AI Governance Best Practices: ISO 42001, ISO 27001, NIST AI RMF + EU AI Act
10 AI governance best practices mapped to ISO/IEC 42001:2023, ISO/IEC 27001:2022, NIST AI RMF 1.0, and EU AI Act requirements with auditor lens, sector applications, and implementation guidance from a PECB-certified AI governance practitioner.
AI governance framework with ISO/IEC 42001 and ISO/IEC 27001 ensuring ethical, secure, and compliant artificial intelligence adoption.
The most effective AI governance programmes combine four interlocking elements: an AI management system aligned to ISO/IEC 42001:2023, information security controls from ISO/IEC 27001:2022, risk-based practices drawn from the NIST AI Risk Management Framework, and compliance readiness for binding regulations such as the EU AI Act. Organisations that implement only one of these in isolation consistently miss gaps that auditors and regulators find — because AI risk is simultaneously a governance, security, technical, and legal challenge.
I have spent more than two decades in offensive security and enterprise risk, and the past ten years specifically in AI governance and management systems. What I see consistently across sectors — financial services, healthcare, government, technology — is that the organisations failing AI audits are not failing because of bad intentions. They are failing because their governance is fragmented: ethics principles documented in one place, security controls managed in another, AI risk assessments conducted by yet another team, and nobody has mapped how these connect. This guide consolidates what actually works.
The ten best practices below are drawn from the normative requirements of ISO/IEC 42001:2023, the control structure of ISO/IEC 27001:2022, the four core functions of NIST AI RMF 1.0, and the risk classification logic of the EU AI Act. Each practice is paired with what auditors and regulators look for in practice — not just what the standards say in theory.
Key Takeaways
4
Interlocking frameworks cover AI governance end-to-end: ISO 42001, ISO 27001, NIST AI RMF, and the EU AI Act
2023
ISO/IEC 42001:2023 became the world's first international AI management system standard, certifiable by accredited bodies
72
NIST AI RMF 1.0 contains 72 subcategories across its four core functions: GOVERN, MAP, MEASURE, and MANAGE
Aug 2026
EU AI Act high-risk obligations become enforceable for most providers and deployers from August 2026
The Framework Landscape: ISO 42001, ISO 27001, NIST AI RMF, and the EU AI Act
Each major AI governance framework addresses a distinct layer of risk — and no single framework covers all four layers on its own. Understanding what each framework is designed to do, and what it deliberately does not do, is the starting point for building governance that holds up under audit and regulatory scrutiny.
ISO/IEC 42001:2023 — AI Management System Standard+
ISO/IEC 42001:2023 is the international standard for an Artificial Intelligence Management System (AIMS) — it provides the governance architecture for managing AI responsibly across the full system lifecycle, from design through decommissioning.
What ISO 42001 covers
The standard uses the familiar ISO high-level structure (Clauses 4–10), requiring organisations to establish context, define leadership accountability, plan for AI-specific risks and opportunities, operate the management system, evaluate performance, and drive continual improvement. Annex A provides 38 controls across 9 control domains including AI policy, internal organisation, AI risk management, data for AI systems, AI system lifecycle, and human oversight.
Annex B provides normative guidance on AI impact assessment — a structured process for evaluating the consequences of AI systems on individuals, groups, and society. This is distinct from a cybersecurity risk assessment; it examines outcomes of AI decisions themselves.
What ISO 42001 does not cover
ISO 42001 does not replace information security management. The standard explicitly acknowledges that AI systems are built on data and that data security is a precondition for trustworthy AI — but the security controls themselves live in ISO 27001. ISO 42001 also does not specify legal compliance obligations; that is the role of regulations such as the EU AI Act. It governs the management system, not the regulatory position.
Standard Reference
ISO/IEC 42001:2023 Clause 6.1.2 defines AI risk assessment as a process that must consider the organisation's context, the purpose and intended use of AI systems, potential negative impacts on individuals and society, and the adequacy of existing controls — all of which must be documented. This is the auditable spine of the entire management system.
ISO/IEC 27001:2022 — Information Security Foundation for AI+
ISO/IEC 27001:2022 is the international standard for an Information Security Management System (ISMS) — it governs how organisations protect the data on which AI systems depend, covering confidentiality, integrity, and availability across 93 controls in 4 organisational themes.
Why ISO 27001 is foundational to AI governance
AI systems are, at their core, data processing systems. Compromised training data produces compromised models. Insecure inference endpoints expose proprietary outputs. Uncontrolled access to model weights creates intellectual property and liability risks. ISO 27001's Annex A controls — particularly A.8 (Technological controls covering data masking, data leakage prevention, monitoring activities, and configuration management) — apply directly to the infrastructure layer beneath every AI system in production.
ISO 27001:2022 updates relevant to AI
The 2022 revision added 11 new controls that map directly to AI deployment concerns: threat intelligence (A.5.7), information security for use of cloud services (A.5.23), ICT readiness for business continuity (A.5.30), web filtering (A.8.23), secure coding (A.8.28), and data masking (A.8.11). Organisations still operating on the 2013 version of the standard are missing controls designed for exactly the kinds of threats AI systems introduce.
