An online AI security & governance cohort for regulated industries

You're making the security and governance calls for AI that nobody's made before. Who checks your thinking?

If you're shipping AI in a regulated industry, the security and governance calls come with constraints most teams are still working out, usually with no one outside the team to compare notes with. In this cohort, senior engineers from different companies apply frameworks from QCon talks to the AI security and governance decisions they're working on, and share what worked and what didn't, in confidence.

Leave with new approaches, or validation that the calls you're already making are the right ones.

Live online sessions. 4 hours a week, for 5 weeks.

Next cohort: Dates to be announced

Join the waitlist to hear when enrolment opens.

Join the waitlist

Most companies reimburse for professional development.
Download our "Convince your boss" template.

Katharine Jarmul

InfoQ Certified AI Security & Governance Cohort facilitator

Katharine Jarmul

Facilitated by Katharine Jarmul

Group

Confidential peer group

QCon

Apply QCon frameworks

QCon

Access 100+ QCon videos

InfoQ

Get published on InfoQ

Certification

Earn an InfoQ certification

We’ve helped thousands of senior software engineers, software architects and technical leaders adopt the right patterns & practices for over 20 years.
Amazon Logo Airbnb Logo american airlines Logo AE Logo Conde Nast Logo Ebay Logo Meta Logo Apple Logo Etsy Logo JPMorgan Logo Nasa Logo netflix Logo Oracle Logo Paypal Logo Goldman Logo spotify Logo SalesForce Logo uber Logo tesla Logo accentrue Logo charles Logo Fedex Logo Hulu Logo Google Logo Intuit Logo mckinsey Logo microsoft Logo workday Logo youtube Logo Amazon Logo Airbnb Logo american airlines Logo AE Logo Conde Nast Logo Ebay Logo Meta Logo Apple Logo Etsy Logo JPMorgan Logo Nasa Logo netflix Logo Oracle Logo Paypal Logo Goldman Logo spotify Logo SalesForce Logo uber Logo tesla Logo accentrue Logo charles Logo Fedex Logo Hulu Logo Google Logo Intuit Logo mckinsey Logo microsoft Logo workday Logo youtube Logo

Upcoming AI Security & Governance cohorts

New cohorts coming soon

Join the waitlist and we’ll email you when the next ai security & governance cohort opens.

Join the waitlist

Most companies reimburse for professional development.
Download our "Convince Your Boss" template.

Hear from recent graduates.

The single most valuable outcome has been improving how I write and think. I can now articulate trade-offs in a way that improves my proposals at work.

Chinmay Sawaji,
Senior Software Engineer @Klaviyo

This cohort gave me structured time each week to step back and think about what it really means to be an architect.

David Holliday,
Product manager / Product Owner @Munich Re

The Architecture Canvas was a game changer. We've made different decisions because of how we're structuring conversations. It wasn't just theory.

Ian Hockett,
Staff Software Engineer @Exact Sciences

These cohorts bring together senior engineers from different companies to work through the decisions behind securing and governing production AI. The value is the peer group, working on the same problems in different contexts.

Katharine Jarmul
InfoQ Certified AI Security & Governance Cohort facilitator

Katharine Jarmul

The 5-week learning journey.

Learning journey

WEEK 1:

Working with Sensitive Data + AI

Identify and protect the personal and confidential data moving through your AI workflows. Cover what counts as sensitive, where it leaks, and how to handle it before it reaches a model.

WEEK 2:

Threat Modeling and Red Teaming

Think like an attacker. Prioritize the threats that matter and run hands-on red teaming against an LLM, drawing on methods like STRIDE, LINDDUN, and Plot4AI.

WEEK 3:

Necessary Controls: Guardrails, Data Flow Controls and Sandboxes

Put real controls in place: guardrails, data-flow sanitization, and sandboxes, including open-weight guardrail models. Decide which control belongs where.

WEEK 4:

Observability, Testing and Evaluations

Check that the controls actually work. Use observability tools like Arize Phoenix and build evaluation suites that catch failures before users do.

