Done-for-you offer · Fractional CMO with AI Swarm · governance-router 4-skill bundle · governance-router agent
Nested autonomy profile inheritance for multi-unit franchise, multi-location retail, multi-location service brand, DTC ecommerce, and PE-sponsored portfolio operators — Define + Inherit + Apply + Attest 4-skill bundle on the governance- router agent, under a 5-anchor governance compliance overlay anchored on NIST AI RMF + ISO 42001 + EU AI Act human oversight, corporate governance + SOX + SEC, access control + NIST 800-53 + SOC 2 + PCI DSS + ISO 27001, per-vertical FDA Part 11 + HIPAA + GLBA + NYDFS + Colorado AI Act + NYC LL144, and AI liability + EU AI Act fines + GDPR Article 83
Your AI swarm runs 12-20 agents with multiple skills per agent across 50-1,500 locations. Each agent + skill + per-location deployment needs an autonomy profile that reflects the operator’s counsel-approved risk tolerance, the EU AI Act Article 14 human-oversight modality (human-in-the-loop, human-on-the-loop, or human-in-command) when high-risk under Annex III, Colorado AI Act (effective February 1, 2026) consequential-decision framework, NYC Local Law 144 bias audits for automated employment decision tools, Illinois AI Video Interview Act, Maryland HB 1202, California ADMT regulations under CCPA/CPRA, NIST AI RMF Govern function controls, ISO 42001 management-system clauses, NIST SP 800-53 access control with principle of least privilege, SOC 2 CC6 access controls, PCI DSS 4.0 Requirements 7-8 access and authentication, HIPAA technical safeguards 45 CFR 164.312 when PHI, FDA 21 CFR Part 11 when validated systems are in scope, GLBA Safeguards Rule, NYDFS 23 NYCRR 500.7 access privileges, board-approved delegation-of-authority matrix + audit committee oversight + SOX Section 302/404 + SEC Reg S-K Item 1.05 (effective December 18, 2023) materiality assessment when an autonomy-related incident is material for public registrants. AI liability exposure under EU AI Act Articles 99-101 reaches 35 million euro or 7 percent of global annual turnover for prohibited practices, 15 million euro or 3 percent for high-risk obligations; GDPR Article 83 fines reach 20 million euro or 4 percent; HIPAA OCR penalty tiers reach $2.13 million per violation per calendar year (2024 adjusted); state-AG penalties + private litigation under state-comprehensive-privacy where private right of action exists. The AI governance, IAM/PAM, change-management, and audit logging vendors below ship strong primitives. The orchestration above them — operator-counsel-and-CISO-and-AI- governance-committee-approved profile taxonomy + 6-layer inheritance tree (operator default + per-vertical default + per-jurisdiction default + per-banner + per-location override + per-agent + per-skill) + override-allowance policy + most- restrictive-applicable conflict resolution + per-vertical access control overlay + EU AI Act Article 14 modality mapping + Colorado AI Act + NYC LL144 documentation + SOX + SEC Item 1.05 materiality assessment flow + per-decision attestation + audit trail — is operator-side architecture. You keep the AI governance, IAM/PAM, change-management, audit logging relationships, the profile taxonomy, the inheritance tree, the override-allowance policy, the per-vertical access control overlay, the EU AI Act + Colorado AI Act + NYC LL144 documentation, the SOX + SEC Item 1.05 records, the WORM audit trail, the policy-as-code policies. You keep the ability to in-house at any time.
Published September 24, 2026
The real ecosystem this sits above
AI governance
Credo AI, Holistic AI, Robust Intelligence, Arthur AI, Fiddler AI, WhyLabs, Mona, Aporia, Fairly, ModelOp. Each ships strong model risk + bias + fairness + governance- workflow primitives. Profile taxonomy + inheritance tree + override-allowance policy + per-vertical overlay above them is operator-side architecture.
IAM/PAM
IAM: Okta, Microsoft Entra ID, Auth0, Ping Identity, ForgeRock, OneLogin, JumpCloud. PAM: Cyberark, BeyondTrust. Each ships strong identity + RBAC + ABAC + privileged- access primitives. Per-decision identity-bound runtime evaluation above them is operator-side architecture.