NIST AI RMF 1.0 — Operational Risk Management+
The NIST AI Risk Management Framework (AI RMF 1.0), published by the US National Institute of Standards and Technology in January 2023, organises AI risk management around four core functions — GOVERN, MAP, MEASURE, and MANAGE — covering 72 subcategories of practice for organisations designing, developing, deploying, and using AI systems.
The four core functions explained
GOVERN is the only function that spans the entire organisation — it establishes accountability, defines policies, cultivates an AI risk culture, and makes MAP, MEASURE, and MANAGE repeatable. Without GOVERN, the other three functions are ad hoc exercises, not a management system.
MAP is the scoping function. It frames the context in which a specific AI system will operate, identifies stakeholders and potential impacts, and produces the risk inventory that feeds MEASURE and MANAGE. MAP outputs must be revisited whenever the system, context, or user base changes.
MEASURE analyses and tracks identified risks using qualitative and quantitative methods — including fairness and bias evaluation (MEASURE 2.11), testing and evaluation of AI systems (MEASURE 2.5), and performance monitoring against defined metrics. This is where technical AI safety work connects to governance.
MANAGE implements the risk treatment decisions: residual risk plans, incident response, decommissioning procedures, and post-deployment monitoring. MANAGE 4.1 specifically requires appeal and override mechanisms and documented change management — two areas most AI deployments get wrong.
NIST AI RMF vs. ISO 42001: complementary, not competing
NIST AI RMF is voluntary US guidance; ISO 42001 is an internationally certifiable standard. The two frameworks are designed to be complementary. Many organisations use NIST AI RMF as their operational risk management model — providing the detailed subcategory actions — inside an ISO 42001 AI Management System, which provides the governance architecture and audit trail. In July 2024, NIST also published the Generative AI Profile (NIST AI 600-1), which maps GenAI-specific risks including confabulation, data privacy, and harmful bias onto the four core functions.
EU AI Act — Binding Regulatory Obligations+
The EU AI Act entered into force in August 2024 and introduces legally binding obligations based on a four-tier risk classification: unacceptable risk (prohibited), high risk (extensive compliance obligations), limited risk (transparency requirements), and minimal risk (no specific obligations).
Enforcement timeline
Prohibited AI systems were banned from February 2025. GPAI model obligations took effect in August 2025. High-risk AI system obligations for providers and deployers become fully enforceable from August 2026. Organisations procuring or deploying AI in EU markets — or offering AI systems to EU users from outside the EU — need to be compliance-ready now, not in 2026.
How ISO 42001 connects to EU AI Act compliance
ISO 42001 certification is not an automatic EU AI Act compliance certificate — but the two align closely. ISO 42001's AI impact assessment requirements (Annex B), human oversight controls (A.9), and post-deployment monitoring requirements (Clause 9.1) directly address the technical documentation, human oversight, accuracy, and transparency obligations in Articles 9–15 of the EU AI Act for high-risk systems. Organisations implementing ISO 42001 are building the governance infrastructure that EU AI Act compliance requires.
Critical Gap
The EU AI Act imposes fines of up to €35 million or 7% of global annual turnover for violations involving prohibited AI practices. High-risk AI violations attract fines up to €15 million or 3% of turnover. These penalties apply to any organisation — including non-EU companies — whose AI systems affect EU individuals.
IMPLEMENT ISO 42001 WITH CONFIDENCE
The PECB ISO/IEC 42001 Lead Implementer certification teaches you to design, implement, and manage an AIMS from gap assessment through certification audit.
Self-study from $799 or eLearning from $899 — includes a 1-on-1 session with Shenoy Sandeep. Live online and classroom delivery available on request. Delivered in English, Arabic, French, and more.
Each practice below maps to specific requirements across ISO 42001, ISO 27001, NIST AI RMF, and the EU AI Act — so governance work is not duplicated across frameworks, but consolidated. Implementation complexity varies; the practices are ordered from foundational (start here) to operational (build on the foundation).
1. Establish an AI Policy with Management Commitment+
ISO 42001 Clause 5.2 and Annex A control A.2.2 require a formal AI policy — management-approved, communicated to all relevant personnel, informed by business strategy, legal requirements, and risk environment, and subject to defined review triggers. This is not a mission statement; it is a governance document that defines the organisation's position on responsible AI and sets the authority structure for AIMS decisions.
What the policy must address
The AI policy must be aligned with other organisational policies — quality, security, privacy, ethics — under A.2.3. Where conflicts exist, the AI policy must either resolve them or document how they will be managed. A.2.4 requires a designated management role to own the review process, with reviews triggered by changes in legal requirements, business context, or technical environment — not just calendar dates.
In NIST AI RMF terms, the AI policy is the output of GOVERN 1.2 (integrating trustworthiness characteristics into organisational policies) and GOVERN 1.4 (establishing risk management outcomes through transparent policies). Without a formal policy, the GOVERN function is incomplete and all downstream MAP, MEASURE, and MANAGE activities lack authoritative direction.
