The London 2025 Financial Cybersecurity Summit is a high-profile event addressing the evolving cyber threat landscape in the UK’s financial sector. As AI-driven attacks, regulatory pressures, and digital payment vulnerabilities increase, cybersecurity leaders must adapt to new challenges. This summit brings together CISOs, regulators, and technology innovators to discuss strategies for strengthening cyber resilience, from proactive threat detection and insider risk mitigation to zero-trust architectures and compliance with frameworks like GDPR and DORA.
With a focus on collaboration and innovation, the summit aims to equip financial institutions with practical guidance and forward-thinking frameworks for navigating cybersecurity risks. Sessions will explore critical topics such as aligning governance with resilience, operationalizing AI for security, and securing the backbone of the global economy. Through expert-led discussions and networking opportunities, attendees will gain actionable insights to build long-term cybersecurity strategies in an increasingly digital financial landscape.
View our ISMG Event Experience Video to see what your peers are saying about their participation.
40 Liverpool Street, London, EN
EC2M 7QN, United Kingdom
NOTE: All requests to attend will be reviewed by event staff and
approved based on and event capacity.
ISMG Summits bring the foremost thought leaders and educators in the security space to the stage, interactive workshops and networking events. Learn from the “who’s who” in Cybersecurity passionate about the latest tools and technology to defend against threats
ISMG Summits bring the foremost thought leaders and educators in the security space to the stage for knowledge-sharing discussions. Know what is on the minds of leading security experts as they share insights and challenges of the ever-evolving threat landscape.
Moderated by Ian Thornton-Trump, CISO, Cyjax
Jon Staniforth, Former CISO, Royal Mail
Heather Lowrie, Former CISO, University of Manchester
Malicious actors are taking advantage of the quick digitisation of finance, from state-sponsored hackers to criminal syndicates, endangering public trust and financial stability. Efforts to safeguard the system are still dispersed, with unclear roles for governments, regulators, and industry, despite the obvious and immediate threat. This panel will discuss how to strengthen financial institutions’ defences against cyberattacks through proactive defence tactics, increased cyber resilience, and international collaboration. Finance, cybersecurity, and policy experts will talk about practical ways to close the cybersecurity gap, fortify regulatory frameworks, and guarantee that the financial industry continues to be a stable pillar in a world that is becoming increasingly digital.
The banking sector must adjust to a new phase of digital warfare as cyber threats become more complicated. The growing digitalisation of financial services has increased attack surfaces, leaving financial infrastructure exposed to cybercriminals. To stay ahead, organisations must implement proactive measures such as sophisticated threat intelligence, cyberattack simulations, and cross-border collaboration. Regulatory agencies such as the FCA and the Bank of England are critical in directing these efforts, but business leaders must also collaborate with governments to establish clear cybersecurity roles. This expert panel will deliver concrete ideas to help the UK’s financial sector remain resilient and strengthen its position as a global leader in secure digital banking.
Key Takeaways:
Sam Goddard, Regional Information Security Officer (UK/Europe),
W.R. Berkley Corporation
Angus Clarke, Vice President, BSO, Mastercard
From sophisticated ransomware assaults on fintech start-ups to large-scale cyber heists on major institutions, the changing threat landscape necessitates a swift, coordinated response. However, with so many players involved in cybersecurity, including financial institutions, IT businesses, and regulatory authorities, the issue remains: who is in charge of protecting key systems? The UK’s rising reliance on digital finance necessitates protecting the country’s financial infrastructure from a growing wave of cyber assaults. Furthermore, as financial services such as open banking, digital payments, and fintech innovations become more prevalent, new cybersecurity concerns develop, necessitating a strategic shift in how the sector interacts to mitigate cyber risks.
