RIMScast

Chrystina Howard, an accomplished ERM leader with decades of consulting experience at HUB International, shares insights on navigating emerging risks. She delves into geopolitical volatility, AI's transformative role in healthcare, and strategies to keep resilience aligned with corporate goals. Chrystina also reveals engaging techniques for capturing C-Suite attention and emphasizes the importance of tailored communication focused on executive priorities. Tune in for practical tips on avoiding the pitfalls of traditional ERM approaches and enhancing risk management effectiveness.

Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society. In this episode, Justin interviews Shawn Punancy, Sr. Manager, Enterprise Risk Management of Delta Air Lines, Inc. Justin and Shawn discuss her fascinating career history, disruption in the airline industry, Shawn's risk philosophy at Delta Airlines, and how her ERM team stays connected to the business while maintaining a long-term strategic view of risk. Shawn will present two sessions with Lianne Appelt, the Head of Enterprise Risk Management at Salesforce, at the RIMS ERM Conference on November 17th and 18th in Seattle, Washington. Shawn shares some hints on what to expect from the sessions. Listen for Shawn's view on the biggest opportunity right now for ERM professionals to elevate their impact across the enterprise. Key Takeaways: [:01] About RIMS and RIMScast. [:15] The RIMS CRO Certificate Program in Advanced Enterprise Risk Management is our live virtual program led by the famous James Lam. Great news! A third cohort has been announced, from January through March 2026. [:32] Registration closes January 5th. Enroll now! A link is in this episode's show notes. [:40] About this episode of RIMScast. We are flying high today, with Shawn Punancy, the Manager of Enterprise Risk Management for Delta Air Lines, Inc. Buckle in for the many aviation puns you're going to hear during this episode! But first… [1:12] RIMS-CRMP Prep Workshops! The next RIMS-CRMP Prep Workshops will be held on October 29th and 30th and led by John Button. [1:24] The next RIMS-CRMP-FED Virtual Workshop will be held on November 11th and 12th and led by Joseph Mayo. Links to these courses can be found through the Certifications page of RIMS.org and through this episode's show notes. [1:41] RIMS Virtual Workshops! RIMS has launched a new course, "Intro to ERM for Senior Leaders." It will be held again on November 4th and 5th and will be led by Elise Farnham. [1:56] On November 11th and 12th, Chris Hansen will lead "Fundamentals of Insurance". It features everything you've always wanted to know about insurance but were afraid to ask. Fear not; ask Chris Hansen! RIMS members always enjoy deep discounts on the virtual workshops! [2:15] The full schedule of virtual workshops can be found on the RIMS.org/education and RIMS.org/education/online-learning pages. A link is also in this episode's notes. [2:26] RIMS Webinars! On October 30th, Swiss Re will present "Parametric Insurance: Providing Financial Certainty in Uncertain Times". On November 6th, HUB will present "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World". [2:47] Register at RIMS.org/Webinars. [2:50] On with the show! Our guest today is the Manager of Enterprise Risk Management for Delta Air Lines, Inc. Her name is Shawn Punancy, and she has a fascinating career that I want to delve into today. [3:03] I also asked her to be on the show because she will have quite a presence at the RIMS ERM Conference 2025, which will be held on November 17th and 18th in Seattle, Washington. [3:14] On November 17th, at 11:45 a.m., she will be co-leading "Connections Count: Strategic Networking to Strengthen Risk Oversight." On November 18th, at 9:00 a.m., she will co-lead "How Deep Should You Go?: Rightsizing Risk Assessment for Maximum Impact." [3:33] In addition to learning about her fascinating career, I wanted to get a little preview of each of those sessions and learn a bit about her risk philosophy at Delta. Let's get to it! [3:44] Interview! Shawn Punancy, welcome to RIMScast! [3:53] Shawn Punancy is the ERM Senior Manager at Delta Air Lines, Inc. Shawn will be at the RIMS ERM Conference 2025, November 17th and 18th. Shawn has a fascinating career. [5:00] Shawn was an intelligence analyst at the U.S. DOD from 2011 to 2012, then moved to the CIA as a Senior Intelligence Analyst for seven years. [5:18] Shawn says it was great working at the CIA. She thinks there are very few places where you can work and have such broad awareness. Her year at the DOD was to prepare her to work at the CIA. [6:10] As an Analyst, Shawn worked in counter-terrorism, counter-narcotics, traditional political analysis, and leadership analysis. She did some targeting work, which is helpful for ERM. [6:27] After Shawn left the government, she worked briefly for a consulting firm in Atlanta, Georgia, doing business operating risk. She got word of a job in the Delta Corporate Safety and Security Division on the Intelligence and Risk Mitigation Team. [6:51] Shawn joined Delta, doing that for two years. She got to meet her Director, Eric Mai, whom she absolutely adores, and she's not just saying that because he may listen to this! Eric Mai introduced Shawn to the world of ERM. [7:07] Shawn started to see all the nexuses that existed between multiple different risks. Shawn says that working in corporate security on risk mitigation is like working at the DOD, but working in ERM is like working at the CIA. [7:42] Shawn was in high school on 9/11, and her mother was on a plane during the 9/11 attacks. Thankfully, she was not on a plane that was targeted on that terrible day. It left a lasting impression. [7:55] Shawn went on to study those types of events in International Affairs and Politics. That's how she got to her path in the government. Shawn is mission-driven and purposeful in her work. [8:42] Shawn applied to Delta when someone sent her a job posting. Shawn saw the posting and thought it looked like it was written for her. Shawn is thankful it worked out. [8:58] Shawn started as Program Manager for Intelligence and Risk Mitigation. She held that position for almost two years. In December of 2023, Shawn became Manager of ERM. The position did not exist before Shawn. ERM had been one person since 2019, when it was begun. [9:37] Eric Mai set up the ERM program. He realized that for it to continuously improve and grow, he needed another person. He went to bat for that role. Around the time it was posted, Eric came to Shawn and said that she might want to consider it, and he would love to have her apply. [9:57] Shawn is super grateful that Eric asked her. [10:13] Shawn says it is striking that ERM has played a small role in many companies. What if you don't know who that person is, or you're not engaging with that person? [10:53] Shawn has noticed that in several industries, the aviation industry included, everything is highly siloed. How does one ERM person get to everybody across the business? How do they make ERM relevant for the leadership and the board? [11:15] Something different could happen any day in the airline industry. Shawn says every day they get a notification from their Duty Director about what the day will look like. Some days, the system looks good: they're moving tens of thousands of people on several thousand flights. [11:33] Other days, there's a hurricane or something, or there is a strike somewhere that completely upends the day. It's a lively environment. [11:56] The American Airlines regional jet and helicopter crash in Washington, D.C. this year put a spotlight on Safety and Risk Managers to ensure they had the proper protocols in place and understood all the communication channels. They double-checked the protocols. [12:40] One thing Shawn loves about the airline industry is that safety is for everyone. There's no competition in safety. No one places blame. They come together to ensure that they are in the best position to continue to put safety first, not only for customers but also for all employees. [13:17] If Shawn had a mantra, it would be, You get further together than you do as an individual. She learned that from her time in Corporate Safety and Security and as an ERM professional. She could not do her job without relationships and connections across the company. [14:05] Shawn says Delta has a strong governance structure. The risk committee reports to the executive leadership team. ERM meets with the risk committee monthly to talk about what is coming up. ERM tracks that, so as risks build, they remember what was said months ago. [14:29] They prepare themselves for the known events of the next couple of months, such as an upcoming audit, an issue with plane manufacturers, or a suspected coming fleet delay. [14:53] ERM uses its governance structure to think through how to manage the risk, who is responsible, who is touched, what should be reported up to the leadership, and what can be managed at the business level. [15:07] Looking longer-term, ERM recently started talking directly to board members, asking for their perceptions about risk over the next three to five years. ERM also asks that question of the business leadership annually, to make sure management shares the same vision as the board. [15:38] ERM adds value by showing where those visions aligned, or if and when they diverged. Using that information helps inform the broader risk landscape. ERM uses that to engage the Strategy team with their annual goals and pillars; their Annual "Flight Plan." [16:08] ERM shows the collected data on where risk lies to the Strategy Team and asks how it might affect the Flight Plan and the Five-Year Strategy. It's the role of ERM to highlight the risks they've identified through the forums they've engaged. [16:36] Shawn has two on her ERM team, including herself. Her team has strong relationships across Delta. That helps ERM to be a force multiplier. They lean on their colleagues to help stay aware, figure out the best direction to guide ERM efforts, and make an impact where possible. [17:24] Quick Break! RISKWORLD 2026 will be in Philadelphia, Pennsylvania, from May 3rd through the 6th. RIMS members can now lock in the 2025 rate for a full conference pass to RISKWORLD 2026 when you register by October 30th! [17:43] This also lets you enjoy earlier access to the RISKWORLD hotel block. Register by October 30th, and you will also be entered to win a $500 raffle! Do not miss out on this chance to plan and score some of these extra perks! [17:57] The members-only registration link is in this episode's show notes. If you are not yet a member, this is the time to join us! Visit RIMS.org/Membership and build your network with us here at RIMS! [18:09] Save the dates March 18th and 19th, 2026, for The RIMS Legislative Summit, which will be held in Washington, D.C. [18:17] Join us in Washington, D.C., for two days of Congressional Meetings, networking, and advocating on behalf of the risk management community. Visit RIMS.org/Advocacy for more information and updates and to register. [18:33] Let's return to our interview with Shawn Punancy of Delta Airlines! [19:12] In the heat of a crisis, Delta Airlines has a number of immediate or intermediate response teams that stand up. ERM is a part of those teams. They help inform the strategy for how Delta will respond. In the immediate aftermath, ERM is in listening mode. [19:25] ERM takes what they heard and goes on to support the strategic planning, moving forward. Business Continuity or Corporate Communications will handle the immediate feedback and response. [19:38] If it's likely to have a long-lasting impact on Delta, ERM will facilitate conversations among stakeholders across the enterprise to ensure that Delta has completely and cleanly exited the crisis and that they're on a good footing to avoid future crises of the same ilk. [20:05] One Final Break! As many of you know, the RIMS ERM Conference 2025 will be held on November 17th and 18th in Seattle, Washington. We recently had ERM Conference Keynote Speaker Dan Chuparkoff on the show. [20:23] He is back, just to deliver a quick message about what you can expect from his keynote on "AI and the Future of Risk." Dan, welcome back to RIMScast! [20:34] Dan says, Greetings, RIMS members and the global risk community! I'm Dan Chuparkoff, AI expert and the CEO of Reinvention Labs. I'm delighted to be your opening keynote on November 17th, at the RIMS ERM Conference 2025 in Seattle, Washington. [20:49] Artificial Intelligence is fueling the next era of work, productivity, and innovation. There are challenges in navigating anything new. This is especially true for risk management, as enterprises adapt to shifting global policies, economic swings, and a new generation of talent. [21:07] We'll have a realistic discussion about the challenges of preparing for the future of AI. To learn more about my keynote, "AI and the Future of Risk Management," and how AI will impact Enterprise Risk Management for you, listen to my episode of RIMScast at RIMS.org/Dan. [21:26] Be sure to register for the RIMS ERM Conference 2025, in Seattle, Washington, on November 17th and 18th, by visiting the Events page on RIMS.org. I look forward to seeing you all there. [21:37] Justin thanks Dan and looks forward to seeing him again on November 17th and hearing all about the future of AI and risk management! [21:45] Let's Conclude Our Interview with One of the Presenters at the RIMS ERM Conference 2025, Shawn Punancy of Delta Airlines! [22:17] There are two opportunities to experience Shawn Punancy in person at the RIMS ERM Conference 2025, November 17th and 18th. She will be presenting with Lianne Appelt, the Head of Enterprise Risk Management at Salesforce: [22:47] Shawn says Lianne is the sweetest person she has ever met! Lianne is one of Justin's favorite people to work with on the Strategic Enterprise Risk Management Council. [23:24] On November 17th, at 11:45 a.m., Shawn and Lianne will present, "Connections Count: Strategic Networking to Strengthen Risk Oversight." If you're a new risk professional or a rising star, and you want to get to the basics, this is the sort of session you attend. [24:05] Shawn gives the elevator pitch for the presentation. She says, if you understand anything about ERM, you understand that it's not something you can do alone. Having relationships across an enterprise is paramount to the success of any ERM program. [24:22] Figure out what opportunities exist to pursue those relationships. Annual or quarterly risk assessments are natural avenues for building relationships, but there are lots of others. Outside of formal structures, how can you engage people? [24:39] How can you use the data you've collected to drive conversations that may not otherwise exist? Those conversations inform you better and equip you better as an ERM professional as you get ready to present to your leadership team, audit committee, or board. [25:42] Shawn has found that offering external information that may not otherwise be available to her stakeholders is a good way for her to go in and have a conversation. [26:00] The information she offers is either something she's gotten from a vendor, or a risk source she has been tracking, or something ERM has done internally but hasn't publicized. She says, We have this piece of information we think is valuable to you. [26:20] Shawn finds that it's an incredible way to open doors, strengthen or start relationships, and use that to find a way to continue the conversation iteratively. It's been incredible for expanding who ERM talks to since Shawn has joined the team. [26:37] ERM already had a broad network, but looking for new opportunities has expanded it. [26:43] Shawn says Never let a good crisis or risk go to waste. ERM gets a daily bulletin of every news clip that mentions Delta. [27:00] ERM uses that as an opportunity to say, We've not engaged with you, but we saw this and it's something worth tracking at a more macro level on this other part of the spectrum. We'd love to talk to you about how the two pieces connect. [27:17] Some of that depends on company culture. Delta is one of those amazing places where you can email just about everybody and they will respond. That has been very helpful for Shawn. She knows that's not easily replicated everywhere. Shawn has also never met a stranger. [27:41] Understanding that ERM has value to add, whether it's relaying information or showing interconnections, there's a lot there, and people are usually responsive. [28:17] Talking to the board goes back to the relationships you have and the conversations you've had. If you're talking to the right people throughout the year, who have access to significant board member concerns, use that to help craft your story. [28:37] Shawn says pairing the insight you've gotten from those relationships with the data you have in your program helps drive a compelling narrative. [28:56] On November 18th, at 9:00 a.m., Shawn and Lianne will present an advanced-level session, "How Deep Should You Go?: Rightsizing Risk Assessments for Maximum Impact," tailoring risk assessments to organizational maturity. [29:21] Shawn says it's a mistake for an ERM group not to understand what they have at their disposal in terms of data or stakeholders. Everything doesn't work for everybody. [29:28] You don't need a major, formalized 16-step assessment process when you're a new and burgeoning program. An older, more established program doesn't need something overly complex that doesn't match your company culture. [29:45] Shawn says she has been doing ERM for just shy of two years, so she's not the foremost expert in the room. She likes to rely on her historical experience of taking a bunch of data and talking to a lot of people, collecting intel, and figuring out what the story is. [30:02] Shawn is super passionate about this. With the 8,000 ways you can do a risk assessment, it's so important to consider some specific factors that will help you to have a stronger impact when you do the assessment. Shawn will save those for the presentation. [30:55] Shawn says she firmly believes the biggest opportunity for ERM professionals is to find and communicate that interconnected risk. We hear it everywhere. Justin points out that a paper on "Understanding Interconnected Risks" is in this episode's show notes. [31:13] Shawn thinks that's the biggest opportunity for ERM. Many teams have their risk evaluation silos. Having someone come in and show how A is connected to D, is connected to X, is the next step and the game-changer for a lot of teams. [31:38] Justin says, I'm looking forward to meeting you in person, and I'm so glad that you're going to be delivering the two sessions, Monday, November 17th, and Tuesday, November 18th! It was a pleasure to meet you! [32:08] Shawn is very thankful for this opportunity and super excited about talking about this content, partnering with Lianne, and meeting the broader RIMS community. [32;21] Special thanks again to Shawn Punancy of Delta Airlines for joining us here on RIMScast! Be sure to catch her presentations on November 17th and 18th at the RIMS ERM Conference 2025 in Seattle, Washington. [32:27] A link to the agenda is in this episode's show notes. Register today, we want to see you there! [32:43] Plug Time! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in the show notes. [33:11] RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [33:28] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [33:45] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more. [34:01] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [34:15] Justin Smulison is the Business Content Manager at RIMS. Please remember to subscribe to RIMScast on your favorite podcasting app. You can email us at Content@RIMS.org. [34:27] Practice good risk management, stay safe, and thank you again for your continuous support! Links: RIMS ERM Conference 2025 — Nov. 17‒18 RIMS-CRO Certificate Program In Advanced Enterprise Risk Management | Jan‒March 2026 Cohort | Led by James Lam RISK PAC | RIMS Advocacy | RIMS Legislative Summit SAVE THE DATE — March 18‒19, 2026 RISKWORLD 2026 — Members-only early registration through Oct 30! RIMS-Certified Risk Management Professional (RIMS-CRMP) The Strategic and Enterprise Risk Center RIMS Diversity Equity Inclusion Council RIMS Risk Management magazine | Contribute RIMS Now RIMS Professional Report: "Understanding Interconnected Risks" Upcoming RIMS Webinars: RIMS.org/Webinars "Parametric Insurance: Providing Financial Certainty in Uncertain Times" | Oct. 30, 2025 | Sponsored by Swiss Re "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World" | Nov. 6 | Sponsored by Hub Upcoming RIMS-CRMP Prep Virtual Workshops: RIMS-CRMP Virtual Exam Prep — Oct. 29‒30, 2025 RIMS-CRMP-FED Exam Prep Virtual Workshop — November 11‒12 Full RIMS-CRMP Prep Course Schedule "Intro to ERM for Senior Leaders" | Nov. 4‒5 | Instructor: Elise Farnham "Fundamentals of Insurance" | Nov. 11‒12 | Instructor: Chris Hansen "Leveraging Data and Analytics for Continuous Risk Management (Part I)" | Dec 4. See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops Related RIMScast Episodes about ERM: "AI and the Future of Risk with Dan Chuparkoff" (RIMS ERM Conference Keynote) "Tom Brandt on Growing Your Career and Organization with ERM" "James Lam on ERM, Strategy, and the Modern CRO" "ERM, Retail, and Risk with Jeff Strege" "Bigger Risks with the Texas State Office of Risk Management" | Sponsored By Hillwood "ERMotivation with Carrie Frandsen, RIMS-CRMP" "Live from the ERM Conference 2024 in Boston!" "Risk Quantification Through Value-Based Frameworks" Sponsored RIMScast Episodes: "Cyberrisk: Preparing Beyond 2025" | Sponsored by Alliant (New!) "The New Reality of Risk Engineering: From Code Compliance to Resilience" | Sponsored by AXA XL "Change Management: AI's Role in Loss Control and Property Insurance" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Demystifying Multinational Fronting Insurance Programs" | Sponsored by Zurich "Understanding Third-Party Litigation Funding" | Sponsored by Zurich "What Risk Managers Can Learn From School Shootings" | Sponsored by Merrill Herzog "Simplifying the Challenges of OSHA Recordkeeping" | Sponsored by Medcor "Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report" | Sponsored by AXA XL "How Insurance Builds Resilience Against An Active Assailant Attack" | Sponsored by Merrill Herzog "Third-Party and Cyber Risk Management Tips" | Sponsored by Alliant RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS President Kristen Peed! RIMS Events, Education, and Services: RIMS Risk Maturity Model® Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information. Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts. Have a question or suggestion? Email: Content@rims.org. Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn. About our guest: Shawn Punancy, Sr. Manager, Enterprise Risk Management of Delta Air Lines, Inc. Production and engineering provided by Podfly.

Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society. In this episode, Justin interviews Katherine Henry of Bradley, Arant, Boult, Cummings, and Harold (Hal) Weston of Georgia State University, Greenberg School of Risk Science, who are here to discuss their new professional report, "A 2025 Cybersecurity Legal Safe Harbor Overview." Katherine and Hal take the discussion beyond the pages and delve into best cybersecurity practices, cyber insurance, and Safe Harbor laws offered by some states and possibly to be offered soon by others. They discuss frameworks and standards, and what compliance means for your organization, partly based on your state law. Listen for advice to help you be prepared against cybercrime. Key Takeaways: [:01] About RIMS and RIMScast. [:16] About this episode of RIMScast. We will be joined by the authors of the legislative review, "A 2025 Cybersecurity Legal Safe Harbor Overview", Katherine Henry and Harold Weston. Katherine and Harold are also prominent members of the RIMS Public Policy Committee. [:48] Katherine and Harold are also here to talk about Cybersecurity Awareness Month and safe practices. But first… [:53] RIMS-CRMP Prep Workshops! The next RIMS-CRMP Prep Workshops will be held on October 29th and 30th and led by John Button. [1:05] The next RIMS-CRMP-FED Virtual Workshop will be held on November 11th and 12th and led by Joseph Mayo. Links to these courses can be found through the Certifications page of RIMS.org and through this episode's show notes. [1:23] RIMS Virtual Workshops! RIMS has launched a new course, "Intro to ERM for Senior Leaders." It will be held again on November 4th and 5th and will be led by Elise Farnham. [1:37] On November 11th and 12th, Chris Hansen will lead "Fundamentals of Insurance". It features everything you've always wanted to know about insurance but were afraid to ask. Fear not; ask Chris Hansen! RIMS members always enjoy deep discounts on the virtual workshops! [1:56] The full schedule of virtual workshops can be found on the RIMS.org/education and RIMS.org/education/online-learning pages. A link is also in this episode's notes. [2:08] Several RIMS Webinars are being hosted this Fall. On October 16th, Zurich returns to deliver "Jury Dynamics: How Juries Shape Today's Legal Landscape". On October 30th, Swiss Re will present "Parametric Insurance: Providing Financial Certainty in Uncertain Times". [2:28] On November 6th, HUB will present "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World". Register at RIMS.org/Webinars. [2:40] Before we get on with the show, I wanted to let you know that this episode was recorded in the first week of October. That means we are amid a Federal Government shutdown. RIMS has produced a special report on "Key Considerations Regarding U.S. Government Shutdown." [2:58] This is an apolitical problem. It is available in the Risk Knowledge section of RIMS.org, and a link is in this episode's show notes. Visit RIMS.org/Advocacy for more updates. [3:12] Remember to save March 18th and 19th on your calendars for the RIMS Legislative Summit 2026, which will be held in Washington, D.C. I will continue to keep you informed about that critical event. [3:24] On with the show! It's National Cybersecurity Awareness Month here in the U.S. and in many places around the world. Cyber continues to be a top risk among organizations of all sizes in the public and private sectors. [3:40] That is why I'm delighted that Katherine Henry and Harold (Hal) Weston are here to discuss their new professional report, "A 2025 Cybersecurity Legal Safe Harbor Overview". [3:52] This report provides a general overview of expected cybersecurity measures that organizations must take to satisfy legal Safe Harbor requirements. [4:01] It summarizes state Safe Harbor laws that have been developed to ensure organizations are proactive about cybersecurity and that digital, financial, and intellectual assets are legally protected when that inevitable cyber attack occurs. [4:15] We are here to extend the dialogue. Let's get started! [4:21] Interview! Katherine Henry and Hal Weston, welcome to RIMScast! [4:41] Katherine was one of he first guests on RIMScast. Katherine is Chair of the Policyholder Insurance Coverage Practice at Bradley, Arant, Boult, Cummings. Her office is based in Washington, D.C. She works with risk managers all day on insurance issues. [5:05] Katherine has been a member of the RIMS Public Policy Committee for several years. She serves as an advisor to the Committee. [5:12] Justin thanks Katherine for her contributions to RIMS. [5:25] Hal is with Georgia State University. He has been with RIMS for a couple of decades. Hal says he and Katherine have served together on the RIMS Public Policy Committee for maybe 10 years. [5:48] Hal is a professor at Georgia State University, a Clinical Associate in the Robinson College of Business, Greenberg School of Risk Science, where he teaches risk management and insurance. Before his current role, Hal was an insurance lawyer, both regulatory and coverage. [6:05] Hal has a lot of students. He is grading exams this week. He has standards for his class. In the real world, so does a business. [6:46] Katherine and Hal met through the RIMS Public Policy Committee. They started together on some subcommittees. Now they see each other at the annual meeting and on monthly calls. [7:05] Katherine and Hal just released a legislative review during RIMS's 75th anniversary, "A 2025 Cybersecurity Legal Safe Harbor Overview". It is available on the Risk Knowledge page of RIMS.org. [7:20] We're going to get a little bit of dialogue that extends beyond the pages. [7:31] Katherine explains Safe Harbor: When parties are potentially liable to third parties for claims, certain states have instilled Safe Harbor Laws that say, If you comply with these requirements, we'll provide you some liability protection. [7:45] Katherine recommends that you read the paper to see what the laws are in your state. The purpose of the paper is to describe some of those Safe Harbor laws, as well as all the risks. [8:04] October 14th, the date this episode is released, is World Standards Day. Hal calls that good news. Justin says the report has a correlation with the standards in the risk field. [8:43] Justin states that many states tie Safe Harbor eligibility to frameworks like NIST, the ISO/IEC 27000, and CIS Controls. [9:27] Hal says, There are several standards, and it would be up to the Chief Information Security Officer to guide a company on which framework might be most appropriate for them. There are the NIST, UL, and ISO, and they overlap quite a bit. [9:56] These are recognized standards. In some states, if a company has met this standard of cybersecurity, a lawsuit against the company for breach of its standard of care for maintaining its information systems would probably be defensible for having met a recognized standard. [10:23] Katherine adds that as risk managers, we can't make the decision about which of these external standards is the best. Many organizations have a Cybersecurity Officer responsible for this. [10:44] For smaller organizations, there are other options, including outsourcing to a vendor. Their insurance companies may have recommendations. So you're not on your own in making this decision. [11:14] Katherine says firms should definitely aim for one recognized standard. Katherine recommends you try to adhere to the highest standard. If you are global, you need to be conscious of standards in other countries. [11:46] Hal says California tends to have the highest standards for privacy and data protection. If you're a financial services company, you're subject to New York State's Department of Financial Services Cyber Regulation. [12:02] If you're operating in Europe, GDPR is going to be the guiding standard for what you should do. Hal agrees with Katherine: Any company that spans multiple states should pick the highest standard and stick to that, rather than try to implement five or 52 standards. [12:23] When you're overseas, you may not be able to just pick the highest standard; there are challenges in going from one country or region of Europe back to the U.S. If one is higher, it will probably be easier. [12:38] There are major differences between the U.S., which has little Federal protection, vs. state protection. [13:10] Katherine says if you don't have the internal infrastructure, and you can't afford that infrastructure, the best thing is to pivot to an outside vendor. There are many available, with a broad price range. Your cyber insurer may also have some vendors they already work with. [13:40] Hal would add, Don't just think about Safe Harbors. That's just a legal defense. Think about how you reduce the risk by adopting standards or hiring outside firms that will provide that kind of risk protection and IT management. [13:59] If they're doing it right, they may tell you the standards they use, and they may have additional protocols, whether or not they fall within those standards, that would also be desirable. A mid-sized firm is probably outsourcing it to begin with. [14:21] They have to be thinking about it as risk, rather than just Safe Harbor. You have to navigate to the Safe Harbor. You don't just get there. [14:31] Quick Break! RISKWORLD 2026 will be in Philadelphia, Pennsylvania, from May 3rd through the 6th. RIMS members can now lock in the 2025 rate for a full conference pass to RISKWORLD 2026 when you register by October 30th! [14:50] This also lets you enjoy earlier access to the RISKWORLD hotel block. Register by October 30th, and you will also be entered to win a $500 raffle! Do not miss out on this chance to plan and score some of these extra perks! [15:03] The members-only registration link is in this episode's show notes. If you are not yet a member, this is the time to join us! Visit RIMS.org/Membership and build your network with us here at RIMS! [15:16] The RIMS Legislative Summit 2026 is mentioned during today's episode. Be sure to mark your calendar for March 18th and 19th in Washington, D.C. Keep those dates open. [15:28] Join us in Washington, D.C., for two days of Congressional Meetings, networking, and advocating on behalf of the risk management community. Visit RIMS.org/Advocacy for more information and updates. [15:41] Let's return to our interview with Katherine Henry and Hal Weston! [15:54] We're talking about their new paper, "A 2025 Cybersecurity Legal Safe Harbor Overview". Katherine mentions that some businesses are regulated. They have to comply with external regulatory standards. [16:38] Other small brick-and-mortar businesses may not have any standards they have to comply with. They look for what to do to protect themselves from cyber risk, and how to tell others they are doing that. [16:54] If you can meet the standards of Safe Harbor laws, a lot of which are preventative, before a breach, you can inform your customers, "These are the protections we have for your data." You can tell your board, "These are the steps we're taking in place." [17:13] You can look down the requirements of the Safe Harbor law in your state or a comparable state, and see steps you can take in advance so you can say, "We are doing these things and that makes our system safer for you and protects your data." [17:34] Hal says you don't want to have a breach, and if you do, it would be embarrassing to admit you were late applying a patch, implementing multi-factor authentication, or another security measure. By following standards of better cyber protection, you avoid those exposures. [18:07] Hal says every company has either been hacked and knows it, or has been hacked and doesn't know it. If you're attacked by a nation-state that is non-preventable, you're in good shape. [18:26] If you're attacked because you've left some ports open on your system, or other things that are usually caught in cybersecurity analyses or assessments, that's the embarrassing part. You don't want to be in that position. [18:43] Katherine says it's not just your own systems, but if you rely on vendors, you want to ensure that the vendors have the proper security systems in place so that your data, to the extent that it's transmitted to them, is not at risk. [19:07] Also, make sure that your vendors have cyber insurance and that you're an additional insured on that vendor's policy if there's any potential exposure. [19:22] Hal says If you're using a cloud provider, do you understand what the cloud provider is doing? In most cases, they will provide better security than what you could do on your own, but there have been news stories that even some of those have not been perfect. [20:22] Hal talks about the importance of encryption. It's in the state statutes and regulations. There have been news stories of companies that didn't encrypt their data on their servers or in the cloud, and didn't understand encryption, when a data breach was revealed. [20:52] Hal places multi-factor authentication up with encryption in importance. There was a case brought against a company that did not have MFA, even though it said on its application on the cyber policy that the company used it. [21:13] Hal says these are standard, basic things that no company should be missing. If you don't know that your data is encrypted, get help fast to figure that out. [21:51] Hal has also seen news stories of major companies where the Chief Technology Officer has been sued individually, either by the SEC or others, for not doing it right. [22:07] Katherine mentions there are insurance implications. If you mistakenly state you're providing some sort of protection on your insurance application that you're not providing, the insurer can rescind your coverage, so you have no coverage in place at all. [22:23] Katherine says, These are technical safeguards, but we know the human factor is one of the greatest risks in cybersecurity. Having training for everyone who has access to your computer system, virtually everyone in your organization, is very important. [22:49] Have a test with questions like, Is this a spam email or a real email? There are some vendors who can do all this for you. Statistics show that the human element is one of the most significant problems in cybersecurity protection. [23:05] Justin says it's October, Cybersecurity Awareness Month in the U.S. Last week's guest, Gwenn Cujdik, the Incident Response and Cyber Services Lead for North America at AXA XL, said the number one cyber risk is human error, like clicking the phishing link. [23:45] Justin brings up that when he was recently on vacation, he got an email on his personal email account, "from his CEO," asking him to handle something for them. Justin texted somebody else at RIMS, asking if they got the same email, and they hadn't. [24:14] Justin sent the suspect email to the IT director to handle. You have to be vigilant. Don't let your guard down for a second. [24:48] Katherine has received fake emails, as well. [24:51] Hal says it has happened to so many people. Messages about gift cards or the vendor having a new bank account. Call the vendor that you know and ask what this is. [25:12] Hall continues. It's important to train employees in cybersecurity, making sure that they are using a VPN when they are outside of the office, or even a VPN that's specific to your company. [25:32] Hal saw in the news recently that innocent-looking PDF files can harbor lots of malware. If you're not expecting a PDF file from somebody, don't click on that, even if you know them. Get verification. Start a new thread with the person who sent it and ask if it is a legitimate PDF. [26:08] Justin says of cybercriminals that they are smart and their tactics evolve faster than legislation. How can organizations anticipate the next generation of threats? [26:34] Katherine says, You need to have an infrastructure in your organization that does that, or you need to go to an outside vendor. You need some sort of protection, internally or externally. [27:11] Katherine says she works with CFOs all the time. If an organization isn't large enough to have a risk manager, it's a natural fit for the CFO, who handles finances, to handle insurance. When it comes to cybersecurity, a CFO needs help. [27:46] The CFO should check the cyber policy to see what support services are already there and see if there are any that are preventative, vs. after a breach. If there are not, Katherine suggests pivoting to an outside vendor. [28:07] Hal continues, This interview is for RIMS members who are risk managers and the global risk community. Risk managers don't claim to know all the risk control measures throughout a company. They rely upon the experts in the company and outside. [28:29] If the CFO is the risk manager, he or she has big gaps in expertise needed for risk management. It's the same for the General Counsel running risk management. Risk managers are known for having small staffs and working with everybody else to get the right answers. [28:55] If you're dealing with the CFO or General Counsel in those roles, they need to be even more mindful to work with the right experts for guidance. [29:09] One Final Break! As many of you know, the RIMS ERM Conference 2025 will be held on November 17th and 18th in Seattle, Washington. We recently had ERM Conference Keynote Speaker Dan Chuparkoff on the show. [29:26] He is back, just to deliver a quick message about what you can expect from his keynote on "AI and the Future of Risk." Dan, welcome back to RIMScast! [29:37] Dan says, Greetings, RIMS members and the global risk community! I'm Dan Chuparkoff, AI expert and the CEO of Reinvention Labs. I'm delighted to be your opening keynote on November 17th at the RIMS ERM Conference 2025 in Seattle, Washington. [29:52] Artificial Intelligence is fueling the next era of work, productivity, and innovation. There are challenges in navigating anything new. This is especially true for risk management, as enterprises adapt to shifting global policies, economic swings, and a new generation of talent. [30:10] We'll have a realistic discussion about the challenges of preparing for the future of AI. To learn more about my keynote, "AI and the Future of Risk Management," and how AI will impact Enterprise Risk Management for you, listen to my episode of RIMScast at RIMS.org/Dan. [30:29] Be sure to register for the RIMS ERM Conference 2025, in