September 19 - 21, 2022 | Miami, FL and Virtual
REGISTER NOW
Program

There’s no better way to learn about Archer than by hearing from the people who create and deliver the products and services you use. Archer speakers aren’t just leaders within Archer, they’re leaders in their field. Breakout sessions offer a view into the work of customers who are pushing the boundaries of what’s possible with Archer and developing powerful use cases in their industries or organizations.

Virtual Summit: Archer Virtual Summit will take place on Tuesday, November 1, 2022. The virtual Summit will feature keynotes and 10 curated sessions from the live agenda. More info to come!

Live Agenda (subject to change and all activities are ET)

Join us for highly informative sessions that will help you:

  • Build INSIGHT and improve business decision making with risk quantification and effective executive reporting
  • COLLABORATE and engage across your business for risk and compliance assessments
  • ORCHESTRATE your program with efficient processes for business resilience, third party risk, ESG and more!
  • NETWORK your solutions and integrate into your existing infrastructure
  • Learn from SUCCESS stories from across the customers
  • Get technical, hands-on experience in LEARNING LABS

Click to see the Virtual Agenda

˅

Keynote: Welcome to Archer Summit

Keynote: Product Updates and Roadmap

Engage for Vendors - Past, Present, Future

˅
Speakers:
Wesley Loeffler, Product Manager, Archer
Abstract:
Risk management is no longer confined to the role and responsibility of risk managers. In this session we will discuss Archer's Engage for Vendors offering. Detailing the industry trends that influenced design decisions, discussing recent updates, and providing an in-depth preview of planned enhancements on the Engage for Vendors roadmap.  

Don't "Audit" this Session!  

˅
Speakers:
Corey Carpenter
, Consultant, Product Management, Archer
Abstract:
Join us as we talk about the updates that we have made to the Audit Management Solution Area.  We will highlight the functionality changes that include the expansion of scoping options, the inclusion of Evidence Repository and Observations, as well as an overall focus on Risk-based Auditing.  This will be a deep dive into the updated Solution with a demonstration of how it all fits together and discussion around how to best utilize all of the new features.

The Role of Risk Quantification in Integrated Risk Management

˅
Speakers:
David Vose
, Vice President, Risk Management, Archer
Abstract:
As both internal and external business pressures continue to heighten the focus on the Risk Management function, the interest in improving the executive level understanding of risk reporting is also rapidly growing. Typically, the gap that exists stems from the lack of a common language for risks and mitigating or compensating controls that is based on quantitative financial impact. Join Archer’s leading experts on Quantitative Risk analysis to learn more about how your organization can benefit from some of the tools and techniques already in use.  

All About the Admin: What’s New and Improved in the Back Office?

˅
Speakers:
James Griffith
, Director,  Engineering, Archer
Abstract:
Let’s face it. Over the past 18 months of uncertainty and craziness, keeping track of all of the Archer Platform releases since the previous Archer Summit has probably not been top of people’s minds. But now we’re all back together in Orlando, there’s a great opportunity to review what’s been added. A big part of the excitement will revolve around the slick new back office, and we’re very pleased to walk you through that and look at what works the same way, with just a new look, and what’s changed. Not to mention what’s coming in the near future to further enhance it. But while that will be the star attraction there is more change packed into recent Archer releases, with new APIs, Advanced Workflow improvements, Performance and Search enhancements and more.  

A Business Love Story: How to get Engaged in an Hour

˅
Speakers:
Corey Carpenter
, Consultant, Product Management, Archer
Abstract:
Interested in learning more about what Engage for Business Users can do for your organization?  This session will showcase all of the new and exciting functionality that the Engage for Business Users product has to offer!  We will talk through possible use cases, give a demonstration of the functionality, and a roadmap of all of the new and exciting features we are working on.

Design for End Users  

˅
Speakers:
Arti Deshpande
, Director, Experience Design, Archer
Abstract:
Archer is such a powerful tool...and with great power, comes great responsibility. Learn how you can use usability principles to leverage your powers for good, creating end user experiences that are intuitive and valuable for your end users.

Simplifying Operational Resilience with Archer

˅
Speakers:
Wesley Loeffler
, Product Manger, Archer
Abstract:
If the past year taught us anything it is that organizations must be prepared for disruption - whether it is a natural disaster or an emerging threat. Join us as we discuss Archer's upcoming Operational Resilience offering, its alignment with global regulatory guidelines, key features, and how it can be used by organizations of all sizes and maturity levels to begin their operational resilience journey.  

The NEW Archer Community: Coming Soon to a Risk Battleground Near You

˅
Speakers:
Susan Read-Miller. Senior Manager
, Product Management, Archer
Patrick Potter
, Risk Strategist, Archer
Abstract:
Archer Avengers – the NEW Archer Community is an online alliance of resources where fellow risk warriors band together, learn from each other’s experiences, grow our integrated risk management capabilities, and banish risk in our organizations forever! Join this session to learn more about the new Archer Community user experience and how you can get the most out of its valuable resources, ideas, best practices, and connections with fellow risk warriors to help conquer your risk management foes!

Are you Ready for CMMC (Cybersecurity Maturity Model Certification)?  

