Please find below examples of potential topics: - (non)sense of risk management systems - core risk management and internal control concepts - ISO 31000 Risk Management Guidelines - COSO Internal Control - COSO Enterprise Risk Management - OCEG GRC Capability Model - managing stakeholders' interests and expectations - key role of leadership and culture - relationship between risk and performance management - finance for non-financials - hard and soft controls - value creation & protection in practice - (dis)advantages of risk appetite statements - creating a drone perspective of the organization - identifying, assessing and addressing opportunities & threats - defining organizational objectives and acceptable bandwidths - dealing with perceptions and biases - setting up and maintaining a "policy house" - designing appropriate control measures - reporting on opportunities & threats - continuous monitoring - developing forecasting power - (non)sense of 'in control statements' - resilience, continuity and incident management - core values ​​and dealing with conflicting interests - integrated management reporting - 'gauging' organizational culture - from yet another silo to connector of all silos - effective collaboration between the '3 lines of accountability' - pitfalls of GRC software - cooperation between staff functions and with the business - from internal supervisor to critical friend - mandates, responsibilities and powers - continuous improvement through value management - establishing the effectiveness of control measures - using information as fuel for decision making - finding an appropriate balance between trust and control - fraud prevention, detection, investigation and resolution