Education & Guidance (EG)

Governance

Provide security training, awareness, and guidance for teams building and operating AI systems.

Maturity Levels

Level 1: Foundational

Essential practices for minimally viable AI assurance. Core practices established with basic automation and human oversight.

Level 2: Comprehensive

Advanced practices with extensive automation and safety controls. Integrated security, metrics-driven improvement.

Level 3: Industry-Leading

Continuous threat monitoring, thought leadership, automated intelligence production, industry contribution.

Across All Domains

Software

AI applications, models, code security, vulnerability detection, and AI-powered SAST/DAST.

☑ Assessment Questionnaire

View Details →

Data

Training and operational data protection, privacy, classification, and DLP systems.

☑ Assessment Questionnaire

View Details →

Infrastructure

Cloud and on-premise security, configuration management, network security, and CSPM.

☑ Assessment Questionnaire

View Details →

Vendors

Third-party AI service risk management, supply chain security, and vendor assessments.

☑ Assessment Questionnaire

View Details →

Processes

Business workflows, incident response, SOAR automation, and governance processes.

☑ Assessment Questionnaire

View Details →

Endpoints

User interfaces, APIs, endpoint protection, EDR, and mobile security for AI systems.

☑ Assessment Questionnaire

View Details →