Becoming an AI Governance, Risk & Compliance Practitioner
Francois B. Arthanas
AI Governance Advisor & Ph.D. Scholar
Get hired in AI Governance. Build the portfolio that proves you can do the job.
Organizations are plugging AI into hiring, lending, healthcare, and fraud detection with zero governance frameworks in place. No risk assessments. No audit trails. No compliance programs. Nothing.
And regulators have noticed.
The EU AI Act is live. Penalties hit €35 million or 7% of global revenue. Every major jurisdiction is building enforcement and most organizations don't have a single person who can stand up an AI governance program.
Here's what nobody in cyber wants to say out loud: the traditional GRC job market is crowded, the certifications are commoditized, and the salaries have plateaued.
AI governance is the opposite. The demand is exploding. The talent pool is nearly empty. And the professionals who build real expertise now with real frameworks, real projects, and real proof won't just enter this field. They'll define it.
This program is how you do it in 8 weeks. You will master NIST AI RMF, ISO 42001, & the EU AI Act. You'll build 8+ portfolio-ready deliverables. And you'll walk out with the one thing no certificate gives you: proof you can do the job before you ever get the job.
No deep tech background required.
What you’ll learn
This isn't a training about AI governance theory. It's a course about DOING AI governance. Here's what you'll be able TO DO not just KNOW
Design the governance structure, committees, roles, and decision rights for an AI governance program from scratch
You'll know the three organizational models (centralized, federated, hybrid), when to use each, and how to get executive buy-in
You will go function-by-function through Govern, Map, Measure & Manage & build a real AI Risk Register with 10+ risks & full treatment plans
Clause-by-clause mastery of ISO/IEC 42001:2023. All 38 Annex A controls. Statement of Applicability. The complete AI policy hierarchy
You'll be able to scope, design, and begin implementing an AI management system aligned with international standards
Article-by-article walkthrough of high-risk system obligations. Risk classification. Conformity assessments
Technical documentation requirements. GPAI model obligations. You'll build a complete compliance checklist and regulatory gap analysis
You will build a complete, executable AI audit program
Scoping, evidence gathering, testing procedures for governance, data, model, and deployment
Translate technical AI risk into business language. Design Key Risk Indicators. Build a one-page executive AI risk dashboard
20+ controls across the full AI lifecycle from requirements and data governance through development, testing, deployment, and monitoring
Each control mapped to NIST AI RMF, ISO 42001, and at least one additional framework
You'll know how to evaluate, contract with, and monitor AI vendors including foundation model providers, AI-embedded SaaS & data suppliers
Learn directly from Francois
Francois B. Arthanas
AI Governance Advisor & Ph.D. Scholar (CISSP, CISA, AAIA) | Founder, Cyber Pros
Who this course is for
Career switchers who want lower technical barriers cyber career that is very in demand
GRC Professional who knows AI governance is the future of their career and are ready to stop reading about it and start doing it
IT auditor, risk, compliance, privacy, legal, consultant & security professionals who want influence, stability, and relevance in the AI era
Prerequisites
There are NO technical prerequisites
You do not need: Coding skills, Machine learning experience, Advanced cybersecurity background
You should have
Basic familiarity with GRC concepts risk management, internal controls, compliance frameworks, audit fundamentals
What's included
Live sessions
Learn directly from Francois B. Arthanas in a real-time, interactive format.
Foundations of AI Governance, Discovery, Shadow AI, and Inventory
Learn how AI hides in plain sight inside organizations and how to identify, frame, and inventory enterprise AI use cases.
Governance Structure, Roles, and Decision Rights
Design a working AI governance operating model with ownership, accountability, and escalation that can function in the real world.
Intake, Risk Triage, and Approval Workflows
Build the front door for governance so new AI use cases are reviewed before risk compounds.
Risk Assessment, Controls, and Evidence
Assess AI risk using practical business, compliance, security, privacy, legal, and operational lenses, then translate risk into controls.
EU AI Act, Classification, Obligations, and Compliance Readiness
Learn how to classify AI use cases, reason through uncertainty, and move from legal analysis to practical compliance planning.
Governing Generative AI, Third-Party AI, and Agentic Systems
Develop a governance approach for foundation-model-based tools, embedded vendor AI, RAG systems, and emerging agent workflows.
Monitoring, Incident Response, Assurance, and Board Reporting
Bring everything together into a realistic AI governance roadmap and executive brief for a real organization.
Capstone, Building the AI Governance Roadmap
Pull everything together into a practical AI governance roadmap and executive brief.
Office Hours & Community
Once a week for 60 minutes. Bring your deliverable drafts, your career questions, your workplace challenges and get personalized coaching. We also have a dedicate private community for ongoing discussions, updated templates, job opportunities, peer networking, and direct access to the instructor.
Certificate of Completion
Official program certificate. But more importantly a portfolio that proves you can do the work.
Maven Guarantee
Your purchase is backed by the Maven Guarantee.
Course syllabus
24 live sessions • 29 lessons • 18 projects
Week 1
Mar
31
Session 1 (Tue): The Modern AI Landscape & Why AI GRC Matters
Apr
1
Optional: WEEK 1: Office Hours (Wednesday, 60 min) NOT 🔴 RECORDED
Apr
2
Session 2 (Thu): Stakeholder Mapping & Building the AI Governance Business Case
[Lab Exercise] Shadow AI Discovery Audit
Case Study: Amazon's AI Hiring Tool (The Algorithm That Learned to Discriminate)
BONUS Deliverable: Stakeholder Analysis Matrix
FAQ and Links
Week 2
Apr
7
Session 3 (Tue): Establishing AI Governance (Committees, Roles & Responsibilities)
Apr
8
Optional: WEEK 2: Office Hours (Wednesday, 60 min) NOT 🔴 RECORDED
Apr
9
Session 4 (Thu): Introduction to Core Frameworks (NIST AI RMF, ISO 42001 & EU AI Act)
[Lab Exercise] Designing Meridian’s AI Governance Charter, RACI, and Escalation
Case Study: Air Canada Chatbot Ruling (2024)
FAQ and Links
Free resource
How to become an AI Governance, Risk & Compliance Practitioner
The market opportunity (with real numbers)
AI GRC job postings are up 400%+. Salaries range from $130K to $250K. 78% of organizations using AI have NO Governance
Your personal bridge into AI GRC
You don't need to start from scratch. Whether you're coming from cyber, audit or compliance you're already 60% of there
What hiring managers actually want -NOT what job posting say
Most AI GRC job postings are written by HR teams who don't understand the role. You'll learn why a portfolio beats certs
Your first portfolio real-world project (built live)
You will conduct a real AI risk assessment using the same NIST AI RMF methodology that Fortune 500 companies uses
A 90-day career transition roadmap
A step-by-step action plan: what to read, what to build, who to connect with, and how to position yourself. No fluff.
Schedule
Live sessions
3-5 hrs / week
Designed for working professionals
Tue, Mar 31
10:00 PM—11:30 PM (UTC)
Wed, Apr 1
10:00 PM—11:00 PM (UTC)
Thu, Apr 2
10:00 PM—11:30 PM (UTC)
Projects
2-5 hrs / week