˅
Speakers:
   Phil Freund
, Consultant Product Manager, Archer
Matthew Titcombe
, CEO & Information Security Consultant, Peak InfoSec
Abstract:
Ready or not CMCC is coming! Companies can no longer self-certify, and the CMMC is a pass/fail certification. It'll be a tough journey with lots of trials and tribulations, but Archer will help you. Join us as we review the CMMC deadlines, how to get ready, and best practices for passing the CMMC audit. Also we will take you through several real-life examples including how the Department of Defense's new cybersecurity certification applies to any company with a government contract.  
Sunday, September 18, 2022

03:00 pm – 06:00 pm

Registration Open

09:00 am – 03:00 pm

Optional  Pre-Conference Training - Journey to Excellence: Building Your Archer Skills  for the Long Haul

˅

Be an Archer Leader, not just an Archer Administrator. Join us to learn:

·      Know how to gain maximum value of all Archer features, functions, and capabilities in agile deployments

·      Practice with hands-on exercises in the IRM Risk domains of your choice

·      Build depth in your reporting experience

·      And pick up a few new tips and tricks

If you would like more information about the course agenda, please reach out to: jim.tripodi@archerirm.com or click here

Monday, September 19, 2022

09:00 am – 06:00 pm

Registration & Info Desk Open

09:00 am – 03:00 pm

Optional  Pre-Conference Training - Journey to Excellence: Building Your Archer Skills  for the Long Haul

˅

Be an Archer Leader, not just an Archer Administrator. Join us to learn:

·      Know how to gain maximum value of all Archer features, functions, and capabilities in agile deployments

·      Practice with hands-on exercises in the IRM Risk domains of your choice

·      Build depth in your reporting experience

·      And pick up a few new tips and tricks

If you would like more information about the course agenda, please reach out to: jim.tripodi@archerirm.com or click here

‍‍04:30 pm – 06:00 pm

06:00 pm – 09:00 pm

Opening Keynotes

Welcome Reception sponsored by Crowe

Tuesday, September 20, 2022

08:00 am – 09:00 am

08:00 am – 05:00 pm

09:00 am – 10:30 am

10:30 am – 10:45 am

10:30 am – 6:00 pm

10:45 am – 12:00 pm

12:00 pm  – 1:00 pm

Breakfast sponsored by RiskRecon

Registration & Info Desk Open

Keynotes

Networking Break

Partner Pavilion Open

Industry User Group Meetings or Networking time

Lunch sponsored by Supply Wisdom and CastleHill

01:15 pm – 02:00 pm

Breakout Sessions (Click for Breakout Session Information)

˅
01:15 pm – 02:00 pm
Dynamic Risk Assessment: Evolution of an ERM Solution
˅
Speakers:
Amanda Perrone, Sr Advisor, GRC Program, Dell
Lisa Semeraro, GRC Program Manager, Dell
Track: INSIGHTS
Abstract:
Learn how Dell Technologies has created a solution that allows business teams to document business risks in a risk register, track the trend of their risks over time, document mitigation activities, and track KRIs. Through a combination of Archer functionality and an integration with PowerBI, we are able to offer consistent reporting and a flexible ecosystem for over 20 business teams.
01:15 pm – 02:00 pm
Sallie Mae: Our Third-Party Management Archer Journey
˅
Speakers:
Grant  Chleborad, Director, Vendor Management/Procurement, Sallie Mae
Katherine Edwards,  Senior Director  Vendor Management, Sallie Mae
Track: COLLABORATE
Abstract:
Sallie Mae is an industry leader in the student loan space, with a mature and robust Third-Party Management program. Three years ago, we began a journey to build an Archer solution to improve productivity, streamline and automate processes, and reduce our technology footprint.  This session will describe how Archer and its various features and functionality are used on a daily basis to support the program.
01:15 pm – 02:00 pm
Robotic Compliance: a New Way of Automated Compliance using Archer
˅
Speakers:
Ahmed  Nazer, eGRC Team Lead in Saudi Aramco
Track: ORCHESTRATE
Abstract:
Robotic Compliance: a New Way of Automated Compliance using Archer We have successful stories in implementing proactive compliance using Archer platform which saved Saudi Aramco company and helped adhering to the governing policies and controls. Proactive compliance highlights potential deviations in crucial processes helping to attend to these issues before happening. The presentation will shed the light on the pioneer way of doing proactive compliance using Archer and integrating with backend systems such as SAP to automate the compliance process.
01:15 pm – 02:00 pm
ESG Reporting Fundamentals
˅
Speakers:
Thomas Peterson, Associate Systems Engineer, Archer
Track: NETWORK
Abstract:
Consumers, investors, and regulators are demanding that organizations provide climate and sustainability-related information with their financial disclosures. To help organizations provide useful information, dozens of standard creators have rushed to the scene, such as GRI, SASB, ISSB, TCFD, CBD, CDSB, MSCI, and more. Organizations of all sizes must understand the complex environment of ESG, adopt new processes, and set up entirely new roles to take on the challenges presented by ESG. In this session, we will demystify the requirements around ESG, learning about the topics included in ESG, the standards that are out there to guide us, the requirements from the regulators, and the processes are found in mature ESG programs. By the end, it should be clear how Archer can help tackle these issues and automate the massive workload being asked of sustainability teams.
01:15 pm – 02:00 pm
BECU’s Journey to Measure Cybersecurity Risk
˅
Speakers:
Chris Grant, VP Cybersecurity Governance and Risk Operations, BECU
Alan Wilson
, Director Cybersecurity Risk Management, BECU
Track: SUCCESS
Abstract:
Like many organizations, BECU experienced challenges while building out their Cybersecurity Risk Management program. BECU’s Information Security Risk Assessment (ISRA) lacked the rigor required by their regulators as well as leadership to measure cyber risk. The program did not keep pace with BECU’s updated Cybersecurity Governance Framework, nor their maturing Enterprise Risk Management program. Furthermore, the program lacked clear oversight and accountability. BECU recognized the importance of building a program informed by their Cyber Framework, aligned programmatically with ERM functions, and most importantly a program that would drive integrity and actionable intelligence. BECU set out on a journey to build a program that would assure management as well as their regulators that cyber risk was effectively captured, measured, and treated. This presentation will reflect on how BECU leveraged Archer; including Authoritative Sources, Application Module, Enterprise Control Deficiency Program, as well as their Enterprise Risk Taxonomy to build an effective and robust ISRA.
01:15 pm – 02:00 pm
Accessorize Your Archer with the New Archer Enhanced User Experience Tool & Utility
˅
Speakers:
Mita Majethia,
Advisory Sales Engineer, Archer
Themistocles Chronis,
Principal Consultant, Archer
Track: LEARNING LABS
Abstract:
Join us as we take a deep dive into the installation and overview of newly released Archer Enhanced User Experience Tool & Utility. This first in a line of new and exciting Archer developed packages and associated utilities provide customers a quicker time-to-value by simplifying the user experience and implementing best practices on an instance-wide level as well as through modifications made to specific commonly used modules. This lab will walk administrators through the installation process as well as how to configure newly established calculated fields and associated custom objects that come part of these new packages which will enhance Archer’s record page experience.

