Day One | October 13
Here is the latest edition of the agenda. As we approach the event, we will be adding speakers and sessions to enhance your experience. To stay informed, please register your interest
Key topics
- Highlighting key regulatory frameworks and other principle-based requirements
- Evaluating fragmented and omnibus regulations across multiple jurisdictions
- Assessing how recent geopolitical events (e.g. sanctions shifts and regional conflicts) have tested operational processes, including real-time compliance, market response, and lessons learned
- Identifying how emerging technologies and AI adoption are shaping operational risk priorities
 | Orlando Fernandez Ruiz,Senior Policy Specialist,Bank of England |
Key topics
- Understanding systemic concentration risk across major technology providers
- Identifying interconnected dependencies across firms, markets, and infrastructures
- Analysing how failures in a single provider can create industry-wide disruption
- Evaluating whether current regulatory frameworks adequately capture systemic technology risk
- Considering the role of geopolitical factors in shaping systemic technology exposure
 | Ricardo Mariano Gonzalez, Executive Director – Operational Resilience & Third-Party Risk, Zurich Insurance |
Key topics
- Evaluating the rise of insider threat, including credential misuse and increased risk linked to workforce disruption and cost-cutting initiatives
- Understanding how shadow AI and unauthorized tools are bypassing governance and exposing sensitive data
- Addressing accountability gaps across siloed teams, where unclear ownership leads to inaction or delayed decision-making
- Aligning risk culture and employee behaviour with formal governance, policies, and operational controls
 | Violeta Cadosch,Head of Operational Resilience & Governance L&H Reinsurance, Swiss Re |
 | Elena Pykhova, Author – CEO and Founder,The Op Risk Company |
 | Sean Titley,Chief Risk Officer,Bank of London |
Key topics
- Incorporating AI risk into existing operational, cyber, and third-party risk management processes
- Evaluating risk appetite, defining controls, and evaluating what regulators consider acceptable
- Assessing governance gaps when AI is embedded in critical decision-making processes
- Managing stacked AI Risk across data supply chains, where externally AI-processed data is combined with internal data and reprocessed by internal models
 | Sam Lee,Managing Director – Head of Operational Risk,SMBC |
Key topics
- Rethinking structured versus unstructured data management for AI-readiness
- Understanding challenges to data lineage, auditability, and regulatory compliance
- Evaluating whether off-the-shelf or bespoke data solutions provide greater control and operational efficiency
- Analysing operational risk implications of rapid AI-enabled development timelines
Key topics
- Mapping ownership and accountability across third-party risk assessment processes
- Integrating technology, cyber, and operational risk assessments into third-party risk frameworks
- Addressing gaps in due diligence across complex, multi-stakeholder environments
- Managing lifecycle risk, from onboarding through to continuous monitoring
- Mitigating concentration and supply chain risks through enhanced oversight and coordination
| Sam Lee,Managing Director – Head of Operational Risk,SMBC |
 | Prash Patel,Managing Director – Head of Operational Risk,Barclays CIB |
 | Anita Barber,Head of Supplier Management and Business Services CIB,Lloyds Banking Group |
Key topics
- Identifying limitations of legacy GRC and assurance models in managing cyber risk across third parties
- Leveraging AI to automate control testing, evidence collection and risk assessment processes
- Enhancing assurance through continuous monitoring and real-time risk insights
- Integrating internal data with external intelligence to strengthen cyber risk visibility
 | Kishan Majithia,Executive Director – Cyber & technology Controls,J.P. Morgan Chase & Co |
Key topics
- Identifying cross-domain interactions that create compound operational risk
- Recognising early warning signs across cyber, AI, and third-party systems
- Understanding why incidents rarely have a single cause and require holistic assessment
- Improving monitoring and escalation processes to act on early indicators
 | Karim Sultan,Head of Operational Technology and Cyber Risk,,Standard Chartered Bank |
Key topics
- Conducting root cause analysis for systemic failures across AI, cyber, and third-party operations
- Capturing lessons from automation errors, AI incidents, and supplier disruptions
- Addressing gaps in post-incident review processes
- Embedding lessons into policies, controls, and enterprise risk practices
- Showcasing practical use cases of AI and risk transformation, highlighting what works in real-world implementations
 | Girish Rao,Global Head – Operational Risk Coverage,Citi |
| Karim Sultan,Head of Operational Technology and Cyber Risk,Standard Chartered Bank |
 | Stefano Canossa,Global Chief Risk Officer,GAM Investment Management |