Ziran is the open-source AI agent red-teaming framework maintained by the practice, used alongside NVIDIA Garak and Promptfoo for LLM-level coverage.

Does TaoQ AI do generalist AI delivery work?

No. Scope is AI security and AI governance, with EU AI Act conformity and ISO/IEC 42001-aligned management systems as the regulatory specialisms. Generalist AI delivery, model selection, and latency tuning are out of scope by design.

How do engagements work?

Three lifecycle entry points: Secure-by-design Threat Model, Pre-launch AI Risk Baseline, and Post-launch Embedded AI Security, Compliance and Governance Partner. Details on the Engagement page.

Expertise

Q: What does TaoQ AI specialise in?

AI security and AI governance for European tech companies building AI systems that need to hold up to a regulator, an auditor, a customer, or an attacker. The practice works across the EU AI Act, ISO/IEC 42001, and NIST AI RMF.

Deep specialist work in AI security, governance, and evaluation — across the full AI value chain — backed by production AI architecture and a dozen years in software engineering.

AI Security, Governance & Evaluation

The centre of the practice. Hands-on work on AI systems that need to hold up to a regulator, an auditor, a customer, or an attacker.

Agent Red-Teaming

Adversarial evaluation of AI agents in design and in production. Tool chain exploitation, multi-phase trust attacks, multi-agent coordination testing, prompt injection, data poisoning, exfiltration.

Practice tooling

Ziran (maintainer)

LLM-level coverage

NVIDIA GarakPromptfoo

Frameworks

OWASP LLM Top 10MITRE ATLAS

EU AI Act Conformity

Engineering-led interpretation of the regulation. Classification under Article 6, conformity assessment pathways, Annex IV technical file preparation. The specific articles that map to the specific controls in the system.

Regulation

EU AI Act (Regulation 2024/1689)

Management system

ISO/IEC 42001 (Senior Lead Implementer, PECB)

Risk frameworks

ISO/IEC 23894NIST AI RMF

Security Architecture for AI

Threat modelling on the system being built. Data pipeline security, RAG and retrieval hardening, agent tool-chain design review, boundary controls, Annex IV scaffolding written alongside the code.

Methods

STRIDE for AIAttack trees

Pipeline

Data lineagePipeline controls

Vector stores

PineconeWeaviatepgvectorQdrant

Agentic Systems & Interoperability

Architecture for agents that wield tools, retain memory, and chain reasoning across protocols. Writing on tradeoffs between emerging standards.

Protocols

MCP (Model Context Protocol)A2A (Agent-to-Agent Protocol)

Frameworks

LangChainLangGraphLlamaIndex

Patterns

Multi-Agent SystemsAgent Orchestration

Technical Foundation

The specialist work is grounded in years of shipping AI systems, cloud platforms, and enterprise software. These are not separate offerings, they are what makes the specialism defensible.

Production AI Architecture

Generative AI, agentic systems, RAG, fine-tuning, evaluation, MLOps and LLMOps. Authored the AI Reference Architecture at PostNL AI Centre of Excellence. Prior WatsonX architecture work at IBM across the NCEE market.

Tools

PyTorchHugging FaceLangChainAWS BedrockWatsonXDatabricksMLflowLangfuseRagasDeepEval

Cloud & Platform Engineering

How AI systems actually deploy. Serverless architectures, Kubernetes, infrastructure as code, multi-cloud deployment patterns.

Tools

AWSAzureGCPKubernetesTerraformAWS CDKServerless patterns

Software Engineering Depth

15+ years across software engineering, including system design, API architecture, and enterprise software delivery. Knowing what secure code looks like is a precondition for advising on AI security.

Languages

PythonJavaTypeScriptGoRust

Tools and frameworks

Organised by role in the specialist work, not by category. Tools listed are in active use, not an exhaustive career inventory.

AI Security Stack

ZiranNVIDIA GarakPromptfooOWASP LLM Top 10MITRE ATLASThreat ModellingRed Teaming

AI Governance

EU AI ActISO/IEC 42001ISO/IEC 23894NIST AI RMFAnnex IV Conformity

AI & Agentic Systems

PyTorchHugging FaceLangChainLangGraphLlamaIndexMCPA2AAWS BedrockBedrock AgentCoreWatsonXRAGMulti-Agent SystemsFine-tuningRLHF

MLOps & Evaluation

MLflowLangfuseRagasDeepEvalWeights and BiasesLangSmithEvidently AI

Cloud & Infrastructure

AWSAzureGCPKubernetesTerraformAWS CDKServerless

Data & Vector Stores

PostgreSQLKafkaSnowflakeDatabricksGraph DatabasesPineconeWeaviatepgvectorQdrant

Backend & APIs

FastAPISpring BootNode.jsRESTGraphQLgRPCEvent-DrivenDDD

Languages

PythonJavaTypeScriptGoRust

Get in touch