Auditor Lens
Auditors check three things about the AI policy: (1) that it is actually signed by top management, not delegated to a function head; (2) that affected personnel can articulate what it requires of them; (3) that there is evidence of at least one review since the original approval. Policies that have never been reviewed signal that the management system is paper-only.
2. Conduct AI Risk Assessment and AI Impact Assessment+
ISO 42001 distinguishes between two separate assessment processes: AI risk assessment (Clause 6.1.2), which evaluates risks to the organisation from AI systems, and AI impact assessment (Annex B), which evaluates the consequences of AI system outputs on individuals, groups, and society. Most organisations conflate these or implement only the first; the EU AI Act requires both for high-risk systems.
AI risk assessment vs. AI impact assessment
The AI risk assessment asks: what can go wrong with this AI system, and what is the likelihood and impact on the organisation? It feeds the risk treatment plan and the Statement of Applicability (SoA) for Annex A controls. This process should be integrated with the information security risk assessment required under ISO 27001 Clause 6.1.2 to avoid duplication.
The AI impact assessment asks: what are the intended and unintended consequences of this AI system's outputs on the people it affects? It considers bias, fairness, dignity, rights, and systemic effects — and must be revisited whenever the AI system is significantly updated or deployed in a new context. This maps to NIST AI RMF MAP 5.1 (documenting likelihood and magnitude of impacts) and MAP 5.2 (identifying practices that address impacts).
Practitioner Note
In my experience, the AI impact assessment is the assessment organisations are least prepared for. Teams with strong risk management culture can produce a credible AI risk assessment relatively quickly. The AI impact assessment requires engaging with affected communities, examining distributional effects on protected characteristics, and documenting decisions about acceptable harm trade-offs — none of which fit neatly into existing risk registers.
3. Define Roles, Responsibilities, and Accountability Structures+
ISO 42001 Clause 5.3 requires top management to assign and communicate specific authorities and responsibilities for AI governance — not general accountability, but named roles with defined remits documented in the management system. NIST AI RMF GOVERN 2.1 requires that roles, responsibilities, and lines of communication for mapping, measuring, and managing AI risks are clearly documented and understood across the organisation.
What good accountability structure looks like
Effective AI governance assigns accountability at three levels: strategic (executive or board-level accountability for AI risk appetite and policy), operational (cross-functional AI governance committee or AI ethics board with authority to approve and reject AI system deployments), and technical (named owners for each AI system in production, responsible for monitoring and incident reporting). NIST AI RMF GOVERN 2.2 adds that personnel must receive AI risk management training enabling them to perform their duties consistently with related policies.
For EU AI Act compliance, Article 26 requires deployers of high-risk AI systems to designate a human oversight role with the authority, knowledge, and capacity to intervene. This is a specific, named individual — not a team, not a function.
4. Implement Meaningful Human Oversight+
ISO 42001 Annex A control A.9 (Human oversight of AI systems) requires organisations to assess whether automated AI decisions are appropriate for each use case, establish mechanisms for human review of AI outputs, and ensure human reviewers have the authority and capability to override AI decisions. Rubber-stamp oversight — where humans see outputs but cannot meaningfully challenge them — does not satisfy this control.
What meaningful oversight requires in practice
Meaningful human oversight has four components: human reviewers must have actual authority to reverse AI decisions (not just flag them for escalation); they must have the information needed to make an informed judgment (not just the AI output, but the inputs and the model's confidence level); they must have the time to review properly (AI systems that generate decisions faster than humans can assess them undermine oversight by design); and there must be a documented channel for personnel to raise concerns about AI output quality.
The EU AI Act Articles 14 and 26 make this explicit for high-risk AI systems: oversight measures must be specified in the technical documentation, and deployers must ensure human oversight is operationally possible — not merely theoretically available. NIST AI RMF MANAGE 4.1 specifies that appeal and override mechanisms must be documented post-deployment.
AUDIT AI MANAGEMENT SYSTEMS TO ISO 42001
The PECB ISO/IEC 42001 Lead Auditor certification qualifies you to plan, lead, and report on AIMS audits — covering risk assessment, controls verification, and nonconformity management.
Self-study from $799 or eLearning from $899 — includes a 1-on-1 session with Shenoy Sandeep. Live online training available on request. Delivered in English, Arabic, French, Spanish, and more.
ISO 42001 Annex A section A.7 (Data for AI systems) and ISO 27001 Annex A section A.8 (Technological controls) together govern the data layer of AI systems — covering data sourcing, quality, labelling, provenance, access controls, and retention. Neither standard alone covers both dimensions; effective AI data governance requires both.
ISO 42001 data controls: quality and provenance
A.7 requires organisations to document how data for AI systems is acquired, processed, and validated for quality and representativeness. This includes training data, validation data, and test data. Where data is sourced from third parties, the provenance and any limitations must be documented — auditors check whether organisations know where their training data came from and whether they assessed it for bias before use.
