AAT-01 - Artificial Intelligence (AI) & Autonomous Technologies Governance

Mechanisms exist to ensure policies, processes, procedures and practices related to the mapping, measuring and managing of Artificial Intelligence (AI) and Autonomous Technologies (AAT)-related risks are in place, transparent and implemented effectively.

AST-28 - Database Administrative Processes

RiskOptics’s Chief Information Officer (CIO), or the CIO’s designated representative(s), must ensure that data/process owners and asset custodians develop, implement and govern database management processes, with corresponding Standardized Operating Procedures (SOP), for operating and maintaining databases.

Access to Program Source Code

Mechanisms exist to limit privileges to change software resident within software libraries.

MON-08.3 - Cryptographic Protection of Event Log Information

RiskOptics must configure its Security Incident Even Manager (SIEM) or similar technology, according to both vendor guidelines and industry practices to implement cryptographic mechanisms that can protect both the confidentiality and integrity of event logs and the underlying SIEM technology.

Manual Control

desc

AAT-01.3 - AI & Autonomous Technologies Value Sustainment

Mechanisms exist to sustain the value of deployed Artificial Intelligence (AI) and Autonomous Technologies (AAT).