Governance · The subnav

Govern the AI you have already deployed.

Four products, ordered as a ladder. The Audit answers what you have. The Bundle answers what to do about it. The Sprint is where defined transformation lives. The Fractional CAIO is where ongoing executive presence lives. Discovery call qualifies tier fit, scope, and pricing within 5 business days.

Governance products are the natural ladder up from Executive AI Workflow for clients who need broader governance work.

The Governance Ladder

AI Stack Audit

Vendor-neutral inventory plus exposure-gap assessment, executive summary, and 60-minute review call.

Scope

Full inventory of every AI tool the business is paying for
Vendor-neutral assessment of utilization, redundancy, and gaps
Three highest-exposure gaps named with operator-language framing
Two-page executive summary plus detailed appendix
60-minute review call to walk through findings and answer board-level questions

10 business days

Read the Audit details →

Strategy + Governance Bundle

Multi-day delivery of governance frame, exposure mapping, and operating recommendations. Audit credit applies within 90 days.

Scope

Three pre-call structured questions to ground the workshop in your operating context
Structured workshop session with Kirk against the risk-identification framework
Written governance memo: board-shareable, with prioritized AI risks mapped to the Kizata Governance Ladder
30/60/90 action plan scoped to your leadership cadence
Foundational policies an insurer, board, or auditor expects to see
Audit-credit applies to engagement if the Audit was delivered within the prior 90 days

Five-day delivery

Read the Bundle details →

Governance Sprint

Defined transformation engagement scoped from the Bundle findings. Includes the FASCSA Sprint variant for federal contractors requiring AI inventory and attestation.

Scope

Scoped post-Bundle against the priority finding from the governance memo
Includes the FASCSA Sprint variant: Federal Contractor AI Inventory and Attestation, fixed-scope
Cross-functional working sessions with the operating team
Written deliverables: policies, procedures, runbooks for the priority area
Counsel review for any restricted-category material before it leaves the building
Day 30 / Day 60 / Day 90 milestone reviews depending on scope

30 to 90 days, scoped post-Bundle

Discuss a Sprint scope →

Fractional CAIO Retainer

Ongoing executive presence for operators managing material AI exposure. The retainer most clients graduate into after Sprint, or engage directly when the exposure is acute.

Scope

Standing executive presence on AI strategy and governance posture
Vendor review and procurement guardrails
Board reporting cadence with prepared materials
Quarterly recalibration of policies, data-handling rules, and incident-response playbooks
Regulatory monitoring across applicable frameworks
Month-to-month engagement

Ongoing, month-to-month

Discuss a CAIO retainer →

Each product stands on its own. Most CEOs run the Audit first because the inventory and exposure read is the entry diagnostic every other engagement depends on. Some go straight to the Bundle, the Sprint, or the CAIO retainer when the work demands it. The discovery call clarifies which is the right starting move for your operating reality.

Questions we hear

We already have AI policies in place. Do we still need the Audit?: The Audit is about exposure, not about whether a policy exists. Most mid-market firms have a one-page acceptable-use policy and three to five AI tools their employees signed up for without IT review. The Audit names which tools are leaking which data and which ones are running outside policy today.
Our IT team handles this.: IT can run a vendor list. The Audit runs the vendor list plus the data classification plus the utilization plus the redundancy plus the exposure mapping, all in operator language a board can read. The deliverable is a two-page exec summary, not a 40-page IT report. That is a different output.
What's the difference between the Audit and the Bundle?: The Audit answers what you have. The Bundle answers what to do about it. The Audit is a 10-business-day inventory and exposure read. The Bundle is a five-day engagement that produces written governance policy and a prioritized 30/60/90 action plan. Most CEOs run the Audit first; the Audit credits against the Bundle for 90 days.
Will the Audit recommend changes we have to act on immediately?: No. The Audit names the three highest-exposure gaps. Whether to act on them, on what timeline, and at what cost is your call. The 60-minute review call walks through options. You leave with a board-shareable document; you do not leave with a forced timeline.
Why is there no pricing on this page?: Specific install and retainer dollar amounts surface at discovery-call time. Operator-CEOs at the $5M-to-$25M revenue band making a material commitment have a discovery call in their workflow regardless. The discovery call qualifies tier fit, scope, and pricing simultaneously; publishing a tier price pre-qualifies the prospect into a tier before the conversation, often badly.

Founding-customer engagement open through Q3 2026

Founding clients receive priority delivery, case-study collaboration, and locked retainer terms through 2027. After the founding window closes, public pricing applies.

Request founding-customer call Subscribe to Operator Notes