Managing AI Risk
A practical approach to responsibly managing AI with ISO 42001
Published on 28. August 2025
Book
Paperback/Softback
98 pages
978-1-78778-589-2 (ISBN)
Description
Organisations must deal with AI implementation in a practical and sensible way. They need to understand the risks and opportunities AI presents, and manage these in a way that ensures the organisation delivers on its objectives while embracing the change to its best advantage.
The aim of this guide: to give order to the chaos of AI that is being unleashed on the world.
The book discusses:
How to build a risk-aware AI strategy;
Relevant standards and guidance such as ISO 42001, ISO 27001 and NIST;
The importance of an artificial intelligence management system (AIMS); and
The future of AI and risk management
As AI systems increasingly influence decision-making across industries, new risks such as algorithmic bias, loss of privacy, lack of transparency and unintended consequences become significant.
This guide will help you to understand how to mitigate AI risk and embrace the opportunities that AI brings to an organisation by implementing an AIMS.
The aim of this guide: to give order to the chaos of AI that is being unleashed on the world.
The book discusses:
How to build a risk-aware AI strategy;
Relevant standards and guidance such as ISO 42001, ISO 27001 and NIST;
The importance of an artificial intelligence management system (AIMS); and
The future of AI and risk management
As AI systems increasingly influence decision-making across industries, new risks such as algorithmic bias, loss of privacy, lack of transparency and unintended consequences become significant.
This guide will help you to understand how to mitigate AI risk and embrace the opportunities that AI brings to an organisation by implementing an AIMS.
More details
Language
English
Place of publication
Ely
United Kingdom
Target group
Professional and scholarly
US School Grade: College Graduate Student
Dimensions
Height: 198 mm
Width: 129 mm
Thickness: 7 mm
Weight
168 gr
ISBN-13
978-1-78778-589-2 (9781787785892)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Persons
Andrew Pattison is the Global Head of GRC and PCI Consultancy at IT Governance, a GRC Solutions company. With a career stretching back to the mid-1990s, Andrew has worked extensively in information security, risk management and business continuity. He is currently supporting several major international organisations implement robust governance and risk approaches for the use and development of AI. He holds an MSc in Information Systems Management, is a certified auditor, and is accredited with both CISM (R) and CRISC (R) certifications. Alongside his consultancy work, Andrew has delivered comprehensive training across multiple GRC disciplines, including DORA, NIS, NIST, ISO/IEC 27001, business continuity, CRISC and CISM.
Content
Chapter One: Understanding AI and organisational risk
Chapter Two: Building a risk-aware AI strategy
Chapter Three: Identifying and assessing risks
Chapter Four: Developing an AI management system
Chapter Five: The future of AI and risk
Conclusion
Further reading
Chapter Two: Building a risk-aware AI strategy
Chapter Three: Identifying and assessing risks
Chapter Four: Developing an AI management system
Chapter Five: The future of AI and risk
Conclusion
Further reading