Securing Financial Services Summit

Securing the AI revolution in banking, insurance and asset management

20th January 2026 • Park Plaza Victoria, London, UK

Banks are at the forefront of AI experimentation and adoption, but how are they securing it and what are the pitfalls?

 

The frontier challenge in cybersecurity

Artificial intelligence is no longer confined to proofs of concept or innovation labs. In financial institutions across the world, it is moving into production and being embedded in core processes from trading, to surveillance, to fraud and financial crime detection, to compliance. This breadth of deployment means the attack surface is no longer confined to a single system or department. AI is everywhere — and so are its risks.

Some of these systems are built in-house, but many are sourced from vendors or built on open-source frameworks. Some run in tightly controlled bank environments, while others rely on cloud infrastructure outside direct bank control. What unites them is a simple truth: every new AI initiative represents not only innovation, but also a fresh attack surface.

For security leaders, the challenge is stark: how do you secure these systems, ensure compliance, and maintain resilience when the technology itself is evolving faster than the controls designed to protect it?

Banks face a cluster of common issues when attempting to secure AI. The first is model integrity and supply chain risk. Many AI models are obtained from vendors or open-source communities. How can they be evaluated from a security perspective?

The second is data confidentiality. AI thrives on data, but that means client records, trading flows, internal communications, and sensitive HR files. Risks include prompt injection, model inversion attacks, and accidental leakage of confidential information. Even synthetic data can raise concerns about re-identification or inadvertent bias.
A third challenge is adversarial manipulation. Unlike traditional software, AI models can be tricked through carefully crafted inputs. Fraud engines can be nudged to misclassify transactions. Trade surveillance systems can be coaxed into ignoring abusive patterns. In practice, this means adversaries can attack not just the infrastructure around the model, but the model itself.

Finally, there is the question of resilience. If an AI system goes down, critical processes can halt: surveillance alerts are missed, payments are delayed, customer interactions fail. Banks must design fallback processes and “kill-switches” that allow continuity in the event of an outage or compromise.

Perhaps the most pressing new concern is the rise of agentic AI. Unlike traditional models, which generate outputs in response to inputs, agentic AI can act. It can call APIs, execute workflows, move money, approve trades, or reconfigure systems. In other words, it is not just making predictions — it is taking actions. Today, few banks have the sandboxing, kill-switches, or human-in-the-loop safeguards required to stop rogue agents instantly.

So, what do organisations need to do to integrate AI-driven processers into existing controls and governance frameworks?

How do IAM/PAM, threat detection, operational resilience and governance frameworks need to be adapted?

How can existing security stacks be configured to cope with the threats AI can introduce and what new tools may be necessary to augment traditional security and resilience solutions?

 

The Securing Financial Services Summit will look at how leading institutions are continuing to develop their security and resilience programmes in the era of AI.
Join our real-life case studies and in-depth technical sessions from the security and privacy teams at the UK and Europe’s most sophisticated firms.

View previous event details here

  • Securing the AI supply chain – a new 3rd party problem

    • Banks are sourcing AI from a mix of in-house teams, niche vendors, and global cloud providers.
    • Each introduces new risks: unverified training data, hidden dependencies, and opaque contractual terms.
    • The question is not if, but how, you can trust solutions providers whose technologies you don’t fully control or understand. How to deal with this?

  • Embedding AI in the security stack

    • AI security events should feed into the bank’s SIEM, SOAR, and SOC processes like any other risk.
    • Model drift, adversarial anomalies, and data leakage must generate alerts alongside malware or phishing attempts. Existing IAM and PAM controls must evolve to cover AI agents and models to ensure that that they can’t escalate privileges or bypass controls.
    • Can this be done withing traditional toolsets?

  • Adversarial threats and AI exploits

    • Unlike traditional systems, AI models can be manipulated through crafted inputs.
    • Adversarial attacks may cause fraud engines to misclassify transactions or surveillance tools to ignore abusive patterns. Understanding and testing for these new exploits is critical.
    • So how can traditional security tools spot this – and model drift and other threats?

  • Protecting critical data in the age of AI

    • AI needs data and lots of it, but that includes customer records, trading data, and much besides.
    • Securing against an AI-driven data leak or misuse issue is now part of securing the database itself.
    • Compliance with GDPR, banking secrecy, and cross-border data laws raises the stakes further. Can you help?

  • Securing agentic AI

    • Agentic AI can call APIs, trigger workflows, and make sequential decisions. Attackers don’t need to break into a system — they just need to trick the agent into acting against its intended purpose.
    • In critical contexts like payments or surveillance, the consequences could be immediate and severe.
    • So how does agentic AI impact traditional tools? What’s needed now?

