October 23, 2025

Cybersecurity Summit:
Toronto Financial Services

10th Edition | Toronto, ON

Register Now
Overview
Topics
Agenda
Speakers
CPE Credits
Register
Overview
Topics
Agenda
Speakers
CPE Credits
Register

Event Overview

As Canadian financial institutions accelerate AI adoption, expand digital ecosystems, and face mounting regulatory expectations, security leaders are under pressure to deliver strategies that are not only resilient but adaptive. The 2025 Toronto Financial Services Cybersecurity Summit convenes senior cybersecurity executives, regulators, and risk leaders to examine how the country’s most critical financial organizations are responding to this moment—rethinking governance, investing in autonomy, and preparing for a wave of threats that move faster and cut deeper than ever before.
 
This year’s summit will spotlight the defining cybersecurity priorities facing the financial sector in 2025. From the operational risks of deploying agentic AI and autonomous threat response tools to the growing sophistication of deepfake-enabled fraud, institutions are grappling with complex new threat models. Sessions will also explore the evolving role of cyber insurance amid a sharp rise in disputed claims, how Canadian regulators and financial boards are aligning on oversight expectations, and how real-time intelligence is transforming fraud prevention. Throughout the program, attendees will gain insight into how industry leaders are not just keeping up—but setting the pace for what effective cybersecurity looks like in today’s high-stakes, rapidly transforming financial sector.
Download our Summit Brochure

View our ISMG Event Experience video to see what your peers are saying about their participation.

Highlight Topics

  • Ransomware – Navigating Threats and Responses
  • Navigating the Complexities of Cybersecurity & Privacy Laws
  • Executive Liability – Improving Existing Programs & Strengthening Defenses
  • Overcoming Challenges of AI Adoption
  • Deepfake Drama – An In-Depth Tabletop Simulation
Register

Craig Peppard

CISO, ivari Canada

Gennady Duchovich

Head of Cybersecurity, Haventree Bank

Imran Ahmed

Partner/Canadian Head of Technology, Norton Rose Fulbright

Ruth Promislow

Partner, Bennett Jones LLP

Robert Knoblauch

fmr. Deputy CISO & VP of Global Security Services, Scotiabank

Denny Prvu

Director of Architecture: Innovation & Technology, Fortune 500 Financial Services Company

Carl Montreuil

Director, Federal Policing Criminal Operations - Cybercrime, Royal Canadian Mounted Police

Goran Novkovic

Director, Industrial Cybersecurity, Toronto Transit Commission

June Leung

Director Identity and Access Management, Mackenzie Investments

Priya Mouli

Head of Information Security & Compliance, Sheridan College

Deniz Hanley

Canada CISO & Head of Technology Risk, Morgan Stanley

Gennady Duchovich

Head of Cybersecurity, Haventree Bank

Elena Carroll

CISO, Davies Ward Philips & Vineberg LLP

Past Speakers

Thought Leaders on Stage and Leading Deep Dive Discussions

ISMG Summits bring the foremost thought leaders and educators in the security space to the stage, at interactive workshops and networking events. Learn from the who’s who in the cybersecurity industry, passionate about the latest tools and technology to defend against threats.

View Faculty

Agenda

Given the ever-evolving nature of cybersecurity, the agenda will be continually updated to feature the most timely and relevant sessions.

You can now view or download a PDF version of the attendee guide.

Download Agenda

Registration & Breakfast

8:00 am - 8:45 am et 

Opening Remarks

8:45 AM - 9:00 AM ET
9:00 am – 9:45 aM ET

Financial Services Summit: Toronto

Financial Services Summit: Toronto

At the Helm - How Canadian Financial Institutions Are Rethinking Cyber Strategy

This keynote panel brings together CISOs and regulators to discuss how they are realigning priorities, investing in resilience, and preparing their organizations for the next wave of disruption. It will set the tone for the summit by addressing systemic challenges and strategic bets being made in 2025.
 
