Digital Risk & Resilience Management by Design, LONDON

Blueprint for Business-Integrated, Agile, and Context-Aware Risk & Resilience Programs

Organizations are increasingly defined by the digital ecosystems in which they operate — complex, distributed, andinterdependent. In this reality, digital risk and resilience go far beyond IT security and business continuity. They encompass the integrity, reliability, and adaptability of the entire digital operating model, across infrastructure, data, systems, third parties, and AI-driven automation. In the GRC 7.0 era, managing digital risk is not just about defense — it is about orchestration, foresight, and trust.

In this workshop, Michael Rasmussen, internationally recognized authority on GRC and the pioneer of the GRC market, delivers a strategic blueprint for orchestrating digital risk and resilience. Attendees will learn how to architect and operationalize a next-generation digital risk and resilience strategy — one that is integrated across business operations, embedded in governance frameworks, and empowered by agentic AI and digital twin modeling.

What You Will Learn:

• Digital Risk Management. Understand the intersection of digital risk with enterprise risk, IT risk, cyber risk, and third-party risk. Learn how to develop a strategy that aligns digital risk with organizational performance and integrity objectives.
• Digital Resilience Management. Discover how to move from reactive continuity to proactive digitalresilience — anticipating disruption, adapting in real time, and maintaining digital trust across interconnected processes and systems.
• 360° Situational Awareness. Learn how to build a semantic information architecture that provides dynamic, real-time visibility into digital risk, controls, resilience metrics, and compliance posture across the business.
• Technology Architecture for Digital Trust. Explore the architecture of GRC 7.0: the integration of digitaltwins, agentic AI, automation, and orchestrated workflows that enable scalable and adaptive digital riskand resilience capabilities.

Who Should Attend?

• Digital Risk, GRC, and Cyber Resilience professionals
• IT and Security leaders overseeing transformation and continuity
• Business executives responsible for operational integrity and trust
• Compliance, audit, and risk officers providing assurance on digital performance
• Third-party and ecosystem risk managers responsible for digital interdependencies

Workshop Agenda

Part 1: Understanding Digital Risk & Resilience

• Introduction and the orchestration of digital risk & resilience
• Redefining resilience in a digital-first, always-on enterprise

Part 2: Designing a Blueprint for Digital Risk & Resilience

• Embedding digital resilience into enterprise strategy and culture
• Aligning digital objectives with governance, risk, and operational frameworks

Part 3: Operationalizing Digital Risk & Resilience

• Process modeling, scenario simulation, and adaptive response
• Leveraging digital twins and control frameworks for proactive resilience

Part 4: Technology Architecture for Orchestrated Digital Trust

• Identifying enabling technologies for integrated digital risk and resilience
• Building a roadmap and business case for intelligent, scalable deployment

This workshop will equip you with the strategies and frameworks to lead your organization toward digitally resilient, risk-intelligent operations — where trust is designed into the architecture, and digital risk is orchestrated, not just managed.

GRC 20/20 Presenter . . .

Michael Rasmussen is an internationally recognized authority, thought leader, and pioneer in the disciplines of governance, risk management, and compliance (GRC). With over 30 years of experience, he is globally known for defining and shaping GRC strategy, processes, and technology. In February 2002, while at Forrester Research, Michael developed the concept of GRC — establishing the foundation for how organizations approach strategy, process, and technology in today’s complex business environment. For this, he is widely acknowledged as the “Father of GRC.”

A trusted advisor to boards, executives, and professionals around the world, Michael has dedicated his career to helping organizations design and implement effective GRC strategies that are aligned with business objectives. His work empowers organizations to be more effective, efficient, resilient, and agile. He is a sought-after keynote speaker, author, and advisor, with his thought leadership influencing legislation, regulatory frameworks, and corporate best practices globally.

Michael is the host of the Risk is Our Business podcast, where he leads conversations with global experts exploring the evolving frontiers of risk, resilience, and corporate integrity.

Workshop Host . . .

Keep your business secure and compliant with SureCloud. Everything you need today and tomorrow, in our integrated GRC platform, that everyone can use. SureCloud GRC is built on our industry-first Dynamic Risk Intelligence technology, designed to empower you to proactively manage your GRC landscape by understanding the story within your data. This allows you to analyze, predict, and respond to risks before they become critical issues. The future of GRC delivered today. Our industry-first Dynamic Risk Intelligence technology enables you to be more proactive by revealing the full story and sequence of events across your programs with unparalleled visibility and certainty. It empowers you to anticipate and address potential risks before they escalate, ensuring you’re always ahead of risk and compliance challenges. Leveraging advanced event-driven architecture and event sourcing, SureCloud GRC captures and analyzes every detail in real-time, giving you the tools to take proactive control and provide long-term business assurance.