More speakers to come
Wednesday June 11, 2025
8:00 am - 8:50 am
Registration and breakfast
8:50 am - 9:00 am
Chair’s opening remarks
9:00 am - 9:50 am
DORA - PANEL
Post-DORA implementation: Lessons learned post-implementation
- Insights from the first six months of DORA compliance across Europe
- Key challenges in aligning processes with the Digital Operational Resilience Act
- Strategies for embedding DORA into business-as-usual operations
- Perspectives from financial institutions and regulatory bodies on next steps
9:50 am - 10:30 am
RESILIENCE
Integrating operational resilience frameworks into business-as-usual practices
- The integration of operational resilience into third-party risk management
- Overcoming challenges in harmonizing frameworks across regions
- Best practices for identifying vulnerabilities within critical functions
- How operational resilience contributes to overall risk mitigation
10:30 am - 11:00 am
Morning refreshment break and networking
11:00 am - 11:40 am
CRITICAL THIRD PARTIES (CTP)
Reviewing requirements for critical third parties and alignment with global regulation
- Impact of SS 6/24 on critical third party management
- Comparisons with DORA’s prescriptive requirements for CTPs
- Addressing transparency and compliance challenges with major tech providers
- The role of regulators in monitoring systemic risks posed by CTPs
11:40 am - 12:20 pm
TPRM BY EXCEPTION
TPRM By Exception
- Automation and AI for TPRM
- Data-Driven TPRM by Exception
- Moving from Assessments to Real-Time Risk Management
12:20 pm - 1:20 pm
Lunch break and networking
1:20 pm - 2:10 pm
EXIT PLANNING PANEL
Designing and implementing stress scenarios for critical vendor exits
- Practical approaches to testing exit strategies with suppliers
- Addressing the complexities of unplanned exits in financial services
- Regulatory expectations for stress testing and exit readiness
- Reviewing industry advances and approaches
2:10 pm - 2:50 pm
AI
The next AI wave is on its way: Are you ready?
- Understanding the three waves of AI: Machine Learning, Generative, and Agentic
- Exploring how AI is transforming third-party management programs
- Understanding the impact AI Now and AI Next on TPRM
- Practical insights into integrating AI into your TPRM strategy
2:50 pm - 3:30 pm
INCIDENT REPORTING
Setting standards for timely incident reporting and processes for regulatory notification
- Best practices for incident reporting within vendor relationships
- Aligning internal processes with regulatory notification requirements
- Managing communication with regulators during third-party incidents
3:30 pm - 4:00 pm
Afternoon refreshment break and networking
4:00 pm - 4:50 pm
EMERGING RISK PANEL
Managing the usage of AI and Gen AI across the supply chain
- Understanding the use of generative AI by third parties and its implications
- Regulatory considerations, including the EU AI Act, for third-party AI usage
- Managing contractual obligations and oversight for AI-related risks
- Opportunities and challenges of AI integration into due diligence processes
Eva Penny Global Vendor Management Specialist - Zurich Insurance
Mihaela Breg Head of Operational Resilience & Business Transformation - Europe Arab Bank
Onur Koltukcu Policy Advisor - De Nederlandsche Bank
Darren Craig CEO & Founder, RiskXChange
Mathew Wells Associate Partner, Head of Risk Advisory UK, Wavestone
4:50 pm - 5:30 pm
ESG – PANEL DISCUSSION
Approaches for assessing and monitoring ESG risks and compliance with requirements
- Evaluating third-party compliance with environmental, social, and governance (ESG) standards
- The evolving role of climate risk assessments in vendor due diligence
- Industry best practices for embedding ESG factors into supplier selection
- Balancing cost efficiency with ESG commitments in third-party relationships
Kurt Neilson Resilience and Oversight Director - Aegon
Merlin Linehan Risk Manager - EBRD
Mikko Venermo Senior Manager, Environmental & Social Policy, Standards & Knowledge Management - International Finance Corporation (IFC)
Samikendra Ghosh former Group Third Party Risk Lead & Head of Resilience Oversight, HSBC
5:30 pm - 5:40 pm
Chair’s closing remarks
5:40 pm
End of day one and networking drinks reception
Thursday June 12, 2025
8:00 am - 8:50 am
Registration and breakfast
9:00 am - 9:50 am
FUTURE OUTLOOK – PANEL
The future of third party risk: Reviewing the evolution of third party risk and inclusion of technology
- Emerging trends in vendor risk, including AI, ESG, and new regulatory frameworks
- Preparing for the next wave of regulatory requirements in Europe
- Shaping the future of collaboration between vendors and financial institutions
- Perspectives from industry leaders on the evolution of third-party risk management
- Lessons learnt from final regulatory implications
- Operational Resilience Act, DORA
Gary Lock Director, Global Head of Third-Party Risk Management - Fidelity International
Claudia Roth Lead Buyer Outsourcing - Helvetia Insurance Group
James Ellery-Gower Global Head of TPM Country Governance - Citi
Fraser Wikner CEO - MYRIAD Group Technologies
Shamial Afzal Global Head of Strategic Supplier Oversight, Legal & General - Asset Management
10:30 am - 11:00 am
Morning refreshment break and networking
11:00 am - 11:40 am
NTH PARTY
Tracking and monitoring supply chains beyond third party relationships
- Defining and tracking risks beyond direct third-party relationships
- Tools and techniques for assessing fourth, fifth, and sixth-party dependencies
- Aligning sub-outsourcing practices with regulatory expectations
- Real-world challenges and solutions in managing nth-party risks
11:40 am - 12:20 pm
CONCENTRATION RISK
Managing increased concentration risk with heightened dependencies in extended supply chains
- Identifying and mitigating risks associated with subcontractors and fourth parties
- Managing the challenge of visibility in extended supply chains
- Tools and techniques to address concentration risk effectively
12:20 pm - 1:20 pm
Lunch break and networking
1:20 pm - 2:00 pm
SCALING
Effectively scaling third party risk programs and enhancing cost efficiency
- Strategies to balance expanding risk requirements with limited resources
- Collaborative approaches to pooled audits and shared assessments
- Balancing budgetary constraints with meeting regulatory needs
2:00 pm - 2:40 pm
RISK ASSESSMENT
Developing robust operational risk questionnaires and inclusion of resilience
- Key elements to include in third party operational risk and resilience questionnaires
- Overcoming challenges in maturing questionnaire processes
- Moving from manual to automated questionnaire workflows
- Streamlining questionnaires across the industry
- Managing conflicting terminology across multiple jurisdictions, business divisions and regulations
2:40 pm - 3:10 pm
Afternoon refreshment break and networking
3:10 pm - 3:50 pm
TALENT
Is there a skills gap in third party risk management? The evolution of expectations and skills
- Identifying the competencies needed for modern third-party risk management
- Strategies for upskilling teams to meet evolving regulatory demands
- Industry development and training
- Success factors for successful workforce transformations
3:50 pm - 4:40 pm
TECHNOLOGY - PANEL
Leveraging technology for enhanced third party risk management
- The role of automation in improving efficiency and accuracy in vendor risk
- Exploring tooling solutions for supply chain visibility and data aggregation
- Addressing manual process inefficiencies with innovative technologies
- Case studies on successful technology adoption in vendor risk management
4:40 pm - 4:50 pm
Chair’s closing remarks
4:50 pm
End of Vendor & Third Party Risk Europe 2025
This is just the beginning
Above is the latest edition of the agenda, but this is just the beginning. As we approach the event, we will be adding more speakers and sessions to enhance your experience. To stay informed about these updates, please register your interest using the form on the side.