ISO 27001 data controls: security and access
ISO 27001 A.8 controls address who can access training datasets, how they are stored and encrypted, how access is logged, and how data masking is applied when training data contains personal information. A.8.11 (Data masking) and A.8.12 (Data leakage prevention) are particularly relevant to AI systems that process or are trained on personal data under GDPR, PDPL (Saudi Arabia), UAE Federal Decree-Law No. 45/2021, or equivalent data protection legislation in the jurisdiction of deployment.
6. Ensure AI Transparency and Explainability+
ISO 42001 Annex A control A.6.2 requires that the intended purpose, capabilities, and limitations of AI systems are documented and communicated to affected parties — this is the standard's foundational transparency requirement, and it extends across the AI system lifecycle.
Transparency as an architecture decision
Explainability is not a feature added after development — it is an architecture decision made at design time. Choosing a model type that is inherently interpretable (decision trees, linear models) over one that is more accurate but opaque (deep neural networks) is a governance trade-off that must be documented. For high-risk applications — credit scoring, medical diagnosis support, judicial risk assessment — the EU AI Act and ISO 42001 together require that this trade-off be explicitly justified, not simply assumed.
NIST AI RMF MEASURE 2.6 specifically addresses explainability and interpretability of AI systems, requiring that explanations are accurate, meaningful to the intended audience, and do not create false confidence in the system's reliability. Different audiences need different explanations: technical documentation for auditors, meaningful outcome explanations for individuals whose data is being processed, and summary disclosures for the public where required by regulation.
7. Embed Bias Detection and Fairness Assessment+
NIST AI RMF MEASURE 2.11 explicitly requires evaluation of AI systems for bias and fairness, including quantitative and qualitative testing across protected demographic groups — this is a mandatory measurement activity, not an optional ethical consideration.
Bias sources across the AI lifecycle
Bias enters AI systems at multiple points: training data that underrepresents certain populations, labelling processes that reflect human prejudice, model architectures that weight certain features over others, deployment contexts that differ from the training distribution, and feedback loops that amplify existing disparities. ISO 42001 Annex B's AI impact assessment process requires organisations to consider how their AI systems will affect individuals across different demographic groups — which requires examining bias at each of these entry points, not just in the final model output.
For high-risk AI applications under the EU AI Act — including recruitment, credit scoring, education, and law enforcement — bias testing must be documented in the technical file and repeated whenever the model is retrained on new data. Governance frameworks that conduct bias testing once at initial deployment and never repeat it do not satisfy either the EU AI Act or ISO 42001 requirements.
8. Govern the AI Supply Chain and Third-Party Providers+
ISO 42001 Annex A control A.10 addresses the AI supply chain — requiring organisations to assess and document the AI systems, components, and services they acquire from external providers, and to ensure that supplier governance obligations are contractually embedded.
What AI supply chain governance covers
Most organisations deploying AI today are not building models from scratch — they are using foundation models, third-party APIs, or AI-embedded SaaS products. Each of these creates supply chain risk: the provider may not disclose training data provenance, the model may behave differently in the deployment context than in the provider's testing environment, and the provider's incident notification obligations may not align with the deployer's regulatory requirements.
ISO 27001 A.5.19 through A.5.22 (supplier security controls) apply directly to AI vendors. Contracts with AI providers should address: data processing agreements, model change notification obligations, incident disclosure timelines, audit rights, and what happens to organisation data if the provider discontinues the service or is acquired. The EU AI Act Article 25 specifies that where a provider does not cooperate, the deployer bears the compliance obligation — making due diligence of AI providers a legal necessity, not a procurement preference.
9. Monitor AI System Performance and Conduct Regular Audits+
ISO 42001 Clause 9.1 requires organisations to determine what needs to be monitored and measured in the AIMS, including AI system performance, and to evaluate results against defined objectives — this is not a recommendation; it is a mandatory clause with documented evidence requirements.
What monitoring and audit must cover
Effective monitoring covers three dimensions simultaneously. Technical performance monitoring tracks model accuracy, precision, recall, and distributional shift — identifying when the model's inputs have changed enough that its outputs can no longer be trusted. Governance compliance monitoring verifies that control activities (bias reviews, human oversight processes, documentation updates) are actually being executed. Incident and near-miss monitoring captures AI system failures and unexpected outputs, feeding into the corrective action process required by ISO 42001 Clause 10.1.
NIST AI RMF MANAGE 4.1 requires post-deployment monitoring, appeal and override mechanisms, decommissioning procedures, and change management documentation. Internal audits under ISO 42001 Clause 9.2 must assess whether the AIMS conforms to the organisation's own requirements and to the standard — separate from the external certification audit conducted by an accredited certification body.
Auditor Lens
The most common audit finding in AI governance programmes is not missing controls — it is controls that exist on paper but have no evidence of execution. Monitoring plans without monitoring records. Audit schedules without audit reports. Human oversight processes without the logs showing that oversight actually happened. Every control requires evidence. If it is not documented, auditors treat it as not done.
10. Build AI Literacy Across the Organisation+
ISO 42001 Clause 7.2 and 7.3 require that personnel performing AI governance roles are competent (with documented evidence of education, training, or experience) and aware of the AI policy, their contribution to AIMS effectiveness, and the implications of non-conformity. NIST AI RMF GOVERN 2.2 adds the requirement that AI risk management training is delivered consistently with related policies and agreements.
