Use of Agentic AI in Compliance – LA CTO Forum Meeting

Discover how Agentic AI is transforming compliance from a reactive, manual function into a proactive, intelligent discipline. Unlike traditional AI that responds to prompts, Agentic AI systems autonomously monitor regulations, collect evidence, detect gaps, and take corrective action — continuously and at scale.

In this panel, we’ll go beyond the hype and into the trenches of real-world AI-powered compliance. Our panelists bring hands-on experience deploying agentic systems across SOC 2, HIPAA, GDPR, and PCI-DSS frameworks. We’ll explore what works, what doesn’t, and how organizations of all sizes can leverage AI agents to stay ahead of the regulatory curve.

We’ll cap it off with a live demo of an AI Compliance Agent that ingests regulatory frameworks, maps organizational controls, flags gaps, and generates audit-ready documentation in real time.

Agenda

1. Introduction: What Is Agentic AI and Why Compliance?
2. From Chatbots to Agents — How AI Compliance Has Evolved
3. Tuning AI Agents for Compliance (Prompt Engineering, RAG, Fine-Tuning, Guardrails)
4. Tools & Platforms (Amazon Bedrock, Azure OpenAI, LangChain, Custom Agents)
5. Deep Dive: Live Demo — AI Compliance Monitoring Agent
6. Panel Discussion: Risks, Governance & the Human-in-the-Loop
7. Q&A

What Will You Learn

• What is Agentic AI and how it differs from standard GenAI and LLMs
• Agentic AI vs. LLM vs. GPT vs. Foundation Models — demystifying the terms
• Why compliance is the ideal use case for AI agents
• Core techniques: Prompt Engineering, RAG, Fine-Tuning, Stateful Conversations, Persistent Context, Custom Instructions
• Real-world use cases: automated evidence collection, policy gap analysis, regulatory change monitoring, continuous control monitoring
• Tools for building compliance agents (Bedrock, SageMaker, Azure OpenAI, LangChain, MCP)
• Managing hallucination risk and building auditor trust
• The evolving role of compliance professionals in an AI-augmented world

Key Discussion Questions

1. What was the first compliance task you automated with AI, and what surprised you?
2. How do you handle hallucination risk when AI is making compliance decisions?
3. What’s your approach to getting auditors comfortable with AI-generated evidence?
4. For organizations just starting out, what’s the single highest-impact use case?
5. How do you govern the AI tools themselves to ensure they meet compliance standards?

Panelists

Selin Kocalar

Selin Kocalar is the co-founder and COO of Delve, the AI-native compliance platform that helps 1,500+ of the fastest-growing companies get and stay compliant. Delve helps teams eliminate hundreds of hours of screenshotting, filling out spreadsheets, fighting with half-working API integrations, and manually reviewing evidence. Delve’s AI agents connect across the entire tech stack, pull evidence, and then interpret that evidence using AI, cutting down more than 90% of the manual work that normally goes into getting and staying compliant. Delve has scaled to 8-figures in revenue profitably and recently raised a $32M Series A at a $300M valuation led by Insight Partners. They’ve helped customers close millions in revenue, including deals with F500s, financial institutions, and federal agencies.

Travis Good

Travis Good, MD, CIPM, RP is a Chief Information Security Officer focused on supporting modern companies with security and compliance. He is a Co-Founder of Workstreet, where he helps companies navigate complex security and regulatory challenges with clarity and real-world execution. Previously, he built the first HITRUST-certified public cloud platform-as-a-service and authored the most popular open source compliance policy repo on GitHub