Change management
ServiceNow, Jira Service Management, Atlassian Compass, Pega, Camunda. Each ships strong ticket + approval + workflow primitives. Profile-change approval flow + counsel + CISO + AI-governance-committee approval gating above them is operator-side architecture.
Audit logging + policy-as-code
Audit logging: Splunk, Microsoft Sentinel, Google Chronicle, IBM QRadar, Sumo Logic, Elastic Security. Policy-as-code: OPA Rego, AWS Cedar, Casbin, Cerbos, Oso. Each ships strong logging + policy-decision primitives. Per-decision attestation library + per-vertical access control overlay above them is operator-side architecture.
WORM + legal research
WORM: AWS S3 Object Lock, GCS retention, Azure Blob immutable, Snowflake Time Travel. Legal research: Westlaw, Lexis+, Bloomberg Law, Practical Law, Compliance.ai. Each ships strong primitives. The 5-anchor governance gate that maps NIST AI RMF + ISO 42001 + EU AI Act + corporate governance + access control + per-vertical + AI liability onto an operator-counsel-approved policy bundle is operator-side architecture.
Frequently asked
What does nested autonomy profile inheritance actually deliver, and how does the 4-skill bundle decompose?
An orchestration layer that sits above the operator AI governance + IAM/PAM + change-control + audit logging + policy-as-code + WORM-storage stack and maintains the authoritative hierarchical autonomy profile structure that every agent + skill + per-location deployment in the swarm reads from. The skill is a four-skill bundle on the governance-router agent. Skill 1 — Define: produce per-profile autonomy definitions in operator-counsel-and-CISO-and-operator-AI-governance-committee-approved language. Each profile specifies an autonomy tier per the operator-counsel-approved tier taxonomy — typical operator-side taxonomies range from full-autonomous-execute (high confidence + low risk + reversible) through scoped-execute-with-policy-gate + queue-for-human-review + counsel-review-only + executive-escalation-only. The taxonomy maps to EU AI Act Article 14 human-oversight modalities (human-in-the-loop, human-on-the-loop, human-in-command) and NIST AI RMF Govern function controls. Profiles carry inheritance metadata (parent profile, override-allowed flag, scope, effective date, counsel-policy-version). Skill 2 — Inherit: resolve effective autonomy for any agent + skill + per-location deployment by walking the inheritance tree from operator-level default through operator-vertical defaults through operator-banner profiles through operator-location overrides through per-skill profiles through per-agent profiles. Inheritance is operator-counsel-approved and read-only at runtime — agents do not modify their own profiles. Override allowance is per-profile-tier-specific (some operator-counsel-approved profiles allow per-location override; some do not). Conflicting overrides resolve through the operator-counsel-approved precedence model (typically most-restrictive-applicable). Skill 3 — Apply: enforce effective autonomy at runtime through the operator policy-as-code system (OPA Rego, AWS Cedar, Casbin, Cerbos, Oso — operator chooses). Every agent + skill query the governance-router with their action context (operating agent + skill + location + jurisdiction + sector + AI-specific status + decision context) and receive the effective autonomy decision with rule-citation evidence. Apply integrates with the operator IAM/PAM (Okta, Microsoft Entra ID, Auth0, Ping Identity, ForgeRock, OneLogin, JumpCloud, Cyberark, BeyondTrust — operator chooses) for identity-bound access control + role-based access control (RBAC) + attribute-based access control (ABAC). Skill 4 — Attest: emit per-decision attestation (which profile applied, which inheritance path resolved, which override-allowance status held, which counsel-policy-version governed) to the operator WORM audit trail through the operator audit logging vendor (Splunk, Microsoft Sentinel, Google Chronicle, IBM QRadar, Sumo Logic, Elastic Security — operator chooses). The audit trail is the chain of custody the operator relies on in EU AI Act Article 26 deployer obligations + Article 72 post-market monitoring inquiries, SEC Reg S-K Item 1.05 + SOX 404 internal control reviews, PCI DSS 4.0 + HIPAA + NYDFS 23 NYCRR 500 access control attestations, and state-AG + private litigation discovery. The AI governance, IAM/PAM, change-management, audit logging vendors below ship strong primitives. The orchestration above them — operator-counsel-and-CISO-and-AI-governance-committee-approved profile taxonomy + inheritance tree + override-allowance policy + runtime enforcement + identity-bound access control + per-decision attestation + audit trail — is operator-side architecture.
