Recognising the growing risks linked to artificial intelligence adoption, cyber security specialist Jason Holloway has unveiled QL Security, a new consultancy dedicated to helping organisations strengthen oversight, governance and compliance around AI technologies.
Officially launched in February, QL Security was established to support businesses as they navigate the rapidly changing AI landscape. The company provides specialist services focused on AI governance, risk management and security, addressing increasing concerns over regulatory compliance, transparency and data protection.
Holloway, who brings more than 30 years of experience in cyber and information security, said the business was created after identifying a growing gap between AI innovation and the governance measures needed to control it effectively.
The launch follows a surge in AI adoption among UK organisations, many of which are embedding AI into business processes without comprehensive frameworks to manage the associated risks and responsibilities.
In addition to leading QL Security, Holloway founded Bridgeway Security Solutions, one of the UK’s established cyber security firms, and remains involved as a non-executive director.
QL Security says many organisations have already embraced AI technologies but lack the ability to clearly demonstrate responsible use, regulatory compliance or transparency in how automated systems operate.
According to Holloway, the speed at which AI has entered the workplace has outpaced many organisations’ ability to implement effective governance and oversight mechanisms.
“AI has rapidly become part of everyday business activity and is now being used by millions of people across the UK,” he said. “However, governance and oversight have not developed at the same speed, which creates significant operational and security concerns for organisations.”
Unlike providers focused on traditional cyber defence infrastructure, QL Security concentrates specifically on the governance and security implications created by AI. Its services are designed to enhance existing security programmes rather than replace them.
The company operates through a three-stage model consisting of assessment, implementation and assurance. This approach helps organisations understand their current AI usage, identify areas of concern and develop governance controls that align with evolving regulatory expectations.
Services include evaluating AI-related risks, reviewing governance arrangements and helping organisations evidence responsible AI deployment, transparency and compliance in automated decision-making environments.
QL Security states that explainability, fairness and transparency are fundamental principles underpinning its advisory framework and approach to responsible AI governance.
Holloway said many businesses remain unaware of the potential exposure created by unmanaged AI systems, particularly in relation to data security, accountability and organisational oversight.
“AI represents one of the most significant technological developments of this century, but it also introduces new forms of risk if organisations fail to manage it correctly,” he said. “Many businesses are already exposed to vulnerabilities or compliance issues they may not yet fully understand.”
The company believes AI governance demands specialist expertise due to the pace of technological change and has positioned its services as complementary to existing cyber security providers.
Holloway noted that many traditional security firms face challenges adapting established processes and infrastructures to accommodate the unique governance demands created by AI technologies.
“It is difficult for many traditional providers to move quickly in this space because AI presents a very different set of governance and operational challenges,” he said. “Our focus is entirely dedicated to helping organisations understand and manage those specific risks.”
Industry experts have repeatedly highlighted the widening gap between AI adoption and governance readiness across both public and private sectors, with increased regulatory scrutiny expected in the years ahead.
QL Security intends to work with organisations ranging from those beginning to explore AI opportunities through to businesses already relying on AI within operational workflows.
Companies already deploying AI, or considering future implementation, are encouraged to engage with specialist AI governance expertise to ensure risks are understood and managed effectively.
