Thamer James Blog
Governance, Risk & ComplianceISO 42001 – Societal impacts of AI systems
ISO 42001 requires the documentation of the societal impacts of AI systems created by the organisation. The Standard makes clear that AI development can have both positive and negative societal impacts. Areas that an organisation should consider are detailed below:...
ISO 42001 – System & computing resources
Included within the resource area of ISO42001 the enterprise should set out and log information about the AI systems and computing resources used as part of the overall AI model. This should include but not be limited to: Resource needs for AI systems to ensure...
ISO 42001 – Tooling resources
ISO42001 sets out how an enterprise should document information relating to tooling programmes used in AI development. As such an enterprise should consider the following areas for machine learning: Software and hardware design and development AI tools used for...
ISO37301 – Compliance management system
For an effective compliance management system, the framework should integrate all the required policies, processes, procedures and work instructions into an easy to use and understandable framework. A key feature in the author’s view is...
ISO37301 – Context of Organisation
ISO 37301 uses the broad headings of the now familiar Annex SL framework. This specification is designed to be used in accordance with other management standards such as ISO9001: 2015 etc. The subtle difference is that ISO37301 provides a framework for an organisation...
ISO37301 – Compliance Obligations
ISO37301 under the section of compliance obligations requires that an organisation focuses upon compliance requirements as a key feature of the compliance model. This should include reference to the applicable laws and regulations that are in force, in relation to the...