{"id":31228,"date":"2024-12-06T20:01:26","date_gmt":"2024-12-07T01:01:26","guid":{"rendered":"https:\/\/www.oxebridge.com\/emma\/?p=31228"},"modified":"2024-12-06T21:41:52","modified_gmt":"2024-12-07T02:41:52","slug":"here-are-all-the-supporting-standards-referenced-in-iso-420012023","status":"publish","type":"post","link":"https:\/\/www.oxebridge.com\/emma\/here-are-all-the-supporting-standards-referenced-in-iso-420012023\/","title":{"rendered":"Here Are All the Supporting Standards Referenced in ISO 42001:2023"},"content":{"rendered":"<p>ISO 42001 on AI Management Systems takes ISO&#8217;s penchant for product placement to whole new levels. Whereas prior standards avoided invoking or requiring compliance with other ISO standards, 42001 goes a whole hog on this approach. The JTC group that made the standard called this an &#8220;<em>ecosystem<\/em>,&#8221; which is a word consultants like to use when building a cash empire.<\/p>\n<p>From my count, ISO 42001 references a whopping thirty supporting standards. A handful of these aren&#8217;t even published yet.<\/p>\n<p>A super-rough estimate suggests you&#8217;d have to spend an additional $5,000 to buy the additional standards. But the actual number you&#8217;d need would depend largely on the controls that apply to your AI management system.<\/p>\n<p>Here is a handy list of the not-so-handy <em><strong>other<\/strong> <\/em>standards you may have to buy from ISO to comply with ISO 42001.<\/p>\n<hr \/>\n<p><strong>Standards referenced in the requirements and controls sections:<\/strong><\/p>\n<ul>\n<li>ISO 19011:2018 Guidelines for auditing management systems<\/li>\n<li>ISO 37002 Whistleblowing Management Systems \u2014 Guidelines<\/li>\n<li>ISO 8000-2 Data Quality &#8211; Part 2 Vocabulary<\/li>\n<li>ISO 9241-210:2019 Ergonomics of human-system interaction<\/li>\n<li>ISO 9241-210:2019 Ergonomics of human-system interaction Part 210: Human-centered design for interactive systems<\/li>\n<li>ISO\/IEC 22989:2022 Information technology \u2014 Artificial intelligence \u2014 Artificial intelligence concepts and terminology<\/li>\n<li>ISO\/IEC 22989:2022, Information technology \u2014 Artificial intelligence \u2014 Artificial intelligence concepts and terminology<\/li>\n<li>ISO\/IEC 23053 Framework for Artificial Intelligence (AI) Systems Using Machine Learning(ML)<\/li>\n<li>ISO\/IEC 23894:2023 Information technology \u2014 Artificial intelligence \u2014 Guidance on risk management<\/li>\n<li>ISO\/IEC 25024:2015 Systems and software engineering \u2014 Systems and software Quality Requirements and Evaluation (SQuaRE) \u2014 Measurement of data quality<\/li>\n<li>ISO\/IEC 25059:2023 Software engineering -Systems and software Quality Requirements and Evaluation (SQuaRE)- Quality model for AI systems<\/li>\n<li>ISO\/IEC 27001:2022 Information security, cybersecurity and privacy protection \u2014 Information security management systems \u2014 Requirements<\/li>\n<li>ISO\/IEC 27701:2019 Security techniques \u2014 Extension to ISO\/IEC 27001 and ISO\/IEC 27002 for privacy information management \u2014 Requirements and guidelines<\/li>\n<li>ISO\/IEC 29100:2024 Information technology \u2014 Security techniques \u2014 Privacy framework<\/li>\n<li>ISO\/IEC 38507:2022 Information technology &#8211; Governance of IT &#8211; Governance implications of the use of artificial intelligence by organizations<\/li>\n<li>ISO\/IEC 5259-1:2024 Artificial intelligence \u2014 Data quality for analytics and machine learning (ML) Part 1: Overview, terminology, and examples<\/li>\n<li>ISO\/IEC 5259-2:2024 Artificial intelligence \u2014 Data quality for analytics and machine learning (ML) Part 2: Data quality measures<\/li>\n<li>ISO\/IEC 5259-3:2024 Artificial intelligence \u2014 Data quality for analytics and machine learning (ML)ISO\/IEC 19944-1:2020 Cloud computing and distributed platforms \u2500 Data flow, data categories and data use Part 1: Fundamentals<\/li>\n<li>ISO\/IEC 5338:2023 Information technology \u2014 Artificial intelligence \u2014 AI system life cycle processes<\/li>\n<li>ISO\/IEC CD 5259-5:2023 Artificial intelligence \u2014 Data quality for analytics and machine learning (ML) Part 5: Data quality governance framework (in draft)<\/li>\n<li>ISO\/IEC DIS 5259-2:2023 Artificial intelligence \u2014 Data quality for analytics and machine learning (ML) Part 2: Data quality measures<\/li>\n<li>ISO\/IEC DIS 5259-4:2023 Artificial intelligence \u2014 Data quality for analytics and machine learning (ML) Part 4: Data quality process framework<\/li>\n<li>ISO\/IEC TR 24029-1:2021 Artificial Intelligence (AI) \u2014 Assessment of the robustness of neural networks Part 1: Overview<\/li>\n<li>ISO\/IEC TR 24368:2022 Information technology \u2014 Artificial intelligence \u2014 Overview of ethical and societal concerns<\/li>\n<li>ISO\/IEC TS 4213:2022 Information technology \u2014 Artificial intelligence \u2014 Assessment of machine learning classification performance<\/li>\n<\/ul>\n<p><strong>Standards reference only in the definitions section <\/strong><em>(not really required for compliance)<\/em><\/p>\n<ul>\n<li>ISO Guide 73<\/li>\n<li>ISO 31000:2018<\/li>\n<li>ISO\/IEC 38500:2015 (but the most recent standard is actually 2024, so ISO 42001 has an obsolete document called out)<\/li>\n<li>ISO\/IEC 27000:2018<\/li>\n<\/ul>\n<p>&nbsp;<\/p>","protected":false},"excerpt":{"rendered":"<p>ISO 42001 references as many as thirty supporting standards you may need to buy to ensure full compliance.<\/p>","protected":false},"author":2,"featured_media":31229,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","mc4wp_mailchimp_campaign":[],"footnotes":""},"categories":[4],"tags":[684,8549],"class_list":["post-31228","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-guidance","tag-artificial-intelligence","tag-iso-42001","et-has-post-format-content","et_post_format-et-post-format-standard"],"_links":{"self":[{"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/posts\/31228","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/comments?post=31228"}],"version-history":[{"count":3,"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/posts\/31228\/revisions"}],"predecessor-version":[{"id":31232,"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/posts\/31228\/revisions\/31232"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/media\/31229"}],"wp:attachment":[{"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/media?parent=31228"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/categories?post=31228"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.oxebridge.com\/emma\/wp-json\/wp\/v2\/tags?post=31228"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}