02:15 pm – 03:00 pm

Breakout Sessions (Click for Breakout Session Information)

˅
02:15 pm – 03:00 pm
Zions Bancorporation - Our Journey to Integrated Risk Management Through Partnership with Archer
˅
Speakers:
Matthew Sorenson, Archer Administrator, Zions
Track: INSIGHTS
Abstract:
Zions Bancorporation, a major financial services company chose in 2019 to implement Archer following an unsuccessful deployment of MetricStream's GRC solution. To date, Zions has partnered with Archer Professional Services, using onshore and offshore developers, to implement complete solutions for Issues Management, Third-Party Risk Management, Operational Risk Management, New Initiative Review, Regulatory and Corporate Compliance Program Management, and Information Security Risk Management. The Zions' Archer team has successfully demonstrated ROI for each solution implementation, leading to executive support to further investment in the solution, and successfully displaced MetricStream in March of 2022. With each solution implemented, Zions is seeing the value of a true integrated risk management solution.
02:15 pm – 03:00 pm
Take your Archer expertise to the Next Level with the Archer Community
˅
Speakers:
Susan Read-Miller, Senior Manager, Product Management, Archer
Yasmine Dowidar
, Archer Community Manager, Archer
Track: COLLABORATE
Abstract:
The NEW Archer Community introduced earlier this year was designed just for you! It provides an online resource where you and your fellow risk practitioners can learn from each other’s experiences and grow your integrated risk management capabilities. Join this session to learn more about the new Archer Community user experience and how you can get the most out of its valuable resources, ideas, best practices, and connections with fellow risk practitioners.
02:15 pm – 03:00 pm
Multi-Million Dollar Case Studies on Risk Quantification
˅
Speakers:
Alex Sidorenko,
Director, Risk Academy
Track: ORCHESTRATE
Abstract:
Join Alex Sidorenko, Risk manager of the year, FERMA, 2021, Honourable mention 2021, RIMS, who will share a number of case studies on how risk quantification allowed his company to save millions on better insurance coverage, lower 3rd party performance risk and improved investment and capital decision making.  

