Agenda
2025 Agenda to be announced...
See below for the 2024 agenda:
08.30 – 09.00: Registration and refreshments
09.00 - 09.10: Chairman’s welcome
Jonathan Easton, Editor, FStech
09.10 - 09.40: Keynote session: AI for Cyber Risk Automation
Sandip Wadje, Head of Emerging Tech Risks, BNP Paribas
This session will focus on the overall Cyber Risk Automation opportunities in key domains such as GRC, Third Party Risk Management, Continuous Threat Exposure Management, Cyber Risk Reporting, and Control Testing. The advances in adopting smaller models and agentic workflows in significantly changing approaches for delivering automation at scale. The presentation will focus on both tactical and strategic opportunities in AI for Cyber.
09.40 - 10.10: In Under the Radar: How Can FSIs Mitigate the Risk of Insider Fraud?
Ruud Grotens, Head of Fraud & Financial Crime Solution Consulting, Bottomline
FStech and Bottomline surveyed top financial decision-makers across the globe to uncover current threats and explore effective mitigation strategies. This session will cover key findings including:
- Insider fraud trends impacting financial institutions today
- Best practices for preventing and detecting insider threats
- Strategies to implement now to mitigate risks effectively
10.10 - 10.40: Panel discussion: The AI security paradox: How the tech is helping to fight cyber-crime and bolstering criminals
Artificial Intelligence is revolutionising cybersecurity, offering new tools to defend against evolving threats. This session explores the impact of AI on financial sector cybersecurity. Speakers will discuss key AI applications, including threat detection, anomaly identification, and automated response systems. The session will examine how AI enhances traditional security measures and enables proactive defence strategies. Attendees will gain insights into AI implementation challenges, ethical considerations, and the future of AI-driven cybersecurity. The session will also address the dual nature of AI in cybersecurity, exploring how threat actors leverage AI and how organisations can counter these emerging risks. Participants will leave with a comprehensive understanding of AI's role in modern cybersecurity and strategies for integrating AI into their security infrastructure.
Panellists:
Deepak Bhandari, Director of Cyber Security, Oaknorth
Guy Morrell, Director of Information Security, British Business Bank
Mona Schroedel, Managing Associate, Freeths
10.40 - 11.10: Fireside chat: SaaS DLP in Action: Proactive Measures to Prevent Data Breaches
Ben van Enckevort, Co-founder and CTO, Metomic
In this insightful fireside chat, Ben van Enckevort, CTO and Co-founder of Metomic, will explore how Data Loss Prevention (DLP) solutions for SaaS environments can help businesses secure sensitive data and stay compliant with industry regulations like PCI DSS. This session will highlight practical strategies for preventing data breaches and improving operational efficiency in sectors like financial services. This discussion is a must-attend for professionals in financial services, tech, and compliance roles looking to better protect their organisations against insider threats and data breaches.
11.10 - 11.40: Coffee break
11.40 - 12.10: Ransomware Harms and the Victim Experience
Dr Jason R.C. Nurse, Reader in Cyber Security, University of Kent
Ransomware is a pernicious cyber threat, with ransomware operators intentionally leveraging a range of harms (negative impacts) against their victims. This talk aims to inform ransomware preparation and response by examining these harms in depth as well as the factors that alleviate and aggravate the experiencing of harms at organisational and employee level. This presentation is based on years of research and engagement with ransomware victims, incident responders, ransom negotiators, law enforcement and government.
12.10 - 12.40: Panel discussion: Operational resilience under DORA and beyond: Strategic approaches to implementation
Ahead of the introduction of the European Union’s Digital Operational Resilience Act (DORA), operational resilience has become a critical focus for financial institutions as they navigate an increasingly complex risk landscape. This session explores strategies for building robust operational resilience frameworks to ensure continuity of critical business services and meet key regulatory requirements. Speakers will discuss key components of operational resilience, including business impact analysis, mapping of important business services, and setting impact tolerances. The session will examine regulatory expectations, such as those set by the UK's PRA and FCA, and offer guidance on compliance. Attendees will learn about integrating operational resilience with existing risk management practices, conducting effective scenario testing, and leveraging technology to enhance resilience capabilities. The session will also address the intersection of operational resilience with cybersecurity, third-party risk management, and business continuity planning, and provide attendees with practical insights to strengthen their organisation's ability to withstand and rapidly recover from operational disruptions.
Panellists:
Adam Avards, Principal for Cyber and Third-Party Risk, UK Finance
Richard Breavington, Partner and Head of Cyber & Tech Insurance, RPC
Lorenzo Grillo, Managing Director – Europe & Middle East Cyber Risk Services Leader, Alvarez & Marsal
Sarah Pearce, Partner, Hunton Andrews Kurth (UK) LLP
Daniela Waugh, IT Security Manager, Markerstudy
12.40 - 13.10: Zero Trust Security: Reinventing Financial Services in a Digital-First Era
Mustafa Mustafa, Solutions Engineer Leader, Cisco
As financial institutions lead digital innovation, they face increasing cyber threats that traditional security models can no longer manage. The evolution of Zero Trust in the financial sector has become a key strategy for addressing these risks by shifting from perimeter-based defences to a "never trust, always verify" approach. This presentation will demonstrate why Zero Trust is essential for protecting critical assets like customer data and financial transactions. Attendees will learn how a unified security platform simplifies threat detection, enhances data privacy, and ensures regulatory compliance. The session will make the case for adopting a comprehensive Zero Trust strategy to secure digital transformation, build customer trust, and drive growth in an evolving threat landscape.
13.10 - 14.10: Lunch break
14.10 - 14.25: Leading the charge on APP fraud
Ben Woodside, APP Policy Manager, PSR
Ben Woodside, APP Policy Manager, from the Payment Systems Regulator will speak about the decisions, considerations and future evolution of the PSR’s APP policy and reflect on what still needs to happen to ensure future success
14.25 - 14.55: Fireside chat: Revolutionising financial security: Driving innovation and resilience with Zero Trust - Sponsored by Trustmarque
Elliott Morgan, Solution Sales Specialist (Cyber Security), Trustmarque
As financial services embrace digital transformation, traditional security models are struggling to keep pace with the growing sophistication of cyber threats. In this fireside chat, Elliott Morgan, Solution Sales Specialist (Cyber Security) at Trustmarque will explore how Zero Trust security is reshaping the financial sector’s approach to safeguarding critical assets such as customer data and financial transactions. Moving away from perimeter-based defences, Zero Trust adopts a "never trust, always verify" mindset, offering a more robust framework to protect against internal and external threats. This discussion will delve into the practicalities of implementing Zero Trust architecture, from integrating a unified security platform to simplifying threat detection, enhancing data privacy, and ensuring compliance with evolving regulations. Attendees will gain insights into how a comprehensive Zero Trust strategy can not only secure digital innovation but also strengthen customer trust and foster business growth in today’s increasingly hostile cyber landscape.
14.55 - 15.25: Collaborative cybersecurity: Leveraging intelligence sharing in financial services
Teresa Walsh, Chief Intelligence Officer and Managing Director, EMEA, FS-ISAC
With the constantly evolving threat landscape as well as regulatory changes around the world and the emergence of new technologies upending traditional cybersecurity programs and models, protecting the financial sector requires more collaboration than ever before. Teresa Walsh shares how financial firms can leverage intelligence and knowledge sharing in trusted communities as a force multiplier to advance their cybersecurity programs, build resilience, and comply with new regulation.
15.25 - 15.40: Chair’s closing remarks, quiz and end of the conference
