AI Security & Governance Certification

Course content
Create Account

Log in / Create account to save progress and earn badges

Module 0
Introduction to AI Governance Certification
1 Topic
Overview: Introduction to AI Governance Certification
Module 1
Introduction to AI and Generative AI
7 Topics | 1 Quiz
Overview: Introduction to AI and Generative AI
Discriminative AI and Generative AI
Significance of Artificial Intelligence
Generative AI and Its Value
Technology Underlying the Generative AI
Generative AI’s Need for Data
Significant Risks Associated with the AI
Quiz
Module 2
Introduction to AI Governance
5 Topics | 1 Quiz
Overview: Introduction to AI Governance
What Is AI Governance?
AI TRiSM
Challenges Posed by Unregulated or Uncontrolled AI
5-Step Path to AI Governance
Quiz
Module 3
AI Model Discovery
5 Topics | 1 Quiz
Overview AI Model Discovery
AI Models in Public Clouds, SaaS Applications, and Private Environments
Model Cards
Cataloging AI Models for Full Visibility
Trends in AI Model Discovery
Quiz
Module 4
AI Risk Assessment
13 Topics | 1 Quiz
Overview: AI Risk Assessment
Framing AI Risks
NIST AI RMF
EU AI Act
Defining AI Trustworthiness
Risk Management and the Lifecycle of AI
The Components of AI Risk Management Frameworks
AI Impact Assessments (AIIA)
AI Risk Assessment
AI Risk Assessment vs. AI Risk Management
AI Vendor Assessments
AI Readiness Assessments
Comparing Various Types of Assessments
Quiz
Module 5
Understanding Data and AI Relationships
3 Topics | 1 Quiz
Overview: Understanding Data and AI Relationships
What is Data + AI Mapping?
Unpacking Data and Processes Tied to AI
Quiz
Module 6
Controlling Data Inputs and Outputs
6 Topics | 1 Quiz
Overview: Controlling Data Inputs and Outputs
Safe Data Ingestion with Adherence to Entitlements
Attacks against Generative AI Systems – OWASP Top 10 for LLMs
Attacks Against Generative AI Systems – NIST Trustworthy & Responsible AI
Technical Measures to Mitigate Security Risks
Security Controls and LLM Firewalls
Quiz
Module 7
AI Regulatory Compliance
7 Topics | 1 Quiz
Overview: AI Regulatory Compliance
AI Regulatory Landscape
The Regulatory Response to AI
Application of Existing Laws
AI Regulatory Compliance: Key Obligations
AI Compliance Management
Significance of AI Regulatory Compliance
Quiz
Module 8
AI Governance Program & Management
5 Topics | 1 Quiz
Overview: AI Governance Program & Management
AI Governance Program and Management
Successful Implementation of the AI Governance Program
Building Blocks of an AI Governance Program
Translating AI Governance into Business Success
Quiz
Module 9
Recap: AI Governance Certification
1 Topic
AI Governance Certification Summary
Module 10
Certification Exam
1 Quiz
AI Governance Certification Exam
AI Security & Governance Certification
View course details →

AI Compliance Management

Mark Complete Enroll now to save progress and earn badges. Click to continue.
AI Security & Governance Certification AI Regulatory Compliance AI Compliance Management

AI Compliance Management

  • Create AI Compliance Project
    Creating an AI compliance project is the initial step towards ensuring an organization adheres to regulatory and company requirements. This process involves the establishment of custom projects that reflect the specific compliance initiatives of the company. By fine-tuning the project scope, organizations can target specific cloud accounts and data+AI assets relevant to their compliance needs. Incorporating multiple compliance frameworks into a single project allows for a more comprehensive approach, enabling the configuration of each framework to select relevant controls and tests. This streamlined management of compliance initiatives facilitates the tracking of project-level reports and status assessments to gauge compliance readiness and governance maturity.
  • Identify AI Regulations and Standards
    The second step involves identifying the regulations and standards pertinent to the project. This includes selecting relevant data and AI security, privacy, and governance frameworks. 

    It is important that you determine which comprehensive and sectoral AI laws and regulations might apply to your organization by the use or development of AI models and systems (preferably before deployment). This might involve a detailed understanding of the AI models or systems being provided/deployed or used by your organization. You also may be required to determine which sectoral or comprehensive privacy laws might apply to your AI Models.

    Organizations can benefit from leveraging a built-in library of standards and regulations, which encompasses emerging AI regulations such as the NIST AI RMF, the EU AI Act, and the Singapore AI Governance Framework, among others. Regulations like GDPR and CCPA/CPRA can also be included. Furthermore, companies should be able to build their own custom frameworks to report on internal AI compliance requirements, ensuring a tailored approach to compliance.

  • Automate Control Assessment
    Automating control assessment marks the third step in the process, wherein common controls and tests are leveraged to efficiently assess AI compliance across multiple frameworks. Once you have determined which AI and data protection laws apply to your organization and to the AI systems and models that you provide or use, it is important that you employ the necessary regulatory controls as per the unique requirements of each law/regulation. 

    Laws such as the EU AI Act envision different regulatory controls for different types of AI models/systems provided or used by your organization. Privacy laws such as the GDPR also require different compliance activities to be performed depending upon the type of AI model or system processing personal data of protected persons. For organizations which provide/deploy or use various AI systems and models across multiple domains or jurisdictions, it can be a difficult challenge to implement and monitor the correct regulatory controls tailored for each unique use case. 

    By utilizing a library of predefined tests, organizations can automate the assessment of controls related to various AI security, privacy, and governance frameworks. This streamlined process allows for thorough verification of compliance status and the development of custom tests tailored to the unique requirements of organization-specific frameworks. Such an approach simplifies the compliance assessment process, facilitating the simultaneous review and resolution of a broad spectrum of AI compliance issues.

  • Incorporate Attestation Results
    The incorporation of attestation results constitutes the fourth step. This involves the integration of human input and findings from data privacy and AI risk assessments into the compliance assessment process. By enabling the inclusion of human insights, organizations can assess AI compliance with controls that are challenging to automate. Assigning owners for each control, who can then share notes and upload documents as evidence, enriches the AI compliance process, providing a richer context for decision-making and insight sharing.
  • Report AI Compliance Findings
    Finally, reporting AI compliance findings is crucial for communicating the compliance posture to relevant stakeholders. This entails informing executives and key stakeholders about the organization’s AI compliance readiness. Organizations must ensure they have a mechanism to audit the deployment and evaluation of required controls on their AI systems and models. Demonstrating constant compliance with AI laws and regulations and related privacy and sectoral laws to regulators and internal and external stakeholders is a constant effort. 

    The ability to automatically generate reports in formats such as PDF and PowerPoint is particularly beneficial for executive-level compliance reporting and meetings. Sharing these reports with auditors and conducting compliance readiness reviews with data stewards and application owners drives the continuous improvement of AI compliance practices, ensuring that the organization remains aligned with both regulatory expectations and internal governance standards.

Previous Topic
Back to Lesson
Next Topic

Company

Resources

Terms

Get in touch

[email protected]
Securiti, Inc.
300 Santana Row
Suite 450
San Jose, CA 95128

Copyright © 2024 SECURITI.ai

Sitemap - XML Sitemap