Internal Controls Calgary 2009
Practical Solutions for Ongoing Compliance Challenges
September 22 and 23, 2009
Optional Workshops: September 24, 2009
The Coast Plaza Hotel
CALGARY, ALBERTA
Conference Program Agenda - Day One
Tuesday, September 22, 2009
| 8:00 - 9:00 |
Registration and Continental Breakfast |
8:00 - 9:00 |
9:00 - 9:15
Welcome and Opening Remarks from the Chair
Nitin Khare, Senior Manager, Risk Advisory Services, BDO Dunwoody LLP
9:15 - 10:15
Latest Regulatory Developments in Internal Controls Reporting
Patricia van de Sande, Analyst, Corporate Finance, Alberta Securities Commission
- Updates on NI 52-109 and related material
- Common issues found in ASC's enforcements
- Frequent concerns with rules
- Lessons learned
| 10:15 - 10:30 |
Networking Break |
10:15 - 10:30 |
10:30 - 11:30
Cost Effective and Value-Added Certification
Nitin Khare, Senior Manager, Risk Advisory Services, BDO Dunwoody LLP
- Utilizing a top-down, risk-based approach to maximize benefits
- Defining the project scope and testing
- By-products of control certification
- Developing the appropriate governance structure, including defining accountabilities and responsibilities, to sustain internal control reporting
- Integrating internal control reporting with other governance, risk, and compliance (GRC) initiatives to increase effectiveness and efficiency
- Learn to apply the knowledge gleaned from internal control assessments (ex. inefficiencies etc.) to use opportunities for business process improvement and to create value for your organization and its shareholders
11:30 - 12:30
Case Study
Documenting, Testing and Reporting Entity-Level Controls and Operating Effectiveness
Cristine Prattas, AVP, CEO/CFO Certification, Canadian Tire Corporation
- Linkage to business process controls
- Testing operating effectiveness of entity-level controls
- Monitoring controls
- Leveraging effective entity-level controls to reduce process-level work
- Remedial methods for deficiencies
- Documenting, testing, and reporting procedures
| 12:30 - 1:45 |
Luncheon Break |
12:30 - 1:45 |
1:45 - 2:45
Outsourcing and the Impacts on Controls - Section 5970 and SAS 70 Report
Andrew Boulton, Manager, Technology Risk and Security, Risk Advisory Services, BDO Dunwoody LLP
- Ensuring presence of controls
- Testing an outsourced environment: 5970 and SAS70
- Documenting, testing, reporting and remediation of deficiencies
- Working with other company to ensure compliance
- Managing outsourcers
| 2:45 - 3:00 |
Networking Break |
2:45 - 3:00 |
3:00 - 4:00
Leveraging Technology to Streamline Your Compliance Framework
Steve Taylor, President, Resolver
- Risk assessment: using software to enhance the risk assessments required by a top-down approach
- Scoping: using technology to accelerate the scoping process and allow companies to reduce the controls they test
- Eliminating overlap between compliance areas: never ask the business the same question twice!
4:00 - 5:00
Aggregating and Analyzing ICFR Deficiencies: A Practical Approach
Ingrid Robinson, Enterprise Risk, Meyers Norris Penny LLP
- Grouping and analyzing ICFR deficiencies at "division-level" and "overall company-level"
- Deriving ICFR design and operating effectiveness
- Overview of best practices methodologies
|