Under Alex's leadership corporate risk management became integrated into the day-to-day management and operation of the business and integral part of company culture. The introduction of quantitative risk analysis changed how investment decisions were prepared and discussed at the Board (stress tests and NPV@risk), how insurance decision were made (loss exceedance curves, claims probability distributions), how performance was measures and businesses remunerated (risk-adjusted net margins, risk capital charges), how large IT projects were implemented (cost and schedule quant risk analysis), how pricing and accounts receivables were managed (cVaR), how compliance issues were prioritised (stochastic bow ties), limiting market risk exposure (VaR, limits, stop losses), how ESG risks were quantified and mitigated (stochastic risk models) and so on. In this short session Alex will share a few case studies that made the greatest impact.
02:15 pm – 03:00 pm
Tool Time - Power up Archer with PowerShell scripts and Archer API
˅
Speakers:
Jeff Letterman, Senior Principal Engineer, Archer
Track: NETWORK
Abstract:
An iconic feature of past Summits, this session will see the latest tips and techniques for Admins to get the most out of configuration data that lives inside their systems, using the Archer APIs and Powershell. Hour-saving examples include downloading all the attachments on a subset of records, exporting Archer metadata into a CSV data dictionary and parsing error log files to make them more consumable.
02:15 pm – 03:00 pm
Technology Asset Risk Assessments - from Qualitative to Quantitative
˅
Speakers:
Holly Bailey
, Enterprise Protect GRC Product Owner, TD Bank
Jason Lindsley
, Platforms & Technology Risk Services, TD Bank
Kathleen Uy-Favis, Senior Manager CISSP ABCP, Cyber Scenario & Threat Analysis/Platforms & Technology Risk Services, TD Bank
Track: SUCCESS
Abstract:
This session will address how a financial institution leveraged the assessment development capabilities in Archer to take the technology asset risk assessments from a qualitative assessment subject to a high degree of bias to a more quantitative and formulaic assessment to reduce assessor bias and enhance consistency which then provided more meaningful input for downstream assessments and issues management.
02:15 pm – 03:00 pm
Engaging with Engage: Setting up your Business Users and Vendors for Success (part 1)
˅
Speakers:
Douglas Heller, Software Quality Principal Engineer, Archer
Michelle Zhong
, Software Principal Engineer, Archer
Track: LEARNING  LABS
Abstract:
In this lab, you will learn about one of the newest product offerings from Archer, Archer Engage. Archer Engage extends participation in Integrated Risk Management processes beyond Risk Professionals delivering a streamlined user experience for not only the organization's Business Users, through “Engage for Business Users”, but also Third Parties required to provide inputs to risk programs with “Engage for Vendors”. Archer Engage products can be leveraged by the end user from both Mobile Devices and the Desktop. Join this lab to learn how to configure the Engage solution to support Record Creation and publishing Requests/Assessments and see how Engage can enhance the Archer User Experience.

03:00 pm 03:30 pm

Networking Break

03:30 pm – 04:15 pm

Breakout Sessions (Click for Breakout Session Information)

˅
03:30 pm – 04:15 pm
How to Win Over and Engage End Users
˅
Speakers:
Andrea Dollen, Senior Manager, Crowe   Gayle Woodbury, Partner, Crowe
Track: INSIGHTS
Abstract:
Join Crowe for an interactive session to brainstorm and share ideas of what works and doesn't work to win over your end users.  Whether you are an executive, a power user, or an admin, end user engagement is critical in building a successful deployment and program.
03:30 pm – 04:15 pm
Archer - Sky is the Limit
˅
Speakers:
Narender Manoharan, Lead Manager - Information Security, Infosys
Track: COLLABORATE
Abstract:
Archer Deployment at Infosys has been one of the Asia's largest deployments with more than 8 million records, 75+Data feeds and 50+Live Applications. Prior to the Archer integration, Infosys was challenged with manually needing to collate information to present the Cyber Security Posture. This led to inconsistent controls and constantly changing compliance frameworks, lack of complete risk visibility and ownership, information silos which led to integrity issues and outdated reporting during audits. Currently Infosys is using multiple use cases including Risk Management, Vulnerability & System Compliance Management, Exception & Remediation Management, and Compliance Assessment Questionnaires to track organization wide objectives. Join us as we discuss lessons learned, pitfalls and successes
03:30 pm – 04:15 pm
Using Archer to Streamline Disaster Recovery Events and Exercises
˅
Speakers:
Diane O'Brien
, Senior Director, Insurance Provider
Brenda Callaway
, Divisional Vice President, Insurance Provider
Track: ORCHESTRATE
Abstract:
Having a robust GRC Tool to centralize both the Business and Technical data has allowed a large insurance provider to develop an Enterprise Business Resiliency Program to respond to business disruptions. We have 1 data source, from Business Impact Analysis (BIA) to BC and DR exercises. Business requirements are collected through the BIA process, merged with data from other corporate systems and fed into BC and DR plans. BIA data generates scope for BC & DR exercises. Working with Archer Professional Services, we have developed a process to manage technical recovery. Dependencies documented in DR plans are fed into an Archer tool to sequence recovery, from servers through middleware, databases and applications. The sequence is loaded into an Archer dashboard which is used by participants to mark progress and by leaders to detect slowdowns and intervene.
03:30 pm – 04:15 pm
It’s Not Just Math: Applying Risk Quantification to Benefit Your Business
˅
Speakers:
Graeme Keith, Global Professional Services Lead for Risk Quantification,  Archer
Shelley Migliore
, Senior Systems Engineer, Archer
Track: NETWORK
Abstract:
Too many organizations are simply “reporting” on risks with statements like “we have this many high risks and that many medium risks.” While this may start the conversation, these statements don’t tell the business where to invest to mitigate risk or where to take on risk to exploit an opportunity. This ultimately results in wasted money and efforts to control risks and limits an organization's future prospects. Join us to learn more about Archer Insights and why risk quantification is a better way to measure and manage risk.
03:30 pm – 04:15 pm
Age is just a Number: How to Successfully Upgrade Archer from Older Versions
˅
Jose C. Garcia, CEMEX    
Carlos Kornhauser,
CYBOLT GRC Director
Track: SUCCESS
Abstract:
Join CEMEX, a global leader of integrated heavy building materials company focused on four core businesses—Cement, Ready-Mix Concrete, Aggregates, and Urbanization Solutions share their success story. From launching Archer in 2013 to address their initial IT Risk requirements to their solution today incorporating business expansion strategies into new markets, changes in   corporate audit management, enterprise risk management, third party risk management, and business resiliency management. Through processes, mechanisms and tools generated by Cybolt, CEMEX achieved a semi-automated migration of information and customized fields which allowed them to update the platform in a record time without losing any of the data while evolving CEMEX’s GRC model to leverage the new functionalities and advantages of the platform.
03:30 pm – 04:15 pm
Engaging with Engage: Setting up your Business Users and Vendors for Success (part 2)
˅
Speakers:
Douglas Heller, Software Quality Principal Engineer, Archer
Michelle Zhong
, Software Principal Engineer, Archer
Track: LEARNING LABS
Abstract:
In this lab, you will learn about one of the newest product offerings from Archer, Archer Engage. Archer Engage extends participation in Integrated Risk Management processes beyond Risk Professionals delivering a streamlined user experience for not only the organisation’s Business Users, through “Engage for Business Users”, but also Third Parties required to provide inputs to risk programs with “Engage for Vendors”. Archer Engage products can be leveraged by the end user from both Mobile Devices and the Desktop. Join this lab to learn how to configure the Engage solution to support Record Creation and publishing Requests/Assessments and see how Engage can enhance the Archer User Experience.