Key Discussion Points:
  • How OSFI guidelines and new national regulations are shaping board-level risk decisions
  • Strategic alignment between innovation, AI adoption, and cybersecurity
  • Emerging threat models that demand CISO engagement beyond the SOC
  • Cross-sector collaboration and the role of public-private partnership in national cyber defense
 

Ruth Promislow, Partner, Bennett Jones LLP

Deniz Hanley, Canada CISO & Head of Technology Risk, Morgan Stanley

Imran Ahmad, Partner/Canadian Head of Technology, Norton Rose Fulbright

9:45 AM - 10:15 AM ET

Denny Prvu

Director of Architecture: Innovation & Technology, Fortune 500 Financial Services Company

Agentic AI and Autonomous Threat Response in Financial Services

This panel will highlight real use cases where autonomous agents have been deployed in SOC environments, fraud analytics, and policy enforcement, and will explore how banks are building guardrails around AI autonomy.
 
Key Discussion Points:
  • Deploying autonomous threat-hunting agents in Canadian SOCs
  • AI agents in fraud detection and payment anomaly recognition
  • Ethical and operational challenges of letting AI act independently
  • How financial institutions are building governance frameworks around autonomous AI tools

Denny Prvu, Director of Architecture: Innovation & Technology, Fortune 500 Financial

Services Company

Networking & Exhibition Break

10:15 am - 10:45 am et
10:45 AM - 11:30 AM et

Vaibhav Bhadauria

CISO, Credit Recovery

Securing the Supply Chain: Responding to Zero-Day Vulnerabilities and Beyond

Recent breaches tied to upstream vendors and managed service providers have revealed critical blind spots. This panel explores how institutions are embedding third-party risk into security strategy, auditing cloud providers, and driving accountability across the digital supply chain.
 
Key Discussion Points:
  • Lessons from recent third-party or cloud-related incidents impacting FIs
  • Continuous monitoring vs. point-in-time assessments of vendor risk
  • Ensuring data residency and sovereignty across multi-cloud environments
  • Embedding third-party risk into contract language and exit strategies

Vaibhav Bhadauria, CISO, Credit Recovery

11:30 am - 12:15 pm et

Financial Services Summit: Toronto

Financial Services Summit: Toronto

Cybersecurity Governance in the Executive Suite

This session explores how CISOs are engaging with boards, what directors want to know, and how executive accountability is changing in a post-incident environment.
 
Key Discussion Points:
 
  • What boards expect from CISOs in terms of metrics and reporting
  • How financial institutions are educating directors on cyber risk
  • Implications of executive liability for cyber negligence
  • Bridging the language gap between technical risk and business impact

Aniket Bhardwaj, Vice President, Global Incident Response & Cyber Threat

Operations, Charles River Associates 

 

Priya Mouli, Head of Information Security & Compliance, Sheridan College

 

Eric Charleston, Partner, National Co-Leader, Cybersecurity at Borden Ladner Gervais LLP

Lunch

12:15 pm - 1:00 pm et
1:00 pm - 1:30 pm et

Priya Mouli

Head of Information Security & Compliance, Sheridan College

Deepfake-Enabled Fraud: Hardening the Human Layer in Financial Institutions

In 2024, attackers impersonated executives via deepfake video to steal $25 million from a global firm, sparking alarm across the financial sector. This session looks ahead to how threat actors are evolving these tactics in 2025, and what Canadian banks are doing to counter them—including controls at the human, technical, and process levels.
 
Key Discussion Points:
  • Anatomy of recent deepfake-enabled financial fraud cases
  • Detection strategies: voice biometric failsafes and AI-based validation
  • Employee awareness programs in the age of synthetic media
  • Preparing for future deepfake variants across audio, video, and text
 

Priya Mouli, Head of Information Security & Compliance, Sheridan College

1:30 pm - 2:45 pm ET

Carl Montreuil

Director, Federal Policing Criminal Operations - Cybercrime, Royal Canadian Mounted Police

Trust Undermined: An Immersive Simulation of AI-Augmented Insider Threats

This expertly designed session challenges participants to respond to cascading disruptions across IT and operational systems, unraveling the role of AI-augmented tactics in exploiting insider vulnerabilities. With a multi-phase simulation highlighting the cross-industry impact of AI-augmented insider threats on IT and operational systems, attendees will collaborate to develop actionable strategies for containment, detection, and long-term defense.
 