Competence vs. awareness: a practical distinction
ISO 42001 uses two separate terms deliberately. Competence (Clause 7.2) applies to people who perform activities that affect AI system performance — data scientists, ML engineers, product managers owning AI systems, internal auditors. Competence must be demonstrated and documented, not assumed from job title. Awareness (Clause 7.3) applies to all personnel — they must understand what the AI policy requires of them and why it matters.
The EU AI Act introduces an explicit AI literacy obligation in Article 4, requiring providers and deployers to ensure their staff and others involved in AI system operation have sufficient AI literacy. This applies across the organisation — not just technical teams. Organisations pursuing ISO 42001 certification that simultaneously document their AI literacy programme satisfy both requirements with one set of evidence.
AI Governance Framework Comparison
The four major AI governance frameworks are designed to be layered, not chosen between. The table below shows what each framework covers, what it does not cover, its legal status, and how it connects to the others.
Framework
Primary Layer
Doesn't Cover
Legal Status
Connection to Others
ISO/IEC 42001:2023
AI management system governance architecture
Information security controls; legal compliance obligations
Voluntary; certifiable by accredited CB
Designed to integrate with ISO 27001; aligns with EU AI Act Articles 9–15; references NIST AI RMF as complementary
ISO/IEC 27001:2022
Information security management for data and infrastructure
AI-specific risks (bias, fairness, AI impact); lifecycle governance
Voluntary; certifiable; referenced in many regulations
Provides security foundation for ISO 42001; ISMS controls protect AI data and infrastructure; recognised in NIS2, DORA, UAE NESA
NIST AI RMF 1.0
Operational AI risk management (GOVERN, MAP, MEASURE, MANAGE)
Used as operational model inside ISO 42001 AIMS; GenAI Profile (AI 600-1) extends to LLM risks; referenced in US federal AI policy
EU AI Act
Legal obligations for AI providers and deployers in EU markets
How to implement governance (prescribes outcomes, not methods)
Binding EU law; extraterritorial scope
ISO 42001 compliance contributes evidence for Articles 9–15; references harmonised standards that will include ISO 42001
Sector-Specific AI Governance Applications
The regulatory and operational requirements of AI governance vary significantly by sector — and the frameworks that provide the strongest evidence base also differ depending on the sector's primary regulator. The following covers four sectors where AI governance failures carry the highest consequences.
Financial Services: Credit, Fraud, and Algorithmic Trading+
Financial services AI deployments for credit scoring, fraud detection, and trading are classified as high-risk under the EU AI Act, subject to Basel III model risk management guidance, and increasingly examined by prudential regulators globally for algorithmic fairness and explainability.
The governance imperative here is dual: protect customers from discriminatory AI outputs (bias in credit scoring based on protected characteristics) and protect the institution from model risk (model drift in fraud detection that creates unacceptable false positive rates). ISO 42001's AI impact assessment process is the appropriate tool for the first; NIST AI RMF MAP and MEASURE functions, combined with ISO 27001's information security controls for model infrastructure, address the second.
Explainability is not optional in lending: GDPR Article 22 and equivalent data protection frameworks require meaningful explanation of automated decisions that significantly affect individuals. An AI credit decision that cannot be explained in human-understandable terms is already non-compliant in most jurisdictions, regardless of whether the EU AI Act applies.
Healthcare: Diagnostic AI and Clinical Decision Support+
AI systems used in medical diagnosis, treatment recommendation, and clinical decision support are classified as high-risk under the EU AI Act and are subject to medical device regulation in most jurisdictions — creating a compliance stack that includes AIMS requirements, medical device software standards, and health data protection obligations.
Human oversight is non-negotiable in healthcare AI. A diagnostic AI may have accuracy rates that exceed average human performance — but this does not reduce the governance requirement; it makes it more precise. The clinician must understand what the AI is measuring, what it is not measuring, what its known failure modes are, and when to override. ISO 42001 Annex A control A.9 and EU AI Act Article 14 both require this to be documented in the system design, not left to individual clinician judgment.
Data quality is the primary failure mode in healthcare AI. Training data often underrepresents minority populations, older patients, and patients with comorbidities — producing models that perform accurately on majority groups and poorly where accuracy matters most. ISO 42001 A.7 and NIST AI RMF MAP 5.1 both require this distributional risk to be identified, assessed, and documented before deployment.
Government: Public Services and Law Enforcement AI+
Government AI deployments face the most stringent governance obligations of any sector: some categories are outright prohibited under the EU AI Act (real-time remote biometric identification in public spaces, social scoring by public authorities), while high-risk categories including law enforcement, border control, and benefits administration carry the full weight of high-risk AI Act obligations.
For government entities in the Gulf region, the UAE Artificial Intelligence Strategy 2031 and Saudi Arabia's National AI Strategy both set governance expectations that align with ISO 42001 principles. Entities in the GCC deploying AI in citizen-facing services are advised to build their governance on ISO 42001 now — it provides the documented, auditable management system that regional AI strategies and future regional AI regulation will increasingly require as evidence of responsible practice.