  • AI everywhere: mapping the new attack surface

    • From trading desks to HR, AI is now embedded across the bank.
    • Fraud detection, AML, chatbots, threat hunting — each new initiative is another attack surface.
    • Security leaders must understand not just the technology, but the organisational sprawl of AI adoption. What are the key issues?

Who Attends

Job titles

Cyber Threat Intelligence Relationships Manager
Security Architect
Cyber Analyst
Software engineer
Senior Information Security Analyst
Third Party Risk Lead
Project Manager
Infrastructure Project Principal
Head of Security Risk & Compliance
Chief Technology Officer
Chief Information Security Officer
Financial crime Executive
PCI DSS Support Function Manager
Cyber Analyst – Resilience
Lead Operational Risk Framework Manager
Lead Security Engineer
Business Security Consultant
CSO Risk & Controls
Lead Devops Analyst
CISO
IT Director
Senior Cyber Specialist
Cyber Security Engineer
Chief Risk Officer
Cyber Security Manager
Senior Internal Audit Manager
Technology & Cyber Risk Manager
Associate Director- EIOD IT Information Security Officer
Fraud Analyst
Information Security Officer
Senior Systems Engineer
IT Support Analyst
CIO and CISO
Head of Risk
Director - Technology and Cyber Risk
Vice-President Technology - Operational Resilience and 3rd Party Risk Oversight
Chief Technology Risk Manager, Head of Information Security & Data Privacy
Vice President, Technology and Cyber Risk Oversight
Head of Tech Ops & Cyber
Senior Information Security Officer
Executive Director, Europe
CTO
Secure Development Manager
Head of Audit
Head of Information Security
Principal Cyber Threat Intelligence Analyst
Head of IT Risk Governance
Manager - IT
Head of Infrastructure
Global Head Cyber Incident Response
Head of IT Security
Senior Cyber Security Engineer
Senior Information Security Governance, Risk & Compliance Analyst
Cyber Threat Intelligence Manager; Tactical & Operational
VP - Cyber Fraud Fusion Centre
Senior Investigator
Global Resilience Risk Specialist, Cloud Senior Manager
Senior Advisor Information Technology
Information Security Manager
Director of Business Information Security
Director of Technology
Director Business Information Security (BISO)
Chief Administration Office - Data Protection & Information security
Cyber Risk Consultant
Security Assurance Team Leader
Director - Fraud Investigations
Head of IT
Information Security and Data Protection Officer
DPO
Chief Information Security Officer
Security Engineer Architect
IT Security Analyst
Head of R&D and Engineering Cyber Fraud Fusion Centre
Enterprise Solution Architect
Head of Technology and Cyber Resilience Risk Oversight
InfoSec Analyst
Information Security Manager
Head of Digital CyberSecurity
Investment Adviser, UK and Ireland
Trade Advisor
CISO
Cyber Security Manager
Senior DevOps Manager
Head of IT & IS
IT Infrastructure & Security Manager
Director, Security Controls Services
VP, Cyber Investigations
Group Head of Information Security and Cyber Risk
Program Manager - Customer Identity and Access Management
Head of Internal Audit
Product security Lead VP
Head of Cyber Intelligence
Information Security Communications & Education Manager
Information Security
Vulnerability Lead Analyst
Security Architect
Technical Architect Cloud Security
Third Party Risk Consultant
Information Security Specialist
Privacy Officer
Head of Cyber Risk Intelligence, Insider Technology Risk and Digital Asset Risk
Cyber Manager
IT Security Analyst Specialist
Senior Manager - Digital Transformation
Vice President - IT Operations
International CIO
Lead - Ops/Tech Risk CA
Associate Director - Infrastructure Risk Management
Information Security Principal
Security Architect
Cyber Security & Operational Resilience Manager
Chief Risk Officer
Vice President, EMEA & UK/I for Cyber Hygiene
Information Technology Audit Manager
Network Security Architect
GRC Manager
Cybersecurity Compliance Manager
Director - Information Security Operations and Threat Intelligence
Senior Special Agent - Global Security
Cyber Security Risk Associate
Executive Director, Cybersecurity & Technology Control Governance & Program Management
Chief Information Security Officer
Business Information Security - Chief Information Security Office
Security Architect
Senior Director, Global Security Operations
Consultant
Senior Security Specialist
Cloud Security & DevSecOps Consultant
IT Audit Manager
Head of IT
Security Analyst
Infosec Analyst
CISO - Corporate Functions
Manager – Strategy & Intelligence; Investigations, Insider Risk and Data Loss Protection
Information Security Officer
Vice President, EMEA Regulatory Engagement Team
IT Manager
Resilience Risk Senior Digital Manager

