We work at the seam between law and systems. Engineering, legal, and product teams need counsel that understands both — people who can read the code, draft the license, and tell you which risk actually matters.
01.00
Practice
Two disciplines, one office
AI Governance
AI governance is the discipline of identifying and mitigating the risks that arise from deploying AI systems whose behavior is probabilistic and whose components are often opaque. It requires aligning the deployed system with the policy requirements of the organization and the law, ensuring that risk reduction is structural and defensible rather than performative. It requires keeping up with how AI is changing established structures and legal doctrines.
- Risk frameworks
- Policy automation
- Copyright and model analysis
- Deployment controls
Open Source
Open source governance is about managing open source as a strategic asset rather than a liability. On the defensive side, that means meeting license obligations, controlling supply-chain risk, and keeping an accurate inventory of third-party dependencies. On the strategic side, it means running an OSPO that turns open source participation into engineering leverage and higher revenue.
- OSPO design
- License strategy
- Conflict resolution
- Supply-chain audits
02.00
Recent writing
19 entries · 2014 – 2023
03.00
Ventures & collaborations
Model Monster
Corporate AI liability management. We use it with clients to turn system designs into risk reports and reusable evidence.
OSPOCO
Open Source Program Office, as-a-service. We partner on policy, automation, and community strategy.