In order to examine how the UK may strengthen public-private cooperation, share critical threat intelligence, and improve regulatory frameworks, this panel will bring together experts from a variety of sectors. The session will discuss how the UK can improve its cybersecurity posture and maintain its position as a global leader in secure financial services. The conversation will include measures for securing digital assets, maintaining financial stability, and assuring the UK’s continued leadership in a fast-changing financial ecosystem, as well as insights into balancing innovation with solid cybersecurity. Cross-industry collaboration will be critical in proactively addressing emerging dangers and maintaining the UK’s position as a leader in secure digital finance.
Key Takeaways:
Gurps Khaira, Agile Programme Manager, Global Cybersecurity
Implementations, HSCBC
This is necessary to meet increasingly stringent regulatory requirements as well as to safeguard sensitive assets. The threat landscape is changing quickly, revealing weaknesses in financial systems from ransomware and phishing schemes to insider threats and AI-driven attack vectors. The regulatory bar continues to rise, with institutions facing a complex array of requirements such as the FCA’s Operational Resilience Framework, GDPR, and new laws like the EU AI Act and the UK Government’s AI Opportunities Action Plan. Cybersecurity must now be completely integrated into corporate governance and business strategy; it can no longer be seen as a separate IT function in this context.
We will discuss how CISOs and governance executives can foster a top-down culture of cyber resilience, as well as practical tips for implementing proactive measures against internal and external threats, ensuring board-level accountability, and coordinating security frameworks with legal requirements. Financial institutions in the UK are under greater scrutiny to improve their cybersecurity posture as cyber threats become more complex, both to safeguard assets and to fulfill increased regulatory obligations.
Key Takeaways:
Martin Covill, CISO, iSPL
Glen Hymers, Deputy Director, Cyber and Information Security
Cabinet Office
Gareth Dothie, Head of Bribery & Corruption Investigations, City of London
Police
John Nayagam, Interim CISO, Financial Ombudsman Service
Don Gibson, CISO, Kinly
Insider hazards are becoming more complicated and challenging to identify, whether they are caused by irate workers, unintentional behaviour, or even well-meaning employees falling for phishing scams. These internal threats pose serious dangers to sensitive data and the confidence that both consumers and regulators have in institutions in the highly regulated financial industry of the UK.
For instance, a well-known incident in recent years featured a trusted employee unintentionally giving attackers access through a skillfully designed phishing assault. This hack demonstrated how readily insiders, acting carelessly or maliciously, can take advantage of weaknesses in an organization’s security infrastructure, even in the face of robust external protection measures. Research shows that a large percentage of data breaches in the financial sector are caused by insider threats, such as social engineering, power abuse, and human mistake. The integrity of even the best-defended systems is compromised by these threats, which frequently evade sophisticated perimeter protection mechanisms.
In order to investigate how financial organisations may successfully handle internal threats without sacrificing organisational efficacy or employee trust, this panel brings together specialists. Implementing zero-trust security models, using AI-driven behavioural analytics to identify anomalous activity, and putting a strong emphasis on staff training to lower human error are all important tactics. The conversation will provide practical advice on how to safeguard important information and create a cybersecurity-aware culture at all organisational levels.
Key Takeaways:
Dom Lucas, Head of Security, British International Investment
Brian Brackenborough, CISO, Channel 4
Stuart Frost, Head of Enterprise Security & Risk Management, UK
Government, Senior Civil Service
Peter Crumpton, Information Security Manager, NFU Mutual
Ramit Sharma, VP Lead Engineer, NatWest Group
Madina Rashid, Director, Financial Crime Compliance, Legal &
Compliance, SEI
Martin Peters, Detective Superintendent, City of London Police – NPCC National
Cybercrime Programme
Phillip Davies, CISO, Equifax UK
#ISMGSummit
@ISMG_News
ISMG Summits offer Continuing Education Credits. Learn informative and engaging content created specifically for security professionals.
ISMG Summits offer Continuing Professional Development Credits. Learn informative and engaging content created specifically for security professionals.
ISMG Summits offer Continuing Education Credits. Learn informative and engaging content created specifically for security professionals.
Upcoming ISMG Events
Upcoming ISMG Events
@ISMG_News