Organisations

MasterCard
Santander
Bank of England
Man Group Plc
US Bank
Financial Services Information Sharing and Analysis Center (FS-ISAC)
African Development Bank (AfDB)
European Bank for Reconstruction & Development (EBRD)
AXA XL
Allianz
LV=
CIMB
NatWest Group
Pay.UK
Metro Bank
Beacon Platform
Mizuho
Credit Suisse
LSEG (London Stock Exchange Group)
NorthStandard
Specialist Risk Group
British International Investment
Lloyds Banking Group
OakNorth
Alpha Group (Alpha FX)
Pepper Money UK
Allianz
Mizuho
NatWest Group
First Abu Dhabi Bank
Suffolk Building Society
AEGIS London
Bibby Financial Services
Atomos
OakNorth
MUFG - Mitsubishi UFJ Financial Group
Natixis
MUFG - Mitsubishi UFJ Financial Group
Triple Point
Weatherbys Bank
Financial Services Information Sharing and Analysis Center (FS-ISAC)
Oxbury Bank Plc
HSBC
NatWest Group
Salary Finance
LSEG (London Stock Exchange Group)
Bupa Global
StreamBank
UnityLink Financial Services Limited
S&P Global
Kroo Bank
Bank of England
Legal & General
Fidelity International
Barclays
M&G plc
HSBC
Redwood Bank
AXA
LSEG (London Stock Exchange Group)
Financial Wellness Group
LCH
Commerzbank
Zurich Insurance Group
MarkerStudy
American Express
Europe Arab Bank
Allica Bank
Metro Bank
Beazley
Standard Bank Group
Financial Services Compensation Scheme (FSCS)
Barclays
Embark Group
abrdn
Legal & General
Legal & General
Lloyds Banking Group
Business France
Business France
Orbital
Royal London
LSEG (London Stock Exchange Group)
Suffolk Building Society
Alpha Bank
LSEG (London Stock Exchange Group)
Barclays
Bank of Ireland
UBS Group
Pepper Money UK
JPMorgan Chase & Co.
Envelop Risk Analytics Ltd
Allianz Holdings Plc
Natixis
MasterCard
Santander
Munich Re
Provident Financial Group
Vanquis Bank
Raymond James Financial
BNP Paribas Group
Pay.UK
FIS Global
Santander
Intellect Design Arena Ltd
Jefferies
Credit Suisse
Royal Bank of Canada (RBC)
European Bank for Reconstruction & Development (EBRD)
LSEG (London Stock Exchange Group)
NorthStandard
Credit Suisse
Deutsche Bank Group
MUFG - Mitsubishi UFJ Financial Group
Deutsche Bank Group
Moneycorp
HSBC
MasterCard
American Express
Mizuho
JPMorgan Chase & Co.
Allica Bank
Deutsche Bank Group
Insight Investment Management
Planet
Multigate
Mizuho
FIS Global
M&G plc
Union Bank UK
StoneX Group Inc.
Verto Fx
Credit Suisse
Lloyds Banking Group
Landesbank Baden-Württemberg
JPMorgan Chase & Co.
DorisIT
HSBC

Company headcount

5000-9999
100-499
3000-4999
10,000+
10,000+
10,000+
100-499
100-499
10,000+
100-499
10,000+
10,000+
100-499
10,000+
5000-9999
3000-4999
3000-4999
10,000+
10,000+
10,000+
10,000+
100-499
1000-1999
100-499
10,000+
500-999
2000-2999
1000-1999
1000-1999
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
1-99
500-999
1-99
3000-4999
3000-4999
100-499
5000-9999
100-499
100-499
100-499
100-499
5000-9999
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
500-999
1000-1999
3000-4999
10,000+
10,000+
10,000+
100-499
1000-1999
5000-9999
5000-9999
5000-9999
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
5000-9999
5000-9999
5000-9999
2000-2999
1000-1999
10,000+
10,000+
10,000+
3000-4999
3000-4999
10,000+
10,000+
10,000+
10,000+
500-999
10,000+
10,000+
10,000+
1-99
10,000+
10,000+
10,000+
10,000+
10,000+
10,000+
100-499
100-499
500-999
500-999
100-499
1-99
100-499
100-499
100-499
100-499
2000-2999
2000-2999
5000-9999
1-99
10,000+
2000-2999
10,000+
100-499
10,000+
10,000+
10,000+
500-999
10,000+
3000-4999
100-499
100-499
100-499
100-499
10,000+
1-99
100-499
10,000+
1000-1999
1-99
100-499
10,000+


Venue

Park Plaza Victoria, London

vpp

Location:
Park Plaza Victoria
239 Vauxhall Bridge Road, London, UK, SW1V 1EQ
Telephone: 0333 400 6140

Directions:
Please click here