Look for registration in the 2nd floor foyer.

Stop by the registration desk to get the secret location of the welcome reception.

Today’s cyber threats don’t wait for assessments to be completed and they don’t follow your onboarding timelines. Still, most third-party risk programs are still relying on slow, manual processes and outdated snapshots of vendor risk. 

We’ll unpack what modern TPRM looks like when it’s built on continuous intelligence rather than static questionnaires and why speed, scale, and insight are the new currency of effective risk management. 

You’ll walk away with strategies for scaling your team’s impact and making proactive engagements with third parties (without needing to scale your headcount).

Presenter:
Black Kite

Explore the showcase for round-robin style presentations by Onspring client's showing off their custom-built use cases.

Join us on the patio for lunch.

Sign-up in advance for a 1-on-1 lab with an Onspring expert. Sign-ups will open in September.

When a sanctions match is identified, the regulatory response must be precise, timely, and well documented. This session explores how the Onspring platform can be leveraged to build a robust, audit ready process for managing Office of Foreign Assets Control (OFAC) sanction compliance, specifically the creation, submission, and long-term retention of blocked property reports.

We'll walk through how to design this solution within Onspring to capture critical data following a sanctions match, trigger an OFAC ready report submission, and establish a centralized repository for storing submitted reports. Attendees will learn how to link records to status driven retention logic ensuring compliance with a 10-year record keeping requirement post unblocking.

Presented by: 
Jenn Plowman - TransUnion

When First National Bank of America (FNBA) began their Governance, Risk and Compliance journey with Onspring, they shared the typical issues as many banks across the country. Systems were siloed, data was hard to gather and it was close to impossible to provide their board and stakeholders a true understanding of risk across their business. 

In this presentation, we’ll explore how FNBA took on this challenge and the ways they are able to look at risk now.

Presented by: 
Jessica Parks - First National Bank of America

Ready to unlock the power of AI? Join us to explore Onspring AI capabilities like content generation, recommendations, and advanced file analysis. Through practical GRC examples, you'll see how to thoughtfully implement Onspring AI to drive efficiency and gain valuable insights from your data.

Presented by: 
Ryan Lougheed - Onspring
Sarah Nord - Onspring

Grab a snack and stop by the Onspring Hub.

When users know where to go and what to do, their satisfaction and productivity accelerate. As an Onspring admin, you probably invest significant time in dashboard and report design, but what about individual records? They’re just as important!

Join this breakout session to learn how to make your record layouts more intuitive and action-oriented with instructional text blocks, attention-grabbing visuals, and more. Bonus: You’ll explore a new Layout Object Builder app that can be added to your instance to support your design process.

Presented by: 
Hannah Cave - Onspring
Sarah Nord - Onspring

Anyone who has been involved in security operations knows that many systems we leverage to understand threats are expensive to deploy and difficult to manage. You spend a ton of time putting logic into the system, and it quickly becomes hard to manage. 

What if you had a different way to maintain an inventory of what was set up in your SIEM?
What if you could also relate that back to controls and risk? 

Brad Gorka has served as a CISO and held security leadership roles for the past decade. He knows better than anyone that the typical SIEM solution can be a challenge to manage well. That’s why he recommends a different approach.

Join this session for practical ideas that you can put into action immediately to improve your security operations stance.

Presented by: 
Brad Gorka - Veritiv

Calling all Level 1 Certified Admins! If you’re considering Level 2 Certification, don’t miss this breakout session. We’ll review key concepts and implementation strategies for Workflow, Surveys, and Access, focusing on skills relevant for the Level 2 exam. We’ll also dive into exam parameters and expectations, ensuring you understand what's required for success. You’ll walk away with testing best practices to help you approach the exam with confidence and strategic thinking.

Presented by: 
Kelly Walden - Onspring
Kati Littleton - Onspring

Risk, Compliance, InfoSec, and Audit functions are in place to support a balanced approach to risk management and growth. In the past 18 months, AI has moved from being a buzzword to actively reshaping how businesses connect with customers and get work done. In response, GRC functions have had to rapidly create policies and governance councils.

