. Our role as internal auditors is to identify opportunities for improvement, yet lack of engagement seems to be the zombie in the room everyone is ignoring. What about your organisation and your own team? Are they pedaling at the front of the bicycle or coasting in the back? Don’t let these zombies curtail your success.

In this session, participants will:

  • Learn the keys for employee engagement.
  • Use the performance formula to positively impact employee productivity.
  • Discuss standards for being a leader of significance.
  • Learn how to give and receive criticism.
  • Understand how to direct people’s energies and stimulate their desire to excel.

Deanna Sullivan is an internationally recognized speaker, author and trainer, making it her mission to ensure education is effective as well as fun. She is a frequent speaker for conferences and events around the globe and conducts programs for both technical and management development. Popular topics include ethics, fraud, COSO, report writing, leadership, and communications. Sullivan is certified to teach ethics for Texas CPAs, is a Zig Ziglar Legacy Certified Trainer, and facilitates courses for The IIA’s On-Site Group Training team.

​Carlos Sanz-Pastor
Head of Strategy & Performance for Internal Audit
BBVA
Spain

In this presentation, participants will be challenged about innovation processes within the internal audit function through sharing real experiences of a global internal audit department of more than 850 auditors arising and emerging from its transformation journey.

In this session, participants will:

  • ​Understand why internal audit must adapt to meet new stakeholder expectations in a fast-moving, complicated, digital environment.
  • Learn how to create an innovative internal audit strategy to keep pace with disruption. 
  • Analyse needs and capabilities to set the priorities of implementing a transformation plan of the internal audit function.
  • Gain practical insights of transforming the internal audit function in an innovative organisation.

Carlos Sanz-Pastor is one of the drivers of the transformation plan in which his department has been entrenched in recent years. After a long and successful career in various internal audit department management positions, Sanz-Pastor works to ensure the department responds to the challenges of the new environment. He joined BBVA in 2002 as investment banking audit manager. Since then, Sanz-Pastor has served in leadership roles including head of investment banking audit; head of global markets audit; head of wholesale band and asset management audit; and head of South America, real estate and insurance internal audit.

​Gary Penn, AMIIA
Senior Manager, Audit and Risk
SA Water
Australia

Most organisations use third-party suppliers to deliver part of their services and face the challenge of managing processes and relationships that may cross jurisdictions, legal entities, and organisational structures. Internal auditors have a role to provide appropriate assurance over these challenging processes.

In this session, participants will:

  • Identify third-party touch points within organisational processes and how to flag potential risks.
  • Address the practicalities of reviewing governance and control arrangements of third-party service providers.
  • Explore reviewing contractual arrangements, including right to audit clauses, relationship management, and service level agreements.
  • Develop meaningful metrics to measure performance and quality of deliverables.
  • Consider managing the complexities of diverse stakeholder groups.
  • Learn techniques for communicating observations to third-party providers that drive meaningful improvements in control and operating environments.

Gary Penn is an experienced assurance and risk professional having worked in government, academia, financial services (in bank treasury and custody), and professional services prior to accepting his current role in 2005. His responsibilities include management of internal audit, insurance and claims, risk management and the organisation’s fraud and corruption control policy, including conducting any associated investigations. Penn serves as an independent member on various audit and risk committees, and has shared his knowledge and experience on assurance and risk issues as a lecturer, trainer, and international conference speaker.

Tichaona Zororo, CIA, CRMA, CISA, CISM, CRISC, CGEIT
Director
Enterprise Governance of IT (EGIT)
South Africa

As organisations continue heavy investments in the development of IT systems to drive efficiencies, consumer service, and competition, a clearly communicated and coordinated approach between business operations and the DevOps teams is essential. In this fast-paced DevOps environment, internal audit is in a unique position to add business value and improve organisational operations through agile IT audits.

In this session, participants will:

  • ​Discuss the changing focus of IT audit, keeping up with emerging technologies, and changing business models.
  • Review DevOps and Agile development methodologies.
  • Understand why appreciation of the business environment is imperative to value-adding IT audits.
  • Learn how tools such as IPPF Auditing Principles and COBIT 5 Goals are used in building new-age IT audit plans
  • Address communicating IT issues in terms that matter to key decision makers. 
  • Cement internal audit’s place in IT development and business innovation.

