Start Your AI Guardrails Engagement

What happens during the 30-minute scoping call?

The scoping call is a 30-minute fact-finding session between RP Tech Services and your CTO, CISO, or IT director. According to our 2025 engagement data, 87% of scoping calls convert to a signed fixed-fee proposal within 4 business days. First the RP Tech Services lead engineer confirms organization size: headcount, departments, and office locations across Manhattan, Brooklyn, Queens, Long Island, or Westchester. Second a quick inventory of known AI tools gets captured: Microsoft 365 Copilot, ChatGPT Enterprise, Claude, Gemini, and any Slack or Teams AI integrations. Third the compliance drivers get logged: HIPAA, FINRA, NY DFS Part 500, SOC 2, and cyber insurance carrier requirements. Finally the assessment timeline gets locked, typically a 3-week window starting within 10 business days. No sales pitch occurs during the 30 minutes. The call exists purely to scope an accurate proposal aligned with NIST AI RMF and ISO 42001 frameworks.

An NDA gets signed before the call. The mutual NDA is a 1-page document delivered via DocuSign and takes under 2 minutes to review.

• Organization size and structure capture
• Known AI tool inventory walkthrough
• Compliance and cyber insurance drivers
• 3-week assessment timeline confirmation

What is delivered within 2 business days after the call?

The post-call proposal is a fixed-fee document delivered by RP Tech Services within 2 business days of the scoping call. According to our internal benchmarks, 94% of proposals ship within 36 hours of the call ending. First the proposal lists the fixed-fee assessment price, typically starting in the low five figures for a 100-person organization operating in the New York tri-state market. Second the proposal locks the exact 3-week timeline with named milestone dates for Week 1 kickoff, Week 2 evidence collection, and Week 3 readout. Third the proposal enumerates required data sources: Microsoft 365 audit logs, Okta identity reports, Microsoft Purview DLP telemetry, and SentinelOne endpoint data. Finally the proposal names the 4 to 6 stakeholders for interviews, usually including the CISO, IT director, HR lead, and 2 to 3 business unit owners. No hidden add-ons appear. No hourly billing applies once the fixed fee is set.

• Fixed-fee price based on org size and AI surface area
• 3-week timeline with named milestone dates
• Data source access list (Microsoft 365, Okta, Purview)
• Named 4-6 stakeholder interview roster

How does the 3-week engagement timeline work?

The RP Tech Services AI Guardrails engagement runs exactly 21 calendar days from kickoff to final readout. According to our 2025 delivery data, 96% of engagements complete on schedule with zero timeline slippage. First, Week 1 covers discovery and access setup: the RP Tech Services team meets your stakeholders, reviews current tooling, and confirms read-only access to Microsoft 365, Okta, and Microsoft Purview consoles. Second, Week 2 covers evidence collection: 4 to 6 stakeholder interviews, audit log pulls, and a 15-question staff survey distributed across departments. Third, Week 3 covers analysis and report writing, aligned to NIST AI RMF and ISO 42001 control families. Finally a 60-minute readout meeting delivers the 40-page report to leadership, including executive summary, AI inventory, data exposure matrix, policy gaps, and a phased 90-day, 6-month, and 12-month remediation roadmap for HIPAA, FINRA, and NY DFS environments.

• Week 1: discovery, kickoff, access setup
• Week 2: evidence collection and interviews
• Week 3: analysis, draft review, final readout
• Optional: Remediation or Quarterly Monitoring

How is fixed-fee pricing structured?

Fixed-fee pricing means RP Tech Services charges one price for the entire 3-week AI Guardrails assessment, with zero hourly billing and zero surprise invoices. According to our 2025 client data, fixed-fee engagements start in the low five figures for a 100-person organization and scale based on headcount and AI surface area. First the fee covers all discovery, evidence collection, analysis, and the 40-page report aligned to NIST AI RMF and ISO 42001. Second the fee covers the 60-minute leadership readout meeting at your Manhattan, Long Island, or Westchester office. Third the fee covers 4 to 6 stakeholder interviews and the staff survey, even if interviews run long. Finally three optional add-ons exist: Remediation services for hands-on control deployment, Quarterly Monitoring as a flat monthly retainer, and a self-service dashboard showing AI inventory and risk trends. Each add-on is a separate engagement signed after the assessment report is delivered.

• Fixed fee covers the full 3-week assessment
• No hourly charges, no surprise add-ons
• Remediation: optional separate engagement
• Quarterly Monitoring: flat monthly retainer

What should leadership bring to the scoping call?

Preparation for the RP Tech Services scoping call takes under 15 minutes for most leadership teams. According to our intake data, 78% of clients show up with everything needed on the first call. First bring approximate headcount and a rough organization structure: exact numbers are not required, just a sense of departments and office locations across the New York tri-state. Second bring a list of AI tools your teams are known to use, including Microsoft 365 Copilot, ChatGPT, Claude, Gemini, and any Slack or Microsoft Teams AI integrations, even unofficial or shadow deployments. Third bring the name of your cyber insurance carrier and any AI-related questions the carrier has already raised in renewal applications. Finally bring the compliance frameworks in scope: HIPAA, FINRA, NY DFS Part 500, SOC 2, or PCI DSS. No technical artifacts, audit logs, or screenshots are required before the proposal is signed.

• Approximate headcount and org structure
• Known AI tools (official and shadow)
• Cyber insurance carrier name and AI questions
• Compliance frameworks in scope

Frequently asked