A beginner-friendly AI Governance & Risk Toolkit — risk register, governance templates, and audit-ready workflows for early-stage AI teams.
-
Updated
Jul 6, 2026 - HTML
A beginner-friendly AI Governance & Risk Toolkit — risk register, governance templates, and audit-ready workflows for early-stage AI teams.
Local-first review infrastructure for smart contract security.
Practical cyber resilience portfolio demonstrating Microsoft 365 security baseline, Cyber Essentials readiness, Intune endpoint management, audit evidence handling, and CAF-aligned implementation guidance for regulated environments.
Open-source SOC 2 evidence puller for AWS. Pulls CloudTrail, IAM, GuardDuty, Security Hub, Config into a dated CSV bundle. Part of the AuditReady toolkit (vanta alternative, drata alternative).
PostgreSQL Metro 2-style remediation sandbox for synthetic longitudinal tradelines, credit-impact windows, cure logic, treatment assignment, QA, and audit-ready before/after reporting.
Synthetic banking AI risk management control tower demonstrating AI inventory, risk assessment, mitigation planning, controls, evidence tracking, ownership, and framework mapping.
Developed a simulated ISO 27001 compliance program for a fictional fintech company (Pay2Go Financial Inc.), including asset inventory, control matrix, and gap analysis to assess security posture and audit readiness.
High-scale SAS TVM engine using 1-year CMT Treasury rates, PROC FCMP arrays, chunked processing, annual compounding, and final remainder interest for remediation liability calculations.
Governance-first security and cost controls. 3 pillars, 220 E-v-O controls. Identity, Supply Chain, FinOps.
Operational AI Governance resources, implementation methodology, practitioner toolkits and decision models built around the OPERA Methodology.
A strategic implementation of NIST 800-53, ISO 27001, and COBIT for modern enterprise security and risk remediation.
Offline-first AI governance scan toolkit for evidence-ready checks, local validation, scan history, and diff-ready compliance workflows.
A simulated end-to-end GRC security program for a small payment-card merchant — risk register, NIST 800-53 controls mapped to PCI DSS v4.0.1, an evidence pack with Python validation scripts, a POA&M, and a vendor risk program (with a companion assessment lab).
Python forensic data-integrity engine that scores raw datasets, detects hidden nulls, bias, format defects, and zero-variance fields, and generates audit ledgers and executive scorecards.
Information Security and AI Governance resources covering ISO 27001, ISO 42001, NIST CSF, SOC 2, gap assessments, control mapping, and AI risk classification.
Humanitarian warehouse analytics tool: multi-country inventory simulation, risk scoring, expiry tracking, and KPI dashboards
Public sample of an ISO/IEC 27001:2022 gap analysis portfolio using synthetic data.
Finance controls and audit-readiness dashboard for Odoo-compatible accounting exports.
Designed a comprehensive Regulatory Reporting Simulator to replicate large-bank reporting processes under U.S. regulatory requirements. Engineered automated workflows for data consolidation, error detection, and regulatory submission formats. Delivered a realistic sandbox for compliance analytics and audit simulations.
Metadata-driven SAS engine for insurance coverage reconciliation: merges overlapping proof periods, applies lapse-threshold rules, and calculates policy adjustment factors and executive liability signals.
Add a description, image, and links to the audit-readiness topic page so that developers can more easily learn about it.
To associate your repository with the audit-readiness topic, visit your repo's landing page and select "manage topics."