Where does single-vendor AI governance stop compounding for multi-banner + multi-vertical + multi-jurisdiction operators?
Single-vendor AI governance is solved. Credo AI ships a strong governance platform with risk + policy + assessment. Holistic AI + Robust Intelligence + Arthur AI + Fiddler AI + WhyLabs + Mona + Aporia + Fairly + ModelOp ship strong AI governance + monitoring. Okta + Microsoft Entra ID + Auth0 + Ping Identity ship strong IAM. Cyberark + BeyondTrust ship strong PAM. ServiceNow + Jira ship strong change management. Splunk SIEM + Microsoft Sentinel + Google Chronicle + IBM QRadar ship strong audit logging. The compound case the governance-router agent has to handle is the one where (a) the operator swarm spans 12-20 agents + multiple skills per agent + 50-1,500 locations, where each agent + skill + location may need a different autonomy level depending on the decision context, the jurisdiction, the sector, the AI-specific status, and the operator-counsel-approved policy version, (b) per-jurisdiction overlays impose different oversight expectations — EU AI Act Article 14 high-risk AI systems must enable effective oversight through human-in-the-loop, human-on-the-loop, or human-in-command modalities; Colorado AI Act (effective February 2026) consequential-decision categories require algorithmic discrimination risk management + consumer notice + appeals process; NYC Local Law 144 requires bias audits for automated employment decision tools; Illinois AI Video Interview Act requires notice and consent; Maryland HB 1202 governs AI hiring tools; California ADMT regulations under CCPA/CPRA add consumer notice + opt-out + access + appeals for ADM decisions producing significant effects, (c) per-vertical regulator oversight expectations vary — FDA 21 CFR Part 11 electronic records and signatures requires validated systems + audit trails + electronic signatures with technical controls when healthcare/pharma; HIPAA technical safeguards 45 CFR 164.312 mandate access control + audit controls + integrity controls + person-or-entity authentication + transmission security; GLBA Safeguards Rule mandates access control for financial-data; NYDFS 23 NYCRR 500.7 mandates access privileges and Section 500.17 incident reporting for covered financial-services entities; per-vertical FDA OPDP + DEA + DISCUS + FDA CTP + state licensing-board layer per-vertical-specific requirements, (d) cybersecurity access control imposes principle-of-least-privilege at every layer — NIST SP 800-53 AC family + SOC 2 CC6 Logical and Physical Access Controls + PCI DSS 4.0 Requirements 7 restrict access to cardholder data by business need-to-know + Requirement 8 identify users and authenticate access + ISO 27001 Annex A.9 Access Control + NIST CSF 2.0 PR.AA Identity Management and Access Control, (e) corporate governance imposes board-approved delegation-of-authority matrix + audit committee oversight + SOX Section 302 CEO/CFO certification + Section 404 internal control over financial reporting when autonomy affects financial reporting; SEC Reg S-K Item 1.05 Material Cybersecurity Incidents (effective December 18, 2023) imposes four-business-day disclosure when an autonomy-related incident is material for public registrants, (f) AI liability exposure is large — EU AI Act Articles 99-101 administrative fines up to 35 million euro or 7 percent of global annual turnover for prohibited practices + 15 million euro or 3 percent for high-risk obligations + 7.5 million euro or 1 percent for incorrect or misleading information; GDPR Article 83 fines up to 20 million euro or 4 percent of global annual turnover; HIPAA OCR penalty tiers up to $2,134,831 per violation per calendar year (2024 inflation-adjusted); state-AG penalties + private litigation under state-comprehensive-privacy where private right of action exists. Without an orchestration layer above the AI governance + IAM/PAM + change-management + audit logging + policy-as-code vendors, autonomy profiles fragment across vendor consoles (each agent maintains its own outdated copy), inheritance resolution breaks (an operator-banner profile in Banner A drifts from the operator default), per-jurisdiction overlays fail to apply, identity-bound access control breaks, per-decision attestation fragments, and the audit trail of "which agent + skill + location + jurisdiction + sector + AI-specific status + decision context, under which profile + inheritance path + override status + counsel-policy-version, with which identity authentication" fragments. The orchestration above the vendors is what holds the cross-agent + cross-jurisdiction + cross-vertical + cross-decision invariants.
