Risk Assurance Events Around the United States

Throughout the year, PwC professionals host and participate in various events, including conferences and issue-focused webcasts around the country. Please use the map below to select your location to see upcoming events and PwC contact information for your local market.

PwC Conference Sponsorships and Speaker Sessions

Attending any of these events? Please be sure to connect with our PwC practitioners to see if they will be attending and don't forget to register to attend our speaking sessions. Visit our exhibition booth, if applicable, to connect with our thought leaders, see our latest demonstrations and learn how we can help your company address your internal audit needs and the challenges you may be facing regarding risk and compliance issues.

MetricStream GRC Summit 2015

May 11-13, 2015
Arlington, VA

We are proud to be a gold sponsor and exhibitor.

To view the agenda and for additional information, click here.

Archived webcasts:

The broad impacts of PHI: Addressing the demands of customers and regulators
May 28, 2015

Any company that plays a role in the healthcare delivery system is subject to compliance with HIPAA and state regulations. This webcast explores how these compliance requirements have increased the need for additional assurance over the protection of sensitive data.

PwC’s Michael Parisi, Kenneth Mortensen, and Adrian Christie, along with Dorina Hamzo, Senior Manager Internal Controls, of athenahealth to talk about the latest privacy, security, and third party reporting trends impacting organizations that operate in the healthcare spectrum. Specifically, this webcast covers:

  • An overview of the HIPAA Rules and recent changes that have increased the number of organizations impacted by the regulation
  • New enforcement and related penalties
  • The role of the Department of Health and Human Services’ Office for Civil Rights (OCR), its ongoing Audit Program, and how best to prepare for and respond to an audit or order
  • How to address the demands of customers and regulators through independent assurance and reporting, including HITRUST Certifications, Agreed Upon Procedures (AUPs), Customized AT-101s and SOC2s
  • How independent assurance reports can be incorporated into third party risk management programs

Access this webcast

Your journals are at Risk! Close loopholes that allow users to circumvent manual journal controls
May 12, 2015

Did you know that your users may be creating manual journals that can bypass your preventative and detective manual journal controls? And the fact that these journals are “hidden,” stealthily looking exactly like system created journals that nobody notices or questions, makes this issue even more challenging. This can open up the potential for fraud or allow users to inadvertently circumvent manual journal controls – both of which can be damaging to your organization.

Mike Baccala, Stephen D’Arcy, and Jon Hansen from PwC’s Oracle Security & Controls practice discuss these risks and what you can do to keep your manual journals aligned with your controls.

Specifically, this webcast covers:

  • How users are able to create manual journals that look like system generated journals
  • How organizations can close the loopholes that allow users to circumvent manual journal controls
  • Real-world case studies of the impact this can have on organizations

Access this webcast

Access request in high gear: How one-stop-shop business roles can help accelerate user provisioning in SAP
April 30, 2015

Multiple request forms, help desk calls, even a fax just for SAP access?! Does your organization struggle with multiple, manual, or confusing processes to manage SAP access requests across your landscape? Increasingly, organizations are looking to establish a simple, compliant, approach to accelerate user access provisioning by leveraging business roles within SAP GRC.

PwC's Jamie Draper, Langdon King, and Nathan Levitt discuss a business role design methodology including strategic, risk, and technology considerations when implementing business roles.

Specifically, this webcast covers:

  • How to leverage an organizations’ GRC & Identity Management (IDM) technologies to align business role design to broader Role Based Access Controls (RBAC) initiatives
  • The intersection of business role design & HR to further streamline and accelerate access provisioning
  • Real-world case studies of business role design and implementations

Access this webcast

2015 State of the Internal Audit Profession Webcast: Finding True North in a Period of Rapid Transformation
April 1, 2015

This webcast provides an in-depth look at the latest trends and themes presented in our 2015 State of the Internal Audit Profession Study, and our perspectives on the continued evolution of the profession.

PwC’s Jason Pett, Rachael Person, and Monica Nayar, and industry guest James Tietjen, from Capital One Financial Corporation, share their perspectives on Internal Audit, and how Internal Audit functions should strive to push beyond standard objectives and deliverables.

Specifically the webcast provides a perspective on the following areas and more:

  • Understanding how Internal Audit functions must evolve to meet the needs of ever changing and often transforming businesses
  • Providing insight on how Internal Audit must advance its capabilities and skills in order to contribute value
  • Looking closely at the growing importance of Data Analytics and strategies for advancing their use
  • Positioning Internal Audit to collaborate with other lines of defense to help strengthen overall risk management

Access this webcast

Vendor Controls Attestation (SOC 2+) Webcast: What this means for US businesses
February 24, 2015

How much time does your organization dedicate to completing customer assessments? Some organizations spend upwards of $5M on customer assessments and on-site audits. Many service providers struggle to meet the demand for these requests. They put a strain on resources when effort is taken from the core business function and focused on completing these assessments and on-site audits. As the marketplace continues to increase focus on third party service providers, so does the likelihood that your business will be disrupted. Forward thinking vendors are taking a proactive approach to their customers’ demand for transparency.

