A Fireside Chat Regarding Recent Changes to OSFI Guidelines B-10, B-13 and E-21, and the Technology and Cyber Security Incident Reporting Advisory

Loading Map....

November 16, 2023
12:00 pm - 2:00 pm

Blake, Cassels & Graydon LLP
199 Bay St., Suite 4000
Toronto, Ontario

Add to calendar


  • OSFI recently released its much-anticipated new Guideline B-10 (Third-Party Risk Management) and draft Guideline E-21 (Operational Risk Management). In the last few years, OSFI also introduced Guideline B-13 (Technology and Cyber Risk Management) and updated its Technology and Cyber Security Incident Reporting Advisory.
  • This event will include a dynamic, fireside chat between OSFI representatives and professionals from accounting/law firms to discuss Guideline B-10, draft Guideline E-21, Guideline B-13 and the Technology and Cyber Security Incident Reporting Advisory. The discussion will help financial services industry participants better understand and apply the Guidelines and Advisory, in advance of the May 1, 2024 effective date of updated B-10 and January 1, 2024 effective date of B-13.
  • The event will include an overview of changes made, and a review of various questions to help interpret/comply with aspects of the Guidelines and Advisory, and provide insight into the intent behind various provisions. A brief open question period will be included.

Lunch will be served at noon and the presentation will begin at 12:30 pm.


John Preiato is the Acting Managing Director of OSFI’s Operational Risk Division, which provides operational risk expertise in identifying institution-specific risks, industry-wide risks and sector trends and developments that may impact an institution’s operational resilience. It also plays a key role in advancing and administering a regulatory framework that promotes the adoption of policies and procedures related to operational risk management. This includes OSFI’s recently revised Third-Party Risk Management Guideline and the revised guideline on Operational Risk and Resilience. John has previously worked at the Australian Prudential Regulation Authority (2012-2017) and holds a Bachelor of Laws degree and Bachelor of Commerce degree with honours from the University of Western Australia.

Geoff Rodrigues, CPA, CA, ORMP, CIA, is a Partner in MNP’s Enterprise Risk Services practice with over 25 years of public practice experience in Assurance and Advisory. Throughout his career, Geoff has worked with a broad base of clients in various industries, including regulated organizations in financial services, the public sector, and publicly listed companies in Canada and the United States.  Geoff has provided consulting services in the areas of Regulatory Compliance under National Instrument (“NI”) 52-109 and Section 404 of the Sarbanes-Oxley Act, Enterprise Risk Management and Internal Audit. After earning his Bachelor of Commerce degree at Ryerson University, Geoff obtained his Chartered Accountant (CA) and Operational Risk Management Professional (ORMP) designations.

Chris Suknundun is currently the Managing Director and Head of the Technology Risk Division at the Office of the Superintendent of Financial Institutions. In his current role, Chris has responsibility for the identification and monitoring of FRFI specific risks, industry-wide risks and/or sector specific trends and developments related to technology and cyber risks that may impact a FRFI’s operational resilience. With over 20 years in the financial services sector in Toronto, Chris has held various roles within the Information Technology spectrum. This includes technical and leadership roles in Technology and Cyber Security Operations, Technology Crime & Forensics, IT Audit and IT Risk Management. Chris holds a Master’s degree in Computer Engineering and a Bachelor of Electrical Engineering.

Robert Tremblay is Counsel at Blake, Cassels & Graydon LLP, and a specialist in intellectual property (IP), information technology (IT), privacy and cybersecurity law. In his commercial practice, Robert assists technology vendors and enterprise customers with technology-related agreements. His expertise encompasses a wide range of agreements and technologies, including IT and business process outsourcing, payments, cloud computing, and software and technology licensing. He also provides guidance on related regulatory and contractual compliance.


Cost for attendance: ten dollars ($10) for members and students, twenty dollars ($20) for non-members, payable at the meeting. Receipts will be available. Cheques should be made payable to the Toronto Computer Lawyers’ Group.


Please register before noon on Monday, November 13, 2023. Registrations will not be confirmed. Substitutions are permitted anytime. Registrants who do not attend and do not cancel or send a substitute may be invoiced for lunch. Please e-mail registrations or cancellations to: secretary@tclg.org.

When registering, please advise if you have any dietary restrictions.


Please circulate this notice to business associates, clients, colleagues or others who may be interested in attending a meeting or joining the TCLG.