How does Skill 2 Inherit walk the inheritance tree, and how do override-allowance + conflict resolution operate?
The inheritance tree is operator-counsel-and-CISO-and-AI-governance-committee-approved and stable across the lifecycle. The typical operator-side tree has six layers (the operator-specific layer model is counsel-approved): Layer 0 — operator default profile (most restrictive baseline that applies in the absence of more specific profiles); Layer 1 — operator-vertical default (per-vertical defaults reflecting per-vertical regulatory expectations — healthcare-vertical default is more restrictive than retail-vertical default because of HIPAA + FDA + per-state medical-board scrutiny); Layer 2 — operator-jurisdiction default (per-jurisdiction defaults reflecting EU AI Act high-risk categories, Colorado AI Act consequential decisions, NYC LL144 AEDT, California ADMT, state-specific overlays); Layer 3 — operator-banner profile (per-banner profile reflecting the operator’s commercial structure across banners); Layer 4 — operator-location override (per-location override when location-specific operator-counsel-approved policy applies); Layer 5 — per-agent + per-skill profile (per-agent or per-skill profile when specific agent or skill behavior requires a tighter or different autonomy). Inheritance resolution walks the tree from Layer 0 outward, accumulating the most-restrictive-applicable autonomy across layers. Each layer specifies an autonomy tier (e.g., full-autonomous-execute, scoped-execute-with-policy-gate, queue-for-human-review, counsel-review-only, executive-escalation-only) plus per-layer override-allowance metadata (override-allowed or override-prohibited; if override-allowed, in which direction and within which range). Conflict resolution operates by operator-counsel-approved precedence — typically most-restrictive-applicable (when two layers prescribe different tiers, the more restrictive applies) but operator counsel may approve other models for specific scope. Override-allowance is operator-counsel-approved per layer per profile — some profiles permit per-location override (a per-location operator-counsel-approved override may relax a default for a specific location with documented justification + per-location attestation); some profiles prohibit override (e.g., an EU AI Act Annex III high-risk profile cannot be overridden to relax human oversight; HIPAA technical safeguards cannot be overridden to relax access control). Inheritance is read-only at runtime — agents do not modify their own profiles. Profile changes route through the operator change-management vendor (ServiceNow, Jira Service Management, Atlassian Compass, Pega, Camunda — operator chooses) with operator-counsel + CISO + AI governance committee approval before merge. Per-resolution attestation records the inheritance path walked + each layer’s contribution + the effective tier + override-allowance status + counsel-policy-version to the WORM audit trail.
How does Skill 3 Apply enforce per-decision autonomy with IAM/PAM + RBAC + ABAC + per-vertical access controls (HIPAA + PCI DSS + FDA Part 11)?