Tichaona Zororo has many years of in-depth experience in mainstream IT, IT auditing, IT governance, and risk across private and public sectors in Africa, Europe, and Asia. He is an advisor to a number of boards, IT, and business leaders across the globe, on the utilisation of disruptive technologies, governance, and management of enterprise IT, IT risk, cybersecurity, and IT auditing. Zororo, who is a director on ISACA’s Board of Directors and serves as president of the South Africa Chapter, has been involved in the development of numerous ISACA whitepapers and COBIT 5 publications. A renowned COBIT 5 expert, advisor, and accredited trainer, he is the first certified COBIT 5 assessor in Southern Africa.

​Gordon Song
Head of Group Risk & Internal Audit
Lazada Group
Singapore

Data is arguably one of the most important assets to a company in today’s interconnected world. Companies spend billions investing in the technology, infrastructure, and know-how to capture, store, protect, and mine that data to achieve business objectives. Internal auditors must understand that and speak the same language if they are to serve as a trusted advisor to stakeholders on those topics. Data analytics is an indispensable tool in internal audit’s arsenal. However, the use and even the understanding of data analytics is inconsistent across the profession.

In this session, participants will:

  • ​Define what data analytics mean.
  • Learn how data analytics can be applied in internal audit.
  • Understand the benefits of data analytics
  • Discuss the basic challenges of data analytics and how to overcome them.
  • Review cases studies in the successful use of data analytics.

Gordon Song oversees the organisation’s risk and internal audit department and is also responsible for business continuity planning and other risk management processes. He set up and runs the group insurance programme as well as the internal audit function, managing a team of five audit specialists. Song was previously the head of ERM for Tigerair, responsible for the design and implementation of the risk policy, processes, tools, and reports. He developed the board risk assurance framework, and implemented the risk dashboard. In addition, Song spearheaded the implementation of the personal data protection act (PDPA), and implemented the whistleblowing policy and the continuous audit and monitoring programme. Before Tigerair, Song was with Fortis Healthcare International, and led the establishment of risk management and internal audit processes for the group’s global and regional business interests. Prior to joining Fortis Healthcare, he was with KPMG Risk Consulting, where he led a team of consultants to deliver risk advisory services to clients. His expertise includes the design and implementation of risk governance and assurance structures and processes, as well as the implementation of internal controls framework.

​Jonathan Palmer
Deputy Australian Statistician
Chief Operating Officer
Enabling Services Group
Australian Bureau of Statistics
Australia

Using the high profile Australian Census as a case study, this session will provide real-life insights on risk and crisis management. Relive the candid journey of the risk management strategy for the 2016 Census, what worked and what didn’t, and lessons learned for the future.

In this session, participants will: 

  • Discuss planning for a crisis situation – How far do you take risk planning, development, and testing?
  • Learn tactics for putting plans into action when things go awry. 
  • Address communications in a crisis situation. 
  • Talk about the importance of getting the risk management culture right. 
  • Share the top three learnings from Census 2016.

Jonathan Palmer leads the group that provides corporate and statistical services including statistical data collection and dissemination, ICT, HR, finance, planning, and communications. His division was responsible for the conduct of the 2016 Census, Australia’s first census in which more than two-thirds of the population were expected to complete their forms online in August 2016. An IT professional by training, Palmer’s career of more than 30 years has been largely devoted to the field of official statistics and the ABS. He has held CIO positions with the Australian Bureau of Statistics, Statistics New Zealand, and the International Monetary Fund in Washington, D.C. He serves as the Australian representative on the Governing Council of the Statistical Institute for Asia Pacific, and represents Australia on the Pacific Statistical Steering Committee. Palmer is an adjunct professor with the University of Canberra’s School of Information Sciences and Engineering, his alma mater.

​John Young, PSM
General Manager, Search & Rescue (Ret.)
Australian Maritime Safety Authority
Australia

Search and rescue (SAR) is urgent, mission-critical and lifesaving, often conducted with imperfect information, in adverse circumstances and using resources that can reach a distress event quickly even if they are not totally suitable for the task. The initial SAR response to MH 370 was no exception and it brought additional challenges of intense international interest and media attention. The session will present the Australian SAR experience to explore potential systematic use of internal audit and related disciplines during the preparation, response, and post-incident phases of SAR operations. In this session, participants will:

  • Discuss preparing and evaluating readiness when many search & rescue responses are, by nature, “come as you are.”
  • Review the multiple dimensions of the MH 370 response, including convention obligations, international and multi-agency cooperation, public information, and SAR practice.
  • Explore post-incident review and action to make pragmatic improvements for the future, both in safety systems and SAR.
  • Identify potential “touch points” on SAR for internal audit providers.

