Smart Curation of Critical Risk News & Market InformationGet the insight you need to be more informed and prepared

Connecting Business Leadersto Critical Risk Insights & Expertise

www.ranenetwork.com | info@ranenetwork.com | 1.844.786.RANE

RISK INTELLIGENCE SERVICESExclusive Access to Information & Expertise

RANE Risk Intelligence clients receive exclusive access to curated

network intelligence, community-enabled proprietary content (best

practices, checklists, polls, interviews, etc.), and knowledge-sharing

webinars and events to help address the evolving risk landscape

and potential threats. Our online platform also provides access to

risk monitoring tools and the global directory of risk experts.

RANE organizes actionable insights from the collective wisdom of our risk experts, organized in a searchable database of curated and original content across a broad range of risk topics. This network intelligence helps members benchmark their programs against peers’, monitor relevant risk issues, and take a more proactive approach to risk mitigation and preparation.

NETWORK INTELLIGENCE — proprietary research and analysis, exclusive interviews and surveys, threat advisories, and expert commentary.

CURATED INSIGHTS — industry reports, bulletins, white papers, and benchmarking guides from a wide range of government, corporate, non-profit and educational sources.

NEWS & MARKET MONITORING — aggregated and filtered content to extract and present the risk items most relevant to you and your company.

RANE Special Report

Managing Security Risk

on the Korean Peninsula

July 2017

FEATURED EXPERTS:

Alexandre Mansourov | Analytic D

irector, CENTRA Global Access

Carmen Medina|Owner, MedinAn

alytics

Ankit Panda|Senior Editor,The Dip

lomat

Dennis Wilder |Senior Fellow, Initi

ative for the US-China Dialogue on

Global Issues

Meredith Wilson|Founder and CE

O, Emergent Risk International LLC

•Accesscriticalrisknews and relevant analysis, hand-picked by RANE editors

•Spotlightemergingriskissues before they capture mainstream industry attention

•Trackspecifictopics from across the RANE community with daily, weekly, and monthly reports

RANE Event Recap | www.ranenetwork.com | insights@ranenetwork.com

Cybersecurity Incident Response: Technical, Legal, and Practical IssuesA simulated response scenario

Speakers

Luke Dembosky, Cybersecurity and Litigation Partner, Debevoise & Plimpton LLP

Judith Germano, Founding Member at Germano Law LLC

Ann Walker Marchant, Founder and CEO at The Walker Marchant Group

Kevin Zerrusen, Managing Director and Global Co-Head of the Security Incident Response Team, Goldman Sachs

Moderator

David Lawrence, Founder and Chief Collaborative Officer, RANE

A cyber breach can cause serious harm to a company far beyond just the value of stolen intellectual property or customer data. Responding to the discovery of a breach in a way that allows the company to recover from existing damage and prevent further harm requires a wide-ranging, complex plan that can be implemented on a moment’s notice at the beginning of a crisis.

Four experts came together to discuss how organizations should prepare for and respond to a hypothetical scenario in which a technology company, whose most valuable asset is its intellectual property, discovers its network has been breached. A summary of key highlights from the discussion follow:

Assessing Your Cyber Risk

• “A cyber breach should be looked at as something that’s a ‘when,’ not an ‘if’” advised Ann Walker Marchant. “And we should hope for the best and prepare for the worst so we’re not trying to figure out where the fire extinguisher is while the fire is happening.”

• Responding effectively to a breach is very difficult, if not impossible, unless companies have been thinking proactively about cybersecurity, according to Kevin Zerrusen . “Come up with a set of questions to ask,” he said. “Can we keep attackers out? If not, can we detect them quickly before we lose data? If they take data, are we prepared to respond?” He added that Goldman Sachs uses a 13 point crisis management checklist.

RANE Event Recap | June 20, 2017

“You don’t want to be

reactive. If you don’t know

the face and cell phone

number of the agent you’d

call after a breach, you’re

already behind.”

Luke Dembosky

RANE Network Intelligence Report | AUGUST 2017

RANE Network Intelligence Report

16

Network HighlightsRANE’s network intelligence is sourced from both our enterprise subscribers and from our global network of thousands of experts covering over 200 categories of risk. We continue to expand the scale, geographic reach,

and specialized expertise of our network and we strive to provide subscribers with timely, actionable insights.

Select Recent Expert Firm Additions Madison Intelligence Base Location: Monterrey, Mexico

Founded: 2010Due diligence and business intelligence firm with a Mexico/Latin America focus. Key differentiator is their on-the-ground coverage in Mexico, with either employees or contractors in most major cities, as well as their contacts within the Mexican Government. Along with their base in Monterrey, they also have offices in New York and Madrid.

Crypsis Group Base Location: McLean, VAFounded: 2015Cybersecurity firm focused on incident response and forensic investigations. Their key differentiator is their team’s deep cyber forensics expertise and experience working with both sophisticated corporations and government agencies. Clients include Fortune 500 companies and Federal agencies, including the White House Security Operations Center.

