Neil Jones

In this episode of InfoSec Insider, Neil Jones, Senior Consultant at URM, explores artificial intelligence impact assessments (AIIAs), a key conformance activity required by ISO 42001, the International Standard for AI Management Systems (AIMS).  Neil leverages over 20 years of experience working with risk and information security-related standards to discuss:

• What an AIIA is under ISO 42001, and how it differs from a typical risk assessment
• The role of ISO 42005 and how it relates to AIIAs
• The seven sections of an AIIA and what each section covers
• When in the AI lifecycle you need to conduct an AIIA
• How organisations should balance AIIAs with risk assessments in the context of ISO 42001.

In this episode of InfoSec Insider, Neil Jones, Senior Consultant at URM, breaks down the purpose and structure of the recently released ISO 42001, the International Standard for Artificial Intelligence Management Systems (AIMS), as well as explaining the Standard’s use of AI ‘perspectives’.  Neil leverages his 20+ years’ working with a range of risk and information security-related standards to discuss:  

• What ISO 42001 is intended for, and what it is not
• How ISO 42001 is structured, and how it compares to other standards written in the ‘Harmonised Structure’
• What an AIMS is
• How you can establish the ‘trustworthiness’ of an AI system and how this concept is articulated through ‘AI perspectives’ in ISO 42001.