John Young served in his role for the organization, which has responsibilities for aeronautical and maritime search and rescue (SAR) under international conventions as well as duties to provide wider SAR services in Australia, for over eight years. He also chaired the National Search and Rescue Council in its oversight of cooperative national arrangements in conjunction with the state and territory governments. In 2014 Young was awarded the Public Service Medal for outstanding public service through leadership of the Australian Search and Rescue System. Previously he managed the AMSA Joint Rescue Coordination Centre for nine years after enjoying a career in the Royal Australian Navy.

Robert Wilson
General Manager
Strategy & Architecture Group
Chief Technology Officer
Westpac Banking Corporation
Australia

Financial services prides itself on leading customer and product innovation. The loss of customer data, whether due to malicious or accidental cause, brings significant reputational risk to financial service organisations and the industry. This session will provide an update on the latest on data and data management within financial services, and key risks associated with the use and storage of customer data.

In this session, participants will:

  • ​Look at statistics as they relate to data as money.
  • Learn about customer data and data management trends e.g. virtualisation, outsourcing, cloud, mobile devices, and more.
  • Hear about the most common internal and external factors including systems vulnerabilities, supplier risk, cyber threats, and human factors.
  • Learn what technology and the business should consider when considering risk environment for data storage and usage.

Robert Wilson is a technologist and a banker with more than 25 years of global experience at a number of first class financial services and technology institutions. He is responsible for enterprise, infrastructure and solution architecture, solution consulting, transformation, governance, planning, risk, and information security. Previously, he was responsible for the global retail banking line of business with SAP, and was global head of strategic engagements.  Before joining SAP he managed a start-up in a Swiss joint venture supporting innovation in digital credit management & securitisation, and for 11 years with a European headquartered global bank, holding a number of senior management functions in Asia, the US, and Europe, including emerging markets, corporate finance, treasury, and payments. Wilson is actively engaged in driving transformation through new business models, and has broad experience in systems strategy & development, architecture, integration and global systems deployment. He also holds Director roles on both Quintessencelabs & Data Republic Boards.

​Michael J. Fucilli, CIA, QIAL, CGAP, CRMA
Auditor General
Metropolitan Transportation Authority
USA

Procurement is a strategic function working to improve the organisation's profitability by helping to streamline processes, reduce raw material prices and costs, and identifying better sources of supply. At higher levels of expenditure, the need for openness, transparency, and nondiscriminatory action is required by legislation. Internal audit is uniquely equipped to assist management in meeting the requirements and achieving these goals, thus reducing the bottom line.

In this session, participants will:

  • Review a case study on the internal audit department’s alignment of its annual plan to the organisation’s sourcing spend of over $8 billion, identifying over $60 million in cost impact.
  • Understand the governance, risk, and control issues over procurement.
  • Discuss strategic sourcing and risks associated with operating and capital procurements.
  • Discuss how to ensure compliance and obtain major cost reductions at the same time.

Mike Fucilli leads a staff of 85 internal auditors at North America’s largest public transportation agency, with an operating budget of $15 billion and a capital budget that exceeds $5 billion annually. He has more than 35 years of internal audit experience, having started his career with Manufacturers Hanover Trust (now Chase Bank) performing procurement audits of large government contracts including audits of NASA, the U.S. Army and Air Force, and Voyager 1. Fucilli has served in various leadership roles at the national and global level for The IIA, currently serving as the vice president of development of the Internal Audit Foundation. He is an adjunct professor for Pace University, teaching The IIA’s CIA Learning System for the Certified Internal Auditor exam.

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA

This course offers candidates a high-level introduction and overview of the topics covered on Part 2 of the CIA exam, intended to reinforce CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive Part 2 of The IIA’s CIA Learning System self-study print and online software materials.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.​​

​​​​​
​​3:40 p.m. – 4:20 p.m. ​Networking Break
​​4:20 p.m. – 5:20 p.m.​
Mohamed Alabbar

GS 4: Leading Organisations to Achieve Success During Periods of Uncertainty​

Mohamed Alabbar
Chairman
Emaar Properties
UAE

Businesses today are operating in an increasingly complex global environment, characterized by unprecedented geopolitical and economic uncertainties, the emergence of disruptive technologies and business models, and changing customer expectations and behaviors. Businesses that will thrive in this period and beyond will be able to navigate this turbulence and uncertainty by focusing on priorities to get a few fundamental elements right.​

