New international standard sets rules for auditing AI management systems

cono0430/Shutterstock.com

A new international standard establishes specific requirements for bodies that audit and certify organisations implementing artificial intelligence (AI) management systems.

ISO/IEC 42006 defines the additional requirements for bodies auditing and certifying AI management systems (AIMS) against the ISO/IEC 42001 standard. It builds on the foundational ISO/IEC 17021-1 standard, ensuring that certification bodies possess the necessary competence to assess organisations that develop, deploy, or offer AI systems.

The standard addresses the unique challenges that AI systems present in areas such as ethics, data quality, risk, and transparency. It ensures auditors have the specialised knowledge and clear rules needed for credible and consistent assessments.

Key benefits of ISO/IEC 42006 include clearer expectations for certifying bodies evaluating AIMS. It increases trust in AIMS certification results.

ISO/IEC 42006 supports robust, consistent auditing of AI-related risks and controls. It increases transparency and confidence for customers and regulators. The standard is intended for certification bodies performing AIMS audits based on ISO/IEC 42001, as well as accreditation bodies assessing those certifiers.

ISO/IEC 42006 does not replace ISO/IEC 17021-1. Instead, it supplements that standard with AI-specific requirements for auditing and certification processes. Additionally, ISO/IEC 42006 can be integrated into broader conformity assessment schemes for AI products, processes or services certified under ISO/IEC 17065.

Source: IEC