Apply enforces at runtime through policy-as-code (OPA Rego, AWS Cedar, Casbin, Cerbos, Oso — operator chooses) integrated with the operator IAM/PAM. Every agent + skill carries an operator-issued identity through the operator IAM provider (Okta, Microsoft Entra ID, Auth0, Ping Identity, ForgeRock, OneLogin, JumpCloud — operator chooses), with privileged access controlled through the operator PAM (Cyberark, BeyondTrust — operator chooses). Identity attributes (agent, skill, location, jurisdiction, sector classification) feed into ABAC evaluation. Agents query the governance-router for effective autonomy with their action context; the governance-router resolves the inheritance tree (Skill 2), returns the effective tier, and emits the policy-as-code decision through the operator’s preferred engine. Per-vertical access controls layer additional checks. FDA 21 CFR Part 11 electronic records and signatures applies when healthcare or pharma operators use AI systems that affect records subject to FDA submission or audit; Part 11 mandates validated systems + audit trail capture + electronic-signature controls + access controls + system documentation. HIPAA technical safeguards 45 CFR 164.312 mandate access control 164.312(a), audit controls 164.312(b), integrity 164.312(c), person-or-entity authentication 164.312(d), transmission security 164.312(e) — Apply integrates these requirements per-decision when PHI is in scope. GLBA Safeguards Rule access control applies when financial-data is in scope. NYDFS 23 NYCRR 500.7 access privileges + 500.12 multi-factor authentication apply for covered financial-services entities. PCI DSS 4.0 Requirement 7 restricts access to cardholder data by business need-to-know + Requirement 8 identifies users and authenticates access + Requirement 8.4 multi-factor authentication into the cardholder data environment + Requirement 10 logs and monitors all access to cardholder data and system components. ISO 27001 Annex A.9 Access Control + NIST SP 800-53 AC family + NIST CSF 2.0 PR.AA Identity Management and Access Control map to the operator IAM/PAM controls. SOC 2 CC6 Logical and Physical Access Controls + SOC 2 CC7 System Operations apply when SOC 2 reporting is in scope. Apply enforces principle-of-least-privilege — autonomy is the minimum necessary for the decision class given the operator-counsel-approved profile + per-vertical access control overlay. When per-vertical overlays would require a more restrictive autonomy than the inheritance tree resolves, the most-restrictive-applicable rule produces the more restrictive outcome. Per-decision IAM/PAM authentication + ABAC evaluation + per-vertical access control evaluation + autonomy tier + rule-citation evidence writes to the WORM audit trail.
What compliance does the orchestration enforce, and how does it map to NIST AI RMF + ISO 42001 + EU AI Act + corporate governance + access control + per-vertical + AI liability?
Five anchors. Anchor 1 — NIST AI RMF Govern function + ISO 42001 + EU AI Act human oversight + deployer obligations. NIST AI RMF (NIST AI 100-1) Govern function with GV-1 (policies, processes, procedures established), GV-2 (accountabilities defined), GV-3 (workforce + diversity competence developed), GV-4 (teams committed to a culture that supports risk management) subcategories + Map + Measure + Manage functions. ISO/IEC 42001 AI Management System Clauses 7 (leadership), 8 (planning), 9 (support), 10 (operation) provide the certifiable management-system layer. EU AI Act (Regulation 2024/1689) Article 14 human oversight (high-risk AI systems must be designed to enable effective oversight by natural persons through human-in-the-loop, human-on-the-loop, or human-in-command modalities) + Article 17 quality management system + Article 26 deployer obligations + Article 72 post-market monitoring for high-risk AI + Annex III high-risk categories + Article 50 generative-AI transparency. Anchor 2 — Corporate governance + SOX + SEC. Board-approved delegation-of-authority matrix + audit committee oversight + SOX Section 302 CEO/CFO certification + Section 404 internal control over financial reporting + COSO Internal Control Framework + SAS 99 (AU-C 240) fraud considerations when autonomy affects financial reporting + SEC Reg S-K Item 1.05 Material Cybersecurity Incidents (effective December 18, 2023) four-business-day Form 8-K disclosure when autonomy-related incident is material for public registrants. Anchor 3 — Cybersecurity access control. NIST SP 800-53 AC Access Control family + principle of least privilege + role-based access control (RBAC) + attribute-based access control (ABAC) + SOC 2 CC6 Logical and Physical Access Controls + SOC 2 CC7 System Operations + PCI DSS 4.0 Requirement 7 restrict access to cardholder data + Requirement 8 identify users and authenticate access + Requirement 8.4 multi-factor authentication + Requirement 10 logging and monitoring + ISO 27001 Annex A.9 Access Control + NIST CSF 2.0 PR.AA Identity Management and Access Control + NYDFS 23 NYCRR 500.7 access privileges + 500.12 multi-factor authentication. Anchor 4 — Per-vertical regulator oversight. FDA 21 CFR Part 11 electronic records and signatures (validated systems + audit trails + electronic signatures + access controls + system documentation) when healthcare/pharma. HIPAA technical safeguards 45 CFR 164.312 access control + audit controls + integrity + person-or-entity authentication + transmission security + 45 CFR 164.308 administrative safeguards. GLBA Safeguards Rule. Colorado AI Act (Senate Bill 24-205 effective February 1, 2026) consequential-decision framework with algorithmic discrimination risk management + consumer notice + appeals process + impact assessment. NYC Local Law 144 (effective July 2023) bias audits + notice for AEDTs. Illinois Artificial Intelligence Video Interview Act + Maryland HB 1202 + Tennessee ELVIS Act + state employment-AI patchwork + California ADMT (CPPA rulemaking) + EEOC AI hiring guidance + September 2024 ADA AI guidance. Anchor 5 — AI liability exposure + insurance. EU AI Act Articles 99-101 administrative fines (up to 35 million euro or 7 percent of global annual turnover for prohibited practices under Article 5; up to 15 million euro or 3 percent for high-risk obligations under Articles 8-15; up to 7.5 million euro or 1 percent for incorrect or misleading information to authorities). GDPR Article 83 fines up to 20 million euro or 4 percent of global annual turnover (tier 1) or 10 million euro or 2 percent (tier 2). HIPAA OCR penalty tiers up to $2,134,831 per violation per calendar year (2024 inflation-adjusted). State-AG penalties + private litigation under state-comprehensive-privacy where private right of action exists (Illinois Biometric Information Privacy Act BIPA, Washington My Health My Data Act, California CCPA limited PRA). Per-vertical regulator penalties (FDA, DEA, CFPB UDAAP, state insurance-commissioner, state real-estate-commission). D&O coverage + cyber liability insurance + AI-specific liability riders + indemnification clauses. Broader gate also enforced: per-vertical FDA OPDP + DEA + DISCUS + -regulator + FDA CTP + state licensing-board oversight via policy-as-code (OPA Rego + AWS Cedar + Casbin + Cerbos + Oso). WORM audit trail (AWS S3 Object Lock + GCS retention + Azure Blob immutable + Snowflake Time Travel) with per-statute retention (NIST AI RMF + ISO 42001 + ISO 27001 variable + SOX 7yr + SEC Reg S-K 5yr + PCI DSS 1yr minimum audit + HIPAA 6yr + GLBA 6yr + GDPR 6yr + EU AI Act 10yr + state-AG variable + IRS 7yr) per operator counsel policy.
What does the engagement look like across Tier 1 → Tier 2 → Tier 3, and what does the Tier 3 reporting cycle commit to?