Mohamed Alabbar is founder and chairman of Emaar Properties, one of the largest real estate development companies in the world and known for developing the Burj Khalifa, the world's tallest building and the Dubai Mall, the world's largest mall. Alabbar is former director general of the Dubai Department of Economic Development. He leads Adeptio AD Investments, a United Arab Emirates (UAE)-based investor group, which purchased Americana (Kuwait Food Company) from its majority stockholder for US$2.36 billion in June 2016. Alabbar also acts as a top advisor to Sheikh Mohammed bin Rashid Al Maktoum, the leader of Dubai. A champion of e-commerce and digitization in the Arab world, Alabbar has raised US$1 billion from investors to spearhead what will be a string of major digital and e-commerce launches in the UAE. He has been included in numerous lists such as the top five UAE business leaders, the 100 most powerful Arabs, and the 10 most influential people in the UAE.

7:00 p.m. – 11:00 p​.m. Gala Party​​​​ – Sydney Shines​​
Wednesday 26 July 2017
​​​​​​
​7:30 a.m. – 2:0​0 p.m. ​Registration
​​7:30 a.m. – 8:30 a.m. ​Networking Breakfast
​​8:30 a.m. – 10:10 a.m.​
Dee Madigan
Naohiro Mouri
Kathryn McLay
Clare Brady

GS 5: Selling Internal Audit: Is It Really That Hard to Show Our Value?​​​​

Dee Madigan
Executive Creative Director
Campaign Edge​
Australia

Naohiro Mouri
Executive Officer
Chief Auditor​
AIG
Japan

Kathryn McLay
Senior Vice President
Logistics Walmart U.S. Flow, Walmart Stores, Inc.
Australia

Clare Brady
Director, Office of Internal Audit and Inspection
International Monetary Fund
USA​

Be enlightened in the session as advertising expert Dee Madigan puts her marketing lens on the internal audit profession. She will tease out from our global panel of CAEs on what really matters in showcasing the real value that internal auditors can bring to the table and share her secrets and insights on how internal auditors can best sell themselves and the profession.

In this session, participants will:

  • ​Discuss key questions, including:
    • Why does internal audit have an image problem?
    • Does our perception deliver reality?
    • How do we portray the value that the profession can deliver to organisations?
    • How do we turn our customers/stakeholders into true believers of internal audit?
    • What creative approaches can be used to get the right message across?
    • Is an internal auditor capable of getting the message across?

Dee Madigan is an award winning creative director with over 20 years’ experience in advertising. She has been a winner or finalist at major awards including Cannes. Madigan has served as creative director on seven election campaigns for the ALP. She operates her own advertising agency, serves as a panelist on Gruen, as well as a political commentator on Sky and ABC’s “The Drum.” Madigan also serves as a guest host on Studio 10. She writes for publications including The Drum and Mamamia, is the author of The Hard Sell, and a contributing author on Mothermorphosis and Change! Combining Analytics Approaches with Street Wisdom. She is an experienced keynote speaker, emcee, and event panelist as well as an engaging interactive workshop facilitator.

Naohiro Mouri oversees more than 50 auditors. Previously he was with MetLife Alico Japan where he served as statutory executive officer, senior vice president, and chief auditor. Naohiro also held chief auditor positions for JP Morgan/Asia Pacific Shinsei Bank, Morgan Stanley Japan, and Deutsche Bank Japan. He started his audit career at Arthur Andersen in the U.S. Mouri has served on the Board of IIA‒Japan and The IIA’s global board in several positions, as well as serving five years as the ACIIA’s first president. Naohiro is a frequent lecturer for universities and trade organisations and co-authored a book on auditing financial institutions.

Kathryn McLay is tasked today with transforming Walmart’s supply chain to a digital organisation. Her portfolio spans supply chain operations from imports to returns; leading 6,500 associates flowing 860 million cases per annum. She’s been with Walmart since April 2015 in the role of vice president of U.S. finance and strategy, where she led the legacy strategy.  After seven years in both external and internal audit, she moved to Qantas where she was promoted to internal audit manager. In 2001 she joined Woolworths as the corporate audit manager. She was later appointed head of audit reporting to the CEO and the Audit Committee chair and shortly thereafter joined The IIA’s Board as a Director. In 2007 she was appointed a general manager for business development, as well as the President and Chairman of IIA-Australia. She also served as general manager of replenishment and the board of the ECRA, an industry board made up of retailers and suppliers.

Clare Brady has spent the last seven years working in the international public sector in Washington D.C. She held the position of auditor general for the World Bank Group (WBG) for four years, and has been at the IMF for the last three years. Previously, Brady spent five years with Deutsche Bank as a managing director of group audit covering multiple roles, including regional head roles in both Europe and Asia Pacific. Prior to Deutsche Bank, she was head of internal audit at the Bank of England and before that, global head of audit for Barclays Capital. Brady has 30 years of audit and compliance experience in the global banking and finance industry, in both the public and private sectors.