Accountability is the central governance challenge in government AI. When an algorithm denies a social benefit or flags a citizen for investigation, who is accountable? ISO 42001 Clause 5.3 and NIST AI RMF GOVERN 2.1 both require that this question is answered before deployment, not after a failure.
AI Governance Implementation
Need to implement ISO 42001 across your organisation?
Building a compliant AI management system requires more than reading the standard. It requires gap assessment against your existing AI systems, policy and procedure development, risk assessment facilitation, control implementation, and internal audit readiness — all mapped to your organisation's context and regulatory obligations.
reconn's ISO 42001 implementation services are delivered by Shenoy Sandeep — a PECB-certified Lead Implementer and Lead Auditor with 10+ years in Enterprise AI and AI governance. We work with technology companies, financial services firms, healthcare providers, and government entities across the UAE, Saudi Arabia, and globally.
reconn | Dubai, UAE | ISO 42001 implementation + training | hello@reconn.io
Integrated Governance Model: ISO 42001 + ISO 27001
The most efficient AI governance architecture integrates ISO 42001 and ISO 27001 into a single management system, sharing the audit programme, management review process, document control system, and internal audit function — reducing governance overhead while covering both AI management and information security.
Both standards use the ISO high-level structure (Annex SL), which means the context, leadership, planning, support, operation, performance evaluation, and improvement clauses use the same architecture. An organisation that has already implemented ISO 27001 can extend its existing ISMS to encompass an AIMS without duplicating the governance infrastructure — instead, adding the AI-specific elements on top of the existing foundation.
The integration points are explicit and well-defined. The ISMS risk assessment (ISO 27001 Clause 6.1.2) should include AI system data and infrastructure risks. The AIMS risk assessment (ISO 42001 Clause 6.1.2) should reference the security controls established by the ISMS as part of the existing control environment. AI incident management under ISO 42001 should be integrated with the security incident management process under ISO 27001 Clause A.5.26 — because many AI incidents are simultaneously security incidents.
Standard Reference
ISO 42001:2023 Annex C provides informative guidance on how the standard relates to other management systems, including ISO 27001. It explicitly notes that the information security management system established under ISO 27001 addresses the confidentiality, integrity, and availability of information relevant to AI systems — and that organisations may integrate their AIMS and ISMS. This is not a workaround; it is the intended architecture.
Conclusion
AI governance is no longer optional for any organisation operating AI systems at scale — and the window for treating it as a future concern has closed. The EU AI Act is in force. ISO 42001 is certifiable. Regulators across the Gulf, Europe, and Asia-Pacific are actively examining how organisations govern their AI systems, and the expectations are only rising.
The ten practices in this guide are not a checklist to complete and file — they are the operational architecture of a management system that needs to run continuously. The organisations that get this right are not the ones with the most sophisticated AI systems. They are the ones that have made governance a structural feature of how they build, deploy, and monitor AI — not a compliance exercise added on at the end.
ISO/IEC 42001:2023, supported by ISO 27001:2022 for security, the NIST AI RMF for operational risk management, and EU AI Act compliance for legal obligations, gives you the complete framework stack. The path to certified AI governance is structured, achievable, and increasingly commercially necessary. The question is not whether to implement it — it is how quickly you can move.
AI governance is the framework of policies, processes, roles, controls, and accountability structures that ensure AI systems are developed and operated responsibly — managing risks to the organisation, to individuals affected by AI decisions, and to society. It matters because AI systems introduce risks that traditional governance frameworks were not designed to address: algorithmic bias that affects protected groups, decisions that cannot be explained to the people they affect, systems that behave differently in production than in testing, and liability questions that are not resolved by existing legal frameworks. Organisations without AI governance face regulatory fines, reputational damage, and AI systems that fail in ways that cause measurable harm.
What is ISO/IEC 42001 and what does it require?+
ISO/IEC 42001:2023 is the international standard for an Artificial Intelligence Management System (AIMS) — published by the International Organization for Standardization in December 2023. It uses the ISO high-level structure (Clauses 4–10) to provide a governance architecture for managing AI responsibly across the full system lifecycle. Mandatory requirements include establishing organisational context for AI, securing management commitment through a defined AI policy, conducting AI risk assessments and AI impact assessments, implementing Annex A controls (38 controls across 9 domains including AI policy, data governance, human oversight, and the AI supply chain), operating performance monitoring, and driving continual improvement through internal audit and management review. Certification to ISO 42001 is available through accredited certification bodies and is increasingly required in procurement, regulatory, and partner due diligence processes.
What is the NIST AI RMF and how does it relate to ISO 42001?+
The NIST AI Risk Management Framework (AI RMF 1.0), published by the US National Institute of Standards and Technology in January 2023, organises AI risk management around four core functions: GOVERN, MAP, MEASURE, and MANAGE. It covers 72 subcategories of risk management practice and is voluntary, non-certifiable, and technology-agnostic. ISO 42001 and NIST AI RMF are complementary rather than competing. Many organisations use NIST AI RMF as their operational risk management methodology — providing the detailed subcategory actions and practitioner guidance — inside an ISO 42001 AI Management System, which provides the governance architecture, audit programme, and certification pathway. In July 2024, NIST also published the Generative AI Profile (NIST AI 600-1), extending the framework to GenAI-specific risks including confabulation, harmful bias, and data privacy concerns related to large language models.
