AI Governance Guides
Understand the Standards Shaping Responsible AI
A library of educational guides covering the international standards and regulations that define modern AI governance — written to help executives, risk teams, and practitioners understand, compare, and act.
5
Frameworks Covered
4
In-Depth Guides Published
2
International Standards Bodies
1
Global Regulation
THE GUIDE LIBRARY
Explore Each Framework
ISO/IEC 42001
The international standard for establishing, implementing, and continually improving an AI Management System (AIMS).
Read the Guide →NIST AI RMF
The NIST AI Risk Management Framework, built around four core functions: Govern, Map, Measure, and Manage.
Read the Guide →EU AI Act
The EU's risk-based regulation for AI systems, classifying AI into unacceptable, high, limited, and minimal risk tiers.
Read the Guide →ISO/IEC 27001 & SOC 2
A side-by-side guide comparing ISO/IEC 27001 certification and SOC 2 attestation — how they differ and how they work together.
Read the Guide →ISO/IEC 23894
Guidance on AI risk management, designed to complement ISO/IEC 42001 within a broader AI governance program.
Guide in progress — check back soonNOT SURE WHERE TO START?
Which Guide Is Right for You
| If you need to... | Start with |
|---|---|
| Build and certify a formal AI management system | ISO/IEC 42001 |
| Establish a practical, US-aligned AI risk management approach | NIST AI RMF |
| Understand your obligations under EU AI regulation | EU AI Act |
| Decide between security certification and attestation for customers | ISO/IEC 27001 & SOC 2 |
| Formalize AI-specific risk identification and treatment | ISO/IEC 23894 (coming soon) |
Turn Understanding Into Action
Once you know which framework fits, our consulting, auditing, and training teams can help you implement it.