AI and IT Governance
Description
AI systems are moving from experimentation into enterprise-critical operations. The question is no longer whether to govern them but how - without strangling innovation. *AI and IT Governance* provides a rigorous, immediately applicable answer: a unified framework that bridges classical IT governance (COBIT, ITIL, ISO/IEC 38500) with the demands of machine learning lifecycle management, EU AI Act compliance, and responsible AI deployment. Across 19 chapters and five parts, the monograph spans foundations, key components, implementation, real-world case studies, and the future of AI governance:
- Ethics & algorithmic bias - three case studies (healthcare, mortgage lending, content moderation) reveal where governance gaps form and how to close them; a dedicated section on dual-use AI capabilities and cybersecurity (Claude Mythos) rounds out the ethical frontier.
- Regulatory landscape - EU AI Act risk tiers, GDPR interaction, ISO/IEC 42001 conformity assessment, and an international comparison across major jurisdictions.
- Risk management - adversarial threats, model drift monitoring, and a risk portfolio approach calibrated to harm potential.
- Data governance - lineage, quality dimensions, feedback loops, and GDPR-compatible data-role assignments.
- Organisational model - role catalogue, RACI templates, three-lines-of-defence integration, and committee mandates ready for immediate use.
- AI project lifecycle - shift-left governance, quality gates G0-G5, change management, and structured decommissioning.
- Tools & MLOps - technology selection matrix covering open-source and commercial platforms.
- Personnel & culture - competency model, psychological safety, and incentive design for a sustainable governance mindset.
- ISO/IEC 42001 - AIMS implementation roadmap and clause-level mapping to the IKI-Gov reference model.
- IKI-Gov reference model - the book's core contribution: six governance domains × six lifecycle phases × six measurement points, with a companion open-source CLI assessment tool (presidio-hardened-ikigov-assess).
Why This Book
- Integrates strategy, law, ethics, data, and operations in one coherent model - no silo approach
- Regulation-aware as of Q1 2026 (EU AI Act, ISO/IEC 42001, GDPR)
- 43 schematic figures, workshop-ready checklists, and quality-gate templates for direct application
- IKI-Gov assessment tool freely available as open-source CLI
Target group
CIOs, CAIOs, and AI product owners seeking strategic clarity; compliance, legal, and data-protection teams navigating EU AI Act and GDPR obligations; data scientists and MLOps engineers who need governance context for their daily work; risk managers and internal auditors building AI-specific control frameworks; and graduate students in information management, business informatics, or law.
More details
Person
Vladimir Stantchev is professor of computer science at the SRH University Heidelberg, Campus Berlin, and principal engineer at PRESIDIO Group, Sofia, Bulgaria. He studied computer science at the Humboldt University in Berlin (master), the Technical University of Berlin (PhD), and at the University of California, Berkeley, USA (postdoc, senior scientist). He is founder or co-founder of several technology startups since 2009. He works on technology governance approaches and cybersecurity internationally - in academia, in the regulatory sector, and in the industry. He holds a professorship at the Escuela de Posgrado, Universidad de Granada, Spain, is a member of the GI e.V., the IEEE (Senior Membership, IEEE Computer Society and IEEE Education Society), the ACM (senior member) and of multiple editorial boards. You can reach him at: stantchev@computer.org.
Content
Introduction to Artificial Intelligence and IT Governance.- The Evolution of IT Governance and the Rise of Artificial Intelligence.- Ethical AI and IT Governance.- Regulatory Landscape and Compliance.- Risk Management for AI Systems.- Data Governance in the AI Era.- Strategic Alignment of AI and Business Strategy.- Organizational Model and Roles in AI Governance.- The AI Project Lifecycle and Governance.- Tools and Technologies for AI Governance.- Human and Cultural Aspects.- AI Governance Success Stories.- Negative Examples - Via Negativa.- New Trends in AI Governance.- ISO/IEC 42001.- An Integrated AI Governance Framework.- Summary and Outlook.