WEEK 5:

Building out Governance and Auditing

Decide who owns safety, privacy, and security, and build the governance and auditing to back it up. The session also covers the group capstone presentations; the best articles get published on InfoQ.

Download the full syllabus

Who this program is for

These online cohorts are for senior engineers and architects who want to make specific decisions better, publish on a platform senior technical people read, and build a peer group that outlasts the 5 weeks.

Designed for:

  • Senior Software Engineers
  • Staff Engineers
  • AI/ML Platform Engineers
  • Privacy & Security Engineers
  • Engineering Managers
  • Technical Leads responsible for AI systems.
Experience

How each week works

Each week, you apply a framework from a QCon talk to a security or governance decision from your own work, alongside senior engineers and architects from different companies.

Format

1

Watch a QCon talk on your own time before the session.

2

Join a 4-hour live session with your facilitator and your cohort.

3

Apply the framework to a decision from your own work, sharing what worked and what didn't with the group.

4

Take away something you can use at work that week.

Time commitment

4 hours of live sessions per week, plus time-boxed homework (max 2 hours). Designed to fit around your work.

Capstone project

Throughout the cohort, your working group drafts a documented risk assessment and mitigation report for an AI product architecture. In week 5, you present it to the cohort. The best get published on InfoQ.

What you'll get.

Applied learning

Use it this week

Apply frameworks from QCon talks to real security and governance problems in group exercises. Sessions are 4 hours per week.

Senior Peer Groups

Better decisions

Work through threat models and controls with engineers from different companies, industries, and contexts.

Get published

Get published

Refine and publish a capstone article on InfoQ under your name.

Get Certified

Get certified

Earn an InfoQ certification as proof of your work securing and governing AI systems.

Your facilitator: Katharine Jarmul

Katharine Jarmul is a privacy and security expert in machine learning and AI systems. She is the author of Practical Data Privacy (O'Reilly), available in three languages, and has spent around a decade working in machine learning and AI, roughly eight of those years focused on privacy and security. She gave the opening keynote at InfoQ Dev Summit Munich 2025 and has spoken at QCon.

Credentials

  • Author of Practical Data Privacy (O'Reilly)
  • Privacy & security expert in ML and AI systems
  • InfoQ Dev Summit Munich 2025 opening keynote speaker; QCon speaker

Katharine Jarmul

Author of Practical Data Privacy, privacy & security expert in ML and AI systems

Frequently asked questions

Who can I contact for questions relating to payment?

You can contact us for any payment questions at payments@qconferences.com.

What payment methods do you accept?

We accept PayPal and major credit cards. A payment charged to your credit card or PayPal account is processed directly by us in the funds stated on the website.

What are the Terms of Participation?

The Terms of Participation can be found at https://certification.qconferences.com/terms-conditions.

What is the Cancellation and Refund policy?

Registration fees are not refundable.

Do you offer a template to help convince my boss?

Yes, we've developed a template you can use to explain to your boss how you can benefit from the cohort participation.

Do you offer in-person cohorts as well?

Yes, in-person cohorts are offered at select QCon conferences, such as QCon London and QCon San Francisco.

Can I pay for tickets by invoice?

You can opt to pay by invoice during the registration process by selecting the "Do You Want to Pay Later by Invoice?" checkbox.

Your invoice reflects the ticket price in effect at the time your payment is due. Invoices are generally due 30 days from the date the order is submitted, or 7 days before the event start date—whichever comes first. To ensure all funds are cleared, the "Pay by Invoice" option will be disabled 14 days prior to each event (subject to change without notice). All invoices must be paid in full no later than 7 days before the event begins.

Please note that only participants who have paid in full will be admitted or receive access credentials. Credit card or PayPal payment is required if you are registering after the invoice deadline or prefer immediate confirmation. Once processed, a receipt marked "Paid" will be emailed to you for your records.

What is the Privacy Policy, and how is my data being protected?