Seattle, Washington, on November 17th and 18th, by visiting the Events page on RIMS.org. I look forward to seeing you all there. [30:40] Justin thanks Dan and looks forward to seeing him again on November 17th and hearing all about the future of AI and risk management! [30:48] Let's Conclude Our Interview about Navigating Cyber and IT Practices to Legal Safe Harbors with Katherine Henry and Hal Weston! [31:17] Katherine tells about how Safe Harbor compliance influences cyber insurance. If your organization applies for cyber insurance and you can't meet some minimum threshold that will be identified on the application, the insurer will not even offer you cyber insurance. [31:34] You need to have some cyber protections in place. That's just to procure insurance. Cyber insurance availability is growing. Your broker can bring you more insurers to quote if you can show robust safeguards. [32:05] After the breach, your insurer is supposed to step in to help you. Your insurer will be mindful of whether or not your policy application is correct and that you have all these protections in place. [32:21] The more protections you have, the quicker you might be able to shut down the breach, and the resulting damage from the breach, and that will lower the resulting cost of the claim and have less of an impact on future premiums. [32:36] If the cyber insurer just had to pay out the limits because something wasn't in place, that quote next year is not going to look so pretty. Your protections have a direct impact on both the availability and cost of coverage. [32:50] Justin mentions that the paper highlights Connecticut, Tennessee, Iowa, Ohio, Utah, and Oregon as the states with Safe Harbor laws. The Federal requirements are also listed. Katherine expects that more states will offer Safe Harbor laws as cybercrime lawsuits increase. [33:42] Hal says Oregon, Ohio, and Utah were the leaders in creating Safe Harbors. Some of the other states have followed. Safe Harbor is a statutory protection against liability claims brought by the public. [34:06] In other states, you can't point to a statute that gives protection, but you can say you complied with the highest standards in the nation, and you probably have a pretty defensible case against a claim for not having kept up with your duty to protect against a cyber attack. [34:55] Hal adds that every company is going to be sued, and the claim is that you failed to do something. If you have protected yourself with all the known best practices, as they evolve, what more is a company supposed to do? [35:18] The adversaries are nation-states; they are professional criminals, sometimes operating under the protection of nation-states, and they're using artificial intelligence to craft even more devious ways to get in. [36:19] Katherine speaks from a historical perspective. A decade ago, cyber insurance was available, but there was no appetite for it. There wasn't an understanding of the risk. [36:32] As breaches began to happen and to multiply, in large amounts of exposure, with companies looking at millions of dollars in claims, interest grew. Katherine would be surprised today if any responsible board didn't take cyber risk extremely seriously. [36:55] The board's decision now is what limits to purchase and from whom, and not, "Should we have cyber insurance at all?" Katherine doesn't think it's an issue anymore in any medium-sized company. [37:17] The risk manager should present to the board, "We benchmark. Our broker benchmarks. Companies of our size have had this type of claim, with this type of exposure, and they've purchased this amount of limits. We need to be at least in that place." Boards will be receptive. [37:43] If they are not receptive, put on a PowerPoint with all the data that's out there about how bad the situation is. The average cost of a breach is well over $2 million. The statistics are quite alarming. A wise decision-maker will understand that you need to procure this coverage. [38:10] Katherine says, from the cybersecurity side, you procure the coverage, you protect the company, and take advantage of the Safe Harbors. All of those things come together with the preventative measures we've been talking about. [38:24] You can show your decision-makers and stakeholders that if you do all those things, comply with these Safe Harbor provisions, you're going to minimize your exposure, increase the availability of insurance, and keep your premiums down. It's a win-win package. [38:41] Justin says, It has been such a pleasure to meet you, Hal, and thank you for joining us. Katherine, it is an annual pleasure to see you. We're going to see you, most likely, at the RIM Legislative Summit, March 18th and 19th, 2026, in Washington, D.C. [39:01] Details to come, at RIMS.org/Advocacy. Katherine, you'll be there to answer questions. Katherine looks forward to the Summit. She has gone there for years. It's a great opportunity for risk managers to speak directly to decision-makers about things that are important to them. [39:42] Special thanks again to Katherine Henry and Hal Weston for joining us here today on RIMScast! Remember to download the new RIMS Legislative Review, "A 2025 Cybersecurity Legal Safe Harbor Overview". [39:58] We are past the 30-day mark now, so the review is publicly available through the Risk Knowledge Page of RIMS.org. You can also visit RIMS.org/Advocacy for more information. In this episode's notes, I've got links to Katherine's prior RIMScast appearances. [40:18] Plug Time! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in the show notes. [40:47] RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [41:05] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [41:22] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more. [41:39] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [41:53] Justin Smulison is the Business Content Manager at RIMS. Please remember to subscribe to RIMScast on your favorite podcasting app. You can email us at Content@RIMS.org. [42:05] Practice good risk management, stay safe, and thank you again for your continuous support! Links: RIMS Professional Report: "A 2025 Cybersecurity Legal Safe Harbor Overview" RISK PAC | RIMS Advocacy | RIMS Legislative Summit SAVE THE DATE — March 18‒19, 2026 RIMS ERM Conference 2025 — Nov. 17‒18 RISKWORLD 2026 — Members-only early registration through Oct 30! RIMS-Certified Risk Management Professional (RIMS-CRMP) The Strategic and Enterprise Risk Center RIMS Diversity Equity Inclusion Council RIMS Risk Management magazine | Contribute RIMS Now Cybersecurity Awareness Month World Standards Day — Oct 14, 2025 Upcoming RIMS Webinars: RIMS.org/Webinars "Jury Dynamics: How Juries Shape Today's Legal Landscape" | Oct. 16, 2025 | Sponsored by Zurich "Parametric Insurance: Providing Financial Certainty in Uncertain Times" | Oct. 30, 2025 | Sponsored by Swiss Re "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World" | Nov. 6 | Sponsored by Hub Upcoming RIMS-CRMP Prep Virtual Workshops: RIMS-CRMP Virtual Exam Prep — Oct. 29‒30, 2025 RIMS-CRMP-FED Exam Prep Virtual Workshop — November 11‒12 Full RIMS-CRMP Prep Course Schedule "Risk Appetite Management" | Oct 22‒23 | Instructor: Ken Baker "Intro to ERM for Senior Leaders" | Nov. 4‒5 | Instructor: Elise Farnham "Fundamentals of Insurance" | Nov. 11‒12 | Instructor: Chris Hansen "Leveraging Data and Analytics for Continuous Risk Management (Part I)" | Dec 4. See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops Related RIMScast Episodes about Cyber and with Katherine Henry: "National Cybersecurity Awareness Month 2025 with Gwenn Cujdik" "AI Risks and Compliance with Chris Maguire" "Data Privacy and Protection with CISA Chief Privacy Officer James Burd" "Cyberrisk Trends in 2025 with Tod Eberle of Shadowserver" "Legal and Risk Trends with Kathrine Henry (2023)" Sponsored RIMScast Episodes: "The New Reality of Risk Engineering: From Code Compliance to Resilience" | Sponsored by AXA XL (New!) "Change Management: AI's Role in Loss Control and Property Insurance" | Sponsored by Global Risk Consultants, a TÜV SÜD Company Demystifying Multinational Fronting Insurance Programs | Sponsored by Zurich "Understanding Third-Party Litigation Funding" | Sponsored by Zurich "What Risk Managers Can Learn From School Shootings" | Sponsored by Merrill Herzog "Simplifying the Challenges of OSHA Recordkeeping" | Sponsored by Medcor "Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report" | Sponsored by AXA XL "How Insurance Builds Resilience Against An Active Assailant Attack" | Sponsored by Merrill Herzog "Third-Party and Cyber Risk Management Tips" | Sponsored by Alliant "RMIS Innovation with Archer" | Sponsored by Archer "Navigating Commercial Property Risks with Captives" | Sponsored by Zurich "Breaking Down Silos: AXA XL's New Approach to Casualty Insurance" | Sponsored by AXA XL "Weathering Today's Property Claims Management Challenges" | Sponsored by AXA XL "Storm Prep 2024: The Growing Impact of Convective Storms and Hail" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Partnering Against Cyberrisk" | Sponsored by AXA XL "Harnessing the Power of Data and Analytics for Effective Risk Management" | Sponsored by Marsh "Accident Prevention — The Winning Formula For Construction and Insurance" | Sponsored by Otoos "Platinum Protection: Underwriting and Risk Engineering's Role in Protecting Commercial Properties" | Sponsored by AXA XL "Elevating RMIS — The Archer Way" | Sponsored by Archer RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS President Kristen Peed! RIMS Events, Education, and Services: RIMS Risk Maturity Model® Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information. Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts. Have a question or suggestion? Email: Content@rims.org. Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn. About our guests: Katherine Henry, Partner and Chair of the Policyholder Coverage Practice, Bradley, Arant, Boult, and Cummings Harold Weston, Clinical Associate Professor and WSIA Distinguished Chair in Risk Management and Insurance, Georgia State University College of Law Production and engineering provided by Podfly.

Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society. In this episode, Justin interviews Gwenn Cujdik, the Incident Response and Cyber Services Lead for North America at AXA XL. Justin and Gwenn cover various cybersecurity topics, and how her 15 years as an Assistant District Attorney prepared her for her current role of responding to cyber attacks. Listen for tips on securing your organization, large or small, from cyber attacks and responding when, not if, they come. Gwenn shares her experiences and some advice. Listen for Gwenn's insights to help you be vigilant and prepared against cybercrime. Key Takeaways: [:01] About RIMS and RIMScast. [:14] With great sadness, the RIMS family lost a true leader in September. Susan Meltzer was an exceptional risk professional and passionate volunteer with RIMS. She served as the Society's President in 1999 and 2000. [:29] RIMS has established a scholarship fund in her name. You can donate to that fund through RIMS, The Foundation for Risk Management®, at RIMS.org/FRM. [:46] About this episode of RIMScast. This is our National Cybersecurity Awareness Month episode. Here to lend her insight on all things cyber is Gwenn Cujdik. She is the Incident Response and Cyber Services Lead for North America at AXA XL. [1:19] We're also going to talk about her fascinating career that antedates her time in cyber. [1:24] RIMS-CRMP Prep Workshops! The next RIMS CRMP Prep Workshops will be held on October 29th and 30th and led by John Button. [1:36] The next RIMS-CRMP-FED Virtual Workshop will be held on November 11th and 12th and led by Joseph Mayo. Links to these courses can be found through the Certifications page of RIMS.org and through this episode's show notes. [1:53] RIMS Virtual Workshops! RIMS has launched a new course, "Intro to ERM for Senior Leaders." It will be held again on November 4th and 5th and will be led by Elise Farnham. [2:07] On November 11th and 12th, Chris Hansen will lead "Fundamentals of Insurance". It features everything you've always wanted to know about insurance but were afraid to ask. Fear not; ask Chris Hansen! RIMS members always enjoy deep discounts on virtual workshops! [2:26] The full schedule of virtual workshops can be found on the RIMS.org/education and RIMS.org/education/online-learning pages. A link is also in this episode's notes. [2:37] Several RIMS Webinars are being hosted this Fall. On October 9th, Global Risk Consultants returns to deliver "Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes". [2:51] On October 16th, Zurich returns to deliver "Jury Dynamics: How Juries Shape Today's Legal Landscape". On October 30th, Swiss Re will present "Parametric Insurance: Providing Financial Certainty in Uncertain Times". [3:08] On November 6th, HUB will present "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World". Register at RIMS.org/Webinars. [3:20] On with the show! It's National Cybersecurity Awareness Month here in the U.S. and in many places around the world. Cyber continues to be a top risk among organizations of all sizes in the public and private sectors. [3:35] Joining me today to discuss cybersecurity awareness is Gwenn Cujdik. You may remember her from the RIMS AXA XL webinar on September 4th, "Lock Down & Level Up." [3:52] During that webinar, we had a brief, fascinating discussion about her time as an Assistant District Attorney in Pennsylvania. [4:01] I wanted to learn more about how someone transitions from a colorful career to cybersecurity and eventually becomes the Incident Response and Cyber Services Lead for North America at AXA XL. [4:15] She's got a lot on her plate. She's got a huge risk radar. We're going to talk all about it and help all the risk managers out there use her insight and perspective to protect their organizations. Let's get to it! [4:28] Interview! Gwenn Cujdik, welcome to RIMScast! [5:09] Gwenn is Incident Response and Cyber Services Lead for North America at AXA XL. When a client has a cyber breach, they call AXA XL and work with Gwenn's teams. [5:42] Gwenn works on training her teams to be able to respond, setting up procedures and processes to make the response seamless and collaborative, and making sure the clients get consistent service, whoever handles the call. [6:16] Gwen's team has 18. Four are in leadership with 14 more team members. Two managers directly supervise the teams to help them with answers to questions about unusual situations. [6:50] Gwenn helps the teams understand massive events and how they might affect AXA XL and their clients, how to interact with brokers, and technical matters. She helps the team understand coverages when it comes to something unique. "It's all hands on deck for us!" [7:55] Gwenn says, Fighting crime is a part of who I am. She is driven by helping others get through some terrible times. She has seen the worst of the worst. Sometimes it takes just one helping hand to get people through tough times. She has seen how impactful that can be. [8:44] Sometimes, in a crisis, how people interact with the victim could be the recipe for them to recover fully from that event. Gwenn has seen people recover, take back their lives, move forward, and be survivors. She has seen corporations and companies do so and become better. [9:39] Justin repeats that Gwenn has seen the worst of the worst: homicides, murders, abuses of women and children, arson, and more. She has seen it all, including things that she wishes she hadn't seen. [10:27] Gwenn compares cyber incident response to her ADA work. A prosecutor has to be able to handle things under pressure. The best prosecutors are looking to do the right thing. Gwenn has met many people who, absent the crime, would have been friends. [11:06] You have to be able to see there's a human on the other side, and there are humans that they hurt. You do right by understanding that there are a lot of players involved, who are humans. [11:26] It helps you understand where somebody might be coming from. It helps you understand why they might be screaming at you. "I'm just the messenger, but let's talk about why you're so upset." [11:39] Gwenn says one of the cool things about being a prosecutor is that every case you have presents a different set of facts and circumstances. There's a law that's intertwined with it, and that's interesting for Gwenn. [11:54] The first time Gwenn had an arson case, she had to work with the Fire Marshals to understand how they knew the fire started here. How did they know it was a chemical? She started with the Fire Marshals and then went to the crime scene to talk to Forensic Chemists. [12:11] The Forensic Investigators explained the chemistry behind the Molotov Cocktail that was thrown through the window. This was how the fire started, and then it enveloped the room. [12:22] When Gwenn first worked with DNA, she found it to be incredibly complicated. She had to learn it to be able to explain it. Her job was to explain to 12 people why DNA mattered, why it's this guy, and not anybody else, that committed this crime; the numbers are insane. [12:44] It could be one in a hundred quadrillion that it's another person. Those numbers are insane, and it's really hard to understand. [12:56] Gwenn was in the DA's office when cell site analysis came around; being able to triangulate where someone is, using cell towers. The Philadelphia Field Office had one of the pioneers in that science. Gwenn learned from him. [13:13] One of Gwenn's matters was a homicide. They tracked the defendant from the scene of the crime, through public transportation, back to his house, using cell site triangulation. While they were mapping, the actor Joe Piscopo came by, touring the building. Gwenn was an SNL fan. [14:23] Gwenn's prosecutorial experience translates to cyber in that each matter is a little different. There's a bad guy at the other end. Gwenn is not sympathetic to the bad guys because they are anonymous. Nobody sees them or knows them. It's usually a criminal enterprise. [14:59] It's a group of people working together, motivated by money and wreaking havoc on people who are trying to make a living and support their families. The bad guys want to extort millions of dollars and put businesses and livelihoods