04:30 pm –  6:00 pm

07:30 pm – 9:30 pm

10:00 pm – 1:00 am

Partner Happy Hour

"Taste of Miami" Dine Around

"Archer After Dark" Party sponsored by EY

Wednesday, September 21, 2022

08:00 am – 09:00 am

08:30 am – 10:00 am

10:00 am – 05:30 pm

Optional Sunrise Yoga or Fun Run

Breakfast sponsored by Karta

Partner Pavilion Open

10:15 am – 11:00 am

Breakout Sessions (Click for Breakout Session Information)

˅
10:15 am – 11:00 am
The Journey of Integrating an Existing Enterprise Risk model with Archer Insight
˅
Speakers:
Daniel Zettler
, Latam Delivery Services Manager, UBIQUO
Gabriel Espinel
, Risk Manager, YPF
Track: INSIGHTS
Abstract:
After having an established risk program for several years, YPF was seeking for the next step in its program evolution. The obvious move was to start quantifying risks, to improve their risk taxonomy, visibility and impact communication. YPF started then a journey to bring Archer Insight to its risk program as the core component for risk quantification, going through all the process of understanding Archer Insight, the changes it required to the core risk program and the new activities and skills required to keep their successful risk journey.
10:15 am – 11:00 am
Growing a Midsize Bank by Expanding Archer as your Full Service GRC Platform
˅
Speakers:
Brad Gainey
,  SVP – Risk Operations, SouthState Bank
Track: COLLABORATE
Abstract:
At SouthState, we have taken on the task of deploying Archer as the Bank’s primary GRC tool in a broad spectrum, including overall integration of applications such as Risk Assessment/Risk Scoring,  Issues Management, Metrics, Complaints, Model Risk Management, Internal Audit, Compliance Testing/Monitoring, InfoSec, as well as documentation of Control procedures and SOX requirements. This presentation is intended to provide insight into the journey of standing up Archer for a growing mid-size bank, including the historical timeline as well as forward looking roadmap initiatives as we mature the platform.  This deployment is overseen by a newly formed Archer Governance Committee chaired by our Chief Risk Officer. Annually, we focus on key areas of enhancement to benefit the user community, and schedule updates and configuration changes based on prioritized roadmap initiatives. With a focus on integration across the functional business lines, we continue to enhance our use of workflow and other automation logic to inform the various risk disciplines throughout the Company. Additionally, Dashboards and iViews help organize data for Users based on role and group permissions, while Archer continues to be the backbone of Executive reporting through Board Risk Committee.
10:15 am – 11:00 am
Monitor and Manage Risk in your Vendor Ecosystem with Archer TPRM, TPSRM and Engage
˅
Speakers:
Wes Loeffler,
Senior Product Manager, Archer
John Chisum,
Vice President, Solutions Consulting, RiskRecon/Mastercard
Track: ORCHESTRATE
Abstract:
The average cost from the fallout of a multi-party data breach is $90M. As cyber risk factors like ransomware, zero-days, and open-source vulnerabilities continue to evolve, organizations need to have full visibility into the security posture of the vendors in their digital supply chain so they can continuously monitor, track, and stop third, fourth, and Nth party threats in their tracks. During this session, we will discuss industry trends such as the proliferation of third parties, advanced persistent threats, location-based risk, and assessment fatigue, and demonstrate how Archer Third Party Risk Management, Third Party Security Risk Monitoring and Archer Engage helps to mitigate the risk associated with these trends.
10:15 am – 11:00 am
Why Archer SaaS?
˅
Speakers:
Brian Schaefer, Product Manager, Archer
Ryan McNair
, SaaS Technical Product Owner, Archer
Track: NETWORK
Abstract:
Hear the experiences from a customer who’s been there, done that. Discussions include compelling events, obstacles, challenges, and their migration experience, along with Archer Product Managers to provide more details and answer your SaaS questions.
10:15 am – 11:00 am
Moving towards investor-grade ESG reporting
˅
Speakers:
Derek Pryzbylo,
Principal, Ernst & Young LLP
Liz Matson,
PE, Senior  Manager, Climate Change and Sustainability Services, Ernst & Young LLP
Track: SUCCESS
Abstract:
The environmental, social and governance (ESG) landscape is rapidly evolving, driven by increasing demands from investors, regulators and other stakeholders. The need for high-quality disclosures and better-managed ESG activities through better use of data and key ESG metrics is expected to be critical for organizations’ future. In this session, we will provide an introduction to ESG, an ESG market overview and insights into the EY and Archer ESG accelerator solution. The accelerator solution assists organizations prioritize metrics, associate ESG controls to metrics, document control procedures, capture related evidence and test ESG controls.
10:15 am – 11:00 am
Archer Insights: Hands on Lab (part 1 of a double sessions)
˅
Speakers:
Bruce Alison, Software Engineering Manager 2, Archer
Blake Silvernail
, Sales Engineer, Archer
Shelley Migliore
, Sales Engineer, Archer
Track: LEARNING LABS
Abstract:
Join us for a deep dive into how Archer Insight works. We will discuss an overview of the data structure, configuration and requirements of getting the most out of Risk Quantification. Users will learn how to create the elements of a bowtie and provide quantifiable data along the way for a true quantified outcome.

