Dear members,
Please find below the meeting minutes from the bi-weekly AI Controls WG call.
Minutes:
The WG members were updated on the AI Controls WG's progress:
-
The AI Controls Matrix (AICM) was presented as published on the CSA website. It contains:
-
The 243 control objectives analyzed by five critical pillars, including Control Type, Control Applicability and Ownership, Architectural Relevance, LLM Lifecycle Relevance, and Threat Category
-
The AI-CAIQ: A set of questions that map to the AICM and can guide organizations in performing a self-assessment or an evaluation of third-party vendors.
-
Mapping of the AICM controls to NIST AI 600-1 (2024)
-
Mapping of the AICM controls to the BSI AIC4 Catalog.
-
The AICM mapping to ISO 42001 is currently addressing the comments received from its public peer review process and will be added to the AICM bundle shortly.
-
The AICM Implementation Guidelines are currently in public peer review accepting comments and feedback, until the 6th of August.
-
The AICM to EU AI Act Mapping is also in public peer review accepting comments and feedback, until the 15th of August.
-
The AICM Auditing Guidelines will open for public peer review soon.
Announcements:
-
The WGs Circle Community will be retired in August and no longer working. The "meet place" for WG members will be the slack platform and the WGs channel #ai-control-framework-working-group
-
In September the AICM and CCM groups will start a common WG journey for the creation of a unified Controls Catalog which will use as a foundation AICM v.1 which has been built on CCM. In the meantime, the CCM WG will continue its update of version 4.1.
-
AI Controls WG will continue the reverse mapping of ISO 42001, EU AI Act, BSI AIC4, etc.
Kind regards,
Marina
------------------------------
Marina Bregkou,
Senior Research Analyst,
CSA
------------------------------