Tier 1 AI Readiness Assessment (2-3 weeks, diagnostic): audits the operator current nested autonomy posture against the 4-skill bundle + 5-anchor governance compliance overlay + per-vendor AI governance + IAM/PAM + change-management + audit logging + policy-as-code state; deliverable is a gap-pack report identifying which agents + skills + locations lack operator-counsel-and-CISO-and-AI-governance-committee-approved profile assignment, which inheritance paths drift from documented tree, which override-allowance policies are inconsistent with operator-counsel approval, whether EU AI Act Article 14 human-oversight modalities are correctly mapped + Article 26 deployer obligations wired + Article 72 post-market monitoring wired for high-risk AI, whether Colorado AI Act + NYC LL144 + Illinois AIVIA + Maryland HB 1202 + California ADMT hierarchical control documentation is wired, whether NIST 800-53 AC + SOC 2 CC6 + PCI DSS Requirements 7-8 + HIPAA 164.312 + GLBA + NYDFS 500.7 access controls are integrated, whether SOX Section 302/404 internal control evidence is captured when autonomy affects financial reporting, whether SEC Reg S-K Item 1.05 materiality assessment is wired for autonomy-related incidents in public registrants, and a recommended remediation sequence for Tier 2. Tier 2 AI Swarm Setup Sprint (4-8 weeks): builds the 4-skill bundle on the governance-router agent, wires AI governance + IAM/PAM + change-management + audit logging + policy-as-code + WORM-storage vendors (operator-chosen subset), configures the operator-counsel-and-CISO-and-AI-governance-committee-approved profile taxonomy + inheritance tree (Layer 0 operator default through Layer 5 per-agent + per-skill) + override-allowance policy + conflict-resolution model + per-vertical access control overlay + EU AI Act Article 14 modality mapping + Colorado AI Act + NYC LL144 + Illinois AIVIA + Maryland HB 1202 + California ADMT documentation + SOX + SEC Reg S-K Item 1.05 materiality assessment flow + per-decision attestation library, runs 30-day shadow + canary period before flipping to enforce-mode. Tier 3 Fractional CMO with AI Swarm (6-month minimum, 1-2 days/wk embedded): continues operating with daily Define + Inherit + Apply + Attest + weekly per-vertical access control audit + monthly override-allowance audit + quarterly profile taxonomy review against EU AI Act + Colorado AI Act + NYC LL144 + Illinois AIVIA + California ADMT amendments + quarterly NIST AI RMF + ISO 42001 + ISO 27001 review + quarterly compliance evidence packages. Tier 3 reporting is a 6-workstream pre-engagement-baseline reporting cycle (per-agent per-skill per-location profile coverage trend + inheritance path stability + override-allowance audit pass-rate + per-vertical access control evidence completeness + per-decision attestation completeness + WORM audit-trail completeness) measured against the operator’s pre-engagement baseline. Each workstream surfaces trend direction and the gap to operator-defined targets. Reporting carries explicit caveats: AI governance + IAM/PAM + change-management + audit logging + policy-as-code vendor SLA + NIST AI RMF version updates + ISO 42001 + ISO 27001 amendments + EU AI Act implementing acts + EU AI Office guidance + Colorado AI Act implementing rules + NYC LL144 amendments + Illinois AIVIA + Maryland HB 1202 + California ADMT rulemaking + EEOC AI guidance + SOX + COSO + SEC interpretive guidance + Reg S-K Item 1.05 evolving guidance + NIST SP 800-53 amendments + SOC 2 + PCI DSS Security Standards Council + ISO 27001 amendments + FDA 21 CFR Part 11 interpretive guidance + HIPAA OCR enforcement + GLBA + NYDFS amendments + AI liability case law sit outside Completions control. Attorney-client privilege preservation across operator-counsel-approved profile taxonomy + inheritance tree + override-allowance policy + per-vertical access control overlay + EU AI Act modality mapping + Colorado AI Act + NYC LL144 + Illinois AIVIA + California ADMT documentation + SOX + SEC Item 1.05 materiality records is maintained per operator counsel policy.
Who owns the AI governance, the IAM, the profile taxonomy, the inheritance tree, the change-management workflow, and the audit trail?
