Expert

ISO/IEC 42001 AI Lead Implementer

Deploy an Artificial Intelligence Management System (AIMS) compliant with ISO/IEC 42001:2023 and the European AI Act. PECB-certifying 5-day course.

Learning objectives

  • Master ISO/IEC 42001:2023 requirements and their articulation with the European AI Act
  • Conduct an AI Impact Assessment (AIIA) on a high-risk system
  • Deploy the 38 ISO 42001 Annex A controls in a proportionate way
  • Set up training data governance and model-lifecycle management
  • Build AI Act compliance deliverables (technical documentation, post-market monitoring)
  • Run the continual improvement of an AIMS
  • Pass the PECB ISO/IEC 42001 Lead Implementer exam

Target audience

CISOs, DPOs, compliance managers, senior data scientists and ML engineers, AI project leads, GRC consultants supporting regulated AI deployments.

Prerequisites

Knowledge of information security (ISO 27001 or equivalent recommended). General understanding of how AI models work and their lifecycle. Familiarity with GDPR.

Detailed programme

Course objective

The first international standard dedicated to AI governance, ISO/IEC 42001:2023 sets the requirements for an Artificial Intelligence Management System (AIMS). This 5-day course prepares future AIMS managers to build, deploy and run a compliant system, in articulation with the European AI Act (Regulation 2024/1689) and other applicable frameworks (GDPR, NIS2, DORA).

At the end of the course, participants take the PECB ISO/IEC 42001 Lead Implementer exam (3 hours, written). This course is intended for organisations that deploy or use AI systems and want to demonstrate control to regulators, clients and stakeholders.

Detailed programme (35 hours)

Day 1 — AI context and regulatory landscape

  • Introduction to AI systems: typology, lifecycle, stakeholders
  • Regulatory landscape: European AI Act, GDPR, ISO/IEC 42001:2023, NIST AI RMF
  • AI-specific risks: bias, hallucinations, drift, robustness, explainability
  • AI Act risk classification (unacceptable, high, limited, minimal)

Day 2 — AIMS foundations

  • Clauses 4-5: context, leadership, AI policy, interested parties
  • Clause 6: planning, AI objectives, AI Impact Assessment (AIIA)
  • Annex A: 38 organisational and technical controls
  • Articulation with other management systems (ISO 27001, ISO 9001)

Day 3 — Operational implementation

  • Training data governance (quality, bias, traceability)
  • Model lifecycle: development, validation, deployment, monitoring
  • Transparency and documentation (model cards, data cards)
  • Human oversight and control
  • AI incident handling and post-deployment drift

Day 4 — Sensitive use cases and AI Act compliance

  • Analysis of high-risk systems (AI Act Annex III)
  • Strengthened requirements: conformity assessment, technical documentation, post-market monitoring
  • General-purpose AI models (GPAI) and foundation models
  • Interactions with CNIL / AI Office / sector authorities

Day 5 — Steering, improvement and PECB exam

  • AIMS internal audit and steering indicators
  • Management review and continual improvement
  • Preparing for external certification
  • Running case study: high-risk HR scoring platform
  • PECB ISO/IEC 42001 Lead Implementer certification exam

Teaching methods

Premium course with case studies on real AI systems (credit scoring, fraud detection, content generation, medical diagnosis support). Official PECB materials plus the Brightway “AI Act 2024 — Application Guide”. Trainers have supported AIMS deployments in finance and healthcare.

Assessment

Graded exercises on AIIA drafting and AI risk classification. Final PECB exam: 80 questions, 3 hours, written, 70% pass mark.

Accessibility

Accessible to participants with disabilities on prior request. In-house sessions available for organisations deploying multiple AI systems (groups of 10–15).

← Back to catalogue