Documentation
Everything you need to get productive in AISEC, from your first tenant setup through policy generation, evidence handling, and audit-ready reporting.
3
Frameworks: ISO 27001 · SOC 2 · GDPR
7
Core platform workflows
< 2 min
Typical first policy draft
Start Here
Build confidence fast
Use these guides to understand the core product shape before you move into day-to-day operations.
Platform overview
Learn how AISEC connects policies, risks, controls, evidence, monitoring, and AI assistance into one operating model.
- Shared tenant and role model across all services
- Clear separation between authoring, review, approval, and reporting
- Designed for security teams, auditors, and compliance leads
First-week setup
Get your workspace ready by setting your organisation profile, inviting users, and deciding which workflows to operationalise first.
- Set tenant branding and team structure
- Choose your initial policy and risk priorities
- Prepare evidence sources before external audit work starts
Core Workflows
Run the platform end to end
These areas map closely to how the application is organised today, so teams can move between product and docs without mental translation.
Policy lifecycle
Draft, generate, review, approve, and version policies with explicit ownership and traceability.
- AI-assisted generation for policy drafts
- Manual creation and editing when needed
- Approval and submit-for-review states for governance
Risk management
Track likelihood, impact, treatment, and ownership in a working risk register instead of a spreadsheet archive.
- Summary view for register health
- Consistent risk-level filtering and pagination
- Control suggestions available from the AI layer
Evidence operations
Collect, upload, classify, review, and link artefacts to the controls that support your audit narrative.
- Manual uploads plus integration-driven collection
- Control mapping and review actions
- Retention and expiry tracking for recurring evidence
Support
Use the right reference at the right time
The docs hub points to the deeper pages you will actually reach for when building or operating the platform.
API and integration docs
Review shared headers, service boundaries, async job flows, streaming chat, and evidence collection triggers.
- JWT plus tenant and user context headers
- REST plus SSE patterns across the stack
- Per-service endpoints and local ports
ISO 27001 planning guide
Turn platform features into a real certification path with scope, SoA, evidence, internal audit, and management review milestones.
- What to prepare before an audit starts
- How to structure evidence against control themes
- Common readiness gaps to avoid
Integrations guide
Connect AISEC to AWS, Azure, Okta, GitHub, CrowdStrike, Datadog, Jira, Google Workspace, and Microsoft 365 to automate evidence collection.
- Step-by-step credential setup for each connector
- Evidence types collected and control mappings
- Troubleshooting and permission requirements
Related
Keep exploring
Need a clearer starting point for your team?
Begin with the product overview if you are orienting stakeholders, or jump into the implementation handbook if you are already configuring the workspace.