AI governance and risk
Turning frameworks like NIST AI RMF and ISO/IEC 42001 into controls teams can actually follow.
Cybersecurity GRC + AI governance
Noah Airmet
I’m building toward work that helps organizations use AI with confidence, technical literacy, and real accountability.
Cybersecurity student at BYU and junior developer at Simplicity Group, focused on the places where AI-assisted software development, risk, compliance, and policy meet.
About
I like technical work best when it has consequences beyond the screen: who can trust a system, what risk a team is accepting, and whether an organization can explain the choices its tools make possible.
At Simplicity Group, I build production web applications with AI-assisted tools in the loop. That hands-on view shapes how I think about governance. The strongest policies will be written by people who understand the workflow, the code review pressure, the vendor questions, and the data exposure risks from the inside.
Focus and credentials
The through-line is practical judgment: helping teams move quickly without pretending uncertainty, security, and accountability can be wished away.
Focus
Cybersecurity GRC
Risk management, compliance, policy communication, and security habits that make systems trustworthy.
AI-assisted development
Review quality, data handling, dependency risk, authorship, and the gap between policy and daily engineering practice.
Credentials
-
Junior Developer, Simplicity Group
Production web applications with AI-assisted development tools in the workflow.
-
B.S. Cybersecurity, BYU
Network security, web security, cybersecurity ethics, and core security concepts.
-
Certifications in progress
Preparing across AI governance and foundational cybersecurity practice.