How does the EU AI Act affect organisations outside the European Union?+
The EU AI Act has extraterritorial scope, applying to any organisation — regardless of where it is based — that places an AI system on the EU market or whose AI system outputs are used in the EU. This means a company headquartered in Dubai, Singapore, or New York that sells software with AI components to EU customers, deploys AI systems that affect EU employees, or provides AI-enabled services used by EU individuals is subject to EU AI Act obligations. The practical implication for non-EU organisations is that they need to assess whether any of their AI systems qualify as high-risk under Annex III of the Act, and if so, build the compliance infrastructure required by Articles 9–17 — which includes technical documentation, risk management systems, data governance, human oversight, and post-market monitoring. ISO 42001 implementation provides much of this infrastructure.
What are the EU AI Act's enforcement timelines for high-risk AI systems?+
The EU AI Act entered into force in August 2024, with phased enforcement timelines. Prohibited AI practices (such as social scoring by public authorities and real-time remote biometric identification in public spaces) were banned from February 2025. General-purpose AI (GPAI) model obligations took effect from August 2025. High-risk AI system obligations under Chapters III and IV — which include the most extensive compliance requirements covering risk management, data governance, technical documentation, transparency, human oversight, and accuracy — become fully enforceable for most providers and deployers from August 2026. Penalties for high-risk AI violations reach up to €15 million or 3% of global annual turnover; violations of prohibited practice prohibitions attract fines up to €35 million or 7% of global turnover.
How does ISO 27001 contribute to AI governance?+
ISO/IEC 27001:2022 governs the information security of the data and infrastructure on which AI systems depend. AI governance without information security is structurally incomplete: compromised training data produces compromised models; insecure inference APIs expose proprietary outputs; uncontrolled model access creates intellectual property and liability risks. Specific ISO 27001:2022 controls with direct AI relevance include A.8.11 (Data masking — for training data containing personal information), A.8.12 (Data leakage prevention — for model outputs and training pipelines), A.5.23 (Information security for use of cloud services — for cloud-hosted AI infrastructure), and A.5.7 (Threat intelligence — for AI-specific adversarial threats including model poisoning and adversarial inputs). Organisations implementing both ISO 42001 and ISO 27001 can integrate them into a single management system sharing the audit programme, document control, and management review process.
What is an AI impact assessment and how does it differ from an AI risk assessment?+
An AI risk assessment (required under ISO 42001 Clause 6.1.2) evaluates risks to the organisation from AI systems — it asks what can go wrong with this system and what the likelihood and impact is on the organisation's objectives. An AI impact assessment (required under ISO 42001 Annex B) evaluates the consequences of AI system outputs on individuals, groups, and society — it asks how this system's decisions affect the people subject to them, including effects on protected characteristics, fundamental rights, and societal fairness. The two processes are separate and must both be documented. The AI impact assessment is often the more demanding process because it requires engaging with affected populations, examining distributional effects across demographic groups, and documenting decisions about acceptable harm trade-offs — none of which fit neatly into standard enterprise risk registers. The EU AI Act requires a fundamental rights impact assessment for high-risk AI systems deployed by public bodies, which aligns closely with the ISO 42001 Annex B requirements.
What does meaningful human oversight mean under ISO 42001 and the EU AI Act?+
Meaningful human oversight, under both ISO 42001 Annex A control A.9 and EU AI Act Article 14, requires four elements: human reviewers must have actual authority to override AI decisions (not just flag them); they must have the information needed to make an informed judgment about whether the AI output is correct (including inputs and confidence levels, not just the output); they must have adequate time to review (AI systems generating decisions faster than humans can assess them undermine oversight structurally); and there must be a documented channel for personnel to raise concerns about AI output quality without retaliation. Rubber-stamp oversight — where humans see outputs but have no realistic ability to challenge them — does not satisfy either standard. NIST AI RMF MANAGE 4.1 additionally requires that appeal and override mechanisms are documented in post-deployment monitoring plans.
What is the AI supply chain and what does AI governance require for third-party AI?+
The AI supply chain covers all external providers of AI systems, components, foundation models, APIs, and AI-embedded software that an organisation incorporates into its own AI deployments. ISO 42001 Annex A control A.10 requires organisations to assess and document the governance obligations of AI system providers and to embed those obligations contractually. This is particularly important for organisations using third-party foundation models or AI-as-a-service: if the provider does not disclose training data provenance, does not notify of significant model changes, or cannot provide the technical documentation required for EU AI Act compliance, the deploying organisation bears the compliance gap. ISO 27001 Annex A controls A.5.19 through A.5.22 (supplier information security) provide the security layer for AI vendor relationships. Contracts with AI providers should address data processing agreements, model change notification obligations, incident disclosure timelines, audit rights, and service continuity provisions.