Listen to PwC’s informative webcast on Vendor Controls Attestation (SOC 2+) which is a new approach to achieving assurance over vendor controls, eliminating the need for costly customer assessments. Todd Bialick, PwC's Third Party Assurance Leader and Jeff Trent PwC’s Vendor Controls Attestation Leader, hosted the webcast along with PwC’s Julianne Inozemcev and Shona Brady. They provided insight into a new industry-wide Vendor Controls Attestation framework (SOC 2+). This framework allows an independent, standardized assessment which can be shared with customers to meet their needs and save on the time and expense incurred with the questionnaire process.

The webcast focused on the following topics to help companies understand the purpose and benefits of the new Vendor Controls Attestation (SOC 2+).

  • Current methods used to achieve controls comfort over vendor operations and the related challenges
  • Overview of SOC 2+ and how it addresses the challenges of current methods
  • The SOC 2+ service approach
  • Key benefits of SOC 2+ to both vendors and customers
  • Key questions to consider when deciding if SOC 2+ is right for your organization

Access this webcast

Significant Others: Risk and Rewards of Third Party Business Relationships 
February 3, 2015

Third parties are often the partners that we rely on to help keep our businesses running. In today's environment, it's more important than ever for us to have a solid understanding of how our third party providers are organized and what safeguards they hold in place for their own operations.

PwC’s Lillian Borsa, Dan Morrison, and Dean Spitzer, and our panel of industry guests Joe Jurchak, from Synchrony Bank and Cory Notrica, from PepsiCo, address the risks and rewards associated with third party business relationships

Specifically, the webcast highlights areas including:

  • Drivers behind the increased focus on Third Party Business Relationships
  • Organization & governance models and funding
  • Reporting and monitoring
  • Benefits of an effective Third Party Risk Management program

Access this webcast

Pave the way: Build a value driven SAP GRC roadmap
January 29, 2015

Are you fully leveraging your existing SAP technology to automate your processes? Or are you limiting its use mainly for compliance initiatives? Establishing a GRC Roadmap can allow you to reduce the cost of your current processes and potentially improve your control environment. But do you know where to start? Do you know how to get the business buy in for the project or GRC technologies to support the program?

PwC's Jamie Draper, David Hodson, and Jonathan Levitt discuss leading practices in building a business case and a roadmap for your GRC program and technologies.

Specifically, the webcast will present techniques to help you:

  • Establish a business case for a controls optimization project and associated GRC technologies
  • Leverage leading practices to define a roadmap for your GRC program and determine where to start
  • Define priorities and calculate ROI for automation and GRC enablement opportunities
  • Develop an interest at your company and increase the stakeholder-base

Access this webcast

Data at risk! Protecting your intellectual property within SAP
November 13, 2014

How safe is your sensitive data? Many organizations are finding out the answer is “not very.” According to a recent PwC survey, 16% of large organizations reported knowing that outsiders had stolen their intellectual property or confidential data in the last year. PwC’s Jamie Draper, Peter Hobson, and Valerie Lichter discuss leading practices to classify, identify and protect sensitive data within SAP systems.

Specifically, this webcast covers:

  • How to identify different types of sensitive data, processes, or industry regulations that may pose risk
  • How to establish a framework to classify sensitive data within SAP
  • Examples of real risks encountered and solutions provided (such as PII, ITAR, secret recipes)

Access this webcast

The European Data Protection Regulation: What this means for US businesses
November 4, 2014

The proposed General Data Protection Regulation, which is currently proceeding through the European legislature, would introduce widespread data protection changes and greatly increase financial sanctions for noncompliance. These changes are likely to raise significant challenges in regard to data protection compliance for all businesses (regardless of the location of their establishments) that operate or provide goods and services within the European Union (EU).

On this webcast, PwC's Data Protection and Privacy Leader Carolyn Holcomb, along with PwC Data Protection and Privacy Principal Jay Cline, discuss the changes the new law would introduce, its current status, and how US companies can prepare with distinguished lawyers, Stewart Room and James Castro-Edwards from PwC Legal LLP, based in London, England.

The following topics are discussed to help companies understand the main changes and prepare for the new regulation:

  • Background on and current state of the new EU regulation
  • Major proposed changes
  • Impact to US organizations/multinationals
  • Strategies companies should consider now

Access this webcast

2014 State of Compliance: Today’s Challenges, Tomorrow’s Opportunities
June 26, 2014

The webcast, hosted by Sally Bernstein, Principal, PwC's Risk Consulting practice and Andrea Falcione, Managing Director, PwC's Performance GRC practice, provides analysis of the results from PwC’s 4th Annual State of Compliance Survey, including:

  • Insights around 7 key themes that were uncovered in this year’s results
  • Challenges facing today’s CCOs
  • Benchmarking data for corporate compliance officers to understand common industry practices
  • Planning for more effective and efficient compliance operations in the future

Access this webcast

Visualizing SAP: Driving change through enhanced reporting
June 24, 2014

Enhanced dashboard reporting provides clarity to senior management, can establish accountability with business owners, and helps to deliver insights for continuous improvement.PwC's Richard Clark, David Hodson, andJeff Grice discuss and demonstrate methods to improve your routines around Segregation of Duties monitoring, Emergency Access Management, Provisioning, and Process Controls through interactive and visual reporting.

Specifically, this webcast covers:

  • How to gain insights to trends, outliers, and root causes across all four domains;
  • How to establish and monitor key performance indicators;
  • How to establish and monitor compliance to service level agreements; and
  • How to provide summarized dashboards for Process Controls enabled routines.

Access this webcast