Office Hours - Shared Experiences in GRC-logo

Office Hours - Shared Experiences in GRC

Technology Podcasts >

More Information

Location:

Canada

Language:

English


Episodes

Episode 15 - Getting Started with Risk Management in Machine Learning

9/11/2018
More
This week on Office Hours (https://officehou.rs), our OG hosts Dan Zitting and Kevin Legere are back and are ready to talk machine learning. We get a lot of questions about where to start with machine learning... lots of people in audit, risk, compliance, etc. are talking about it in principle but very few have started on a single practical use. In this episode, Kevin will show you where he actually got started using fancy words like k-means clustering to put machine learning to work in his...

Duration:00:24:34

Episode 14 - Regulatory Update Alerts Made Easy

8/28/2018
More
This week on Office Hours (https://officehou.rs), Dan Zitting and Phil Lim attack the problem of regulatory change management. Specifically, Phil helped a client of his build an effective and cost efficient solution for not only aggregating and consolidating alerts of regulation changes, but envisioned a way to make sifting through them, cleaning out the garbage, and deciding what to actually do about those that matter far easier. ABOUT SERIES Office Hours is a work of passion to share...

Duration:00:13:50

Episode 13 - Don't Let the PCAOB Make Us Dumber

8/21/2018
More
This week on Office Hours (https://officehou.rs), Dan Zitting and Kevin Legere discuss a question we got from a listener about how to use automation and monitoring without it causing external audit reliance issues that get blamed on the PCAOB. Some sanity is necessary to make sure each of the organization, the organization's auditor, and the organization's auditor's regulator (the PCAOB) realizes the BEST way to evaluate controls is through ongoing monitoring and this session describes...

Duration:00:27:30

Episode 12 - Machine Learning Identifies the "Too Good to be True"

8/14/2018
More
This week on Office Hours (https://officehou.rs), Dan Zitting and Kevin Legere discuss thoughts on risk management in scenarios that are "too good to be true". Kevin uses the Volkswagen emissions scandal to show how publicly available data and a machine learning technique illustrated the risk that emissions performance was just "too good to be true". He shows how simple unsupervised machine learning can identify such a situation when pointed at data that is being disclosed for compliance...

Duration:00:23:22

Episode 11 - Robotic Translations of Vulnerabilities to Threats and Threats to Risk

8/7/2018
More
This week on Office Hours (https://officehou.rs), Dan Zitting and guest host Phil Lim discuss vulnerability management and using analytics to consolidate, normalize, and prioritize vulnerabilities into threats and then evaluating risk levels based on the threats. Dan's customer was looking to drive a real time profile of IT risk based on its collection of threat and vulnerability data, which Dan demonstrates using ACL. ABOUT SERIES Office Hours is a work of passion to share strategies,...

Duration:00:19:13

Episode 10 - Managing Third Party Risk Before S#!t Happens

7/31/2018
More
This week on Office Hours (https://officehou.rs), hosts Shahed Khalili and Dan Zitting discuss third party risk management by looking a disastrous vendor-related incident that caused Shahed's customer rethink their processes and controls around how they manage their third parties. Shahed discusses what was implemented to prevent the "next time" incident happening.

Duration:00:28:40

Episode 9 - Contract Risk, Over-billing Schemes, and Third Party Risk

7/24/2018
More
This week on Office Hours (https://officehou.rs), hosts Kevin Legere and Dan Zitting discuss third party risk management by looking at a situation where contract risk/vendor risk led to several very large organizations being substantially over-billed and the vendor itself having to restate its financial statements after rectifying the issue. We'll dig into how it happened and using "big data" to identify and resolve the issue. ABOUT SERIES Office Hours is a work of passion to share...

Duration:00:19:23

Episode 8 - Is your organization paying dead people?