During this session, panelists from healthcare, multi-media, retail and financial services organizations will showcase how AI technologies are changing how work is done at their companies, how they go to market, and how they serve their clients. They will also discuss how their function within the organization has been challenged to adjust risk tolerances and mitigating controls to support adoption of AI and avoid being left behind.

Panel Moderator:
Beth Strobel - Onspring

The Pool Club is calling your name. Come to the top floor of the Virgin Hotel Nashville for a party you won't want to miss.

Join us for a stroll down Music Row or yoga on the patio.

Look for registration in the 2nd floor foyer.

Join us on the patio for breakfast.

Sign-up in advance for a 1-on-1 lab with an Onspring expert. Sign-ups will open in September.

What if your biggest cybersecurity threat isn't a hacker from across the globe, but the operational chaos within your own walls?

Organizations spend fortunes building defenses against sophisticated external attacks, yet many security programs feel like a losing battle. This session argues that we're fighting the wrong battle. The "cybersecurity problem" isn't the enemy at the gate; it's a symptom of a deeper issue: a fundamental lack of internal discipline.

This operational friction is what traps even the most vigilant CISOs in a cycle of firefighting, frustration and burnout. 

Join Yaron Levi, CISO of Dolby, to discover a new path forward. Learn how to transform security from the organization's "moral compass" into a strategic partner that drives pragmatic, effective security—one that enables the business instead of restricting it.

Presenter: 
Yaron Levi - Dolby

Many organizations struggle to fully leverage their GRC platforms due to a lack of understanding of how to effectively integrate a platform across departments. This presentation aims to demystify the process of expanding GRC platform adoption by focusing on the crucial role of system administrators as orchestrators and educators. Scott Samyn, Sr. Risk Engineer at Cboe, will share his decade-long experience and teach you how to rapidly roll out a GRC platform across our organization, demonstrating how to identify applicable use cases, showcase clear value, and foster collaboration, ultimately transforming a powerful tool into a company-wide asset.

Presenter: 
Scott Samyn - Cboe

Implementing a Governance, Risk, and Compliance (GRC) program that delivers tangible value requires more than just good intentions; it demands strategic planning, consistent execution, and strong executive support. Join Katie Hairston, GRC Solutions Senior Project Manager, as she shares a practical roadmap for formalizing GRC initiatives, moving them from conceptual phases into impactful, automated solutions. In this fireside chat, hosted by Lateef Johnson of Onspring, we’ll explore how to effectively demonstrate return on investment year-over-year, securing continuous funding and fostering a culture of sustained growth within your organization's GRC capabilities.

Presenters: 
Katie Hairston - Costco
Lateef Johnson - Onspring

Grab a snack and stop by the Onspring Hub.

Leslie McGuirk, VP of Financial Compliance at Warner Bros. Discovery, is an avid traveler who has visited over 20 countries across five continents. And her journey in compliance has been equally interesting. A few years ago, Leslie and her team extended Onspring to bring together differing risk management and compliance processes as the result of an acquisition. Today, she’s taking a journey to split up the same companies that once needed to merge together.

Join Leslie and learn how you can ready your organization for any kind of change - from acquisitions to spin-offs, and build processes that will serve your company - no matter where the path may lead. 

Presenter: 
Leslie McGuirk - Warner Bros Discovery

"90 Seconds to Midnight" uses the Doomsday Clock as a model for impactful risk communication, illustrating how complex risk data can be made accessible and actionable for stakeholders. This presentation covers methods to distill complex risk information into clear, engaging visuals and stories that highlight urgency and support proactive decision-making. Learn techniques for developing risk reports that resonate, leveraging simplicity to enhance stakeholder understanding and drive timely actions on critical issues.

Presenters: 
Andrew Gunter - Cential
Nicole Hepburn - Cential

Explore the showcase for round-robin style presentations by Onspring client's showing off their custom-built use cases.

Join us on the patio for lunch.

Sign-up in advance for a 1-on-1 lab with an Onspring expert. Sign-ups will open in September.

Grab a snack and stop by the Onspring Hub.

Who knows more about Onspring uses? Onspringers or our brilliant customers?

We'll be heading to the Country Music Hall of Fame for dinner and dancing.