Advisory programs
Not slide decks. Working governance — scoped to your regulatory context, your board's maturity, and your industry. Delivered as 6-month retainers with clear outcomes at every stage.
How we work
60 minutes. No pitch. We map your regulatory context, board maturity, and governance gaps — and tell you honestly what we see.
A tailored scope within 5 business days — specific to your industry, your regulations, and where your board actually stands.
We map your AI landscape, identify accountability gaps, and set clear governance objectives with named ownership at every stage.
Monthly briefings, quarterly workshops, always-available guidance — building your board's governance capability over time.
Map your AI and cyber risk exposure. Give your board the language and frameworks to begin governing it.
Structured inventory of your AI systems, risk classifications, and cyber exposure — formatted for board review and regulatory submission.
A clear picture of which regulations apply to your board — SEC priorities, DORA, NIS2, GDPR — and what your current posture means for personal director accountability.
2-hour structured session for directors. AI risk fundamentals, governance responsibilities, your specific exposure. Designed for decision-makers, not technologists.
A concise written brief on material AI and cyber developments relevant to your board, your industry, and your regulatory context. One page. No jargon.
Direct access to our advisors for questions and emerging decisions throughout the engagement. 48-hour response SLA.
Board-ready summary at engagement end: improvements made, gaps remaining, recommended next steps.
Ongoing fractional board-level advisory for organizations under active regulatory or AI risk pressure.
We attend up to 2 board or risk committee meetings per quarter — providing real-time input on AI and cyber risk discussions as they happen.
Built for your AI use cases, risk appetite, and regulatory obligations. Not a template — a working governance instrument tailored to your organization.
Board-level decision protocol for AI-caused failures: who is notified, what decisions must be made, what disclosures are required, and in what timeframe.
We work alongside your legal counsel and brokers to satisfy AI security requirements now appearing in D&O and cyber insurance policy conditions.
Structured crisis simulation tailored to AI-specific failure scenarios. Prepares your board and leadership to respond with clarity under real pressure.
24-hour response SLA for urgent matters. Immediate escalation path for active incidents or regulatory inquiries requiring board-level decisions.
Full governance program design for organizations building from scratch or facing regulatory deadlines.
End-to-end: policies, accountability structures, decision rights, escalation paths, and reporting cadences — designed to survive a regulatory examination.
Multi-session structured program building the AI and cyber fluency that regulators and shareholders increasingly expect directors to demonstrate.
Milestone-tracked roadmap with clear ownership at each stage. Built to satisfy audit requirements, not just management comfort.
Assessment of AI risk introduced through your vendor and partner ecosystem — the exposure most organizations underestimate until a supply chain incident forces the question.
Priority SLAs, more frequent touchpoints, and availability for urgent board conversations on short notice. Our deepest engagement tier.
Comprehensive handover leaving your organization with the internal capability to sustain governance independently — or a clearly scoped renewal path.
A fixed-scope, two-week engagement. We map your board's current AI and cyber risk exposure, assess your governance posture against current regulatory expectations, and deliver a single board-ready report. No retainer required.
Additional engagements
All services available as standalone engagements. Scoped individually.
A structured half-day or full-day session for your board or leadership team covering AI risk fundamentals, director accountability, and your regulatory context. Remote or on-site.
A focused review of your existing AI governance documentation — policies, risk registers, accountability structures — assessed against current regulatory expectations and best practice.
A structured review of your board's current posture against specific regulatory frameworks — SEC disclosure requirements, DORA, EU AI Act, NIS2 — with a prioritized gap analysis.
Direct access to our advisors for specific board-level questions, second opinions, or decision support. Available without a retainer engagement.