Can ISO 42001 certification demonstrate EU AI Act compliance?+
ISO 42001 certification is not a direct equivalence certificate for EU AI Act compliance — the Act establishes legal obligations and ISO 42001 is a voluntary management system standard. However, there is substantial alignment between them. ISO 42001's AI impact assessment (Annex B), human oversight controls (A.9), data governance requirements (A.7), and post-deployment monitoring obligations (Clause 9.1) directly address the technical documentation, human oversight, data governance, and accuracy requirements in EU AI Act Articles 9–15 for high-risk systems. The European Commission has signalled that ISO standards will be developed as harmonised standards under the Act — meaning future versions or profiling of ISO 42001 may provide presumption of conformity with specific EU AI Act articles. Organisations that implement ISO 42001 now are building the governance infrastructure that EU AI Act compliance requires, even if formal harmonisation is not yet confirmed.
What are the seven characteristics of trustworthy AI in the NIST AI RMF?+
NIST AI RMF 1.0 defines seven characteristics of trustworthy AI systems that every MAP, MEASURE, and MANAGE decision should address: (1) Valid and reliable — the AI system performs as intended across contexts; (2) Safe — the system does not cause unacceptable harm; (3) Secure and resilient — the system is protected against adversarial inputs, model poisoning, and infrastructure attacks; (4) Accountable and transparent — roles, responsibilities, and decision processes are documented and disclosed appropriately; (5) Explainable and interpretable — AI outputs and the reasoning behind them can be understood by relevant stakeholders; (6) Privacy-enhanced — the system protects personal data and minimises privacy risks; (7) Fair with harmful bias managed — the system's outputs are equitable across demographic groups and known biases are actively assessed and mitigated. These seven characteristics provide a practical lens for evaluating whether governance controls are addressing the right dimensions of AI risk.
How do I start implementing AI governance in my organisation?+
The most effective starting point for AI governance implementation is a gap assessment against ISO 42001:2023, which establishes your current baseline and identifies the highest-priority gaps across management system architecture, risk assessment processes, control implementation, and documentation. If your organisation already holds ISO 27001 certification, you can build the AIMS on the existing ISMS infrastructure, significantly reducing implementation effort. The gap assessment should be followed by AI policy development and management approval (Practice 1 in this guide), AI risk assessment and AI impact assessment for your existing AI systems (Practice 2), and role and accountability definition (Practice 3). From there, control implementation, internal audit, and certification audit follow the standard ISO implementation pathway. For organisations with significant AI deployments or those subject to EU AI Act obligations, engaging an experienced ISO 42001 Lead Implementer to lead the implementation will reduce the time to certification readiness significantly. reconn provides ISO 42001 implementation services globally, with particular expertise in the UAE, Saudi Arabia, and GCC markets.
What is the NIST Generative AI Profile (AI 600-1) and does it affect my organisation?+
NIST AI 600-1, the Generative AI Profile, was published in July 2024 as an extension to the NIST AI RMF 1.0 specifically for generative AI systems including large language models. It identifies 12 risk categories that are either unique to or significantly exacerbated by generative AI: confabulation (hallucination), data privacy violations, homogenisation of AI outputs, harmful bias, information integrity risks, intellectual property issues, obscene or toxic content, cybersecurity threats from AI-generated content, environmental impacts, and CBRN information risks. The profile maps each risk to the four core NIST AI RMF functions and provides more than 200 suggested mitigation actions. Any organisation deploying LLM-based systems, AI chatbots, code generation tools, or other generative AI applications should layer the AI 600-1 profile over their existing AI RMF implementation. This applies whether you are building models or using third-party models via API — the governance obligations attach to the deployment, not just the model development.
What AI governance certifications are available for professionals?+
The most recognised professional certifications for AI governance practitioners are PECB ISO/IEC 42001 Lead Implementer and PECB ISO/IEC 42001 Lead Auditor, both of which are internationally recognised credentials that validate the competence to implement and audit AI management systems against the ISO 42001 standard. The PECB ISO/IEC 27001 Lead Implementer and Lead Auditor certifications are equally important for practitioners working at the intersection of AI governance and information security. For professionals seeking a broader AI competency credential that covers governance, risk, and AI fundamentals alongside technical literacy, the PECB Certified Artificial Intelligence Professional (CAIP) certification covers AI governance principles, responsible AI practices, and AI risk management. These certifications are available through PECB-authorised training partners including reconn, which delivers training in English and Arabic, with courses available via self-study, eLearning, and live online formats globally.
About the Author
Shenoy Sandeep
Shenoy Sandeep is the Founder of reconn, an AI-first cybersecurity firm based in Dubai, UAE — assisting startups and enterprises scale across the Middle East and African region. With 20+ years across offensive security, threat intelligence, and enterprise risk, and over 10 years in Enterprise AI, AI governance, and Business Continuity, he brings a practical, execution-driven approach to AI governance and information security.
He is a PECB-certified trainer and one of the world's early PECB-certified AI professionals, specialising in ISO/IEC 27001, ISO/IEC 42001, ISO 22301, and ISO 9001.
