Focus 04 — AI Governance & Model Risk Management

Can you make compliance a paved road instead of a gate so we can actually deploy AI?

Why this is the fastest-rising board concern

This is the fastest-rising board-level concern, and most carriers are under-resourced on it. Owning AI governance means owning the model inventory, disparate-impact testing, explainability standards, vendor AI risk reviews, and audit-ready documentation aligned to NAIC, Colorado SB21-169, NY DFS Circular Letter 7, and the EU AI Act.

The pitch I bring to a CRO / CCO conversation: “I’ll let you deploy AI faster by making compliance a paved road instead of a gate.”

What I’ve shipped

SWIA AI executive committee — participating member; scar tissue from production AI deployment decisions including model selection, vendor risk, deployment gating.
Power of 15 (safety subset) — assertion-based primitives reframe cleanly as MRM controls. Live in every production pipeline I’ve shipped.
USPTO — AI Inventorship Listening Session (April 2023) — invited speaker on AI policy / IP / governance.
Unifi.ai — Data Privacy Platform for Healthcare — co-founded a privacy-compliance startup; covered in Forbes, Entrepreneur, Inc, and IAPP. The product itself was a governance toolkit for SMB healthcare.
Impact of Machine Learning Techniques in Privacy Compliance — peer-reviewed paper on ML in privacy compliance.
Analysis of Proposed NIST Framework on Software Supply Chain Risks — peer-reviewed paper on regulatory-framework analysis.
IAPP Young Privacy Professional recognition.
ACORD speaker positioning — ACORD Connect 2026 submission positions governance as a primary thread.

What’s coming next

Quarter	Deliverable
Q2 2026	Insurance AI Governance Digest — monthly newsletter launches
Q3 2026	50-state regulatory tracker (live page) · Governance toolkit v1 (model cards, MRM checklist, bias kit, vendor risk questionnaire)
Q4 2026	Reference disparate-impact testing notebook · Board-ready AI policy template
2027	State of Insurance AI Governance annual report

Market signal I track

NAIC AI(H) Working Group bulletins · NIST AI RMF + crosswalks · FTC AI guidance · Colorado SB21-169 · NY DFS Circular Letter 7 · Connecticut, California, Illinois, Washington state DOI activity · EU AI Act implementation guidance · UK FCA · Canadian OSFI E-23 · NAIC Big Data Working Group · ACORD AI Working Group · Triple-I, CAS · McKinsey, Deloitte, EY, KPMG, MMC, WTW, Aon governance whitepapers.

Success metrics

Newsletter: 500+ subscribers by Q4 2026, 2,000+ by Q1 2027
Governance toolkit: 50+ GitHub stars; cited by at least one consultancy or law firm
Inbound from at least 3 carrier CRO / CCO orgs by Q1 2027

For more details see LinkedIn

GitHub