11:15 am – 12:00 pm

Breakout Sessions (Click for Breakout Session Information)

˅
11:15 am – 12:00 pm
Ramping up: An overview of the Texas Implementation of the Archer platform
˅
Speakers:
Matthew Kelly
, Deputy Chief Information Security Officer for Policy and Governance,  Texas Department of Information Resources
Raine Drosdick,Senior Consultant, Archer
Track: INSIGHTS
Abstract:
Texas initially Implemented Archer as the Statewide Portal for Enterprise Cybersecurity Threat, Risk, and Incident Management (SPECTRIM) in 2014.  Since that time, we have continually added features and functionality leveraging Archer Professional Services. Most recently, the state legislature charged the Texas Department of Information Resources (DIR) with standing up a Texas Risk and Authorization Management Program (TX-RAMP). DIR has configured SPECTRIM to process assessment requests, launch assessments using Archer Engage for Vendors, and complete reviews of returned assessments while keeping track of a significant number of cloud service providers and services. This session will talk about some of the challenges in managing an instance with over 230 organizations, and how Archer has helped coordinate and collect information across the state.
11:15 am – 12:00 pm
FNZ: Risk and Resilience in Real Time
˅
Speakers:
Kirsty McLaughlin, Head of Global Risk Systems, FNZ
Track: COLLABORATE
Abstract:
How the challenge of taking risk data and presenting in meaningful ways to "non risk" stakeholders can be managed, and how FNZ utilized the dashboarding capability of RSA Archer to support governance based reporting. Share how we addressed the need for risk based reporting across our data sets, supporting both real time risk reporting and longer term strategic risk analysis.  This would be a session highlighting the importance of data relationships and how Archer allows FNZ to associate items to each other, to build a bigger picture of our risk and resilience landscape.
11:15 am – 12:00 pm
Automated Cyber Control Selection for IT assets
˅
Speakers:
Eric  Schine,
Senior Manager, Archer IRM Chief Architect, Ernst & Young LLP    
Blake Varner,
Senior Manager Cybersecurity, The Home Depot
Track: ORCHESTRATE
Abstract:
This session will provide an overview of a modified controls assurance use case that has been enhanced to allow Archer to recommend applicable control standards for applications and devices through asset and control profiling. We will discuss the business need and methodology as well as the technical implementation guidance and pitfalls.
11:15 am – 12:00 pm
Ask the Admin Panel
˅
Speakers:
James Griffith, Sr. Director, SW Engineering, Archer
Track: NETWORK
Abstract:
Archer can be big and complex and challenging at times. Fortunately our friendly community is filled with people willing to help and and provide advice on what works and what doesn't. Come explore the magic that your fellow Archer Administrators have been able to work!
11:15 am – 12:00 pm
Archer Engage and SS&C; A Journey from Implementation to Full Production
˅
Speakers:
Rustin Schemm, Director, Operations and IT Risk, SS&C
Track: SUCCESS
Abstract:
In December 2020, SS&C set out on a journey to transition its spreadsheet-based Vendor Risk Management program into Archer and Archer Engage for Vendors to improve efficiency, effectiveness, and responsiveness. This journey involved linking our on-premises Archer to Archer Engage for Vendors and building out a series of programs to address the unique needs of US, International, and Healthcare business lines.  Along the way, we’ll discuss lessons learned and highlight metrics showing improvements in program operation, concluding with the approach taken to provide a responsive capability for annual and targeted vendor engagements.
11:15 am – 12:00 pm
Archer Insights: Hands on Lab (part 2 of a double sessions)
˅
Speakers:
Bruce Alison, Software Engineering Manager 2, Archer
Blake Silvernail
, Sales Engineer, Archer
Shelley Migliore
, Sales Engineer, Archer
Track: LEARNING LABS
Abstract:
Join us for a deep dive into how Archer Insight works. We will discuss an overview of the data structure, configuration and requirements of getting the most out of Risk Quantification. Users will learn how to create the elements of a bowtie and provide quantifiable data along the way for a true quantified outcome.

