Two central banks just put a clock on AI risk in finance The Bank of England and the European Central Bank both issued warnings about AI-related financial stability risks in July 2026. The BoE's Financial Policy Committee identified frontier AI as increasing cyber and operational resilience risks, while the ECB's Supervisory Board required significant institutions to submit action plans by 31 October 2026 to address AI-enabled cybersecurity threats under DORA obligations. The European Systemic Risk Board also issued a parallel warning on systemic cyber risks from frontier AI models. Two of the most consequential financial regulators in the world moved AI onto the financial-stability agenda in the same week. If you build or operate autonomous agents inside a regulated institution, the surrounding deadline is now real and it is dated. On 26 June 2026, the Bank of England's Financial Policy Committee judged that "recent rapid advances in frontier Artificial Intelligence capabilities have increased financial stability risks related to cyber and operational resilience." The record was published on 7 July. The FPC was specific about the channel. It focused on frontier AI accelerating the discovery and exploitation of software vulnerabilities, and on the operational risk created by compressed remediation windows. This is not an ethics statement or an innovation-strategy paragraph. It is a systemic-risk body naming AI as a cyber and operational-resilience risk to the financial system. Also on 7 July, the ECB's Supervisory Board Chair wrote to the significant institutions the ECB directly supervises. The letter, "Addressing AI-enabled cybersecurity threats," requires each of them to produce an action plan and submit it to their Joint Supervisory Team by 31 October 2026. The action plan sits under existing DORA obligations and covers the operational core: faster vulnerability and patch management, monitoring and detection, third-party risk, defence-in-depth, and response and recovery for AI-enabled threats. To make room, the ECB pushed its annual IT Risk Questionnaire from September 2026 to February 2027. The European Systemic Risk Board issued a parallel warning on systemic cyber risks from frontier AI models the same day. Read those communications together and the posture is unambiguous. A financial-stability body named frontier AI as a systemic risk, and a supervisor attached a hard October deadline to it. Be precise about scope. The letter is about AI-enabled cyber threats, and the 31 October submission is an action plan, not a runtime agent-evidence package. It does not ask banks to demonstrate governance of internally deployed autonomous agents. But the same institutions are increasingly using AI not only as a defensive tool, but as an authorized actor inside vulnerability management, incident response, software delivery, and operations. That opens a second control problem, and it is not the one most AI governance programs were built for. Identifying an AI system and authorizing it is the solved half. Registries, model cards, and access controls handle it. The harder half is what a correctly authorized agent does once it is running: across multi-step, tool-using operation, with evolving context, holding delegated authority to act. And whether every consequential action it took sits on an evidentiary record the agent did not also get to write. The ECB does not prescribe these artifacts in its July letter. But any institution whose defensive and operational processes come to depend on autonomous agents will need them to show its controls work beyond policy documents and design reviews. They are concrete: None of these are exotic. They are the difference between an audit trail that is testimony and one that is evidence: a record built from a projection the scrutinized system cannot also write to. The regulator is asking for a plan. The next incident will ask something harder: whether you can constrain the agents you already trust. The institutions that treat 31 October as a documentation exercise will produce inventories and roadmaps. The ones that treat it as a controls exercise will hold an answer the next incident cannot embarrass. Sources: Bank of England, Financial Policy Committee Record, 26 June 2026 published 7 July 2026 . ECB Banking Supervision, "Addressing AI-enabled cybersecurity threats," 7 July 2026. European Systemic Risk Board, "Warning on systemic cyber risks stemming from frontier artificial intelligence models," adopted 25 June 2026 published 7 July 2026 .