Cindy Tu

Director of IT & Data Audit Capital One

Xin “Cindy” Tu is a responsible AI Innovator with over 18 years of experience in AI, Data and IT risks. Cindy has spent the last 11 years building AI, Data and IT risk frameworks for top Financial Services companies. Additionally, Cindy serves on the Editorial Board of CDO Magazine, AI Advisory Board of HotTopics, and CDO Advisory Board of FIMA Events. Given her specialty in the Data Governance and AI Governance Frameworks, Cindy helps shape the Data Governance and AI Governance Frameworks working with EDM Council and American Bankers Association.

Responsible AI Summit North America: Day 1 - Tuesday, June 23, 2026

2:35 PM Presentation – From Ad Hoc to Embedded: A Journey to Operationalize Responsible AI

How to evolve from ad hoc reviews into an embedded, repeatable framework integrating the existing risk assessment in SDLC, Model Risk Management, and Third-Party Risk Management and beyond. This session examines how acceptable-use gates and structured triage enable consistent risk decisions across diverse AI use cases, including internally developed and agentic systems that fall outside traditional MRM assumptions. It explores how acceptable risk is operationalized and recalibrated as conditions change.

• Integrating RAI into model risk, third-party risk, and SDLC controls.

• Monitoring drift with rollback and incident playbooks for reputational risk.

• Building triage and acceptable-use gates that scale across AI use cases.

Responsible AI Summit North America: Day 2 - Wednesday, June 24, 2026

12:40 PM Panel Discussion – Governing AI Agents: Technology, Employee, or Both?

AI agents blur the boundary between technology and workforce: they operate within rules, yet exercise discretion in execution. This panel debates whether agentic systems should be governed like software, like employees, or through a new hybrid accountability model. Panellists examine how organizations define risk ownership and prioritize privacy when outcomes are unpredictable and failures carry operational, reputational, and regulatory consequences.

• Defining accountability, approvals, and escalation when agents take autonomous actions.

• Designing controls for unpredictability, discretion, and safe operating boundaries.

• Operationalizing lifecycle oversight: monitoring, rollback, and crisis-response readiness.

Check out the incredible speaker line-up to see who will be joining Cindy.

Download The Latest Agenda

In Partnership With:

QUESTIONS?

Address: IQPC Ltd, 129 Wilton Road,
London SW1V 1JZ
Telephone: 44 (0) 207 368 9300
Fax: 44 (0) 207 368 9301
Email: enquire@iqpc.co.uk