in danger. [15:42] In Philadelphia, the elite of the elite prosecutors worked in homicide. Some spend 20 or 30 years there. Gwenn was an ADA for 15 years, but couldn't see herself doing it for 20 or 30 years. She wanted to stay positive and be a force for good when she was dealing with bad. [16:34] She wondered where she could go to have a similar impact for good, investigating, and helping people get through an awful time. [16:45] Gwenn had a friend who worked with her in the Family Violence and Sexual Assault Unit. She had left the office to work for a new law firm doing cyber incident response. She called Gwenn and said she would be really good at it. She explained it to Gwenn. [17:50] Gwenn interviewed with the firm and got an offer the day she interviewed. She realized that was what she wanted to do. Some former prosecutors were doing it. There were some amazing people, and she wanted to be a part of that, something new, interesting, and growing. [18:15] Gwenn wanted to be challenged and get to help people. Once she discovered it, she couldn't think of a better transition for people who are in law enforcement than going into cybersecurity. [18:39] RIMS Events! On November 17th and 18th, join us in Seattle, Washington, for the RIMS ERM Conference 2025. The agenda is live. Check out Episode 357 for Justin's dialogue with ERM Conference Keynote Presenter Dan Chuparkoff on AI and the future of risk. [18:59] Visit the Events page of RIMS.org to register. [19:02] RISKWORLD 2026 will be in Philadelphia, Pennsylvania, from May 3rd through May 6th. RIMS members can now lock in the 2025 rate for a full conference pass to RISKWORLD 2026 when you register by October 30th! [19:16] This also lets you enjoy earlier access to the RISKWORLD hotel block. Register by October 30th, and you will also be entered to win a $500 raffle! Do not miss out on this chance to plan and score some of these extra perks! [19:30] The members-only registration link is in this episode's show notes. If you are not yet a member, this is the time to join us! Visit RIMS.org/Membership and build your network with us here at RIMS! [19:42] Let's return to our interview with Gwenn Cujdik! [20:14] Gwenn says cybersecurity takes a village. What she learned in criminal prosecution is that as long as there have been humans, there has been crime. We're fortunate as a society to have laws, law enforcement, governing bodies, and organizations to keep crime down. [20:54] It's not dissimilar to cybersecurity. If Gwenn were talking to a board, she would say, It takes everybody in your community, in your organization, to build resilience, protect yourself from cybercrime, and react to it. [21:12] Gwenn says a big mistake people often make is thinking incident response is a job for just their tech team. The IT team is not trained in all the various fields you need to be an expert in to get through a cyber incident. [21:41] Your IT team will be able to get you up and running, collaborate, and be a good foundation for the incident response, working with outside experts. It takes people who understand the law and who understand communications. [21:54] It takes people who understand the brand, who are the heart of the organization, to be able to respond. Your CISO may say, Here's how I think that we should respond, but your CEO may say, This isn't how I think we would respond to an event like this. Keep in mind who we are. [22:32] Your legal team is there to say, Here's why we can't do that, the risk is too great; It will be worse if you do X, Y, Z; You shouldn't do that because you need to be compliant with the law. [23:11] Gwenn says good leaders lead best when they model. If you expect people to be open-minded and collaborative, you need to be the same. For the most part, organization leadership is very aware that cybersecurity is an important part of who they are and will be. [23:55] Gwenn has met a ton of CEOs who admit they don't know what they don't know and ask for help to understand cybersecurity so they can help their organizations in the best way possible. Some CEOs are thinking ahead and putting teams together that understand their role. [24:20] Gwenn has encountered CEOs who are just messing up the process. One wanted to invite his wife, not an employee, to the conversation because she would like to hear about it. From a legal and business perspective, it's very risky for the company. [25:04] One Final Break! The Spencer Educational Foundation's goal to help build a talent pipeline of risk management and insurance professionals is achieved, in part, by its collaboration with risk management and insurance educators across the U.S. and Canada. [25:23] Since 1999, Spencer has awarded over $2.9 million to create more than 570 Risk Management Internships. The Internship Grants application process is now open through October 15th, 2025. [25:39] To be eligible, risk managers must be based in the U.S., Canada, or Bermuda. A link to the Internship Grants page is in this episode's show notes. You can always visit SpencerEd.org, as well. [25:53] Let's Conclude Our National Cybersecurity Awareness Month Interview with Gwenn Cujdik! [26:05] It's National Cybersecurity Awareness Month 2025, here in the U.S. It's a big month for everyone in Gwenn's house; they have to pull their own weight a little more because she's traveling a lot, she's out a lot, and there are a lot of conferences and meetings going on! [26:29] Gwenn tries not to shove everything cyber just into October. October is busy, and she loves it. [26:56] On October 29th, at the Sheraton New York Times Square Hotel in Manhattan, Gwenn will be the Conference Co-Chair for the Zywave Cyber Risk Insights New York event. It's a full day with a lot of very knowledgeable individuals from a range of companies. [27:50] It is one of Gwenn's favorite events. It's a day packed with good information. She would love to see more risk managers and CISOs join it. The amount of information you can get in one day is almost unbelievable. The content is pretty diverse. [28:21] It covers claims, the state of the market, the different ways threat actors are attacking, how to prepare better for attacks and for business continuity, and how to organize invoices and costs as you're going through an incident response. [29:01] Gwenn says, Get the small things right so you can deal with the big things. While you tackle the small things, you can talk about whether or not the law requires you to file notifications to seven million people and how to get through that as a company. [29:22] Gwen says it's a great event. Gwenn will be there, giving opening remarks. Justin will be there, after attending a heavy metal concert the night before. The link is in this episode's show notes. [30:52] When Gwenn entered the cybersecurity field, she was surprised at the female presence. One of the managing partners who interviewed her was a female. There are also savvy female hackers out there. [31:35] Gwenn says that in criminal law, people have trouble understanding that women can commit crimes, the same way that men can. Gwenn points out Elizabeth Holmes and the book Bad Blood, about Theranos. [32:23] Gwenn mentions a woman in government who embezzled $22 million from her community to show horses. [32:42] Gwenn says, in terms of cybersecurity being a male-dominated field, we're all learning together; anybody who tries and is committed to it can do it. Because it's new, people come from different backgrounds with diverse experiences. [33:11] Gwenn says, We're seeing value in people coming from different careers and different industries and seeing their skillsets translate to cybersecurity. In this field, you need great diversity with people from all different backgrounds to be able to tackle this. [33:38] It's not one-size-fits-all. There are personalities involved. There are different businesses involved, from small to large, public to government. You have to be able to understand a huge variety of people and businesses. You have to understand a huge amount of technology. [34:00] Gwenn talks about the differences between cybersecurity and other industries. eDiscovery for cyber is not the same as eDiscovery for litigation. You need special people and tooling, and you have to understand what the tooling is, which helps you figure out timing. [34:43] Technology is always developing. Gwenn compares it to cat and mouse. We're constantly chasing the bad guys to figure out what they're doing. Sometimes it's reactive. They'll think of something new, and we've never seen it before. This is how we get through it. [35:04] The tools and a skillset you've used dealing with everything before help you tackle what's coming. Even the way we investigate and respond to things has changed. [35:16] Gwenn says when we came on the scene, we would grab images of all the computers. If there were 50 computers, you would have 50 images, which would mean people going through a massive amount of data, taking a really long time. [35:30] We don't do that now. We have tools and technology that can get through a system programmatically, to pull the evidence we need to do these investigations without having to go into a shop and take copies of laptops or servers to get through that. [35:49] That makes a potential difference of millions of dollars in responding. It's the difference between months and a month to respond. [36:15] Gwenn has not seen a malicious actor with technology or an algorithm that is beyond what she has seen before. She says, We have the technology they have. You'd be surprised how much private industry gives to our community in terms of intelligence and technology. [36:35] Gwenn adds, We work with the government to find out solutions. The industry is armed pretty well. Gwenn has seen some things that have impressed her. One attacker was pulling searches from a legal hold, getting into sensitive information. [37:16] Their searches looked legitimate, like what an attorney would look for, so it didn't set off bells and whistles. Gwenn wonders how they knew to look in a legal hold. Were they lawyered? That was something small but ingenious to Gwenn. [37:46] Seeing a smart attack invigorates Gwenn to use her brain and try to be as smart or smarter. She says that's what is great about this job. It's constantly changing. You're constantly moving. It's not for weak minds. [38:11] To excel, you have to be smart, tenacious, and love learning. You have to love that you may be an expert in this, but you may become obsolete. You've got to keep your game up. Gwenn says she is just a big nerd for it. [38:33] Attackers are using AI more. Gwenn recalls two incidents recently where two different groups, for two different reasons, were attacking Salesforce. That's the rub of being popular. One group used AI to search quickly for sensitive information to leverage attacks on companies. [39:27] Unfortunately, people are reusing passwords, and the bad guys know that. Gwenn says you'd better not! [39:57] Justin comments that AI being used for a cyber attack should be on companies' risk radars. How can they adjust defense strategies to stay ahead of something like that? [40:08] Gwenn is dealing with that at this moment. If you are a big company with subsidiaries and locations around the country or the world, segregate the networks. If an attack hits your facility in Oklahoma, they won't have access to your facility in Belgium. [40:38] If your locations are networked, it's a domino effect. If one goes down, they all go down. In terms of business resilience, that is the one factor that can tumble everything with the press of a button. [40:55] The tools that bad guys are using are meant to get them through fast. They get in, use AI to conduct reconnaissance, and get terabytes of data out quickly. It's important to take every effort to reduce the severity of an attack in its spread and the amount of data stolen. [41:40] Can they move laterally within a company or elevate privileges by getting to the admin, who has access to everything? It's great to focus on how to prevent it, but the reality is, they're going to find a way. It's not if, it's when. [42:09] While you have to prevent the attack from happening, and be vigilant. If you get an attack, you have to make sure it's small, you respond quickly, and it's not going to hit every facet of your company. Attacks that hit every facet of the company are the most devastating. [42:39] Justin says you've been wonderful. You've given us so much to think about when it comes to National Cybersecurity Awareness Month. You do great work! I look forward to seeing you in more AXA XL RIMS collaborative webinars! [42:55] We'll see you in the city for the Zywave Cyber Risk Insights New York, on October 29th, delivering the opening address and mingling with attendees. [43:04] Gwenn says, I'll be there all day, attending sessions, supporting my friends on panels, my cyber family, and for folks who want to meet me. I'm always happy to talk cyber! [43:24] Justin says, Lock Down & Level Up: Turn Up Your Cybersecurity Game Against Creative Cyber Criminals. [43:30] You've been such a wonderful guest, and I appreciate all your time and insight today. Thank you, Gwenn! [43:43] Special thanks to Gwenn Cujdik of AXA XL for joining us here to discuss all things cyber. The AXA XL RIMS webinar, "Lock Down & Level Up: Turn Up Your Cybersecurity Game Against Creative Cyber Criminals," is now available on demand through the RIMS.org/Webinars page. [44:05] A link is also in this episode's show notes. [44:07] Gwenn will deliver the opening address at the Zywave Cyber Risks Insights New York Conference on October 29th in Manhattan. A link is in this episode's show notes. [44:19] Plug Time! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in the show notes. [44:47] RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [45:05] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [45:23] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more. [45:39] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [45:54] Justin Smulison is the Business Content Manager at RIMS. Please remember to subscribe to RIMScast on your favorite podcasting app. You can email us at Content@RIMS.org. [46:06] Practice good risk management, stay safe, and thank you again for your continuous support! Links: RIMS ERM Conference 2025 — Nov. 17‒18 Spencer Internship Program — Registration Open Through Oct. 15. RISKWORLD 2026 — Members-only early registration through Oct 30! RIMS-Certified Risk Management Professional (RIMS-CRMP) The Strategic and Enterprise Risk Center RIMS Diversity Equity Inclusion Council RISK PAC | RIMS Advocacy | RIMS Legislative Summit SAVE THE DATE — March 18‒19, 2026 RIMS Risk Management magazine | Contribute RIMS Now Zywave's 2025 Cyber Risk Insights Conference — Oct. 29, 2025 | New York City StaySafeOnline.org "RIMS Issues Statement on the Passing of Legendary Risk Leader and Former RIMS President Susan Meltzer" Upcoming RIMS Webinars: RIMS.org/Webinars Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes | Oct. 9 | Sponsored by Global Risk Consultants Jury Dynamics: How Juries Shape Today's Legal Landscape | Oct. 16, 2025 | Sponsored by Zurich Parametric Insurance: Providing Financial Certainty in Uncertain Times | Oct. 30, 2025 | Sponsored by Swiss Re Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World | Nov. 6 | Sponsored by Hub "Lock Down & Level Up: Turn Up Your Cybersecurity Game Against Creative Cyber Criminals" Upcoming RIMS-CRMP Prep Virtual Workshops: RIMS-CRMP Virtual Exam Prep — Oct. 29‒30, 2025 RIMS-CRMP-FED Exam Prep Virtual Workshop — November 11‒12 Full RIMS-CRMP Prep Course Schedule "Risk Appetite Management" | Oct 22‒23 | Instructor: Ken Baker "Intro to ERM for Senior Leaders" | Nov. 4‒5 | Instructor: Elise Farnham "Fundamentals of Insurance" | Nov. 11‒12 | Instructor: Chris Hansen "Leveraging Data and Analytics for Continuous Risk Management (Part I)" | Dec 4. See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops Related RIMScast Episodes about Cyber: "AI Risks and Compliance with Chris Maguire" "Data Privacy and Protection with CISA Chief Privacy Officer James Burd" "Cyberrisk Trends in 2025 with Tod Eberle of Shadowserver" Sponsored RIMScast Episodes: "The New Reality of Risk Engineering: From Code Compliance to Resilience" | Sponsored by AXA XL (New!) "Change Management: AI's Role in Loss Control and Property Insurance" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Demystifying Multinational Fronting Insurance Programs" | Sponsored by Zurich "Understanding Third-Party Litigation Funding" | Sponsored by Zurich "What Risk Managers Can Learn From School Shootings" | Sponsored by Merrill Herzog "Simplifying the Challenges of OSHA Recordkeeping" | Sponsored by Medcor "Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report" | Sponsored by AXA XL "How Insurance Builds Resilience Against An Active Assailant Attack" | Sponsored by Merrill Herzog "Third-Party and Cyber Risk Management Tips" | Sponsored by Alliant "RMIS Innovation with Archer" | Sponsored by Archer "Navigating Commercial Property Risks with Captives" | Sponsored by Zurich "Breaking Down Silos: AXA XL's New Approach to Casualty Insurance" | Sponsored by AXA XL "Weathering Today's Property Claims Management Challenges" | Sponsored by AXA XL "Storm Prep 2024: The Growing Impact of Convective Storms and Hail" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Partnering Against Cyberrisk" | Sponsored by AXA XL "Harnessing the Power of Data and Analytics for Effective Risk Management" | Sponsored by Marsh "Accident Prevention — The Winning Formula For Construction and Insurance" | Sponsored by Otoos "Platinum Protection: Underwriting and Risk Engineering's Role in Protecting Commercial Properties" | Sponsored by AXA XL "Elevating RMIS — The Archer Way" | Sponsored by Archer RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS President Kristen Peed! RIMS Events, Education, and Services: RIMS Risk Maturity Model® Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information. Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts. Have a question or suggestion? Email: Content@rims.org. Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn. About our guest: Gwenn Cujdik, Incident Response and Cyber Services Lead for North America at AXA XL Production and engineering provided by Podfly.

Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society. In this episode, Justin interviews James Swanke, Lecturer in Risk and Insurance at the University of Wisconsin-Madison's Wisconsin School of Business. He currently serves as Director of the Risk Management and Insurance MBA program. Justin and Jim talk about his 42 years of experience in Risk Consulting with Willis Towers Watson, and his specialties there, particularly with captives. They discuss the University of Wisconsin-Madison Risk Management and Insurance MBA program, what the students learn, and the competitions they have won in the last year, and they look forward to winning this year. Also, Jim tells of disc jockeying in college, from Classic Rock to Polka. Listen to learn about captive design, how to prepare for emerging trends, and who wrote the best music of the '70s. Key Takeaways: [:01] About RIMS and RIMScast. [:17] About this episode of RIMScast. This is our special International Podcast Day episode because it's released on September 30th. We will be joined by Jim Swanke. He's a lecturer in the Risk Management Program of the University of Wisconsin. [:46] Jim started his career in broadcasting, and he still has the voice. We've got a lot to talk about today! [:54] RIMS-CRMP Prep Workshops! The next RIMS CRMP Prep Workshops will be held on October 29th and 30th and led by John Button. [1:06] The next RIMS-CRMP-FED Virtual Workshop will be held on November 11th and 12th and led by Joseph Mayo. Links to these courses can be found through the Certifications page of RIMS.org and through this episode's show notes. [1:23] RIMS Virtual Workshops! RIMS has launched a new course, "Intro to ERM for Senior Leaders." It will be held again on November 4th and 5th and will be led by Elise Farnham. [1:39] On November 11th and 12th, Chris Hansen will lead "Fundamentals of Insurance". It features everything you've always wanted to know about insurance but were afraid to ask. Fear not; ask Chris Hansen! RIMS members always enjoy deep discounts on virtual workshops! [1:58] The full schedule of virtual workshops can be found on the RIMS.org/education and RIMS.org/education/online-learning pages. A link is also in this episode's notes. [2:09] Several RIMS Webinars are being hosted this Fall. On October 9th, Global Risk Consultants returns to deliver "Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes". [2:22] On October 16th, Zurich returns to deliver "Jury Dynamics: How Juries Shape Today's Legal Landscape". On October 30th, Swiss Re will present "Parametric Insurance: Providing Financial Certainty in Uncertain Times". [2:39] On November 6th, HUB will present "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World". Register at RIMS.org/Webinars. [2:51] We're very excited that today is International Podcast Day! Before we celebrate, I wanted to take a moment to acknowledge and mourn the passing of Todd Cochrane. Todd was a podcast pioneer. [3:06] I've linked in this episode's show notes to a wonderful obituary from Podnews®, about his career, starting with his time in the Navy up to launching his own podcast, and writing Podcasting: The Do It Yourself Guide, from Wiley Publishing in 2005. [3:25] Over the last couple of months, I've had the pleasure of communicating with Todd over email for the Podcast Awards, and it was only last week that I saw the unfortunate news of his passing, which occurred suddenly on September 8th. [3:30] Our condolences go out to his family, friends, and the greater podcasting industry. [3:47] On with the show! This is our special International Podcast Day episode, and I am delighted to be joined by James Swanke, the Director of the Risk Management and Insurance MBA Program at the Wisconsin School of Business at the University of Wisconsin-Madison. [4:06] Jim spent four decades at WTW, specializing in financial and strategic planning issues, as well as captive insurance company design. [4:18] Jim was recently quoted in a new professional report, available on the RIMS Risk Knowledge page, and sponsored by LineSlip Solutions, titled "The Future of Captive Insurance: Governance, Technology, and Performance Optimization." [4:32] Jim got his start at the University of Wisconsin in broadcasting. We're going to talk about his career path and how being a disc jockey led him to where he is today, educating the next generation of risk professionals. Let's get to it! [4:50] Interview! Jim Swanke, welcome to RIMScast! [5:38] When Jim was in high school, he competed in forensics, in extemporaneous speaking. He did very well. He did well at the University of Wisconsin-Madison, and it got put in the newspaper. WLDY, in Ladysmith, Wisconsin, saw it in the newspaper and contacted him. [6:03] They were looking for a radio jock to "spin vinyls," do some DJing, and read sports and news. That job helped Jim get into the University of Wisconsin-Madison. [6:21] Jim studied actuarial science and risk management. He went into the Bachelor's program, the MBA program, and the graduate program in risk management, insurance, and corporate finance. [6:40] Jim was hired by the Wyatt Company and did lots of feasibility studies. After 42 years at Willis Towers Watson, he retired. Now he teaches at the University of Wisconsin-Madison. [6:57] Broadcasting set Jim on his path. He says that everything about what we do in the captive and risk management area is about communication. If you're not communicating, listening, helping out, and building stuff, you're not going to be a success. [7:28] When Jim was a DJ at WLDY, they played different kinds of music. On Sundays, he played polka music. On Saturdays, it was country western, and Monday through Friday, it was rock music. Rock music is what he enjoys. At the top of every hour, he did the news and weather. [8:13] Justin recalls his own career. He was just waiting for podcasting to be invented, then he was able to make it all work out. [8:31] Jim worked with captives at Willis Towers Watson. He is quoted in a new LineSlip paper, "The Future of Captive Insurance: Governance, Technology, and Performance Optimization." Justin saw his name there and thought it would be good to have him on RIMScast. [8:53] Jim described captives as a lifeline during extreme market conditions, comparing today's hard market to the turbulence of the 1980s. Jim tells what makes captives effective under hard conditions. Captives allow organizations to control their own destiny. [9:20] When you're in a hard market, having a captive allows you to take premiums that you normally pay to a commercial insurance carrier and put them into your captive insurance company. A captive is a subsidiary of the captive owner. [9:41] Most of the Fortune 500 companies in the United States have a captive. It allows them to arbitrage whatever's going on in the insurance marketplace. When we're having a difficult market, they put more of their premiums into the captive and rely on the captive more. [9:58] When the market softens, carriers may provide insurance at premiums that are lower than the expected losses. Organizations will buy commercial insurance all the time when the premiums are less than their projected losses. [10:14] Depending on where it is in the market, a captive has a role in an organization's risk management program. [10:27] Jim says a lot of organizations have looked to captives since 2020. We were in the midst of the pandemic, with all kinds of economic hardship. The insurance industry was in despair, as well. A lot of insurance companies cut back on the limits they were willing to offer. [10:49] Insurance companies put additional exclusions onto their insurance, so organizations had to rely on their own sophisticated ways of financing their losses. If they hadn't set up a captive, they set up a captive. If they had a captive in the past, they re-engineered it to do more. [11:15] They also used their captives to access the reinsurance marketplace. Reinsurance is insurance for insurance companies. A captive can be used as a platform to access reinsurers. [11:37] Even in difficult markets, having reinsurers involved created more competition, provided more limits, and there was more flexibility in the coverage terms. [11:48] That was when the pandemic was going on, which triggered the hardening of the market and the lack of availability of insurance. Organizations with captives relied on them and did more. Organizations without captives had captive feasibility studies done and formed captives. [12:09] Jim says the CEO of a captive should be a senior person who will monitor what's going on, fairly senior in the organization. It's not a full-time position. It takes three or four hours a month, plus board meetings. [12:46] A captive is required to have a captive manager, who is an accountant. They keep the books and interface for the captive with the regulator. The President or CEO of the captive relies on the captive manager to do a lot of the daily work. [13:09] Jim says you need a senior person involved so people take the captive seriously. The senior person is going to be the driver in reducing the severity of loss through loss prevention and loss reduction. Having a senior person is so important to the success of the captive. [13:40] There are lots of considerations when you're looking to make changes to your captive. Changes could include adding emerging types of risks, like cyber risk. If you're a hospital, a lot of medical malpractice captives have been hugely successful and have grown surplus. [14:08] Healthcare institutions are passing on some of their capitated risk exposures into their captives because they've done quite well with their medical malpractice. These risks are not correlated with each other, so there is a diversification benefit. [14:22] As you look to make these changes, you need to look at increasing risk assumptions, different attachment points on reinsurance, and changing your investment policy. You have lots of levers, and if you make changes, you need to analyze what the impact will be on your captive. [14:52] Jim talks about leaning into technology. Before 9/11, we didn't have the sophisticated software we've created in the last few years. [15:06] To look at covering all the possibilities and changing your captives, from adding new coverages to reinsurance reattachment points, was a monumental amount of actuarial work to figure out how to optimize your captive. [15:19] Recently developed software looks at all the possibilities in terms of changing your captive to optimize what you're doing. 20 years ago, Jim would spend months doing the actuarial work, working with an investment bank and charging them heavy fees. [15:39] Now, with new software, what took Jim months and months to do can be done in a matter of two to three days. The productivity today, in terms of optimizing your captive, is far greater than it was 20 years ago, because of the software that has been developed. [15:55] Jim likes that the software looks at all the risks and how these risks interact with one another. Looking at risks in a captive holistically is very important because many of these risks are hardly correlated with one another. [16:15] Looking at risks holistically, you can figure out the diversification benefit of having all of these risks within your captive, which has a major impact on the amount of economic capital that your captive will need to maintain. This software has been a game-changer. [16:34] RIMS Events! On October 1st through the 3rd, the RIMS Western Regional Conference will be held in North San Jose at the Santa Clara Marriott. The agenda is live. It looks fantastic! Visit RIMSWesternRegional.com and register today! [16:55] On November 17th and 18th, join us in Seattle, Washington, for the RIMS ERM Conference 2025. The agenda is live. Check out Episode 357 for Justin's dialogue with ERM Conference Keynote Presenter Dan Chuparkoff on AI and the future of risk. [17:14] Visit the Events page of RIMS.org to register. [17:17] RISKWORLD 2026 will be in Philadelphia, Pennsylvania, from May 3rd through May 6th. RIMS members can now lock in the 2025 rate for a full conference pass to RISKWORLD 2026 when you register by September 30th! [17:32] This also lets you enjoy earlier access to the RISKWORLD hotel block. Register by September 30th, and you will also be entered to win a $500 raffle! Do not miss out on this chance to plan and score some of these extra perks! [17:46] The members-only registration link is on this episode's show notes. If you are not yet a member, this is the time to join us! Visit RIMS.org/Membership and build your network with us here at RIMS! [17:56] If you are listening to RIMScast on our broadcast day, that means today is September 30th. It is last call for registration at the Earlybird rate! [18:08] In the spirit of it being September 30th, which is International Podcast Day, let's return to our interview with Jim Swanke! [18:22] Jim is the Director of the Risk Management and Insurance MBA at the University of Wisconsin-Madison. The curriculum includes technology, AI, and automation. In his classes, Jim is using the new software he discussed earlier. [18:46] Jim taught a class the day before on the principles of risk management. He talked about how risks are interrelated with each other and how you need to analyze them holistically, figuring out how they are correlated, not in siloes. [19:13] The holistic view will give you the best answer in terms of the economic capital that will be required to put into your captive. If you're analyzing risks silo by silo for each risk, that will lead you to having more economic capital in your captive than you need. [19:35] Jim has learned, in 42 years of consulting, that the CFOs in these organizations don't want to trap cash in their captives. Teaching this software to this new generation of students, they will be able to step into the roles of captive managers that the industry will need. [20:07] We're at the tip of the iceberg with AI. We're still learning in Academia what the power of AI is going to be. Jim foresees AI being very important in handling claims and in underwriting. [20:30] AI will allow commercial insurance companies to have a better way of doing their pricing and making decisions on whether or not risks should be accepted. It will also be beneficial to captives. [20:43] Jim thinks AI will advance the technology far ahead. We're just beginning to touch on some of the advantages within the insurance industry and within captives. [21:05] Jim started teaching in 2011. When University of Wisconsin-Madison Professor Dan Anderson retired, Jim was chosen to teach a class on sustainability that was started by Professor Anderson. He has taught it since 2011. [21:41] At the time, some students did not think anything was going on with climate change. A couple of students stood up in class and said all of this was just made up. It was a fantasy. [22:03] Today, when Jim goes into class, students are there a half-hour early and stay late. They are very connected and working together to figure out how to reduce CO2 emissions to slow down the heating of the planet and the extreme weather events that are coming more often. [22:24] The class has evolved over the years, and the students are more engaged than they ever have been. [22:33] The students from the University of Wisconsin-Madison were the winners of the Spencer-RIMS Risk Management Challenge at RISKWORLD 2025 in Chicago. Jim knows all of those students and had a couple of them in his class yesterday. [23:04] The students won with the Huntington, West Virginia case study, a six-month project. Huntington is on the Ohio River, and with extreme weather events, flooding has become a big issue in that community. They competed with students around the world to solve the issue. [23:49] Each school's team came up with things that could be done and conducted an analysis on what they thought was the best way of handling it. The University of Wisconsin-Madison's team focused on resiliency with levees and dikes to hold back the flooding. [24:27] The four Wisconsin students presented their paper and won, out of 61 schools competing. The University of Wisconsin-Madison received $10K. The second-place university, DePaul, received $7.5K, and the third-place school, IIRM Hyderabad (past year winner), got $5K. [25:04] The University of Wisconsin-Madison team entered two other contests last year and won them both. The CICA Captive competition involved case studies around Kaneka captives. It required an essay and a PowerPoint deck. [25:52] The MBA students entered the A.M. Best competition for insurance solutions to a global issue. The students used a combination of parametric and indemnity triggers to provide insurance to the disadvantaged in the Caribbean and Latin America. [26:23] If there was hurricane damage, it would trigger a parametric to allow an amount of money to be paid immediately to these disadvantaged families. Then there would be the indemnity insurance that would look at the actual losses and true them up to the loss amount. [26:49] It involved the combination of parametrics and conventional indemnity insurance, which was noteworthy and probably pushed the team over the top. [27:11] The professor who was the advisor in the Spencer Challenge is Carl Barlett. Carl is an attorney by training, and he has the energy to work with bachelor's students. He's graduated hundreds of people out of his program over the last four or five years. [27:59] The University has Career Fairs where 60 or 70 companies will come to meet with students. That's a credit to Carl. Not a lot of companies will come to a university to meet with students. Because of the program he put together, lots of organizations want to hire students. [28:21] The University of Wisconsin-Madison business school is typically ranked number 1. [28:31] A Final Break! The Spencer Educational Foundation's goal to help build a talent pipeline of risk management and insurance professionals is achieved, in part, by its collaboration with risk management and insurance educators across the U.S. and Canada. [28:50] Since 1999, Spencer has awarded over $2.9 million to create more than 570 Risk Management Internships. The Internship Grants application process is now open through October 15th, 2025. [29:06] To be eligible, risk managers must be based in the U.S., Canada, or Bermuda. A link to the Internship Grants page is in this episode's show notes. You can always visit SpencerEd.org, as well. [29:19] Let's Get Back to Our Interview with Jim Swanke of the University of Wisconsin-Madison! [29:46] Jim tells his students that we don't know today what the emerging risks are going to be. What we need to do is design our risk management program and keep our eyes and ears open to what is going to happen next. [30:04] Jim cites The Black Swan, by Nassim Nicholas Taleb. It gets into what we need to do as people of risk management and societies to try to identify the emerging risks that will impact us going forward. [30:21] In risk management, we look at the past to try to project what's going to happen in the future. We were caught by the pandemic. Very little business interruption insurance was offered. If we had been forward-thinking, we would have thought about coverages for the emerging risks. [31:19] An emerging risk after 9/11 was that insurance companies put exclusions on their insurance policies, excluding terrorism. The Federal Government passed the Terrorism Risk Insurance Act (TRIA) and offered it as a backstop to insurance companies. [31:55] Anybody with a captive could access that reinsurance through the U.S. Treasury, using their captive insurance company. [32:23] Jim sees more employee benefits going into captives. The advantages you have in the P&C area are also in place for employee benefits. Organizations with large workers' compensation self-insurance programs are putting excess workers' compensation into captives. [32:57] Jim says you need to be nimble and on your toes. Emerging risks are going to come out over the next 10 to 15 or 20 years. Keep your eyes and ears open so when they emerge, you can deal with them to reduce the frequency and severity of loss and see how to finance them. [33:19] Jim highly recommends reading The Black Swan. It's a good way to begin to think about how you should think about emerging risks. [33:42] Jim says school is going really well. One thing he noticed this year is the diverse nature of his students. There are more disciplines within the risk management area that people are interested in. [33:56] In class recently, Jim had a group that was in the investment banking area, a group that was in HR, and a couple of students from China. There was a broad diversity in the class. [34:16] It enriches the conversation to have people coming from different places with different backgrounds and different educational experiences. It shows the power of having diversity in the classroom. It's exciting. [34:32] The class will write papers on Enterprise Risk Management and talk about captives, and more. They'll compete in the CICA Captive Competition again, to maintain their number one rating there! They're off to a great start! It's nice to see students so highly energized! [34:53] Jim says the future is bright with the students graduating from the Wisconsin School of Business at the University of Wisconsin-Madison. [35:22] Justin and others have liked Jim's broadcasting voice. Jim thanks Justin for commenting on it. [35:55] Jim's time as a DJ was 50 years ago. He recalls two or three instances of hot mikes, when some of the FCC's seven deadly words may have been spoken. He says nobody wants that, but it was a real learning experience. [36:29] Jim recalls when the studio tower was hit by lightning. Jim was alone in the radio station when it happened. Lightning bolts were flying around the building after the tower got hit. The station went off the air, and Jim had to figure out a way to put it back on the air. [36:58] Jim highly recommends to young people, if you get an opportunity to get involved with radio or TV, give it a shot, because it's a lot of fun! Justin ties it to podcasting and video blogging. [37:42] Jim likes all the music of 1976 and didn't have a favorite album. He likes Deep Purple and Bob Seger. He says there's no better songwriter than Bob Seger. There was a diversity of good music going out at that time. It was a wonderful time to be working in a radio station. [38:47] Justin is a father of two young people under 12 who like to listen to classic rock. "Dancing in the Moonlight," by King Harvest, is a greatest hit in the family. They love Van Morrison. [39:56] On the subject of podcasting, Jim thinks there is an opportunity to develop content that helps the everyday American with their personal insurances, like homeowners, auto, health, life, and how they buy their insurances. [40:45] In class recently, the MBA students, the brightest and best, designing plans for New York investment banks and worldwide financial institutions, told Jim that they had questions about what to buy in auto policies and homeowners policies. [41:07] Jim states that an insurance podcast for the everyday American is something the industry needs to be doing. Justin suggests that members of the global RIMScast audience could pick up the baton and get to work! [41:27] Maybe it becomes part of the coursework for a class like Jim's. It could be part of a challenge, like the Spencer-RIMS Risk Management Challenge. [41:48] Jim says being able to talk about this with graduate students gives them some familiarity with what risk is, in terms of the instability of results. They can relate to it because they need to buy an auto policy or a homeowners policy. [42:03] While these coverages don't match up perfectly with what's going on in the commercial insurance marketplace, learning about them gives students a sense of what insurance is about, what risk management is about, and how to reduce the frequency and severity of losses. [42:22] Jim, it has been such a pleasure to speak with you and to pick your brain on risk management education, broadcasting, and music! Thank you so much for joining us here on RIMScast! [42:33] Good luck to you and your students at the University of Wisconsin-Madison, as you look to the 2026 competitions. I can only imagine they're going to do great things! [42:58] Special thanks again to Jim Swanke for joining us here on RIMScast! For more information, check out the links in this episode's show notes. [43:06] Remember to check out "The Future of Captive Insurance: Governance, Technology, and Performance Optimization", a Professional Report sponsored by LineSlip. It is available through the Risk Knowledge Page of RIMS.org. That link is also in this episode's show notes. [43:22] The paper features a lot of Jim's fascinating perspective and insights on captives. [43:28] Plug Time! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in the show notes. [43:56] RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [44:14] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [44:33] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more. [44:48] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [45:02] Justin Smulison is the Business Content Manager at RIMS. Please remember to subscribe to RIMScast on your favorite podcasting app. You can email us at Content@RIMS.org. [45:15] Practice good risk management, stay safe, and thank you again for your continuous support! Links: RIMS ERM Conference 2025 — Nov. 17‒18 Spencer Internship Program — Registration Open Through Oct. 15. RIMS Western Regional — Oct 1‒3 | Bay Area, California | Registration open! RISKWORLD 2026 — Members-only early registration through Sept 30! — Last Call! RIMS-Certified Risk Management Professional (RIMS-CRMP) The Strategic and Enterprise Risk Center RIMS-CRO Certificate in Advanced Enterprise Risk Management — Featuring Instructor James Lam! Next bi-weekly course begins Oct 9. RIMS Diversity Equity Inclusion Council RISK PAC | RIMS Advocacy | RIMS Legislative Summit SAVE THE DATE — March 18‒19, 2026 RIMS Risk Management magazine | Contribute RIMS Now "The Future of Captive Insurance: Governance, Technology, and Performance Optimization" — Professional Report, Sponsored by LineSlip | Featuring insight from James Swanke University of Wisconsin-Madison Wins 2025 Spencer-RIMS Risk Management Challenge Internationalpodcastday.com Obituary for Podcasting Trailblazer Todd Cochrane RIMS Webinars: RIMS.org/Webinars "Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes" | Oct. 9 | Sponsored by Global Risk Consultants "Jury Dynamics: How Juries Shape Today's Legal Landscape" | Oct. 16, 2025 | Sponsored by Zurich "Parametric Insurance: Providing Financial Certainty in Uncertain Times" | Oct. 30, 2025 | Sponsored by Swiss Re "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World" | Nov. 6 | Sponsored by HUB Upcoming RIMS-CRMP Prep Virtual Workshops: RIMS-CRMP Virtual Exam Prep — Oct. 29‒30, 2025 RIMS-CRMP-FED Exam Prep Virtual Workshop — November 11‒12 Full RIMS-CRMP Prep Course Schedule Risk Appetite Management | Oct 22‒23 | Instructor: Ken Baker Intro to ERM for Senior Leaders | Nov. 4‒5 | Instructor: Elise Farnham Fundamentals of Insurance | Nov. 11‒12 | Instructor: Chris Hansen Leveraging Data and Analytics for Continuous Risk Management (Part I) | Dec 4. See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops Related RIMScast Episodes about Education, Risk Talent, and Captives: "Risk Management Momentum with Lockton U.S. President Tim Ryan" "RIMS 2025 Risk Manager of the Year, Jennifer Pack" Sponsored RIMScast Episodes: "The New Reality of Risk Engineering: From Code Compliance to Resilience" | Sponsored by AXA XL (New!) "Change Management: AI's Role in Loss Control and Property Insurance" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Demystifying Multinational Fronting Insurance Programs" | Sponsored by Zurich "Understanding Third-Party Litigation Funding" | Sponsored by Zurich "What Risk Managers Can Learn From School Shootings" | Sponsored by Merrill Herzog "Simplifying the Challenges of OSHA Recordkeeping" | Sponsored by Medcor "Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report" | Sponsored by AXA XL "How Insurance Builds Resilience Against An Active Assailant Attack" | Sponsored by Merrill Herzog "Third-Party and Cyber Risk Management Tips" | Sponsored by Alliant "RMIS Innovation with Archer" | Sponsored by Archer "Navigating Commercial Property Risks with Captives" | Sponsored by Zurich "Breaking Down Silos: AXA XL's New Approach to Casualty Insurance" | Sponsored by AXA XL "Weathering Today's Property Claims Management Challenges" | Sponsored by AXA XL "Storm Prep 2024: The Growing Impact of Convective Storms and Hail" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Partnering Against Cyberrisk" | Sponsored by AXA XL "Harnessing the Power of Data and Analytics for Effective Risk Management" | Sponsored by Marsh "Accident Prevention — The Winning Formula For Construction and Insurance" | Sponsored by Otoos "Platinum Protection: Underwriting and Risk Engineering's Role in Protecting Commercial Properties" | Sponsored by AXA XL "Elevating RMIS — The Archer Way" | Sponsored by Archer RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS President Kristen Peed! RIMS Events, Education, and Services: RIMS Risk Maturity Model® Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information. Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts. Have a question or suggestion? Email: Content@rims.org. Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn. About our guest: James Swanke, Lecturer: Risk and Insurance at the University of Wisconsin-Madison's Wisconsin School of Business, Director of the Risk Management and Insurance MBA program Production and engineering provided by Podfly.

Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society. Justin divides this episode into three segments. He first interviews Eddie Tettevi, Sandbox Mutual Insurance CRO and RIMS Canada Council Chair — DEI and Comms, about his risk career and his service on the RIMS Canada Council. In the second segment, Justin interviews Janiece Savien-Brown, Metro Vancouver, and Shaun Sinclair, BCIT, about the C2C Challenge and the winning student team. The third segment is a recording of "Intentional Mentorship," an improvised session from the DEI Studio, featuring Dionne Bowers, Co-Founder & Chair of the Canadian Association of Black Insurance Professionals (CABIP), Ray Chaaya, Head of talent for Zurich Canada, and Natalia Szubbocsev, Executive Vice President at Appraisals International Inc. Listen to learn about some exciting events of the RIMS Canada Conference 2025. Key Takeaways: [:01] About RIMS and RIMScast. [:17] About this episode of RIMScast. This episode was recorded live on September 15th, 16th, and 17th at the RIMS Canada Conference 2025, at the Telus Convention Center in Calgary. We had a blast! We will relive the glory of the RIMS Canada Conference in just a moment, but first: [:50] RIMS Virtual Workshops! RIMS has launched a new course, "Intro to ERM for Senior Leaders." It will be held again on November 4th and 5th and will be led by Elise Farnham. [1:07] On November 11th and 12th, my good friend Chris Hansen will lead "Fundamentals of Insurance". It features everything you've always wanted to know about insurance but were afraid to ask. Fear not; ask Chris Hansen! RIMS members enjoy deep discounts on virtual workshops! [1:26] The full schedule of virtual workshops can be found on the RIMS.org/education and RIMS.org/education/online-learning pages. A link is also in this episode's notes. [1:37] Several RIMS Webinars are being hosted this Fall. On October 9th, Global Risk Consultants returns to deliver "Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes". [1:50] On October 16th, Zurich returns to deliver "Jury Dynamics: How Juries Shape Today's Legal Landscape". On October 30th, Swiss Re will present "Parametric Insurance: Providing Financial Certainty in Uncertain Times". [2:07] On November 6th, Hub will present "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World". Register at RIMS.org/Webinars. [2:20] On with the show! It was such a pleasure to attend the RIMS Canada Conference 2025 in Calgary. There's always electricity in the air at RIMS Canada, and I wanted to capture some of it! [2:33] We've got two interviews, and then an improvised session I recorded at the DE&I Studio. The sound came out great, and I used it here with the panelists' permission. [2:49] We've got excellent education and insight for you today on RIMScast! My first guest is Eddie Tettevi. He is the Chief Risk Officer at Sandbox Mutual. He's a very active member of the Saskatchewan RIMS Chapter and a member of the RIMS Canada Council. [3:11] We're going to talk about his risk management career, his RIMS involvement, and how his insights from one of his RIMS DE&I sessions led to this discussion. [3:24] First Interview! Eddie Tettevi, welcome to RIMScast! [3:38] Eddie is the Chief Risk and Compliance Officer at Sandbox Mutual Insurance. He's also the Corporate Secretary, which means he helps the organization navigate strategic initiatives within the boundaries of risk appetite and regulatory compliance. [4:12] Eddie has been at Sandbox for approximately two years. When he joined the company, Sandbox was going through a period of rapid growth and taking the right risks. That was something Eddie looked forward to being involved in. [4:54] The CRO role was not an independent role at Sandbox before Eddie started. It was held by the Chief Financial Officer. The CCO role was held by HR. The Corporate Secretary role was held by the CEO. Eddie fills the three roles in his new position. His background fits all three roles. [6:06] Eddie normally leads a risk group of three. Eddie was previously in cyber for 13 or 14 years. His background is in electrical engineering and computer science. He helped organizations secure their software and network. [7:02] Eddie doesn't think risk management is any different. He's helping organizations make the right decisions. The difference is that the portfolio is much larger. Cybersecurity is one aspect of Eddie's risk management work. [7:33] Eddie says cyber attacks are growing. Individuals who may not be skilled are using AI tools to perpetrate cyber attacks. The attacks are increasing exponentially in skill and sophistication. [8:09] Eddie co-hosted a session in the DE&I Studio with Aaron Lukoni and Tara Lessard-Webb, focused on understanding how mental health plays a part in risk management and how organizations should think about mental health as part of a risk management framework. [8:31] The session was "Building Resilient Workplaces, the Role of Mental Health in Risk Management." In it, Eddie revealed he is skilled in multiple languages, but an expert in none, including English. He grew up with influences from English, French, Malay, and Creole Patois. [9:38] Eddie loves learning about new cultures. That has influenced his accent. In every language he speaks, he has an accent, which makes it interesting. He has worked in French and English organizations. He learns languages in six months. He picks them up quickly. [10:50] Eddie, Aaron, and Tara emphasized making sure we are thinking about and embedding mental health in our risk framework. [11:02] When designing any strategies and initiatives, risk professionals should consider what's happening in the organization. An organization going through a lot of change is already a stressed organization. You have to consider that as you introduce more change. [11:40] Eddie says the award-winning Saskatchewan RIMS Chapter is exciting. It's great to work with people who are interested, dedicated, and committed. He says the chapter is doing some incredible things, such as introducing risk courses into the universities in the province. [12:15] Eddie was a RIMS member before joining Sandbox. You can be a RIMS member without joining a chapter. Moving to Saskatoon created the opportunity for Eddie to join the Saskatchewan RIMS Chapter, which he had been looking forward to, to connect with people. [12:36] Justin gives shoutouts to various Saskatchewan Chapter members. [13:03] Eddie serves on the RIMS Canada Council as Chair of the Communications, External Affairs, and DEI Committee. [13:22] The committee is responsible for making sure that all RIMS communications have a DEI lens and advocate for the risk community, partnering with other advocacy groups around Canada. [13:52] Justin says it's been such a pleasure to meet you and hang out with you! I look forward to seeing you at more RIMS Canada and RIMS events. [14:02] Our next guests organized the 2025 C2C Coast to Coast Challenge. This is a competition for risk management students based in Canada. We'll learn about the case studies and what it took to produce their presentations, and also have a chance to acknowledge the winners. [14:19] We will hear from Shaun Sinclair, the Program Head of General Insurance and the Risk Management Program at British Columbia Institute of Technology, and Janiece Savien-Brown, the Manager for Risk and Claims Management at Metro Vancouver. [14:35] We're going to learn about their various roles, as well. Let's get to it! [14:39] Second Interview! Shaun Sinclair and Janiece Savien-Brown, welcome to RIMScast! [14:47] Janiece Savien-Brown is the Manager of Risk and Claims Services with Metro Vancouver by day. She has been involved with BCRIMA for 17 or 18 years. BCRIMA started the Coast 2 Coast Legacy Challenge three years ago. Last year was its first year in Vancouver. [15:07] Shaun Sinclair is the Program Head of the General Insurance and Risk Management Program at BCIT, an institute of technology in Vancouver and Burnaby, B.C. [15:17] They teach students insurance and risk management courses. Students graduate with a CRM and a Chartered Insurance Professional designation. [15:26] Shaun is also the President of BCRIMA this year. He has been a BCRIMA member for a long time. This C2C Legacy Challenge was awesome for Shaun because two teams from BCIT got into the finals. Shaun had to recuse himself. [15:51] Janiece says the RIMS Canada Conference 2025 was fantastic! Shaun was there with seven students, and it was awesome to see what they were learning. The students told Shaun they loved everything about it. [16:45] The two finalist teams were The Deductibles and Insure and Conquer. This year's submissions were highly creative and impactful. [17:10] Shaun has been involved in Risk Management Challenges for years and has been to the nationals several times with groups. Shaun stays pretty hands-off. The students get the challenge, and Shaun discusses it with them. He figures out what they need from him to do it. [17:42] In this case, a root cause analysis wasn't needed. They learned how to do a Failure Mode and Effects Analysis (FMEA), a heat map, and gather general knowledge. Then he let them go. They came up with the 10-page report. He didn't watch their presentation until they went live. [18:14] Their champion for the challenge was Ken Letander. The challenge was a procurement question. If your organization's ownership is 51% Indigenous, and you keep your staff 33% Indigenous, money comes your way for contracts. [18:48] When the contract is over and it's time to get the money, but the organization refuses to give that information, how do you make sure they have the 33% Indigenous staff and 51% Indigenous ownership? Do you need pictures, or can you use Elders to say it's enough? [19:12] The students had to read a lot about risk and the rules and regulations regarding this question. They had to read the Canadian government's language on what the rules are. It was an interesting case. [19:38] Janiece didn't envy them at all. The students came up with some solutions for Ken Letander, and he was thrilled with what came from all of the reports. [20:33] Janiece says the presentations were phenomenal from both teams, as well as the written submissions. The collaboration came through and showed they owned the essence of the project. You could see the desire of the top team to make it work. [21:12] Shaun says the cases used in C2C are pretty much real cases. Janiece says last year's case competition had to come up with an equitable access tool to use in the system. After Janiece had surgery, she was given a survey, and she recognized it from the case study. [22:26] Justin says it's great that the students collaborate. You need teamwork. [22:54] Shaun says you hear a lot about isolation. He says BCIT is sometimes called "Being Crammed Into Teams." Shaun and the other teachers assign projects where students are forced to work with at least three or four people. [23:13] After two years of group projects, collaboration is relatively easy. Shaun also makes the students hand-write their exams. They learn how to think through a problem and put it down on paper. Afterward, they go outside and talk about what they did. [24:52] Shaun's advice to academics and students entering a C2C challenge is to follow the rules. If they say 8-point font, 10-page maximum, don't send 14 pages. The instructor should help students understand the material and then step back. Let the students do it. It's on them. [25:42] Janiece says it is key to engage at the conference. While the Challenge is the key feature, the experience at the RIMS Canada Conference is a large part of it. Be present. Don't be on your phones the whole time. Attend sessions. Come to the events, have fun, and network. [26:07] Janiece was at an event, and five people came up to her and asked if she had brought the BCIT students (Shaun had). [26:22] People were absolutely amazed at how engaging the students were, willing to put themselves out there, and setting meetings with people in BC for opportunities when they come back. That's part of the experience. [26:40] Shaun points out that a couple of the students are quite shy and have come out of their shells because they've had to talk to people. The more you do it, the better you get at it. [27:01] Janiece reports that at one of the events, the students who were in Vancouver from Calgary came out and met with her students. RIMS, RIMS Canada, and the local chapter promote engagement. [27:31] The 2025 C2C Challenge Calgary winner is The Deductibles, 1.95 points ahead of Insure and Conquer. Insure and Conquer did an awesome job as well. [28:11] The Deductibles team is: Rabia Thind, Triston Nelson, and Ryan Qiu. [28:32] Parting advice for risk students as they step into their careers: Shaun says, if you're going to be an accountant or finance student, think about insurance risk management. Amazing career opportunities in fields that cover everything are all within your grasp. Put it on your radar. [29:26] Janiece says she is living proof of that. She was going to be an accountant. After a car accident, she switched to insurance and risk. It's a lifestyle. She has gained many friends, colleagues, and mentors. She started as an adjustor and after 31 years, she's still in the industry. [29:54] Shaun says you can swap jobs from broker to underwriter, to claims, to risk manager, to education, and not start again at the bottom. It's an amazing career. [30:26] Justin says Thank you so much, it's been such a pleasure to reconnect with you here at the Telus Convention Center in Calgary, for RIMS Canada Conference 2025. Shaun and Janiece are already thinking about the C2C Challenge in 2026. We'll see you there! [30:51] As I said at the top, we're going to close things out with an improvised session called "Intentional Mentorship," which was produced at the DE&I Studio. [31:19] Improvised Session, "Intentional Mentorship," at the DE&I Studio! With the insights of Dionne Bowers, the Cofounder and Chair of CABIP, Ray Chaaya, the Head of Talent at Zurich Canada, and Natalia Szubbocsev of Appraisals, International. Please enjoy! [31:40] Natalia Szubbocsev introduces the panel. Natalia is the Executive Vice President at Appraisals, International, an insurance appraisal company, global but small, with a diverse, inclusive team. Natalia has been a mentee and a mentor and is glad to contribute her insights. [32:38] Dionne Bowers is the Co-founder and Chair of the Canadian Association of Black Insurance Professionals, a nonprofit organization, and has recently joined Markel Canada as one of their business development Colleagues. [32:57] Ray Chaaya is head of talent for Zurich Canada. Ray oversees talent acquisition, talent development, and talent management, as well as the culture portfolio for the company, DEIB, and community impact. [33:15] Natalia asks What does mentorship, particularly inclusive or intentional mentorship, mean for you? Dionne says that it is a strong commitment by both the mentor and the mentee to work together for growth opportunities. [33:38] Intentional mentorship is the dedication that each party has to bring to the table, and fulfilling any sort of mandates that have been asked by both. Depending on the program, it's making sure that everyone is on the same page in terms of what they want from each other. [34:04] Ray agrees with Dionne. There has to be a mutual benefit. Ray has been a mentee and a mentor, and finds that the most valuable mentorship relationships are where the mentor and the mentee walk away feeling like they're learning something every day, having a conversation. [34:30] Ray says it's a two-way street and a relationship that can often last for years, because it is a relationship where the value is long-term. Ray talks to young people, and they ask, You're my mentor, what do I do? It doesn't work that way. It's a long-term investment. [34:56] Natalia says that traditional mentorship, besides being one of the best ways of professional development, is also to transfer knowledge from someone who has the experience to someone junior in his or her role. What other purpose does mentorship serve? [35:19] Dionne says it's also recognizing that it's an opportunity for learning from one another. A mentor is a seasoned insurance professional who is working with someone who is a new entrant to the industry. [35:37] It's recognizing that a mentor and a mentee are learning from each other. Strength in development is making sure that you are taking away something from each other, each time you meet, connecting and learning trends and thoughts, and diversity of thought. [36:10] Dionne asks, How can we do things differently? She has learned a lot from young people. Dionne thought she was cool, but apparently, she's not. And she's just taking away a lot of that into her own world, professionally and personally. [36:23] Natalia says her experiences are not just intergenerational, but in Canada and beyond, intercultural. She says what needs to be respected and adapted to, both by the mentor and the mentee, is that you're coming from different backgrounds. [36:45] In a global setting, that will affect communication, that will affect the thought processes, that will affect everything; the way we do things. Because Natalia leads a global team, she has to be adaptable, sensible, and respectful of the cultural nuances. [37:07] At the same time, she asks her mentees or team to do the same for her, because she comes from a very specific background. She has an Eastern European background. It doesn't