Ozona Consulting · ISO 20000, ISO 270001, ISO 22301 consultancy

AI for Internal Audit Teams

AI for Internal Audit Teams

 

Practical workshop to translate the European AI Act (EU AI Act) and the ISO/IEC 42001 standard into the concrete practice of internal audit on AI systems.

The programme combines regulatory framework, reusable tools (system inventories, criticality matrices, preliminary questionnaires, obligation maps) and a cross-cutting case study of a typical financial sector organisation that accompanies the participant throughout the training.

Throughout the course, a complete audit is developed incrementally: identification and classification of AI systems, scope definition and planning, evaluation of controls and evidence, and formulation of conclusions, findings and improvement actions.

KEY FEATURES OF THE COURSE

PRACTICAL APPROACH

Cross-cutting financial sector case study and applied exercises in each module.

INTERNAL AUDIT FOCUSED

Programme specifically designed for internal audit teams and control functions.

BASED ON EU AI ACT AND ISO 42001

References to Regulation (EU) 2024/1689 and the ISO/IEC 42001 standard.

TARGET AUDIENCE

  • Internal audit teams with responsibilities on AI systems
  • Internal control and compliance officers
  • AI governance and risk management officers
  • Profiles involved in the evaluation or supervision of AI systems

Recommended prior knowledge: fundamentals of AI governance. Level: intermediate.

COURSE DETAILS

DURATION AND FORMAT

8 hours distributed across 2 sessions of 4 hours, in live online or on-site format. Available in multi-client or in-company format.

 

LANGUAGES AND MATERIALS

Course available in Spanish and Portuguese. Training manual and case study document in electronic PDF format.

 

CERTIFICATE

Attendance certificate upon completion.

 

WHAT IS INCLUDED?

  • Training
  • Course manual in electronic PDF format
  • Case study document
  • Reusable templates and tools (inventories, matrices, questionnaires)
  • Attendance certificate

LIDIA SÁNCHEZ

COURSE PROGRAMME

8 hours distributed across 2 sessions of 4 hours each.

DAY 1 · REGULATORY FRAMEWORK AND AUDIT PLANNING (4 HOURS)

  • Introduction to the current situation of the EU AI Act and ISO/IEC 42001.
  • Presentation of the case study that will accompany the entire training.
  • Roles and responsibilities in AI governance and audit.
  • Identification and regulatory classification of AI systems by risk level.
  • Audit plan and preliminary questionnaires.

DAY 2 · EXECUTION AND CLOSING OF THE AUDIT (4 HOURS)

  • Process assessment: governance framework, risk management, data governance, documentation and traceability.
  • Operational assessment: model validation, transparency and explainability, human supervision and security.
  • Post-implementation monitoring: indicators and records.
  • Third parties: contractual review, due diligence and other considerations.
  • Audit results: report, conclusions and action plan.

Request information about the AI audit training

    Interested in an in-company sessionOther editions