Governance, Risk Management and Compliance
|
Artificial Intelligence
|
ISO 42001
|
ISO 42001
FAQ
FAQ

How is ISO 42001 Structured?

ISO 42001 follows the ‘Harmonised Structure’ common to many other ISO management system standards, including ISO 27001 and ISO 9001.  While the core requirements are set out in the familiar Clauses 4-10, each clause (with the exception of Clauses 7 and 10) contain elements that reflect the unique considerations of AI management.

The mandatory management system clauses are followed by four annexes:

  • Annex A, much like Annex A of ISO 27001, contains a set of reference controls that are not compulsory but can be implemented based on their applicability to your organisation.  It should be noted that, as with ISO 27001,  organisations can define their own set of controls and still achieve certification to ISO 42001.
  • Annex B contains the implementation guidance for the controls listed in Annex A, and is, therefore, comparable to ISO 27002 (the supporting standard to ISO 27001).
  • Annex C provides guidance on organisational objectives and risk sources
  • Annex D outlines guidance on the use of AIMS’ across different domains or sectors.
I have been very impressed with the delivery of both the ISO 42001 webinar and last week’s ISO 27001 webinar, and will certainly keep URM in mind with regard to any services in the future.
Contact ISO 42001 Experts Today
Gain Practical Knowledge, Not Ongoing Dependence
URM’s real-world knowledge transfer equips your team to confidently manage and improve your AIMS without ongoing consultancy.
Find out more
related BLog
Governance, Risk Management and Compliance
|
Other Standards
|
ISO 42001

ISO 42001 and AI Perspectives

Published on
28 Nov
2024

URM’s blog explores ISO 42001, its intentions and structure, and the AI perspectives that will need to be considered by organisations implementing the Standard.

Read more
Thumbnail of the Blog Illustration
Other Standards
Published on
28/11/2024
ISO 42001 Artificial Intelligence Impact Assessments (AIIAs)

URM’s blog explores artificial intelligence impact assessments (AIIAs) and offers advice on how to conduct these assessments in full conformance with ISO 42001.

Read more
Thumbnail of the Blog Illustration
Artificial Intelligence
Published on
27/11/2024
Establishing Organisational Control Over Artificial Intelligence

URM’s blog discusses the need for policy in relation to the use of AI, real-world cases where AI has caused organisations issues & how to create an AI policy.

Read more
Thumbnail of the Blog Illustration
Other Standards
Published on
22/11/2024
The EU Artificial Intelligence Act

URM’s blog breaks down the EU AI Act and discusses its scope, requirements, how it will be enforced, how it may impact the UK & the rest of the world, and more.

Read more
No items found.
contact US

Let us help you

Let us help you in your compliance journey by completing the form and letting us know how we can best support you.