AI Agent Risk Assessment Kit
Discover, assess, and remediate AI security risks in 2-4 hours. 90 questions across 8 domains. Scoring interpretation. Remediation guidance.
8 domains · 90 questions · 75 remediation actions · Board-ready deliverables
What's Included
Everything you need to assess your AI security posture and present findings to leadership.
8 Domains, 90 Questions
Comprehensive coverage of every aspect of AI security.
| Domain | Questions | Focus |
|---|---|---|
| 1. AI Agent Inventory | 12 | Sanctioned tools, shadow AI, ownership |
| 2. Credential Exposure | 14 | API keys, tokens, rotation, blast radius |
| 3. Data Flow & Exposure | 12 | Data access, classification, transmission |
| 4. Governance & Policy | 14 | Policies, approval, regulatory compliance |
| 5. Security Controls | 13 | Logging, sandboxing, kill switch |
| 6. Shadow AI Exposure | 10 | Discovery methods, remediation |
| 7. Risk Concentration | 10 | Business impact, vendor dependency |
| 8. Agentic AI Security | 15 | Autonomous AI governance (NEW) |
Why This Kit vs. Alternatives
Big Four Assessment
$75,000+
- • 6-10 week engagement
- • Junior consultants doing the work
- • Generic framework adapted to AI
- • Final report, limited knowledge transfer
Build Internally
$25,000-40,000
(opportunity cost + time)
- • 60-100+ hours of senior staff time
- • No benchmarks for context
- • No proven methodology
- • Learning curve on AI-specific risks
- • Reinventing the wheel
P2P Assessment Kit
$2,500 - $7,500
- Start immediately
- Battle-tested 90-question framework
- Industry benchmarks included
- Board-ready outputs
- Optional expert support available
Choose Your Tier
All tiers include the full 90-question assessment framework.
Understand your risk
- Full 90-question assessment framework
- Scoring across 8 security domains
- Executive summary & risk classification
- Personalized 90-day remediation roadmap
- Prioritized quick wins you can act on immediately
Best for: Security managers, small orgs
Understand your risk + a plan to fix it
- Everything in Framework, plus:
- Industry benchmark comparison
- Board presentation template
- Shadow AI detection playbook
- Remediation priority matrix with effort-vs-impact scoring
- Board-ready talking points by domain
Best for: VP Security, mid-market
Understand your risk + a plan + expert ammunition
- Everything in Benchmarks, plus:
- 2-hour expert strategy session
- Findings review with prioritized action plan
- Priority email support — 30 days post-session
Best for: CISO, large org, audit-driven
Questions about which tier fits? Book a 30-minute strategy consultation →
By purchasing, you agree to our Terms of Service and Privacy Policy.
Frequently Asked Questions
Plan for 2-4 hours spread over 1-2 weeks. Some questions require input from IT or security teams.
That's a finding itself! Unknown answers reveal gaps in visibility—mark them and move on.
Your responses are stored securely for save/resume functionality and never shared with third parties. Your report is generated from our consulting methodology — no AI APIs, no external processing.
Detailed interpretation guides are included with every tier, with benchmarks in Assessment + Benchmarks and above.
Better to know now than after an incident. We offer consulting to help prioritize remediation.
We don't publish full sample reports to protect client confidentiality. However, the free 2-minute self-assessment gives you a preview of the scoring methodology and risk classification. The paid assessment expands this into a comprehensive 8-domain breakdown with actionable remediation steps.
The assessment is a point-in-time evaluation of your current AI security posture. We recommend reassessing quarterly as your AI adoption evolves. Your framework access doesn't expire, so you can re-run the assessment whenever you need an updated baseline.
Not Sure Which Tier Is Right?
Take our free 2-minute self-assessment first. It will give you a preview of your AI security posture and help you decide which tier fits your needs.