Vasa Strategies Base Location: Washington, D.C. Founded: 2015 Boutique consultancy focused on project management and research in the counter terrorism/countering violent extremism (CVE) domain. Key differentiator is firm’s ability to blend strategic consulting techniques with expertise on global counterterrorism/CVE trends. The firm is privately owned by its founder, Ryan Greer, a former policy advisor at both The State Department and National Security Council and graduate of Georgetown University.

MoSt REAd ContEnt• RANE Special Report: “Managing Security Risk on the Korean Peninsula” • RANE Spotlight, “Japan (Finally) Starts to Get Serious About

Cybersecurity”• RANE RiskBook: “Mammoth Chinese Conglomerate HNA Group

Reveals New Details About Its Ownership”

WhAt’S tREndInG1. Sanctions Landscape2. Impact of Artificial Intelligence3. North Korea

GRC ExpERtS by LoCAtIon

6%

44% 8%

14%

18%

10%Latin America

North America

Africa

Asia

Middle East

Europe

hIGhLIGhtS FRoM RECEnt CoMMunIty poLL What will be the most challenging aspect of compliance with theEuropean Union’s new GDPR data privacy regulationsExpanded definition and scope of consent

New consumer right of data portabilityDemonstrating transparency and accountabilityStricter data breach reporting requirementsPotential restrictions to employee monitoring

14%

36%

29% 7%

14%

Subscribe to RANE’s Risk Intelligence Services and receive:

3Improved situational awareness of emerging risks and threats

3More efficient access to risk information and expertise

3Better outcomes for your mitigation and risk management efforts

Research analysts assist with expert search, provide relevant network intelligence, and conduct research on specific risk issues

www.ranenetwork.com | info@ranenetwork.com | 1.844.786.RANE

RANE provides access to a searchable directory of credentialed risk experts and service providers, covering over 250 risk topics across six major categories. Members can connect with leading experts to extend their professional networks and efficiently find the specific help they need.

PROPRIETARY, GLOBAL DATABASE — thousands of leading experts from a broad spectrum of risk and security disciplines with extensive backgrounds in business, law, public service, academia, science, technology, engineering, and more.

VETTED & CREDENTIALED EXPERTS — a comprehensive credentialing process that includes continuous, risk-based background research and vetting, and validation/feedback on prior engagements..

EFFICIENT EXPERT SOURCING — RANE analysts help identify the optimal candidates for your needs and facilitate referrals between our members and network experts.

RANE provides opportunities for peer and expert collaboration through exclusive events featuring RANE’s leading experts in risk management. Speakers share insights, best practices, and actionable strategies for better understanding the evolving risk landscape and addressing emerging risks. A diverse set of perspectives provides members with a holistic view from both the public and private sectors.

THE BEST MINDS & INSIGHTS — practical perspectives on emerging risk issues from top experts in their fields across a wide range of industries and disciplines.

VIRTUAL & IN PERSON EVENTS — From webinars and exclusive briefing sessions to in-person roundtables and conferences, these events provide timely support for members and offer valuable opportunities to engage directly with peers and experts.

JOIN LIVE OR ON-DEMAND — Members receive a written recap summary highlighting the key takeaways and an audio replay for on-demand access.

Access to a Global Network of Leading Experts Find the right expertise at the right time

Knowledge-Sharing Events Featuring Experts from Our NetworkAccess best practices and practical strategies

•Savetimebyquickly identifying the right risk experts for the task at hand

•Zeroinontheoptimal candidatesusingfirm andindividualprofiles

•Selectanexpertwith confidence,knowing RANE experts have a demonstrated reputation for service and integrity

• Insightsandholisticanalysisof emerging risk issues

•Bestpracticesandaction-able strategies across risk disciplines

•Arangeofpractical perspectives from world-class expert speakers

Eric Lorber

Zachary Goldman

Sanctions Revisited: Complying with a Complex Array of RulesSpeakers

, Executive Director, Center on Law & Security Adjunct Professor of Law, New York University

, Senior Associate, Financial Integrity Network

Jeremy Maltby, Partner, O’Melveny & Myers LLP

Moderator

David Lawrence,

The realities of geopolitics, global security, and international business continue to present challenges for corporate compliance departments, particularly their ability to anticipate, understand, and navigate the ever-changing world of sanctions. From Russia and North Korea to Cuba and Iran, sanctions again are dominating the headlines. Companies operating in high-risk countries need to pay close attention to avoid being caught by the

to identify sanctions risks before they manifest.

organizations can more proactively mitigate the commercial risk from sanctions. Highlights of the discussion follow.

The Growing Sanctions Challenge

RANE Event Recap | August 4, 2017

“Traditionally, under US

sanctions law, if a company

wants to do a transaction

that would otherwise be

prohibited in Russia, it would

go to OFAC to apply for a

license. OFAC doesn’t release

those licenses as a matter of

course, but now—as a result

of this new legislation—for

any license that OFAC would

alters US foreign policy,’

congressional approval is

required.”

Zachary Goldman

Sanctions RevisitedComplying with a Complex Array of Rules

Webinar Event

Register

Webinar Replay

Sanctions RevisitedComplying with a Complex Array of Rules

Thursday, July 27, 2017

RN071818