7/17/2018
More
This week on Office Hours (https://officehou.rs), hosts Kevin Legere and Dan Zitting discuss their experiences identify ghost employees, ghost beneficiaries, and other related cases where large organizations are being defrauded through the identify theft of dead people. Kevin describes a large company where identified a high ranking executive had used the identity of a dead person to get hired, Dan describes a state government paying benefits (food stamps, veteran benefits, etc.) to people...

Duration:00:17:28

Episode 7 - The Risk of Brand Perception and Power of AI/NLP Driven Topic Modelling

7/10/2018
More
This week on Office Hours we'll be talking about brand, and the risk of brand misperception. What assurance do management and the Board really have that corporate marketing is speaking to the market in a way and cadence that aligns to corporate strategy and drowns out the competition? This is a good chance to think about risk management's role in marketing, and also a great chance to look at how AI-driven natural language processing can be used in a real-world, practical way... in this...

Duration:00:16:41

Episode 6 - The Paradise Papers and Finding Indications of Fraud and Corruption

7/8/2018
More
This week on Office Hours, our first guest host, the mad genius Phil Lim, joins Dan Zitting to talk about the Paradise Papers... what they mean and how an organization he worked with was interested in using the data compiled from them to look at potential risk indicators fraud or corruption. Phil actually uses the real data with real US government spending data to show how the process looks to evaluate red flags.

Duration:00:16:31

Episode 5 - No more excuses: 5 easy steps to getting started with data analytics and automation

7/8/2018
More
This week on Office Hours, hosts Dan Zitting and Kevin Legere summarize Kevin's experiences as a data analytics consultant to audit and compliance teams who are just getting started with an analytics program. Kevin distills the what he found are really the five key steps to getting off the ground and building your first "data robots". These worked at Fortune 500 company's and the US Federal Government, hopefully they work for you if you are just diving into "data-powering" your team or...

Duration:00:24:09

Episode 4 - Six Laws for Smarter Compliance (Learned the Hard Way)

7/8/2018
More
This week on Office Hours, hosts Dan Zitting and Kevin Legere reflect on their time working in compliance and try to extract some common themes that seem to make compliance smoother and put control over compliance risk back in the hands of the compliance professionals (who CAN'T just be check mark chasers if compliance burden is a concern). We share in this episode how lessons we learned from the CPA exam, defense lawyers, and criminal trials influence our thinking about compliance...

Duration:00:19:20

Episode 3 - Using Scenario Modeling for Risk Management (and is the lottery truly random?)

7/8/2018
More
This week on a LONG and in-depth Office Hours, hosts Dan Zitting and Kevin Legere try to teach the basics of using scenario modeling (or simulation analysis) to enhance risk management and risk assurance. Scenario modeling enables GRC professionals to make far more informed risk decisions by considering the universe of potential outcomes of a given risky scenario... by understanding the probability of outcomes that are inside or outside the organization's risk tolerance, we can make...

Duration:00:45:24

Episode 2 - How to Manage Risk Events (Hotlines, Conflicts, Security Incidents, etc.)

7/8/2018
More
This week on Office Hours, our hosts, Dan Zitting and Kevin Legere, talk about managing risk events. What are risk events? They could be anything from an ethics hotline reports, conflict disclosures, security incidents, sexual harassment incidents, unexpected financial instrument value fluctuations, physical security breaches, vendor failures, etc., etc. No matter which function you're in or the risk you're responsible, it is surely possible to centralize the capture, review, and remediate...

Duration:00:18:56

Episode 1 - Building a SOX Roadmap with Impact

7/8/2018
More
This week on Office Hours, our hosts, Dan Zitting and Kevin Legere, talk about having a plan and roadmap for SOX that will differentiate the value your program delivers. Most companies have basic SOX testing nailed down by now, but it's still far too manual and far too inefficient. These types of SOX programs are growing stale - we need a roadmap to better value. Additionally, robotic automation is coming to SOX programs, so we can either be the ones building the automation or the ones...

Duration:00:13:14