Operator owns every artifact. The AI governance subscription (Credo AI, Holistic AI, Robust Intelligence, Arthur AI, Fiddler AI, WhyLabs, Mona, Aporia, Fairly, ModelOp — operator chooses) runs under operator billing on operator-controlled accounts. The IAM subscription (Okta, Microsoft Entra ID, Auth0, Ping Identity, ForgeRock, OneLogin, JumpCloud — operator chooses) runs under operator billing. The PAM subscription (Cyberark, BeyondTrust — operator chooses) runs under operator account. The change-management vendor (ServiceNow, Jira Service Management, Atlassian Compass, Pega, Camunda — operator chooses) runs under operator billing. The audit logging vendor (Splunk, Microsoft Sentinel, Google Chronicle, IBM QRadar, Sumo Logic, Elastic Security — operator chooses) runs under operator billing. The operator-counsel-and-CISO-and-AI-governance-committee-approved profile taxonomy + inheritance tree + override-allowance policy + conflict-resolution model + per-vertical access control overlay + EU AI Act Article 14 modality mapping + Article 26 deployer obligations records + Article 72 post-market monitoring records + Colorado AI Act consequential-decision documentation + NYC LL144 bias-audit documentation + Illinois AIVIA + Maryland HB 1202 + California ADMT documentation + SOX 302/404 internal control evidence + SEC Reg S-K Item 1.05 materiality assessment records + NIST SP 800-53 AC + SOC 2 CC6 + PCI DSS Requirements 7-8 + HIPAA 164.312 + GLBA + NYDFS 500.7 access control attestation library + per-decision attestation library all live in operator counsel + CISO + AI governance committee repo. The Define + Inherit + Apply + Attest skill code lives in operator code repo. The policy-as-code policies (OPA Rego + AWS Cedar + Casbin + Cerbos + Oso) live in operator code repo, counsel-aligned. The WORM audit trail lives on operator-controlled cloud storage (AWS S3 Object Lock + GCS retention + Azure Blob immutable + Snowflake Time Travel) with per-statute retention enforcement. The NIST AI RMF + ISO 42001 + ISO 27001 + SOC 2 + EU AI Act + Colorado AI Act + NYC LL144 + Illinois AIVIA + California ADMT + SOX + SEC Reg S-K + FDA 21 CFR Part 11 + HIPAA + GLBA + NYDFS + AI liability evidence records are operator-counsel-and-CISO-maintained. Completions owns the orchestration knowledge — how to design the profile taxonomy against the operator’s actual swarm structure, how to design the inheritance tree against the operator’s actual banner + vertical + jurisdiction structure, how to wire override-allowance policy against operator-counsel risk tolerance, how to wire conflict-resolution against the most-restrictive-applicable model, how to wire per-vertical access control overlay across HIPAA + GLBA + PCI DSS + FDA Part 11 + NYDFS, how to wire EU AI Act Article 14 human-oversight modalities + Article 26 deployer obligations + Article 72 post-market monitoring, how to wire Colorado AI Act + NYC LL144 + Illinois AIVIA + Maryland HB 1202 + California ADMT, how to wire SOX + SEC Item 1.05 materiality assessment with the disclosure committee — and that knowledge transfers under the Tier 3 transition path (30-60 days at engagement end with full hand-off of the profile taxonomy maintenance playbook, the inheritance tree maintenance runbook, the override-allowance policy maintenance playbook, the per-vertical access control overlay playbook, the EU AI Act + Colorado AI Act + NYC LL144 + Illinois AIVIA + California ADMT documentation maintenance playbook, the SOX + SEC Reg S-K coordination playbook, and the compliance evidence-package generation playbook). Completions credentials revoke on engagement-end.
Engage Completions
Start with the AI Readiness Assessment (Tier 1, 2-3 weeks): audit of operator current nested autonomy profile posture against the 4-skill bundle + 5-anchor governance compliance overlay + per-vendor AI governance + IAM/PAM + change-management + audit logging + policy-as-code state. Hand off to Tier 2 AI Swarm Setup Sprint (4-8 weeks): build the 4-skill bundle on the governance-router agent, wire AI governance + IAM/PAM + change-management + audit logging + policy-as-code + WORM-storage, configure profile taxonomy + 6-layer inheritance tree + override- allowance policy + most-restrictive-applicable conflict resolution + per-vertical access control overlay + EU AI Act Article 14 modality mapping + Colorado AI Act + NYC LL144 + Illinois AIVIA + California ADMT documentation + SOX + SEC Reg S-K Item 1.05 materiality assessment flow + per-decision attestation, run 30-day shadow + canary before flipping to enforce-mode. Continue under Tier 3 Fractional CMO with AI Swarm (6-month minimum, 1-2 days/ wk embedded).
Related reading
- AI agent governance (the broader governance posture this nested-autonomy skill operates within)
- Done-for-you per-jurisdiction compliance overlay configuration (the overlay-source-of-truth that nested autonomy reads jurisdictional context from)
- Fractional CMO with AI Swarm (Tier 3 engagement that operates the nested-autonomy maintenance cycle)