matter that she's lived in Canada for 25 years. [37:25] Her background defines the way she communicates, thinks, and handles things. Every culture communicates differently. That's an overall mutual understanding, knowing that we all come from different backgrounds. [37:47] Dionne says there has to be a willingness to learn. There's no point in having a mentor-mentee relationship where it's just going to be closed off, and this is what we're going to talk about. There has to be a willingness to learn. [38:07] Ray says there's a learning agility piece. You have to be flexible in how the relationship is going to go. Every mentorship relationship is different, too. There are no steps on how to be a good mentor or a good mentee. [38:25] It's the chemistry between the two, the value that you bring to each other, and the conversations. The maturity of a mentorship can also go into sponsorship. [38:37] When Ray has a conversation with somebody, and they get to know each other, and feel what they want to get out of this, he can be a voice for that person. It goes back to the conversation of lifting others when you can. [38:54] When Ray thinks back to his mentors who stick out in his mind. He has a lot of respect for them. They are the people who spoke about him when he was not in the room, and had his back in that room when he was not there. [39:15] Those are the people, as Ray matures in his career, he doesn't know that he would be here today if it weren't for those mentors. And that is what he hopes he can bring to somebody else as a mentor. [39:29] Natalia says, in a global setting where she works, boosting confidence is very important. In a multicultural global setting, it's important to encourage someone in a different country, who communicates differently, that it doesn't matter, they can do it. [39:50] We are working on a common goal. That's part of the sponsorship/mentorship/training. [40:08] Ray says you have to be honest as a mentor. The toughest times for Ray were when he realized he was trying to make this work for a person, but to be honest with himself, as a mentor, he should be encouraging this person to look somewhere else, at what their passions are. [40:33] He went into it thinking he wanted this person to be the best they could be at this job. And he realized that's not his job as a mentor. [40:43] His job is to understand what they want out of their career, where they bring value, where their passion is, and guide them to make sure that they ultimately are happy with their career, and they're bringing value to society, and they're contributing to the community. [41:06] One specific person Ray was mentoring, he was desperate to fit them into the insurance industry, because that's how he was programmed. He was thinking, Why is this not working? And he realized it's not working because they don't want to do this. [41:25] And as a mentor, Ray's job now is to say, What do you want to do, and let's help you get there. And when he made that mind shift, it just clicked. That was a little bit of a learning opportunity. Now he's a better mentor for learning that. [41:42] Dionne agrees with that. She had one mentor who told her, If you plan to give back as a mentor, don't have any expectations, or you're setting yourself up for failure. [42:05] A lot of mentors have a similar approach, because we don't know. We want it so badly. We want to be able to say, I did that. I helped them get to wherever. If you have a mentee who is not in the mindset, and you're not sure that this is for them, have that conversation. [42:38] It's important to recognize that you're going to impact their lives differently. Even though you have that mentor-mentee relationship, you may be asking them to reconsider dipping their foot into the industry. [42:55] Natalia says not making assumptions about the other person and having that curiosity, openness, and mutual communication is very important. [43:05] How do you build in mentorship or inclusive or intentional mentorship into your organization? Ray says mentorship programs should be part of any industry, any corporation, or any organization. If you expect people to learn and grow, they need mentors. [43:30] Ray says Zurich has baked in mentorship programs into a lot of its development programs. Your development means you get a mentor, and you learn from that mentor. They bake it into the development strategy that's already there, and don't make it an off-site thing. [43:57] It shouldn't be another thing; it should just be part of your growth and development. And so, whenever they can bake it in, that's what Zurich does. [44:04] Zurich also has amazing employee resource groups that champion a lot of its programs, and the Zurich African and Caribbean Alliance, ZACA, which has worked with KBIP, is a massive champion of its mentorship program. [44:19] Just two or three months ago, Zurich held a mentorship day and increased the mentors on its mentorship platform by 48%. It was just another thing that was out there that nobody was talking about, and another thing people had to sign up for. [44:39] Zurich's employee resource group put a spotlight on it, and they showed the value, and they made it part of the ERG's culture to participate in mentorship. Then all of those ERG participants signed up to be mentors, and now are actively mentoring. [45:00] You really need to look at it from a strategy perspective. It can't just be an extracurricular activity that you add on. [45:08] Dionne agrees. KBIP works with organizations like Zurich, and with the ZACA program and the team, but also does the work for organizations that are not there yet or not willing to put the extra effort in to embed it into the DNA of the organization. [45:33] Part of KBIP's mandate is to create a mentorship program specific to Black insurance professionals. It doesn't matter where you're from, international or domestic student, or anyone who wants to be part of the organization and get extra support to build on their career trajectory. [46:02] What do mentors get out of mentorship? Dionne says as a mentor, she gets satisfaction from seeing someone excel, not necessarily from start to finish. You could be at the tail end of their journey, you could be at the beginning, or you could be in the middle. [46:36] If there is a desired outcome for both parties, and there's success, when someone calls you or texts you and says, You know what, I got that job, or I was recognized for doing XYZ, that is satisfaction. That is success. [47:00] Ray says his passion is helping people grow and develop. He started his HR career in learning and development, because he used to be intrinsically rewarded when he saw somebody learn something he taught them, or he trained them on. That felt like a superpower. [47:21] When Ray can do that with the programs Zurich runs, and he interviews people and watches their growth, and they are so grateful; to Ray, that is worth it all. You don't even have to pay him for that. He will volunteer and do that his entire life because of what he gets out of it. [47:47] Natalia agrees. There are obvious advantages from an organizational point of view, but from an individual point of view, Natalia feels that she has arrived at a point where there's no ego anymore. She wants to transfer her knowledge to someone. [48:04] Natalia wants to tell someone that they can do it. Because she did it, they can do it as well. And that's a very important aspect of mentorship. [48:15] How do you make mentorship intentional and inclusive? Ray says it means they have to see the value. It has to be part of the business strategy. Anything that is not intentional, people think, Why do I have to do this, on top of everything else that I need to do? [48:36] The second we are making it intentional, it has to make sense. This is why I'm doing this, because it's going to benefit me, it's going to benefit the company, and it's going to benefit the people I'm impacting. [48:47] They have to see the strategic business value, and with mentorship, it's easy. Because there's massive value for the organization, there is a massive competitive edge if you're doing it properly, and there is massive learning and development for your workforce. [49:05] You just need to sit down with professionals like KBIP, with people who have thought through it, and understand how to help you bake it into the strategy. Just do the work. Anything intentional has to make sense. If it does not make sense, it can't really be that intentional. [49:28] Dionne says that in every organization, when you are constructing your missions and your value statements, it's sitting down as an executive team, and asking, How can we execute on this? What does that mean? Mentorship is something that bleeds into your brand. [49:57] The brand recognition from a competitive edge standpoint is huge. Dionne says she can walk into a school for outreach programs and say, Zurich is a market of choice. You would want to work with Zurich because of this, this, and this. [50:14] If you can tell them that they're going to be supported along the way with their career, that's added value. That is something that will definitely differentiate Zurich in the marketplace. [50:26] Dionne adds that being intentional is huge because when you are not, people can see right through that. That is where you create toxic cultures. [50:39] It's not in a company's best interest to ignore the opportunities that stem from mentorship programs. [50:47] Natalia says she's not an HR professional, but she imagines that mentorship has a great role in not just attracting the right talent, but in retention as well. [50:58] Ray affirms, 100%. It's part of your growth and development. Sure, you can use it as a competitive edge to attract people, but if you're not doing it right, then they're not going to develop and grow, and that competitive edge is really just smoke and mirrors. It's not real. [51:15] So, if you're going to do it right, you have to develop people and grow people through your mentorship programs, and you have to show the results for it. [51:26] Dionne adds, That speaks to the inclusivity part of diversity, equity, and inclusion. If you can build a strategy that equates to inclusion, it equates to retention. It's not rocket science. [51:49] Ray says Zurich is really good at that. [51:52] Final thoughts on intentional mentorship. Dionne says, "Just do it. I'm a Nike gal. Just do it." [51:59] Ray says, "I wouldn't be where I am in my career if it weren't for my mentors and my sponsors. And so, if you see potential, mentor the heck out of that potential, because they will thrive." [52:15] Dionne says, "And acknowledge it. I think that's a big part of that strategy." [52:21] Natalia thanks Ray, Dionne, and the RIMS DE&I Studio for picking up this topic, a very important topic, and she hopes you enjoyed the session. [52:38] Justin says special thanks again to all of our guests here at the RIMS Canada Conference 2025. Be sure to mark your calendars for October 18th through the 21st, 2026, for RIMS Canada, which will be held in Quebec City. [52:55] Shout out to the RIMS Canada Council for producing another fantastic conference and to the RIMS Events Team and all my RIMS colleagues who worked tirelessly to make the last three days so smooth. It's such a pleasure to work with you all. I look forward to seeing you next year. [53:14] Plug Time! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in the show notes. [53:43] RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [54:02] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [54:19] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more. [54:35] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [54:50] Justin Smulison is the Business Content Manager at RIMS. Please remember to subscribe to RIMScast on your favorite podcasting app. You can email us at Content@RIMS.org. [55:02] Practice good risk management, stay safe, and thank you again for your continuous support! Links: From RIMS Canada: "RIMS Ontario Chapter Honours Bombardier's Daniel Desjardins with the 2025 Donald M. Stuart Award" RIMS ERM Conference 2025 — Nov. 17‒18 Spencer Internship Program — Registration Open Through Oct. 15. RIMS Western Regional — Oct 1‒3 | Bay Area, California | Registration open! RISKWORLD 2026 — Members-only early registration through Sept 30! RIMS-Certified Risk Management Professional (RIMS-CRMP) The Strategic and Enterprise Risk Center RIMS-CRO Certificate in Advanced Enterprise Risk Management — Featuring Instructor James Lam! Next bi-weekly course begins Oct 9. RIMS Diversity Equity Inclusion Council RISK PAC | RIMS Advocacy | RIMS Legislative Summit SAVE THE DATE — March 18‒19, 2026 RIMS Risk Management magazine | Contribute RIMS Now RIMSCanadaConference.ca RIMS Webinars: RIMS.org/Webinars "Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes" | Oct. 9 | Sponsored by Global Risk Consultants "Jury Dynamics: How Juries Shape Today's Legal Landscape" | Oct. 16, 2025 | Sponsored by Zurich "Parametric Insurance: Providing Financial Certainty in Uncertain Times" | Oct. 30, 2025 | Sponsored by Swiss Re "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World" | Nov. 6 | Sponsored by Hub Upcoming RIMS-CRMP Prep Virtual Workshops: RIMS-CRMP-FED Exam Prep Virtual Workshop — November 11‒12 Full RIMS-CRMP Prep Course Schedule Risk Appetite Management | Oct 22‒23 | Instructor: Ken Baker "Intro to ERM for Senior Leaders" | Nov. 4‒5 | Instructor: Elise Farnham "Fundamentals of Insurance" | Nov. 11‒12 | Instructor: Chris Hansen "Leveraging Data and Analytics for Continuous Risk Management (Part I)" | Dec 4. See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops Related RIMScast Episodes with 2025 RIMS Canada keynotes: "Distilling Risk and Resilience with Manjit K. Minhas" "On Resilience with Amanda Lindhout" "Thoughts and IDEAs on Inclusivity with Michael Bach" Sponsored RIMScast Episodes: "The New Reality of Risk Engineering: From Code Compliance to Resilience" | Sponsored by AXA XL (New!) "Change Management: AI's Role in Loss Control and Property Insurance" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Demystifying Multinational Fronting Insurance Programs" | Sponsored by Zurich "Understanding Third-Party Litigation Funding" | Sponsored by Zurich "What Risk Managers Can Learn From School Shootings" | Sponsored by Merrill Herzog "Simplifying the Challenges of OSHA Recordkeeping" | Sponsored by Medcor "Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report" | Sponsored by AXA XL "How Insurance Builds Resilience Against An Active Assailant Attack" | Sponsored by Merrill Herzog "Third-Party and Cyber Risk Management Tips" | Sponsored by Alliant "RMIS Innovation with Archer" | Sponsored by Archer "Navigating Commercial Property Risks with Captives" | Sponsored by Zurich "Breaking Down Silos: AXA XL's New Approach to Casualty Insurance" | Sponsored by AXA XL "Weathering Today's Property Claims Management Challenges" | Sponsored by AXA XL "Storm Prep 2024: The Growing Impact of Convective Storms and Hail" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Partnering Against Cyberrisk" | Sponsored by AXA XL "Harnessing the Power of Data and Analytics for Effective Risk Management" | Sponsored by Marsh "Accident Prevention — The Winning Formula For Construction and Insurance" | Sponsored by Otoos "Platinum Protection: Underwriting and Risk Engineering's Role in Protecting Commercial Properties" | Sponsored by AXA XL "Elevating RMIS — The Archer Way" | Sponsored by Archer RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS President Kristen Peed! RIMS Events, Education, and Services: RIMS Risk Maturity Model® Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information. Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts. Have a question or suggestion? Email: Content@rims.org. Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn. About our guests: Eddie Tettevi, Sandbox Mutual Insurance CRO RIMS Canada Council Chair — DEI and Comms Janiece Savien-Brown, Metro Vancouver Shaun Sinclair, BCIT "Intentional Mentorship" improvised session from the DE&I Studio, featuring: Dionne Bowers, Co-Founder & Chair of the Canadian Association of Black Insurance Professionals (CABIP); Ray Chaaya, Head of talent for Zurich Canada; Natalia Szubbocsev, Executive Vice President at Appraisals International Inc. Production and engineering provided by Podfly.

In this engaging discussion, Dan Chuparkoff, CEO and Founder of Reinvention Labs, shares his insights on the crucial role of AI in risk management. He emphasizes the importance of early adaptation to AI to stay competitive in today’s landscape. Dan dives into the balance between AI tools and human judgment, proposing AI as a recommendation engine while advocating for human oversight. He also explores the complexities of integrating AI into policy-making and communication, offering a glimpse into his upcoming keynote at the RIMS ERM Conference.

In this engaging conversation, Manjit K. Minhas, a Calgary-born entrepreneur and CEO of Minhas Brewery, shares her journey from a young start-up founder to a seasoned venture capitalist. She emphasizes the vital role of risk professionals in decision-making for businesses. Manjit delves into brand resilience post-COVID, innovative strategies in product development, and the importance of strong communication in leadership. With her upcoming keynote at RIMS Canada Conference 2025, she sets the stage for a future where risk management is at the forefront of entrepreneurial success.

Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society. The Spencer Educational Foundation, a leading nonprofit organization to nurture the next generation of risk management and insurance professionals, will hold its annual Funding Their Future Gala in New York City on Thursday, September 18, 2025. This eagerly awaited event will occur at the renowned Cipriani 42nd Street, uniting industry leaders and supporters to acknowledge achievements in risk management and insurance. This year's gala recognizes Tim Ryan, U.S. President at Lockton, for championing the next generation of talent and shaping the future of the risk management and insurance industry. Since being named U.S. President in 2024, Tim has been pivotal in positioning Lockton for the future. With over 30 years of industry experience, Tim brings a strategic and enduring approach to leadership. He is committed to fostering a culture of collaboration and excellence that carries Lockton's momentum forward. Tim's vision is to build on Lockton's strong foundation, guiding the company through evolving market demands while maintaining its reputation as the best place to work in insurance. "Tim's commitment to attracting and developing top talent has been instrumental in Lockton's continued success and evolution as an industry leader," stated Julie Gibson, Spencer board member and Chief Marketing Officer at Lockton. In this episode, Justin interviews Tim Ryan on his career, his risk philosophy, his leadership vision on mentorship, and his recognition by the Spencer Educational Foundation. Listen to learn about attracting top, rising talent to the risk management and insurance industry. Key Takeaways: [:01] About RIMS and RIMScast. [:14] The call for educational content submissions for RISKWORLD 2026 is open through September 4th! A link is in this episode's show notes. [:28] About this episode of RIMScast. We will be joined by Tim Ryan. He is the U.S. President at Lockton and the honoree at this year's Spencer's Funding Their Future Gala on September 18th. We'll get his perspective on leadership and the future of risk management in just a moment. [1:00] RIMS-CRMP Workshops! The next RIMS-CRMP-FED virtual workshop will be held on November 11th and 12th, and led by Joseph Mayo. Links to these courses can be found on the Certification Page of RIMS.org and through this episode's show notes. [1:20] RIMS Virtual Workshops! RIMS has launched a new course, "Intro to ERM for Senior Leaders." It will be held again on November 4th and 5th and will be led by Elise Farnham. RIMS members enjoy deep discounts! [1:37] The full schedule of virtual workshops can be found on the RIMS.org/education and RIMS.org/education/online-learning pages. A link is also in this episode's notes. [1:48] The next RIMS Webinar will be held on September 4th and will be led by AXA XL. It is titled "Lockdown & Level Up: Turn Up Your Cyber Security Game Against Creative Cyber Criminals". [2:01] On September 18th, Origami Risk will present "Driving Better Incident and Claims Management with Data, Technology & Strategic Collaboration". [2:10] On October 9th, Global Risk Consultants returns to deliver "Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes". [2:19] On October 16th, Zurich returns to deliver "Jury Dynamics: How Juries Shape Today's Legal Landscape". [2:28] On October 30th, Swiss Re will present "Parametric Insurance: Providing Financial Certainty in Uncertain Times". [2:37] On November 6th, Hub will present "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World". Register at RIMS.org/Webinars. [2:49] RISKWORLD 2026 will be in Philadelphia, Pennsylvania, from May 3rd through the 6th. RIMS members can now lock in the 2025 rate for a full conference pass to RISKWORLD 2026 when registering by September 30th. [3:04] This also lets you enjoy earlier access to the RISKWORLD hotel block. Register by September 30th, and you will also be entered to win a $500 raffle. Don't miss out on this chance to plan and score some extra perks. [3:17] The members-only registration link is in this episode's show notes. If you are not yet a member, this is the time to join us. Visit RIMS.org/membership and build your risk network with us here at RIMS. [3:31] On with the show! On September 18th, 2025, the Spencer Educational Foundation will hold its annual Funding Their Future Gala in New York City at the renowned Cipriani 42nd Street. [3:44] This year's Gala recognizes Tim Ryan, U.S. President at Lockton, for championing the next generation of talent and shaping the future of risk management and insurance. [3:54] Tim Ryan is our guest today. He has over 30 years of industry experience. We're going to dive into his philosophies on leadership and what it takes for the next generation of risk professionals to be successful in the short and long term. Let's get to it! [4:11] Interview! Tim Ryan, welcome to RIMScast! [4:32] Tim Ryan is excited to be here today to talk about the Spencer Educational Foundation! He says it's an exceptional organization, doing important work. It's a unique organization that brings the entire industry together to rally around an issue that's important to us all. [4:52] Tim says the recognition is humbling and gratifying. It's nice to be recognized, but he doesn't view it as a personal achievement. He sees it as a reflection of the incredible work being done by Lockton and Associates throughout the country, more than it is of his individual efforts. [5:14] Tim says he is honored to be recognized, and he's proud to be part of a company that sees this as a priority. [5:26] Tim has been at Lockton for 20 years. Before Lockton, Tim worked on the carrier side for 10 years. Tim became the U.S. President at Lockton almost a year ago to the day. [5:49] Tim's leadership style has changed over time, through the wisdom of maturity and a lot of trial and error. He started in the industry straight out of college. Working at a couple of different organizations exposed him to different leaders along the way. [6:10] Tim learned a few foundational lessons. First, leadership is rarely about title. People follow people, not the position. When Tim was first made a team leader, he was excited to be in charge. He promised himself he wouldn't make the same mistakes his managers had made. [6:37] He made the same mistakes. He started to realize that a leadership position isn't about you. Your job is to set the vision, align stakeholders, make sure there's clarity on roles and responsibilities, and create and foster an environment that allows people to be successful. [6:58] Tim's leadership style is about building teams with complementary skill sets. It's not about being the smartest person in the room; it's about making sure the room is filled with smart and motivated people. [7:08] Put the right people in the right place and trust them to get the job done. People want to believe in what they're doing and who they're doing it with. It's critical to bring together people with a diversity of thought and background. Bring a variety of different viewpoints to the table. [7:28] Tim believes it's critical to get to know your people. What motivates and drives them? What are their goals and aspirations? How do they like to absorb information? [7:55] Tim views it as his job to listen, to motivate, and to remove obstacles. It's about being authentic. Don't play the role, especially for first-time leaders. You have to be open and transparent, and true to yourself. [8:32] Tim says the role of the broker has changed with the world. If brokers did the same things they did 10 to 15 years ago, they would be at risk of being obsolete. [8:44] Fifteen years ago, there was no Instagram or TikTok. You were probably on MySpace, playing music on your iPod. Some of the emerging risks that are at the forefront of today's discussions range from autonomous vehicles to data centers to digital assets and currency. [9:04] The pace of change in the industry is fast, and it's only increasing. The constant emergence of new and evolving risks requires greater specialization and the use of data analytics to deliver deeper insights into our clients' businesses. [9:18] As you look ahead, you can start to see how AI is going to have a dramatic impact on how we do business in the not-too-distant future. [9:26] Despite these advances and changes, for a broker, one thing is unchanged. Clients want us to help them see around corners. They want us to help them understand what's coming next. They look to us to provide expertise and help make decisions. [9:46] Tim says our job is to be a fierce advocate for them, to be that trusted advisor. We need to know and understand their business, the industry they operate in, and the risks associated with it. We need to understand their risk tolerance and help them solve their business need. [10:04] Quick Break! The Spencer Educational Foundation's goal to help build a talent pipeline of risk management and insurance professionals is achieved, in part, by its collaboration with risk management and insurance educators across the U.S. and Canada. [10:26] Since 1999, Spencer has awarded over $2.9 million to create more than 570 Risk Management Internships. The Internship Grants application process is now open through October 15th, 2025. [10:43] To be eligible, risk managers must be based in the U.S., Canada, or Bermuda. A link to the Internship Grants page is in this episode's show notes. You can always visit SpencerEd.org, as well. [10:57] RIMS Events! On September 18th, the 10th Annual Chicagoland Risk Forum will be held at The Old Post Office in Chicago. Register at ChicagoRIMS.org. [11:11] On September 14th through the 17th, we will be in Calgary for the RIMS Canada Conference 2025. Visit RIMSCanadaConference.ca to register. [11:21] On October 1st through the 3rd, the RIMS Western Regional Conference will be held in North San Jose at the Santa Clara Marriott. The agenda is live. It looks fantastic! Visit RIMSWesternRegional.com and register today! [11:37] On November 17th and 18th, elevate your ERM Program and career at the RIMS ERM Conference 2025 in Seattle, Washington. The agenda is live, and early rates are available until September 5th. Register now to save $110 and secure your spot at the ERM event of the year. [11:59] Canadian listeners, take note, that's just a little bit South of the border in British Columbia. That's a great way to extend your knowledge after the RIMS Canada Conference. Visit RIMS.org/ERM2025 to register. [12:14] At the top, Justin mentioned RISKWORLD 2026. Through September 4th, the RISKWORLD education content submission process is still open. [12:23] RIMS invites you to share your experiences, best practices, and innovative strategies that represent the global outlook of risk management. Send us your submission, and who knows? We might select you to speak at RISKWORLD 2026 in Philadelphia! The link is in the show notes. [12:41] Let's Return to Our Interview with Lockton U.S. President Tim Ryan! [13:03] Tim Ryan talks about cultivating the next generation of risk and insurance professionals. His motivation comes from his story. It's all about paying it forward. He wouldn't be where he is today without the guidance and support of some great mentors throughout his career. [13:16] Tim's mentors had no reason to want to help him, but from early on, they decided to help him reach his potential. Tim started his career as a trainee at Fireman's Fund Insurance in a branch office North of New York City. [13:36] The office manager was incredible. He was generous with his time. He was never too busy to help or answer questions. He always found ways to give Tim opportunities in meetings, in projects, or with clients. [13:49] Opportunities that Tim probably wasn't ready for, but that were part of his developmental process. Tim is incredibly grateful for the impact this manager had on his career and his life. Almost 35 years later, Tim still thinks of him as a person that he tries to emulate. [14:12] Tim says, " So, John Lience, if you're listening, thank you! It made a difference. Give me a call. I'd love to catch up." [14:20] Justin is glad to hear the shoutout by name. It's a small world in risk management, and everybody knows each other. John may be listening. Tim agrees, for as big an industry as it is, it is definitely a very small world. [14:33] Tim continues, fast forward to today, this is something that we're passionate about because we see it as a strategic priority for the business. Lockton invests an incredible amount of time and money into the technical and professional development of all its associates. [14:53] It starts with the first-year analysts, many of whom came out of Lockton's intern program. Leaders have an obligation to grow and develop the next generation of talent. [15:04] It's about creating a culture of continuous learning, one where people feel valued, included, and connected to the purpose of the work and the people that they work with. [15:14] What drives and motivates Tim is that shared sense of purpose that brings everyone together. [15:34] What must the sector do differently to attract, engage, and top rising talent? Tim says the industry has made progress, but we're still not where we need to be. We have to expand the talent pool by building stronger partnerships with different schools and organizations. [15:55] The Spencer Educational Foundation is already doing the work to engage more diverse communities. These relationships help us reach individuals who may not have considered a career in risk and insurance, but bring valuable perspectives and skills. [16:08] Tim continues, beyond sourcing talent, retention has to be a priority. It's great to get people into the industry, but can we keep them? That means investing in leadership development programs accessible to a broader audience, including underrepresented groups. [16:22] It also means helping young talent understand their purpose and how they fit within the vision of the company they're working in. When people see a path for growth and feel connected to the purpose, they're more likely to stay and thrive. [16:35] Building that workforce that better reflects the communities and businesses we serve isn't just the right thing, but it also makes our industry stronger, it makes it more innovative, and it makes it better equipped to meet the evolving needs of our clients. [16:53] Tim has attended Spencer Educational Foundation's Funding Their Future Gala for years. He was there last year for Lilian Vanvieldt-Gray. She was great! The grant recipients also spoke. They were incredibly impressive. Lockton asked two of them for their numbers and resumes. [17:26] Justin comments that the event itself can be a networking and career advancement opportunity. Tim says it was great to hear from the recipients. It brings it back to what impact the Spencer Educational Foundation has. [17:50] Justin had a great time last year, and he looks forward to seeing Tim this year, on September 18th. The Spencer Educational Foundation supports students and educational programs across the risk and insurance professions. [18:14] Tim says most young people don't have any idea what a broad, vibrant, and dynamic industry this is. We have to do more to generate awareness and excitement about our industry. [18:23] Partnerships like the one with Spencer Educational Foundation are critical. They bring awareness and help us reach smart, young, talented individuals who might not otherwise consider a career in this field. The scholarship program is a big part of that. [18:35] Lockton has been involved in the Foundation since the early days. 20 years ago, they established the John T. Lockton Memorial Scholarship through the Spencer Scholarship Program. [18:47] Lockton continues to support that program, donating over $1 million in funding for about 200 scholarships. The program is just one of the many ways Spencer is driving awareness and engagement in the industry. [18:57] Tim praises the Spencer Educational Foundation for the great work they do with colleges and universities, helping build risk management programs, facilitating internships, and bringing new people into the industry through the scholarship program. [19:06] These partnerships are essential for the future of risk and insurance because they create pathways for students to discover the unique value the profession offers. Tim says many scholarship recipients are working at Lockton today, and they are excellent. [19:37] Tim shares advice to students or early career professionals discovering risk management. "Every year, I meet with our first-year analysts and interns, and I talk to them about this very subject." [19:45] "We talk about how big the industry is and that there are so many opportunities and career paths available to them. But the backdrop of that conversation is about the pace of change and the importance of being a continuous learner." [19:59] "You're going to have to reinvent yourself many times over the course of your career to stay relevant, so now, at this early stage of your career, is the time to invest in yourselves. Don't get caught up in worrying about the next promotion or the next step in your career." [20:13] "Just be patient. You're going to have plenty of time for all that. All that's going to work itself out. Just focus on gaining new experience and knowledge, and figure out what you're good at. Don't just do things. Seek to understand why." [20:27] "Look, you can have a job or you can have a career, and they're different. But that's ultimately going to be up to you. It's your responsibility. If you focus on what you're doing and do it well, your next job will likely come from someone you're impressing today." [20:47] "Get out of your bubble, build relationships, network, and go meet with people. Make people want to invest in you." [21:00] "If you take nothing else out of this conversation, try to remember these things: Be curious. Ask questions. Understand why you're doing things. Show up and be present. If you can do those things, you'll ultimately be successful." [21:20] Special thanks to Tim Ryan of Lockton for joining us here on RIMScast! We look forward to seeing him on September 18th at the Spencer Funding Their Future Gala in New York City. Visit the link in this episode's show notes for tickets and SpencerEd.org for more information. [21:40] Plug Time! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in the show notes. [22:09] RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [22:27] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [22:44] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more. [23:01] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [23:15] Justin Smulison is the Business Content Manager at RIMS. Please remember to subscribe to RIMScast on your favorite podcasting app. You can email us at Content@RIMS.org. [23:27] Practice good risk management, stay safe, and thank you again for your continuous support! Links: RIMS ERM Conference 2025 — Nov. 17‒18 Spencer Educational Foundation 2025 Funding Their Future Gala — Sept. 18, 2025, in NYC! The call for RISKWORLD 2026 submissions is open through Sept 4. Spencer Internship Program — Registration Open Through Oct. 15. RIMS Canada 2025 — Sept. 14‒17 | Registration open! 10th Annual Chicagoland Risk Forum — Sept. 18 | Registration open! RIMS Western Regional — Oct 1‒3 | Bay Area, California | Registration open! RISKWORLD 2026 — Members-only early registration! Register through Sept 30! RIMS-Certified Risk Management Professional (RIMS-CRMP) The Strategic and Enterprise Risk Center RIMS-CRO Certificate in Advanced Enterprise Risk Management — Featuring Instructor James Lam! Next bi-weekly course begins Oct 9. RIMS Diversity Equity Inclusion Council RISK PAC | RIMS Advocacy | RIMS Legislative Summit SAVE THE DATE — March 18‒19, 2026 RIMS Risk Management magazine | Contribute RIMS Now "Tim Ryan to Receive Honor at Spencer Educational Foundation's 2025 Gala" RIMS Webinars: RIMS.org/Webinars "Lockdown & Level Up: Turn Up Your Cyber Security Game Against Creative Cyber Criminals" | Sept. 4, 2025 | Sponsored by AXA XL "Driving Better Incident and Claims Management with Data, Technology & Strategic Collaboration" | Sept. 18 | Sponsored by Origami Risk "Natural Hazards: A Data-Driven Guide to Improving Resilience and Risk Financing Outcomes" | Oct. 9 | Sponsored by Global Risk Consultants "Jury Dynamics: How Juries Shape Today's Legal Landscape" | Oct. 16, 2025 | Sponsored by Zurich "Parametric Insurance: Providing Financial Certainty in Uncertain Times" | Oct. 30, 2025 | Sponsored by Swiss Re "Geopolitical Whiplash — Building Resilient Global Risk Programs in an Unstable World" | Nov. 6 | Sponsored by Hub Upcoming RIMS-CRMP Prep Virtual Workshops: RIMS-CRMP-FED Exam Prep Virtual Workshop — November 11‒12 Full RIMS-CRMP Prep Course Schedule Intro to ERM for Senior Leaders | Nov. 4‒5 | Instructor: Elise Farnham See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops Related RIMScast Episodes: "The Strengths of DE&I Initiatives with Lilian Vanvieldt-Gray of Alliant Insurance Services", Spencer Gala Honoree 2024 Sponsored RIMScast Episodes: "The New Reality of Risk Engineering: From Code Compliance to Resilience" | Sponsored by AXA XL (New!) "Change Management: AI's Role in Loss Control and Property Insurance" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Demystifying Multinational Fronting Insurance Programs" | Sponsored by Zurich "Understanding Third-Party Litigation Funding" | Sponsored by Zurich "What Risk Managers Can Learn From School Shootings" | Sponsored by Merrill Herzog "Simplifying the Challenges of OSHA Recordkeeping" | Sponsored by Medcor "Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report" | Sponsored by AXA XL "How Insurance Builds Resilience Against An Active Assailant Attack" | Sponsored by Merrill Herzog "Third-Party and Cyber Risk Management Tips" | Sponsored by Alliant "RMIS Innovation with Archer" | Sponsored by Archer "Navigating Commercial Property Risks with Captives" | Sponsored by Zurich "Breaking Down Silos: AXA XL's New Approach to Casualty Insurance" | Sponsored by AXA XL "Weathering Today's Property Claims Management Challenges" | Sponsored by AXA XL "Storm Prep 2024: The Growing Impact of Convective Storms and Hail" | Sponsored by Global Risk Consultants, a TÜV SÜD Company "Partnering Against Cyberrisk" | Sponsored by AXA XL "Harnessing the Power of Data and Analytics for Effective Risk Management" | Sponsored by Marsh "Accident Prevention — The Winning Formula For Construction and Insurance" | Sponsored by Otoos "Platinum Protection: Underwriting and Risk Engineering's Role in Protecting Commercial Properties" | Sponsored by AXA XL "Elevating RMIS — The Archer Way" | Sponsored by Archer RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS President Kristen Peed! RIMS Events, Education, and Services: RIMS Risk Maturity Model® Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information. Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts. Have a question or suggestion? Email: Content@rims.org. Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn. About our guest: Tim Ryan, U.S. President, Lockton Spencer Educational Foundation Funding Their Future Gala's 2025 Honoree Production and engineering provided by Podfly.

In this discussion, Ondrea Matthews, Sr. Director of Risk Management & Benefits at CoorsTek and a RIMS Board Director, shares her insights into the world of risk management. She emphasizes the integration of employee benefits into corporate risk culture and innovative strategies for absence management. Ondrea offers valuable advice on fostering collaboration between risk leaders and HR, highlighting the crucial role of empathy and communication during employee challenges. Get ready for her upcoming presentation on navigating disability and risk!