AI Governance

Catalog: Discovery, inventory and risk scoring of all AI used in organization.

Automated (partly) documentation: Bill of materials, model cards, artifacts, regulatory reports, explainability.

Audit trails: Audits of all state changes to AI artifacts

Maps: Maps of AI integration with human and other system processes and their configurations; complete life cycle

Ownership: Owner of artifacts and lineage

Data: Mapping of data to AI usage, lineage

Risks, regulations and controls: Validations, risk assessments, content libraries, reports

Approvals of new AI; exceptions

Attestations of use

Communications with third-party providers:

• RFI
• Responses
• Compliance
• Controls

AI security testing: Red teaming and scanning for all entities (models, applications, agents)

Risk and trust control validation:

• Bias
• Leakage
• Trust
• Use-case alignment

Posture management

Compliance reporting