Halderstone Audit Services

AI Management Audits

Independent assessments of AI governance, management systems, controls, and compliance obligations

Halderstone Audit Services

AI Management Audits

Independent assessments of AI governance, management systems, controls, and compliance obligations

Auditor and AI system owner review governance evidence on a technical workflow during an AI management audit.

Understand whether your AI governance works in practice

Assess whether governance structures, controls, and oversight mechanisms are operating as intended across your AI initiatives.

Auditor and AI system owner review governance evidence on a technical workflow during an AI management audit.

Understand whether your AI governance works in practice

Assess whether governance structures, controls, and oversight mechanisms are operating as intended across your AI initiatives.

Auditor and AI system owner review governance evidence on a technical workflow during an AI management audit.
How we support you

How we support you

How we support you
Why Halderstone

Why Halderstone

Related advisory services

Related advisory services

Related training modules

Related training modules

How we support you

AI systems create unique governance, risk, compliance, and accountability challenges.

Independent audits help organisations understand whether AI governance arrangements, management systems, and control activities are designed appropriately and operating effectively.

Assessments can focus on entire AI management systems, selected AI initiatives, suppliers, business units, or specific regulatory obligations.

Audit contexts

  • Internal audits

  • Readiness assessments

  • Supplier assessments

  • AI governance reviews

  • Regulatory compliance reviews

  • Integrated audits

Supported frameworks

  • ISO/IEC 42001

  • EU AI Act

  • NIST AI RMF

  • OECD AI Principles

  • Internal AI governance frameworks

Business meeting with people sitting at a conference room table

Discuss your audit challenge

A short conversation to understand your current situation and discuss possible next steps.

Schedule a call

Business meeting with people sitting at a conference room table

Discuss your audit challenge

A short conversation to understand your current situation and discuss possible next steps.

Schedule a call

Business meeting with people sitting at a conference room table

Discuss your audit challenge

A short conversation to understand your current situation and discuss possible next steps.

Schedule a call

Why Halderstone

Our approach

  • Audit planning informed by risks, objectives, and the intended use of audit results

  • Audit activities aligned with recognized auditing principles and guidance, including ISO 19011 where appropriate

  • Findings based on objective evidence obtained through interviews, documentation review, observation, and sampling

  • Conclusions supported by corroboration across multiple evidence sources and audit methods

  • Practical reporting focused on decision-making, assurance, and continual improvement

What we deliberately do not do

  • Mandates that compromise auditor independence

  • Audit engagements where we influence the selection of samples, evidence, or interview partners

  • Conclusions based solely on interviews without corroborating evidence

Halderstone Academy

Related training modules

Halderstone Academy offers focused training modules on relevant audit capabilities.

View all modules

Halderstone Academy

Related training modules

Halderstone Academy offers focused training modules on relevant audit capabilities.

View all modules

Auditing AI Risk & Impact Management

Evaluate harm, impact and risk reasoning, intended use alignment, and decision traceability in ISO/IEC 42001

7 h

Auditing AI Risk & Impact Management

Evaluate harm, impact and risk reasoning, intended use alignment, and decision traceability in ISO/IEC 42001

7 h

Auditing AI Lifecycle & Data Governance Controls

Evaluate lifecycle and data governance controls across data sourcing, training, validation, deployment, monitoring, and change in ISO/IEC 42001

7 h

Auditing AI Lifecycle & Data Governance Controls

Evaluate lifecycle and data governance controls across data sourcing, training, validation, deployment, monitoring, and change in ISO/IEC 42001

7 h

AI Systems & Architectures

Core AI concepts, AI system types, AI agents, and the technical building blocks behind modern AI-enabled products and services

7 h

AI Limitations & Failure Modes

AI uncertainty, limitations and common failure modes across predictive and generative AI systems

7 h

AI System Lifecycle & Inventory

Define AI system scope, set lifecycle boundaries, and maintain an AI system inventory aligned with ISO/IEC 42001

7 h

AI Risk, Impact & Harm Assessment

Assess AI impacts and harms, document findings, and connect them to risk decisions in an AI management system

7 h

Operational Control of AI Systems

Define, implement and maintain operational controls for AI systems across deployment, change and monitoring

7 h

Auditing Context & Scope

Assess whether organisational context, interested parties, scope and system boundaries credibly reflect how the organisation operates

7 h

Auditing Leadership & Governance

Assess whether leadership commitment, policy direction and governance structures credibly steer the management system

7 h

Auditing Context & Scope

Assess whether organisational context, interested parties, scope and system boundaries credibly reflect how the organisation operates

7 h

Auditing Context & Scope

Assess whether organisational context, interested parties, scope and system boundaries credibly reflect how the organisation operates

7 h

Auditing Leadership & Governance

Assess whether leadership commitment, policy direction and governance structures credibly steer the management system

7 h

Auditing Leadership & Governance

Assess whether leadership commitment, policy direction and governance structures credibly steer the management system

7 h

Auditing Risk & Opportunity Management

Assess whether risk and opportunity management credibly informs organisational decisions and priorities

7 h

Auditing Risk & Opportunity Management

Assess whether risk and opportunity management credibly informs organisational decisions and priorities

7 h

Auditing Documented Information

Assess whether documented information is fit for use, internally consistent and credible as audit evidence

7 h

Auditing Documented Information

Assess whether documented information is fit for use, internally consistent and credible as audit evidence

7 h

Auditing Objectives & Performance Evaluation

Assess whether objectives and KPIs credibly measure and steer organisational performance

7 h

Auditing Objectives & Performance Evaluation

Assess whether objectives and KPIs credibly measure and steer organisational performance

7 h

Auditing Operational Control

Assess whether operational controls and process interactions work reliably in day-to-day practice

7 h

Auditing Operational Control

Assess whether operational controls and process interactions work reliably in day-to-day practice

7 h

Auditing Supplier & Outsourcing Management

Assess whether supplier and outsourced process controls manage risk effectively and achieve intended outcomes across organisational boundaries

7 h

Auditing Supplier & Outsourcing Management

Assess whether supplier and outsourced process controls manage risk effectively and achieve intended outcomes across organisational boundaries

7 h

Leading with Management Systems

Use management systems to drive performance, risk control and organisational credibility beyond certification

1.5 h

Leading with Management Systems in Practice

Apply executive judgement to turn management systems into drivers of reliability, trust and strategic performance

3 h

System Framing

Analyse organisational context, stakeholders and system boundaries to support effective management systems

7 h

System Leadership

Define clear policy direction and accountability through effective leadership responsibilities in management systems

7 h

Policy Management

Design coherent, auditable policy frameworks that align with strategy, scale across entities, and stay current without excess bureaucracy

7 h

Governance Design

Build the decision rights, governance meetings, escalation paths and evidence trails that make management systems work in practice

12 h

Resource Management

Ensure management systems are supported with sufficient people, time, budget, infrastructure and external support

7 h

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Explore Halderstone

Explore Halderstone

Explore Halderstone