Adam Avards joined UK Finance in 2022 as Principal for Cyber and Third Party Risk. He leads UK Finance’s engagement on Critical Third Party regulatory issues and chairs a number of industry forums and committees on Cyber Security, Cloud and Risk. Before joining UK Finance, Adam spent over 15 years within the UK’s Intelligence Community where he focused on security policy implementation and training.

Balbir joined LSEG as Group Chief Risk Officer and Member of the Executive Committee in January 2021 and brings a deep commercial understanding and knowledge of risk management. Balbir was previously Group Head of Non-Financial Risk Management at Deutsche Bank and served on the Supervisory Board of Deutsche Bank Luxembourg S.A. as Chair of its Risk Committee. Prior to this, Balbir was Global Head of Operational Risk Management at Credit Suisse, having held a variety of senior roles at Credit Suisse International Ltd, including UK Investment Banking Chief Risk Officer and Head of Market Risk. Balbir is also a Board member of LCH Ltd, LCH S.A and Tradeweb Markets Inc.

Sharon became Chief Information Officer in January 2022, in addition to her role as Chief Security Officer, holding responsibility for IT service, cloud & traditional technology infrastructure, security and technology resilience. Prior to this, as Chief Resilience & Security Officer, Sharon headed up teams responsible for cyber, physical and information security activities, along with sourcing, supply chain management and divestments. As part of this role, Sharon led LBG’s operational resilience strategy & implementation and the Group’s response to regulatory policy requirements. She also led the Group’s incident response to the Covid-19 crisis. Sharon has held executive roles across the Group in IT, Security, Risk and Major Programme Delivery.

Silas spent the first 12 years of his career in the British Army. Since leaving the Army in 2007, he has worked in Resilience at UBS and then at RBS Global Banking & Markets, rising to Global Head in 2012. In early 2014 Silas moved over to Security, leading a large operational team covering Information Security, Fraud and Payments, Physical Security, Exec Protection and Security Investigations. He now leads the Security Intelligence & Testing function. His teams cover Cyber, Fraud & Physical Threat Intelligence, Security Testing, Red Teaming and Vulnerability Management. He is currently to Co-Chair of the CMORG Cyber Coordination Group.

Sarah is a Partner within the Risk Advisory practice with over 20 years’ experience specialising in leading and managing Global Regulatory, Operational and Technology resilience, and change programmes. Sarah leads the Operational Resilience practice across Financial Services and specialises in supporting clients developing their Operational Resilience Frameworks, Governance & Operating Model including the implementation of Operational Resilience and Digital Operational Resilience Act (DORA) requirements.

Matthew is Deputy Director for Critical National Infrastructure & Systems in the Resilience Directorate in the Cabinet Office. In his role he oversees the policy framework for Critical National Infrastructure including cyber, climate adaptation and supply chains resilience. Before this role, Matthew was Deputy Director in the Cabinet Office Economic and Domestic Secretariat, covering the Economy, Transport, Energy and Infrastructure. This involved problem solving with the Departments and brokering solutions for priority policies across the portfolio. Prior to his Cabinet Office roles, Matthew was Deputy Director of Nuclear Generation and International at the Energy Department, Head of International Energy Strategy, and he also spent several years in the Civil Contingencies Secretariat on horizon scanning and central government emergency response activities.

Todd Conklin currently leads Treasury's cyber portfolio under Deputy Secretary Adeyemo, while also serving as Treasury's Deputy Assistant Secretary for Office of Cybersecurity and Critical Infrastructure Protection. In addition to leading internal IT modernization efforts, Todd designed and implemented Treasury's counter-ransomware strategy consisting of updated crypto industry guidance and targeted sanctions actions.Todd previously served as Chief Information Officer for Intelligence Platforms and Innovation, and Chief Data Officer for Treasury's Office of Terrorism and Financial Intelligence (TFI). In those roles, he led cybersecurity and data modernization efforts across Treasury's critical national security assets and worked to develop a secure hybrid cloud environment and centralized data analytics platform consisting of Treasury's sanctions and AML data. Todd also established and chaired the TFI Data Governance Board. Todd has more than 15 years of experience with TFI and The Department of the Treasury. He initially joined Treasury's Office of Foreign Assets Control in 2007, most recently serving as Deputy Associate Director for the Office of Global Sanctions Targeting. From 2011 to 2013, he served as OFAC's Attaché to Mexico and Central America, and from 2010 to 2011, he served as OFAC Liaison to Afghanistan's National Interdiction Unit. In addition to his Treasury experience, Todd has a combination of private sector, intelligence, and law enforcement experience having worked in various positions at Exxon Mobil Corporation, National Geospatial-Intelligence Agency, and United States Secret Service. Todd received his B.A. in history from Mercyhurst University and his M.B.A. with a business analytics focus from Ohio University. In 2021, he received one of the Treasury Department's highest honors, the Silver Medal of Service, for his work ensuring the security of Treasury's critical national security data assets.

