The Segment

From Compliance to Containment: The New Era of Financial Services Supervision | Phil Park

Episode Notes

What separates organizations that pass audits from those that survive real incidents?

In this episode of The Segment, host Raghu Nandakumara sits down with Phil Park, global cybersecurity and risk leader at IBM. With more than 25 years advising financial institutions across the U.S., Europe, and Asia-Pacific, Phil brings a practical perspective on how supervision is rapidly evolving from compliance checklists to real-world operational readiness.

Together, Raghu and Phil unpack the industry’s biggest mindset shift: regulators no longer ask “Are you protected?” — they ask “Can you operate through disruption?”

They explore why prevention alone is no longer enough, why containment and recovery now define security maturity, and how CISOs are moving from siloed operators to enterprise-wide risk leaders accountable to boards and regulators alike.

The conversation also dives into:

• Why regulators evaluate response quality rather than technical perfection
  
   
• How organizations are turning tabletop exercises into realistic resilience testing
  
   
• The growing pressure created by third-party and supply-chain dependencies
  
   
• Why evidence and outcomes matter more than policies and frameworks
  
   
• How overlapping reporting requirements are reshaping incident response playbooks
  
   
• The double-edged role of AI in both defense and attack, including deepfake risks
  
   
• Why security fundamentals matter even more in the AI era
  
   

This episode is a must-listen for security leaders and executives navigating a world where passing the audit is no longer the goal — proving you can withstand disruption is.

Also, if you’re attending FSISAC, join Illumio, IBM, and Palo Alto Networks for an exclusive dinner at Capital Grille! Save your seat here: https://lp.illumio.com/20260302-Steak-And-Security-Dinner.html?utm_medium=email&utm_source=marketo