12:00 pm – 01:10 pm

Lunch

01:15 pm – 02:00 pm

Breakout Sessions (Click for Breakout Session Information)

˅
01:15 pm – 02:00 pm
An Integrated Approach to Sustainability, Risk Management and Compliance: the case of Poste Italiane
˅
Speakers:
Fabrizio Ferri, Head of Group Risk Monitoring & Reporting, Poste Italiane
Track: INSIGHTS
Abstract:
This session will cover the adoption of Archer’s GRC platform to accelerate the integrated management of sustainability, risk and compliance issues in the complex context of an Italian company offering highly diversified services. Over the past few years, the platform has been developed with many new functionalities within the integrated risk management processes, becoming the widest Archer GRC system in Europe in terms of risk and compliance areas covered. Poste Italiane has identified, analyzed and managed more than 3.500 risks, related to 170 processes with more than 1.000 risk owners, 20 risk specialists and 50 compliance specialists, 600 action plans, 500 KRI and over 4.000 controls. Archer’s GRC platform has created many advantages for the different risk specialists and has created synergies within the risk management activities, an easy exchange of information, the reduction of redundancies as well as the possibility to create integrated or subject-related dashboards according to the specific needs.
01:15 pm – 02:00 pm
Conflicts of Interest Call for Archer and Engage (For Business)!
˅
Speakers:
Tim Belardi, VP Integrated Risk Solutions, Risk Operations, Highmark Health
Shanti Ramaiah
, Manager, Integrated GRC Technology, Highmark Health
Track: COLLABORATE
Abstract:
Learn how one large, complex health care organization saved time and money by leveraging Archer to deploy and manage their conflicts of interest compliance program.  In this session we'll share the use case setup and illustrate how Archer can be used to centrally manage conflicts of interest, disclosures, and action planning compliance.  Also, we'll share our Archer Engage (for Business) connector learnings and how Engage will be used to reach external stakeholders who must also complete conflict of interest disclosures and attestations, but are not routine users of Archer.  We'll share our tips and lessons learned when setting up the Engage connector.
01:15 pm – 02:00 pm
Balancing Stakeholder Desires and Technical Capabilities - Ally Casestudy
˅
Speakers:
Amy Donde, Compliance Director, Ally Financial
Peter Martin
, Principal, CastleHill Risk Management Solutions
Track: ORCHESTRATE
Abstract:
New integrations always present a basic set of challenges. Getting new users into Archer to perform their job (or perform their job differently), and working with them to develop their new process can add another level of complexity.  In this presentation we will talk about Ally's efforts to build out an enhanced process for regulatory change management utilizing a Wolters Kluwer integration to support automation, as well as advanced workflow. This includes highlighting the approach used to balance variable stakeholder requirements and expectations. Hear how CastleHill Managed Risk Solutions worked with Ally Financial to embark upon what can often be a harrowing, complicated journey, and how they successfully navigated through commonly encountered pitfalls throughout the process.
01:15 pm – 02:00 pm
Making a Splash with Archer Dashboards
˅
Speakers:
Anand Deshpande, Sr Manager Product Management, Archer
Track: NETWORK
Abstract:
Archer Dashboards have been rapidly evolving over the past few releases, with new charts and engaging visualizations added on a regular basis. Join us for a tour of these capabilities, followed by an exciting deep dive into the future of Archer Dashboards and their forthcoming transformation.
01:15 pm – 02:00 pm
Erste Case Study: Looking Back and Moving Forward
˅
Speakers:
Festim  Dedinca,
Security Developer, Erste Digital
Track: SUCCESS
Abstract:
Erste Group looks back on more than 6 years of utilizing Archer as their main Security Management System utilizing more then ten uniquely customized applications and workflows focused on Cyber Security, ICT Risk Management, Data Privacy and Compliance. The session will include an overall look into the interconnected application landscape, the thought processes behind them and the development framework which is established.
01:15 pm – 02:00 pm
Microsoft® 365 OneDrive and SharePoint Integration
˅
Speakers:
Tony  Fitzgerald,
Sales Engineer, Archer
Themistocles Chronis,
Principal  Consultant, Archer
Track: LEARNING  LABS
Abstract:
In the modern business world, organizations use various software for storing files and collaboration. Many organizations use Microsoft® 365 OneDrive or SharePoint which is a cloud storage offering with file sharing and editing capabilities and much more.  The Microsoft 365 OneDrive and SharePoint integration with Archer allows users to easily reference and interact with files stored on OneDrive or SharePoint within Archer. With the Microsoft 365 OneDrive and SharePoint integration, Archer users will be provided an option to navigate to their OneDrive or SharePoint and select one or more files to associate to the record via an enhanced External Links field.  Once a file is added to the Archer record, Archer users will be provided a link in which they can view the embedded document within the record or edit the document in a separate window using OneDrive or SharePoint.

