Skip to content
Personnel File // About

AI Security and Governance. Founder-Led.

Classified Intelligence helps companies build, deploy, and govern AI systems that meet regulatory requirements and earn stakeholder trust.

Section 01 // Founder

Spencer Brawner

 CISSP · CISM · MBA

Spencer brings 25+ years of industry experience across public and private sectors. He has worked with governments, aviation, professional sports organizations, non-profits, physicians and clinics, startups, and educational institutions — building security and compliance programs tailored to each sector's risk profile.

He founded Classified Intelligence to address a gap in the market: companies building with AI need security and governance guidance from practitioners who understand both the technology and the regulatory landscape — not from firms that treat AI governance as a checkbox exercise.

His work spans ISO 42001 implementation, EU AI Act readiness, NIST AI RMF alignment, NIST CSF, and privacy frameworks including PIPEDA, EU/UK GDPR, and CCPA — along with the information security foundations (ISO 27001, SOC 2) that underpin credible AI governance programs. He holds CISSP and CISM certifications and an MBA from the University of Alberta School of Business.

LinkedIn Profile
Section 02 // Approach

How We Work

 OPERATING PRINCIPLES

Founder-Led

Every engagement is overseen by the founder. Our consultants are certified senior professionals — not junior associates learning on your project.

Framework-Grounded

We work from your frameworks or established standards — ISO 42001, NIST AI RMF, EU AI Act — we don't propose proprietary methodologies that lock you in.

Best-Fit Tooling

We recommend what fits your environment. We've vetted the landscape so you don't have to — and when it makes sense, we can bring preferred pricing from solutions we trust.

Section 03 // Coverage

Frameworks & Standards

 COMPLIANCE DOMAIN
ISO 42001
AI Management Systems
ISO 27001
Information Security
EU AI Act
European AI Regulation
NIST AI RMF
AI Risk Management
SOC 2
Trust Services Criteria
Section 04 // Clients

Who We Work With

 ENGAGEMENT PROFILE

Our clients are typically growth-stage companies (Series A through C) that are building or deploying AI systems and need to demonstrate governance maturity — whether for enterprise sales, regulatory compliance, or investor due diligence.

Common scenarios: preparing for an ISO 42001 certification audit, responding to EU AI Act obligations, unblocking enterprise deals stalled on AI governance questions, or building an AI risk management program from scratch.

Start a Conversation

30 minutes. Your top compliance priorities identified. No sales pitch.

Request Assessment

// END OF DOCUMENT //