New AI Governance Framework 2026 now available. View Resource →

Enterprise:
Approach Services Governance Results Trust & Security Resources
Take the Self-Check Book a Call →
Cichocki Advisory · Principal-Led Controls Mapped to SOC 2 TSC

Jan Cichocki · Principal Advisor, Cichocki Advisory

Make AI decisions
your board can defend.

Jan Cichocki helps executives turn AI policy into runtime controls and evidence — so one real workflow can answer the questions auditors, customers, counsel, and the board will actually ask.

Take the Evidence Readiness Self-Check View the $5K Diagnostic
Read the governance analysis → Procurement & Trust Materials
NDA-first Evidence-first Principal-led Implementation-neutral

20+ years in enterprise technology & advisory · Self-Check + $5K Diagnostic live today

20+
Years enterprise tech & advisory
12
Evidence Readiness Self-Check questions
$5K
Fixed-scope Diagnostic
Published
AI governance analysis

Built for AI accountability conversations

For leaders who need AI decisions backed by evidence, controls, and clear ownership.

CISOs
General Counsel
CIOs & CTOs
Audit Committees
AI Governance Leads
The Challenge

AI is moving faster than your strategy can adapt.

Every week brings new AI capabilities. Your competitors are moving. Your board wants answers. You need a trusted advisor who understands both the technology and the business implications.

Analysis Paralysis

Too many AI options, too many vendors, too many conflicting opinions. You need a framework, not more noise.

Speed vs. Risk

Move too fast and you expose the company. Move too slow and competitors win. The balance is everything.

Governance Gaps

AI without governance is a liability waiting to happen. Boards are asking questions you can't yet answer.

Enterprise Services

Four pillars of strategic clarity.

20+ years across financial systems, enterprise technology, governance, and operating-model design — brought to every engagement.

AI Strategy

Roadmaps that align AI investments with business outcomes — not technology for technology's sake.

  • AI Readiness Assessment
  • Use Case Prioritization
  • Vendor Evaluation
Learn more →

Advisory Retainer

Ongoing strategic partnership with direct executive access and continuous support.

  • Weekly 1:1 Calls
  • Priority Support
  • Board Materials
Learn more →

AI Governance

Frameworks that keep you compliant, secure, and ahead of regulation.

  • Policy Development
  • Board Presentation
  • Compliance Roadmap
Explore Governance →

Execution Advisory

Implementation enablement and operating-model support — not software.

We help you ship, not just plan.

  • Operating Model Design
  • Vendor Selection & Integration
  • Rollout & Change Management
Learn more →
Available Now

Start with something concrete.

Four working starting points — each one you can take, read, or run today.

Paid Fixed scope

AI Evidence Readiness Diagnostic

One workflow. 90–120 minutes. Memo within five business days. $5,000 fixed fee; 100% credit against a follow-on Sprint.

View the Diagnostic →
Free 12 questions

Evidence Readiness Self-Check

A 12-question starting point for policy, control, evidence, and ownership gaps. Score + action plan emailed back.

Take the Self-Check →
Insights Original analysis

Published Governance Analysis

Original analysis on NIST AI RMF, ISO/IEC 42001, EU AI Act considerations, and board-ready governance roadmaps.

Read the Insights →
Frameworks Downloadable

Downloadable Frameworks

Practical resources for AI readiness, governance planning, and ROI evaluation — the same artifacts we use in engagements.

Browse Resources →
Resources

Frameworks and guides for AI leaders.

2026 Framework

AI Governance Framework

Board-ready framework for AI risk management and policy development.

View Framework
Checklist 50 Points

Executive AI Readiness Checklist

Evaluate your organization's AI maturity across strategy, ops, and governance.

View Checklist

More evidence-readiness frameworks in development. Browse all resources →

Trust & Security

Procurement-aware from the first conversation.

AI evidence readiness work can involve sensitive strategy, vendor, security, and governance materials. Cichocki Advisory is structured for confidential, procurement-aware engagements — NDA-first, controls documented, scope clear before discovery.

Cichocki Trust & Security

Advisory & consulting engagements

  • SOC 2–aligned controls — mapped to Trust Service Criteria; documentation available under NDA
  • Evidence discipline in practice — internal operating systems use append-only records, idempotent change handling, versioned backups, and documented multi-pass review before production use
  • NDA-first engagements — mutual NDA before any discovery call
  • Encrypted systems — advisory materials are handled in systems configured for encryption in transit and at rest
  • Data retention policy — working materials purged post-engagement; engagement records retained per regulatory requirements
  • Principal-led advisory — all advisory work is performed by Jan Cichocki
Request Security Questionnaire →

ThreadSync Trust Center

Software & platform security

Software and platform security materials are maintained separately by ThreadSync.

ThreadSync is a separate software offering. For current product architecture, security posture, procurement materials, and product-specific controls, review the ThreadSync Trust Center.

Cichocki Advisory engagements are implementation-neutral — no software purchase is required.

Visit ThreadSync Trust Center →

Procurement Materials

Select your engagement scope to see the right materials.

Advisory Engagement

For consulting, retainer, or strategy engagements with Cichocki.

  • Security Questionnaire (SIG Lite / CAIQ)
  • Certificate of Insurance (E&O / Professional)
  • W-9 / Vendor Onboarding Packet
  • Data Handling & NDA Templates
Request Advisory Materials →

Product Evaluation

For ThreadSync platform or Magic Runtime evaluation.

ThreadSync maintains its own procurement materials and trust center. Product-specific architecture, security posture, and procurement packets are kept current there — not duplicated here.

Visit ThreadSync Trust Center →
Honest by default

What we don’t claim

Not third-party attested. Controls are mapped to SOC 2 Trust Service Criteria. We do not claim a Type II attestation, ISO 27001 certification, FedRAMP authorization, or HITRUST certification unless explicitly stated in a signed procurement response.

Not a deck factory. Engagements deliver decisions, controls, and evidence — not a 60-page slide deck. If you want a deck, we’ll build one. We won’t pretend it’s the work.

Not software-coupled. Cichocki Advisory engagements are implementation-neutral. The recommendation may be to improve your existing logs, workflows, or GRC process. ThreadSync is a separate offering, not a precondition.

Not vendor-funnel-routed. No bake-off strategy disguised as advisory. No marketing follow-up on procurement inquiries. Every questionnaire answer is yes / no / partial / not-applicable with reason — never fabricated.

Free · 12 questions

Is your AI evidence audit-ready?

A 12-question starting point for policy, control, evidence, and ownership gaps. Score and action plan emailed back — no charge, no commitment.

Take the Evidence Readiness Self-Check →

Takes about 5 minutes. Action plan returned by email.

Ready to lead the AI era?

Book a confidential 30-minute discovery call. We'll discuss your AI strategy, identify quick wins, and determine if there's a fit. No pitch, no pressure — just clarity.

Schedule a Confidential Conversation
or send us a message Contact Advisory → Prefer email? advisory@cichocki.com
Need procurement materials first? →