2025 Governance, Risk & Compliance Virtual Summit Agenda
Gain actionable insights and practical strategies from the 2025 Governance, Risk & Compliance Virtual Summit agenda. This carefully curated schedule addresses the most pressing challenges in IT governance, compliance, and risk management, delivered by industry-leading experts.
It’s not getting any easier. Every time we turn around there seems to be another attack or threat that demands our attention. While each event is unique, they all result in third-party risk management teams scrambling to ensure their organizations are protected. Rapid responses and emergency assessments can be knee-jerk, stressful and distracting. It doesn’t have to be that way.
Join us for a discussion on the best practices to responding to zero-day vulnerability attacks and conducting emergency assessments. We’ll outline what’s required to prepare in advance so you’re ready to execute when the time comes. From establishing solid communication channels to leveraging automation, we’ll cover the necessary steps and considerations for an effective response plan.
Session attendees will learn:
- How to gain visibility into your entire vendor ecosystem and prepare in advance to reduce both reaction time and exposure to loss
- How to quickly identify which third parties require follow-on action based on each specific threat actor or vulnerability
- How quick-assess campaigns can automatically scope, distribute, and score responses
Convincing leadership to invest in GRC programs requires more than data – it demands a compelling story. In this session, LogicGate will show you how to translate risk and compliance insights into digestible, results-driven narratives that resonate with stakeholders, demonstrate quick wins, and highlight long-term ROI. Learn to craft narratives that resonate with leadership, address objections, and secure lasting board buy-in. Join us to position GRC as a key driver of organizational success.
As GenAI evolves, its impact on IT security and business operations deepens. This session will explore the accelerated rollout of GenAI, shifting from simple chatbot interactions to more complex AI applications in 2025. IT security leaders will face new challenges as AI apps interact directly, generate problematic responses, and raise cost concerns. The rapid adoption of GenAI will intensify the need for flexible controls, governance, and compliance.
In today’s volatile and complex risk management landscape, legacy approaches to addressing governance, risk, and compliance and risk are no longer effective. Fast-moving geopolitical, cyber, audit, and regulatory risks call for a proactive, connected risk and compliance strategy. In this session, we will explore what connected GRC means, including the role of AI, and how it can drive resilience and growth across your enterprise.
All times listed on the agenda are in Eastern Time.
Thursday, March 6
As the world’s first Chief AI Ethics Officer, Kay Firth-Butterfield has thought deeply on harnessing the benefits of AI in a responsible way. Part of that equation is strong and smart governance, risk and compliance protocols. Firth-Butterfield will discuss the growing importance of GRC in protecting against AI-driven threats and other cyber risks as well as explore various risk frameworks in corporate and policy implementation as a way to measure AI risk. Much is being said about the end of regulation for AI in the US, which thrusts GRC onto the center stage for all companies seeking successful outcomes with AI.
Now it’s your chance to join the conversation with AI ethicist Kay Firth-Butterfield. Bring your big questions about navigating the AI regulatory landscape and its impact on business operations, strategies for building trust with customers and employees regarding AI systems, and the potential for AI to create new jobs and enhance human capabilities. The focus of this live, moderated discussion will be up to you.
The work never ends. Every year, companies onboard more third parties. And every year, the assessment workload gets worse. More resources to help? Not going to happen. If this sounds familiar, you’re not alone. The good news is it doesn’t have to be that way. It’s time the flip the script and cut back on assessment questionnaires. The newest risk exchange models are eliminating 80% of questionnaire requests with data. Join us to learn how to instantly perform inherent risk analysis on your entire vendor portfolio; incorporate real-time risk data into your process to reduce questionnaire requests; map your questionnaire and controls to industry-standard frameworks or threat profiles to get the information you need with fewer questions; access assessment data on large, hard-to-assess third parties that don’t respond to you; and monitor 100% of your portfolio – not just your critical vendors. TPRM doesn’t have to be the most painful process in your company. Start your program’s evolution now.
Even the best-run organizations are naturally non-compliant. As soon as they reach perfect compliance, a new patch, configuration or regulation will put them out of compliance. The focus instead should be on achieving continuous compliance. Join us to learn how to operationalize compliance by establishing security and regulatory policies, which leads to better resiliency against cyberattacks and other emerging risks. The result? A position of strength for business growth and efficiency.
Take a moment to recharge! Use this 5-minute break to grab a drink, stretch, or reset your focus before diving back into the next session of our virtual summit. See you shortly!
Business can’t afford to ignore the trust implications associated with generative artificial intelligence technologies. Join us to explore issues related to the generation of realistic and potentially sensitive content, addressing concerns such as data privacy and the misuse of generated content. IT leaders are also contending with an uncertain regulatory environment in the US at the federal and state levels as well as overseas. We will also share essential guidance for organizations to enable responsible development and use of generative AI technologies.
Dive into a series of rapid-fire 5-minute videos packed with actionable market insights. Each segment is designed to tackle your biggest challenges in IT Governance, Risk, and Compliance, providing practical solutions and innovative strategies you can implement right away.
Close Your TPRM Vulnerability Gap, presented by ProcessUnity
AI-Powered Risk Management by MetricStream, presented by MetricStream
The Network is the Thing: Why a Network-based Approach is Best for GenAI Security, presented by WitnessAI
Beyond Compliance: How to Showcase GRC’s Strategic Impact,presented by LogicGate
As AI continues to revolutionize industries, the way we govern data is undergoing a fundamental shift. This discussion will explore how AI technologies like machine learning and natural language processing are reshaping traditional data governance frameworks; navigating the ethical implications of AI, including fairness, transparency, and accountability; and balancing innovation with robust security measures to protect sensitive data.
Risk management touches all aspects of Citi’s operations, so getting accurate information faster leads to better business outcomes. In this conversation, Citigroup CIO Jonathan Lofthouse will discuss the new Xing Platform for risk analytics – part of a companywide digital transformation effort – and share the benefits, strategies to overcome challenges, and what others can learn from the approach.