What You Will Gain From This Experience:
  • Precision Threat Response: Master techniques for isolating compromised systems, analyzing hybrid network activity, and mitigating cascading disruptions caused by insider-enabled AI attacks.
  • Real-World Scenario Insights: Understand how AI-driven insider threats exploit IT-OT vulnerabilities, with lessons applicable to sectors reliant on interconnected systems.
  • Actionable Defense Playbook: Design advanced countermeasures, including micro-segmentation, AI-based anomaly detection, and evidence preservation for incident response and regulatory requirements.
 

Carl Montreuil, Director, Federal Policing Criminal Operations – Cybercrime, Royal

Canadian Mounted Police

Networking & Exhibition Break

2:45 pm - 3:05 pm et
3:05 pm - 3:50 pm et

Imran Ahmed

Partner/Canadian Head of Technology, Norton Rose Fulbright

Cyber Resilience by Design: Incident Response & Recovery in Financial Services

As ransomware tactics evolve and destructive payloads target core financial infrastructure, Canadian institutions are doubling down on cyber resilience strategy. This panel will explore how to align incident response planning with enterprise risk, integrate simulations and crisis testing, and partner with internal and external teams to accelerate recovery timelines.
 
Key Discussion Points:
  • How Canadian FIs are aligning IR planning with OSFI guidelines and BCP requirements
  • What resilience testing looks like in practice (e.g. simulations, tabletops, red/blue teams)
  • Integrating threat intel into response playbooks
  • Communicating with regulators, customers, and internal stakeholders during crisis recovery

Imran Ahmed, Partner/Canadian Head of Technology, Norton Rose Fulbright

3:50 PM - 4:20 PM ET

Financial Services Summit: Toronto

Cyber Insurance Deep Dive: Coverage Demands, Claims Disputes, and the Shifting Role of Risk Transfer

This session will explore how Canadian underwriters are approaching coverage in 2025, what it takes to avoid exclusions, and how security leaders are rethinking the value of cyber insurance in light of recent claim denials and market shifts.
Backed by real-world experience from a seasoned security executive, this conversation will examine what’s changing—and what boards need to understand—about risk transfer in a climate of rising breach costs and insurer skepticism.
 
Topics to be addressed include:
  • How Canadian insurers are evaluating security maturity and incident response plans in 2025
  • Recent trends in denied or disputed claims—and how to avoid the same pitfalls
  • When cyber insurance is a smart investment vs. a false sense of protection
  • Strategies to help boards see cyber insurance as a component—not a substitute—for robust security
 

Aniket Bhardwaj, Vice President | Global Incident Response & Cyber Threat Operations, Charles River Associates

Goran Novkovic, Director, Industrial Cybersecurity, Toronto Transit Commission

Gennady Duchovich, Head of Cybersecurity, Haventree Bank

Closing Comments

4:20 pm - 4:30 pm et

Don’t miss your chance to attend this dynamic impactful event

#ISMGSummit

@ISMG_News

Register

Sponsors

CPE Credits

ISMG Summits offer Continuing Education Credits. Learn informative and engaging content created specifically for security professionals.

Claim Credits

The Summit Experience

Upcoming ISMG Events

July 8, 2025

Rethinking Operational Risk Through a Unified Framework
See Event

July 16, 2025

AI and Data Risk: Secure Sensitive Information and Build Next-Gen Cybersecurity Strategies
See Event

August 7-8, 2025

Cybersecurity Summit: Africa
See Event

August 19-20, 2025

Virtual Summit: Cybersecurity Implications of AI, Global
See Event

September 11, 2025

Cybersecurity Summit: London Financial Services
See Event

Upcoming ISMG Events

July 8, 2025

Rethinking Operational Risk Through a Unified Framework
See Event

July 16, 2025

AI and Data Risk: Secure Sensitive Information and Build Next-Gen Cybersecurity Strategies
See Event

August 7-8, 2025

Cybersecurity Summit: Africa
See Event

EVENT

About

SUBSCRIBE TO STAY UPDATED WITH OUR EVENTS

linkedin icon

@ISMG_NewsÂ