02:15 pm – 03:00 pm

Breakout Sessions (Click for Breakout Session Information)

˅
02:15 pm – 03:00 pm
CAaaS - Continuous Assurance as a Service
˅
Speakers:
Ahmed El Ashmawy, Consulting Practice Lead, Axenic
Terry Chapman, Managing Director, Axenic
Patrick Campbell-Dunn, Managing Director, Securus Consulting Group

Track: INSIGHTS
Abstract:
Point-in-time assurance is no longer fit-for-purpose in the modern evolving world of cybersecurity. The standalone ‘snapshot’ audit is an outdated concept and it’s now time to put it out of its misery. Come and find out how Axenic, supported by Securus Consulting Group, is using Archer to provide continuous cyber assurance and continuous PCIDSS compliance services. We will also showcase through this session how Archer helps professional services organizations optimize the use of their resources, including our unique approach to multi-tenanting Archer to provide continuous assurance services to small to medium sized organizations. If you love your current audit process, probably give this session a miss; otherwise come and join us to check out how Axenic is modernizing assurance in New Zealand.
02:15 pm – 03:00 pm
Actionable Risk Intelligence: Harnessing Real-Time Risk Intelligence and GRC to Automate your TPRM Program
˅
Speakers:
Shaun  Wong,
Head of Product, Supply Wisdom
Track: COLLABORATE
Abstract:
With global supply chain disruptions increasing in frequency and severity, existing methods for third-party risk mitigation have proven to be ineffective. Current practices and models are periodic, point-in-time, outdated, and unable to identify potential disruptions as they happen. Risk leaders have been further limited by disparate systems, too much information, and a siloed approach to third-party risk.The good news is that a modern, effective solution exists today! Join us as we discuss current challenges faced by risk leaders, limiting factors in risk mitigation, and modern methods to prevent disruptions caused by third parties.  Learn how to eliminate siloes and improve visibility by automating your third-party risk program.  Leverage real-time risk intelligence by seamlessly integrating your Archer workflows.
02:15 pm – 03:00 pm
Archer in One Year: A High Speed Implementation Story
˅
Speakers:
Jesse Tucker, GRC Administrator, Ent Credit Union
Jason Piet
, VP of Operational Risk Mgmt, Ent Credit Union
Track: ORCHESTRATE
Abstract:
When people ask how many use cases Ent Credit Uses, the response is often "all of them". The truth is pretty close to all of them, and all done in roughly a 12 month span of time. How can an organization implement the full suite of Archer use cases so quickly? Through a lot of learning, some missteps, and whole lot of excitement, positivity, and stakeholder buy-in. Learn how Ent implemented everything from Issues to Control Testing (and everything in between), what opportunities were learned from and how implementing in this lightning-fast fashion has led to an incredible increase in organizational risk awareness and reporting. Buckle-up, it's going to be a wild ride!
02:15 pm – 03:00 pm
Engage 2.X and Beyond
˅
Speakers:
Hemanth Kumar Bangalore Lakshminarasappa, Product Manager, Archer
Track: NETWORK
Abstract:
It's been a busy year for Archer Engage which continues to grow with new capabilities. In this session, we will provide an overview of the Engage products, demonstrate the new dynamic questions capability, and the flow for creating content via Engage. Get a sneak peek into our future roadmap such as Questionnaire comments etc
02:15 pm – 03:00 pm
Customer Success Program (CSP): Client Round Table of Success Stories
˅
Speakers:
Scott Galas
, Principal, Global Customer Success Program Lead, Archer
Karen Huyler
, System Specialist at National Life
Jack Davidson
, Sr eGRC Specialist at Boston Scientific  
Omar Ramsay
, Chief Risk Officer at the United States Senate Federal Credit Union
Laura Tastad, Senior Manager, Olin
Track: SUCCESS
SUCCESS:
Hear directly from Customer Success Program members on how they utilized the Customer Success Program to optimize their growth and success while simultaneously strengthening their relationship with the business.  In this session, actual Customer Success Program members (clients) will share how they truly enable, accelerate and optimize their success and the continuous value creation of their Archer implementation.
02:15 pm – 03:00 pm
Rule the Archer Universe with Access Control
˅
Speakers:
John Malgeri
, Senior Systems Engineer, Archer
Jason Ingle
, Archer, Advisory Systems Engineer,  Archer
Track: LEARNING  LABS
Abstract:
During this interactive lab session we'll guide attendees through the Archer access control process. We'll start our discussion at the application level and work all the way down into individual record and field level permissions. We'll teach users how to create and utilize groups and roles to assign the level of access they are looking for.

3:00 pm – 3:30 pm

3:30 pm – 4:30 pm

7:00 pm – 10:00 pm

Networking  Break

Closing Keynotes

Customer Appreciation Party

Thursday, September 22, 2022

09:00 am – 10:50 am   

09:00 am – 10:50 am

10:00 am – 10:50 am

11:00 am – 11:50 am

11:00 am – 11:50 am

Optional - User Experience Working Group*

Optional - Engage Working Group*

Optional - Operational Resilience Working Group*

Optional - Insight Working Group*

Optional - ESG Working Group*

( * limited space available, must register during Archer Summit registration)

Questions? Don't hesitate to reach out. For all questions contact summit@archerirm.com.

Whether you’re still deciding to attend or excitedly planning for the journey ahead, we want to keep you in the know. Explore the high-level agenda, find the lay of the land and get ready for 3 days of learning, collaborating, and uniting with old and new friends either in person or online.

Virtual Agenda:

  • 12 recorded sessions
  • Up to 5 hours of CPE credits
  • Future access to additional virtual learning post-event
  • All virtual sessions will be available on-demand so you can review at your leisure
  • All Virtual Summit sessions will be available thru October 31, 2021
  • We will be adding bonus sessions after Summit closes on September 16, 2021