​10:10 a.m. – 10:5​0 a.m. Networking Break​​
​10:50 a.m. – 12:30 p.m.
Holly Ransom

GS 6: Get Out and Stay Out: Stepping Outside of Your Comfort Zone in Times of Change​

Holly Ransom
Chief Executive Officer
Emergent
Australia​

Keeping up and taking charge of change necessitates getting comfortable being uncomfortable — dealing with uncertainty, ambiguity, and calculated risk. To succeed in both our professional and personal spheres we must build our individual ability “to deal with the uncomfortable” to enhance our effectiveness in leading ourselves and others through to new horizons. As a young leader, entrepreneur, and authority on intergenerational economic and social challenges, Holly Ransom will share her insights and lessons learned on the journey that she has taken in making the most of the challenges and opportunities of change.

Her story will inspire you to take a different look at life’s challenges as she discusses:

  • How to enhance your effectiveness in times of constant change. 
  • Uncovering the secrets of empowering leaders with an understanding of key drivers of performance.
  • Looking into your inner self to build willpower and motivation.
  • How you can harness fear and vulnerability to drive results. 

Holly Ransom is the CEO of Emergent, a company specializing in the development of high-performing, intergenerational workforces, leadership, and social outcomes. Ransom is renowned for generating innovative solutions to complex, multi-stakeholder problems for corporations, governments, and nonprofit organizations, and for coaching and professionally mentoring leaders of all generations around the world. Her corporate career has involved working as chief of staff to NAB Wealth CEO Andrew Hagger and for Rio Tinto CEO Sam Walsh and leading key organizational strategy and business improvement initiatives and integrated corporate affairs projects. Ransom’s company, Emergent, has worked with the likes of INPEX, CBH, Conoco Phillips, KPMG, as well as local, state, and federal government departments around the world. An accomplished global keynote speaker, Ransom has presented across six continents, including delivering a Peace Charter to the Dalai Lama, presenting at the World Entrepreneur of the Year Awards in Monaco, and addressing the G20’s Central Bank Governors and Finance Ministers. She is also a popular blogger, contributor to several leading publications, and a regular radio and TV guest. She has been featured on ABC’s “Q&A,” Reuters, Bloomberg Asia, Channel 7 News, and Channel 10’s “The Project.”

1:30 p.m. – 5:30 p​​.m.​

CIA Exam Prep Course: Part 1 — The IIA’s CIA Learning System® Internal Audit Basics​​

Raven Catlin, CIA, CFSA, CRMA
Trainer and Owner
Raven Global Training
USA

Vicki McIntyre, CIA, CFSA, CRMA
President
FirstPlus Resolutions, Inc.
USA​

This course offers candidates a high-level introduction and overview of the topics covered on Part 1 of the CIA exam to reinforce your CIA knowledge, clarify topics, and build exam-day confidence. Taught by CIA-certified instructors, attendees will work through practice exam questions, learn test taking tips, and receive Part 1 of The IIA’s CIA Learning System self-study print and online software materials​.

Please note: additional self-study time outside of the classroom will be necessary to prepare for the exam. A limited number of onsite registrations will be accepted, so please pre-register for this course.

Raven Catlin is an internationally recognized internal audit expert and speaker with more than 19 years of auditing, consulting, and training experience. Before starting her own firm, Catlin was a consultant at Experis and a senior manager at Protiviti. She held internal audit positions with Freddie Mac, Bank of America, and Philip Morris. Catlin is a contributing author to The IIA’s CIA Learning System and a frequent presenter at conferences and on-site training seminars.

Vicki McIntyre has helped CIA candidates successfully pass their exams for more than seven years, having taught The IIA's CIA Learning System extensively. McIntyre manages her own inte​rnal audit and risk management consulting services firm, and has a combination of internal audit, financial management, public accounting, regulatory supervision, and compliance management experience. With more than 20 years in the financial services industry, McIntyre has been a regulatory bank examiner, and a vice president of both finance and risk management. She also performs quality assessments of internal audit activities on behalf of The IIA.​​​​​

Schedule Changes​

At times, it may be necessary to cancel, reschedule, or substitute an event, conference session, speaker, conference, and/or topic after registration has been confirmed. The IIA will provide advance notification of any changes once notice has been received.​​​​​​