ChaptersCircleEventsBlog
Share how your organization adapts IAM practices to AI. Take the AI Identify Risk & Readiness Survey today!

Publication Peer Review

AICM to ISO 42001 Mapping
AICM to ISO 42001 Mapping

AICM to ISO 42001 Mapping

Open Until: 07/10/2025

The Cloud Security Alliance (CSA) invites public peer review of its draft mapping between the AI Controls Matrix (AICM) and ISO 42001 complemented by ISO 27001 and 27002 . This initiative supports our ongoing commitment to harmonize AI security and governance frameworks, enabling organizations to better manage AI-specific risks across regulatory and industry-aligned standards.


The purpose of this review is to validate the accuracy, completeness, and applicability of the control mappings, and to ensure that they support practical and actionable implementation of AI risk management practices. The mappings identify areas of full, partial, or no alignment between the AICM and ISO 42001 complemented by ISO 27001 and 27002 , and where appropriate, offer interpretive guidance or addendums to support implementation.


By aligning these frameworks, CSA aims to:

  • Promote consistent and secure deployment of AI/ML systems
  • Facilitate easier compliance with emerging AI regulations and standards
  • Increase transparency and interoperability across governance programs
  • Support organizations in operationalizing AI risk management with confidence

The peer review period has concluded. Stay tuned for the release of the final document!