Blog

Team

Why our new CTO left Microsoft after 19 years

Rohit Tatachar joins as co-founder & CTO after nearly two decades at Azure. The inside story.

Joe Braidwood · Apr 15, 2026 · 5 min read

White paper

Healthcare AI is uninsurable

The first framework for underwriting healthcare AI risk. Four case studies. Three liability domains.

Jennifer Shannon · Apr 8, 2026 · 7 min read

OVERT 1.0 launch

We couldn’t ship our own AI

Why we open-sourced auto-redteam and published OVERT 1.0 — the open standard for AI runtime trust.

Joe Braidwood · Mar 25, 2026 · 10 min read

Open source

Why autoredteam.com is an open-source commitment

Why open-source auto-hardening matters and how autoredteam.com connects to safer AI deployment at scale.

Joe Braidwood · Mar 18, 2026 · 6 min read

AI safety

Voluntary AI safety just died

Anthropic abandoned its RSP. The voluntary era is over. Here’s what replaces it.

Joe Braidwood · Mar 10, 2026 · 8 min read

Conference

ViVE 2026: Healthcare AI gets asked for its receipts

We’re in LA Feb 22–25. The AI accountability conversation healthcare has been building toward.

Joe Braidwood · Feb 15, 2026 · 5 min read

Year ahead

2026: the year Healthcare AI gets real

JPM kicks off a pivotal year. State laws take effect, consent litigation accelerates, and governance committees want proof.

Joe Braidwood · Jan 12, 2026 · 5 min read

AI governance

The three layers of AI security

Most AI security solutions cover runtime protection. But there’s a critical third layer.

Joe Braidwood · Dec 8, 2025 · 8 min read

Regulation

EU AI Act Healthcare: what to know

Most healthcare AI is classified as high-risk, triggering strict logging requirements.

Joe Braidwood · Nov 22, 2025 · 10 min read

Clinical AI safety

When AI hallucinations become malpractice

“One beer at a wedding” becomes “daily heroin use.” Without evidence, who’s liable?

Jennifer Shannon · Nov 4, 2025 · 9 min read

Compliance

Why SOC 2 won’t protect you from AI risk

SOC 2 and HITRUST are essential for IT security. But they weren’t designed for AI.

Joe Braidwood · Oct 21, 2025 · 7 min read

State regulation

Colorado AI Act for Healthcare vendors

Colorado becomes the first US state to regulate high-risk AI on June 30, 2026.

Joe Braidwood · Oct 8, 2025 · 8 min read

AI governance

Building AI trust through evidence

The difference between “we have guardrails” and “here’s proof.”

Joe Braidwood · Sep 23, 2025 · 7 min read

Technical deep dive

How we used AI without a BAA

Deploying an in-line redaction proxy that strips PHI before it reaches external APIs.

Rohit Tatachar · Sep 9, 2025 · 12 min read

Infrastructure

Why we built GLACIS on Cloudflare

Global latency, edge compute, and enterprise security via Cloudflare Workers Launchpad.

Rohit Tatachar · Aug 26, 2025 · 6 min read

AI governance

Free AI runtime security assessment

Discover your AI runtime security posture with our free 2-minute assessment. Get your score and personalised recommendations.

Joe Braidwood · Aug 12, 2025 · 4 min read

Compliance

ISO 42001: is certification worth it?

Costs, benefits, and limitations. When certification makes sense vs. using the framework internally.

Joe Braidwood · Jul 29, 2025 · 8 min read