Services

What I do — and how I do it differently.

Forensic investigation methodology applied to agentic AI deployments. Every engagement starts with the same question: what has this system been explicitly prevented from doing?

01 Services
01
AI Control Architecture Review
Forensic review of agentic AI deployments. I map permission gaps, sequence gaps, and authorization gaps that standard compliance reviews do not reach.
Approach Adversarial gap mapping — what the system is technically prevented from doing vs. what it is supposed to do
Output Prioritised control gap register with remediation architecture
02
Behavioral Governance Design
Design of ongoing governance programs for AI agents operating in production. Covers intent alignment, action boundary enforcement, and behavioral monitoring — built into the system architecture, not the policy document.
Approach Embeds governance at the architecture level — permission boundaries, behavioral audit logging, human checkpoints
Output Behavioral governance framework tailored to the deployment, with monitoring specifications
03
AI Agent Risk Assessment
Pre-deployment and in-production risk assessments for agentic AI systems. Adversarial scenario modeling. Failure mode mapping. Human checkpoint design.
Approach Adversarial scenario modeling — failure modes identified before production exposure
Output Risk assessment documentation aligned to EU AI Act, FINMA, ISO 42001, and NIST AI RMF
04
Regulatory Alignment
Mapping AI deployments against EU AI Act obligations, FINMA model risk guidance, and emerging agentic AI governance frameworks. Practical, deployment-level — not theoretical compliance gap analysis.
Approach Deployment-level analysis against live regulatory obligations — article-level, not framework-level
Output Gap analysis mapped to specific regulatory articles with remediation roadmap
05
Executive & Board Advisory
Translating AI agent risk into business language for boards, risk committees, and senior leadership. What to ask, what to own, and what governance structure is required before autonomous systems go live at scale.
Approach Risk translation — technical control architecture mapped to board-level accountability
Output Board-ready risk briefing and governance structure recommendation
06
Thought Leadership & Training
Speaking, workshops, and in-house training on AI control failure, agentic AI fraud, and behavioral governance. Designed for risk officers, compliance leaders, and CISOs in regulated industries.
Approach Practitioner register — built for CISOs, CROs, and risk leads, not general audiences
Output Customised workshop or speaking session with practical governance diagnostics
Start a conversation View frameworks →