As Group Chief Operating Officer Alistair is responsible for leading an organisation of 60,000 colleagues in delivering excellent customer outcomes by providing world-class operations and technology services. Since joining Barclays in August 2017, Alistair has also held the roles of Chief Operating Officer & Head of Product for Corporate Banking, Co-Head of Corporate Banking, Head of Corporate Banking and Global Head of Consumer Banking and Payments (CB&P). Prior to joining Barclays, Alistair held senior global leadership positions at ANZ Banking Group in Australia and HSBC in the UK, Middle East and Asia, including President and CEO of HSBC, Taiwan, between 2007 and 2008. With more than 30 years as a banking professional, Alistair has a wealth of experience in institutional, large corporate, mid-corporate and consumer client segments as well as transaction banking, trade finance, cash management and technology, and a track record in delivering business transformation and high quality customer outcomes. Alistair was born in Scotland and grew up in Hong Kong. Based in London, his career has taken him all over the world. He holds a Master of Science (Management) from Imperial College, University of London and a Bachelor of Science (Design & Technology) from Brunel University.

Orlando Fernández is a Senior Technical Specialist at the Recovery, Resolution and Resilience team in the Prudential Policy Directorate of the Bank of England (BoE). He has been with the BoE working on a range of policy areas for over a decade. In his current role, Orlando focuses on third-party risk management. Orlando was one of the authors of the Prudential Regulation Authority’s (PRA) Supervisory Statement on ‘Outsourcing and third party risk management’ (SS2/21), and the recent Discussion Paper (DP) on ‘Critical Third Parties to the Finance Sector’ issued jointly by the BoE/PRA and Financial Conduct Authority (FCA). On the international front, Orlando has represented the BoE at the European Banking Authority (EBA) expert group that produced the 2019 Guidelines on Outsourcing. He is also heavily involved in the Financial Stability Board’s ongoing work in this area, including the 2020 DP on “Regulatory and Supervisory Issues Relating to Outsourcing and Third-Party Relationships” and the recently-published public consultation a toolkit for financial authorities and financial institutions as well as service providers for their third-party risk management and oversight.

Julie Johnson is the Cybersecurity and Infrastructure Agency’s (CISA) first Attaché, serving in the United Kingdom. She serves as a focal point for international collaboration between CISA, government officials, and other U.S. federal agency officials. She continuously works to advance CISA’s missions in cybersecurity, physical infrastructure protection, and emergency communications across all 16 critical infrastructure sectors. Previously, Julie served as a Protective Security Advisor in New York City where she led research on microgrids, communications and the internet, physical-cyber convergence, and served as CISA’s regional lead for federal interagency working groups. She has also done extensive work in nonprofit organizations including directing domestic violence and trafficking prevention grants in Europe and Eurasia for Sister Cities International, and social justice programming at Trinity Wall Street. At the U.S. Department of State, her grants and program work with the Bureau of Educational and Cultural Affairs included citizen exchanges and international training. Julie was recruited into State’s Bureau for Intelligence and Research to lead Eurasian research and Julie M. Johnson Attaché, UK outreach under the Title VIII program. She was later appointed as the Bureau’s first Senior Advisor and Director of Professional Development. In that role, she led academic and education initiatives, crafted and taught courses on analytic briefing and writing, developed new Intelligence Community programs, and represented the State Department on intelligence initiatives with interagency and five-eyes partners including the Foreign Language Executive Committee. During her tenure at State, Julie also served a Joint Duty assignment at the Office of the Director of National Intelligence, where her work included recruiting women into cybersecurity, working with and recruiting wounded warriors, and enhancing academic centers of excellence. Julie was a recipient of the Pat RobertsIntelligence Scholarship Program. She holds a Bachelor of Arts degree in Slavic Languages and Literature from The Ohio State University, a Master of Arts degree in Liberal Arts and Farsi from Johns Hopkins University and is pursuing a doctorate in public policy

Kieran is Head of Operations and Delivery for Sector Resilience at UK Finance, managing regulatory engagement and sector capability-building. This works primarily focusses on the Cross Market Operational Resilience Group (CMORG) where he manages the strategic partnership with the Bank of England and supports industry programmes across resilience, incident response and payments. He has led the design and delivery of sector-wide capabilities including a cyber security centre and a the operations for a national access to cash programme. He has previously held roles as Head of Corporate Governance and as a project manager. Kieran holds an MSc in Management with research focusing on strategic collaboration, working with University of London and the OECD as a researcher on public / private partnerships during COVID-19.