Our Privacy Policy details how we collect, use, and protect your data. You can find it at https://www.infoq.com/privacy-policy.

Can I register as a freelancer or self-employed professional?

Yes. The program is open to freelancers and the self-employed. When registering, simply enter your trading name or "Independent" in the Company Details section.

Who is behind the InfoQ Certified AI Security & Governance Program?

The program is a collaborative initiative between InfoQ and QCon, both of which are practitioner-driven brands owned by C4Media Inc.

What is InfoQ?

InfoQ is a practitioner-driven community news site focused on facilitating the spread of knowledge and innovation in professional software development.

Are scholarships or complimentary seats available?

We do not offer scholarships or complimentary seats for the InfoQ Certification at this time. Should this change for future cohorts, we will announce it via our official channels.

What is the code of conduct?

We are dedicated to providing a safe and inclusive experience for everyone. Our Code of Conduct can be found at https://certification.qconferences.com/code-conduct.

How will I gain access to the online cohort sessions?

Participants who registered for the online cohorts will receive an email with detailed instructions on how to join the sessions during the week prior to the start of the cohort.

What are the technical requirements for participation?

To ensure an optimal experience, you will need:

  • A stable internet connection: High-speed access for video conferencing.
  • Zoom: The latest version of the Zoom desktop client.
  • Slack: Access to our private workspace for peer networking and coordination.
  • A laptop or desktop: While mobile devices are supported, a computer is highly recommended for collaborative work and session participation.
How is the program structured?

The program consists of five live sessions held over five weeks, each lasting four hours, plus weekly assignments and a group Capstone project.

What is the weekly time commitment?

Each weekly session is a 4-hour live workshop. This is a significant time investment because we are not just watching talks.

We are undertaking the challenging, practical work of applying these frameworks to real-world challenges alongside your senior peer group.

Is this just another course?

This programme assumes you already have deep technical expertise. Each week is structured around a real decision you are working on, not a case study. The focus is the skills that senior engineers find hardest to get from inside their own organisation: pressure-testing decisions with peers, articulating tradeoffs to stakeholders, and making the kind of decisions that are difficult to reverse.

Why a cohort instead of just watching the talks?

Some of the most valuable learning happens in peer discussion. Hearing how others think through similar challenges can be just as useful as the session content itself.

Learning with a peer group gives you different perspectives, helps you build confidence, and makes it easier to apply what you learn in your own work. That's why this program is designed around a confidential peer group, live exercises, expert facilitation, and group-based project assignments, and not just self-paced study.

This cohort gives you the confidential peer group and an experienced facilitator to do that work, and you'll earn the InfoQ Certified AI Security & Governance Program certification as a result.

What is the Capstone project, and where can I see examples?

The Capstone project is the final milestone where your working group co-authors a 2,000–3,000-word professional technical article — a documented risk assessment and mitigation report for an AI product architecture. Examples can be found on InfoQ.com.

What are the criteria for receiving the certification?

Certification is awarded based on two factors: consistent attendance and active participation in the live sessions, and the successful completion of the group Capstone project.

Who is this cohort for?

This is for software engineers, AI/ML platform engineers, privacy and security engineers, software architects, and technical leaders with at least 5 years of experience who are securing and governing AI systems in regulated industries.

How do I earn the certification?

Certification is awarded based on active participation in the cohort and completion of the capstone assessment in Week 5.

InfoQ online cohorts

AI Security & Governance

Securing and governing AI systems in production. Sensitive data handling, threat modeling and red teaming, controls and sandboxes, observability and evals, governance and auditing

Download Syllabus

Date: Dates to be announced

More Cohorts coming soon

We're adding more cohorts over the coming weeks. To be the first to know when they are live, sign up for our email notifications.

Get email updates

Be the first to know when a cohort opens.

Join the waitlist to get early access and updates on the InfoQ Online Certification Programs and our conferences. Be the first to know when a cohort opens.

We'll only email you with relevant updates about this program and our conferences.

Experience