Uncategorized

Mercury Security Add-On Catalog — Audit & Oversight(v1.0, 2025) The following add-ons expand the scope of Mercury’s fixed deliverables. Each add-on is pre-priced, documented, and can be added via change request or included in initial contracting. 1. Additional Production Agent Description: Expands the Sprint or Oversight Pack to cover an additional live AI agent…

Mercury Security Sample Statement of Work (SOW)4-Week Audit → Governance Sprint(Illustrative Template, 2025) 1. Overview This Statement of Work (“SOW”) describes the scope, deliverables, timelines, roles, and terms of engagement for the Mercury Security 4-Week Audit → Governance Sprint (“Sprint”). This is a fixed-scope engagement with defined outputs and timelines. 2. Objectives Assess [Client…

This is a governance artifact to share with clients or regulators to demonstrate how AI-related incidents will be managed. Incident & Escalation Playbook for AI Systems Mercury Security | 2025 Introduction AI incidents—such as unsafe outputs, system failures, or compliance breaches—require structured response processes. Without predefined playbooks, organizations risk delayed responses, unclear accountability, and…

Framework Crosswalk Brief (PDF-style Word draft) Title: Aligning AI Governance Frameworks: A Practical CrosswalkMercury Security | 2025 Introduction Organizations face overlapping requirements when deploying AI systems. The EU AI Act, NIST AI Risk Management Framework, GDPR, and ISO/IEC 42001 all prescribe governance obligations, but in different language. Without a crosswalk, teams duplicate effort or…

AI Agents & Systems — Audit Criteria v1.0 Mercury Security Whitepaper | 2025 Introduction Artificial Intelligence (AI) agents are increasingly used in enterprise environments for customer service, internal knowledge retrieval, workflow automation, and even social media management. As adoption accelerates, so do concerns about compliance, governance, and security. Poorly controlled AI deployments can lead…