Marc Leaver has more than 15 years’ first line experience within Standard Chartered Bank including spells in Finance, Credit & Portfolio Management, and Product Management. Over the last 5 years served as Chief Operating Officer (COO) across the European, Americas and Financial Markets (west) businesses. Most recently, and appropriately for this forum, acting as Corporate Banking Operational Resilience COO globally.

Nick is a highly accomplished and results-driven senior technology consulting business leader with extensive knowledge and experience in the banking industry. With a career spanning over 20 years, he has demonstrated exceptional expertise in strategy consulting, digital transformation, innovation, and stakeholder management. Nick's track record includes driving business-scaling initiatives at prestigious organizations such as IBM, EY and PwC. With a strong technology consulting background, Nick has effectively collaborated with CXOs and executive teams in the Financial Services sector to shape business strategies, spearhead digital programs, and orchestrate organizational restructures. His deep understanding of the sector enables him to deliver on growth targets and optimize operational efficiencies. Nick's specialization lies in empowering clients to realize their business ambitions through the integration of modern technologies into their operating models, customer services, and data frameworks. By leveraging cutting-edge solutions, he enables them to compete more effectively and securely in the digital era. Throughout his career, Nick has partnered with prominent institutions such as Lloyds Banking Group, Barclays, HSBC, Nationwide, Goldman Sachs, UBS, and several other banking and capital markets firms. Nick completed his studies in Information Systems at The University of Leeds before commencing his professional journey as a technology consultant at PwC.

Duncan Mackinnon is the Executive Director for Supervisory Risk Specialists at the Prudential Regulation Authority. Duncan began his career at HM Treasury and led the Treasury’s initial work on Solvency II before moving to the FSA in 2009 to work on the reform of prudential policy for the banking sector following the financial crisis. He was head of the Banking Policy Division at the FSA and then at the PRA in 2013. Since then Duncan has supervised some of the major UK banks and been Director of International Banks Supervision. Duncan is Co-Chair of the G7 Cyber Experts Group (CEG) and is also Co-Chair of the Cross Market Operational Resilience Group (CMORG).

Experienced executive with a particular focus on competition and regulatory policy, having worked across a number of public and private sectors in several markets. Influence payments regulation across the UK and Europe, leading discussions on strategic industry and regulatory policy initiatives. Has commercial credentials delivering and implementing these policies in practice. Skilled at relationship building, hold several board positions and work with a number of charities.

Daniel has recently joined UK Finance as a principal for Cyber and Third Party Risk. He joins from Deloitte's Risk Advisory practice where he was a Senior Manager in Cyber, Data and Digital, primarily supporting Banking and Capital Markets firms on their recovery and resilience capabilities and addressing regulatory policies such as UK Operational Resilience and the EU DORA.

Prior to this he spent 4 years working as part of the FCA's Technology, Resilience and Cyber department, assessing firm's technical capabilities across technology and cyber and helping shape the resilience regulatory agenda on operational resilience, incident response and cross-authority and cross-sector engagement.

Nicola O’Connor is AIB’s Chief Information Security and IT Risk Officer, a role in which she is responsible for ensuring the integrity of both information and systems, while also defining the strategy to future proof the organisation. Nicola is an experienced executive, previously holding a number of senior management positions in AIB including Head of Support & Control. Prior to this she commenced her career in Intel, where she held a number of technical roles. She holds a BSc in Computer Engineering from UCC.

Lorraine O’Donnell is Principal of Operational Resilience Policy at UK Finance. Working across UK Finance and engaging with UK regulatory authorities and other key stakeholders, Lorraine’s focus is on delivering positive outcomes with respect to operational resilience, and working with members to prepare for, mitigate and recover from operational disruptions when they occur.

Lorraine previously served across a variety of Business Continuity and Operational Resilience roles across a range of sectors from telecommunications, credit referencing and financial services.

David has worked in financial services for over 40 years. At Barclays he worked for three Group chairmen, helped set up Large Corporate Banking, had wide experience in SME and consumer banking and ran the Group’s IT and operations function. David subsequently led Commercial Banking for Lloyds Bank, then was chief executive of Cattles PLC (a consumer finance and invoice finance business) before joining Moneycorp (an independent FX provider) as CEO. Before joining UK Finance David spent eight years at Bibby Financial Services as the chief executive.

Marsha heads up the NCSC team that supports private sector companies, that operate the UK's most critical infrastructure delivering essential services (energy, water, transport, telecoms, finance, civil nuclear, food, space, post).  The team works with industry to make the UK a safer place. We develop trusted relationships with industry and work with them to increase their cyber security and resilience to ensure essential services are available to support the public.    Marsha is a Senior Civil Servant who over the last 12 years has worked on resilience and security in a number of Government departments and has a background in scientific research. 

Craig Rice is a career information security and intelligence professional with experience spanning all intelligence and security disciplines in both the public and private sectors. Within UK financial services he has held senior cyber security and resilience leadership roles in critical national infrastructure and systematically important financial institutions. His advisory work has included contributions to the Bank of England cyber policy, sector capability development and exercising, CPMI-IOSCO cyber policy, DSIT cyber guidance and UK Finance cyber policy and guidance. Within academia he has supported the Centre of Doctoral Training at Royal Holloway University London (CDT at RHUL) and the Research Institute for SocioTechnical Cyber Security (RISCS). He was appointed CEO of the Cyber Defence Alliance (CDA) in September 2023.

Diego is a Senior Adviser at the Office for Quantum Technologies in the Department for Science, Innovation and Technology where he is working on the delivery of the UK National Quantum Strategy and leading on Quantum governance, regulation and standards. Previously, Diego worked at the Regulatory Horizons Council, an independent expert committee, that advises the UK government on regulatory reform to encourage the rapid and safe development of emerging technologies. He recently led the publication of a report on Neurotechnology regulation. Diego has also worked at the UK Government Office for Science and at the GSMA, the international association of the telecommunications industry. He has a master's in Technology Policy from the University of Cambridge and a bachelors in Physics and Philosophy from King’s College London.

Andrew Rogan is Director of Operational Resilience policy at UK Finance. Working across UK Finance and engaging with government and other key stakeholders, Andrew's focus is on delivering positive outcomes with respect to operational resilience. He also serves as UK Finance's principal policy contact in the event of an operational disruption of business continuity event.  Prior to taking on this role, Andrew served as Head of the Capital Markets and Infrastructure team in the Wholesale unit.

Lori Slack is an SME who brings experience from her current role in 2nd Line of Defense oversight of the Santander Operational Resilience Programme and Chair of the UK Finance BOCC. Lori's nine years at Santander include responsibilities as Head of Business Continuity, Head of Engagement Management for Risk Technology & Operations, as well as Sr. Manager Operational Risk, having worked in both Madrid and London. Her circa 20 years of professional experience is spread across regulatory change programmes in financial services and consulting, having previously worked at Legal & General, Barclays Capital, Chase, The Prudential, Accenture. Lori holds an MBA from the University of Chicago Booth School of Business.

Sam Woods assumed the role of Deputy Governor for Prudential Regulation and Chief Executive Officer of the Prudential Regulation Authority (PRA) on 1 July 2016. As Deputy Governor for Prudential Regulation and CEO of the PRA, Sam Woods is also a member of the Bank’s Court of Directors, the Prudential Regulation Committee, the Financial Policy Committee, and the Board of the Financial Conduct Authority. Sam’s previous role was Executive Director of Insurance at the PRA. In this role, Sam was responsible for overseeing the monitoring and regulation of over 600 life and general insurance firms. Sam joined the Financial Services Authority (FSA) in 2011 and transferred to the Bank in 2013 with the integration of the PRA. He served as Director for Financial Stability Strategy and Risk, and prior to that was Director for Domestic UK Banks Supervision. Before joining the FSA/Bank, Sam spent ten years at HM Treasury in a variety of senior roles.

Suman Ziaullah is the Head of Department at the FCA for the Technology, Resilience and Cyber Department. Suman has over 20 years’ experience working across public sector bodies, including in senior roles at the Financial Conduct Authority, the Foreign & Commonwealth Office and HM Treasury. He has led national data analytics capabilities that have helped defend the UK from major security threats, identified money laundering, fraud and market abuse, and played a critical role in protecting the London 2012 Olympic Games. Suman has a strong background in cyber security and data privacy and is a passionate champion of Diversity and Inclusion.