Got a question? Call  +640800835835    |   
Contact usCheckoutContact us
Advanced in AI Risk (AAIR™)
Main menu
Got a question? Contact us
or call  +64 0800 835 835
Cyber Security Category

Advanced in AI Risk (AAIR™)

  • Length 2 days
Course overview
View dates &
book now
Register interest

Why study this course

The ISACA® Advanced in AI Risk™ (AAIR™) certification validates risk professionals’ expertise and experience in managing AI-specific risks while harnessing AI’s transformative potential for strategic advantage. This credential builds upon established risk management best practices, focusing on the evolving AI landscape to effectively assess and manage risk profiles within organisations. By fostering cross-functional collaboration, it equips professionals to communicate AI risk comprehensively and ensure ethical and regulatory compliance.

The ISACA AAIR (Advanced in AI Risk) certification is designed for experienced IT risk professionals who are already working in environments where AI is a significant part of operations. It focuses on evaluating AI-related vulnerabilities, assessing opportunities and impacts, and managing the entire AI risk lifecycle. The certification is not intended for beginners but is tailored for those with a solid foundation in risk management, such as CRISC holders, who need to extend their expertise into AI-specific areas.

This course includes a digital courseware manual and 6 months access to the AAIR Questions, Answers and Explanations (QAE) database.

Please note: The exam is not included in the course fee but can be purchased separately. Please contact us for a quote.

Request Course Information

What you’ll learn

  • AI Governance and Framework Integration

  • AI Lifecyle Risk Management

  • AI Risk Program Management

ISACA Accredited Elite Partner Logo

ISACA at Lumify Work

ISACA provides practical guidance, benchmarks and other effective tools for all enterprises that use information systems. Through its comprehensive guidance and services, ISACA defines the roles of information systems governance, security, audit and assurance professionals worldwide.

Lumify Work is an Accredited Elite Partner of ISACA.

View all ISACA at Lumify Work courses

Who is the course for?

This certification is recommended for active holders of CISA, CISM, CRISC, CGEIT, CDPSE and other recognised certifications who also have proven experience in it risk or advisory roles.

Course subjects

Domain 1: AI Risk Governance and Framework Integration

AI Models, Frameworks, Strategies, and Use Cases

  • Types of AI

  • AI Frameworks

  • Business Use Case and AI Use Case Review

  • AI Business Strategies

AI Organisational Processes and Alignment

  • AI Governance Fundamentals

  • Alignment to Existing Organisational Structures

AI Ownership, Oversight, and Accountability

  • AI-related Roles and Responsibilities

  • Accountability and AI

  • RACI for AI Solutions

AI Policies, Procedures, and Organisational Training

  • AI Acceptable Use Policy

  • AI Policy Development

  • AI Procedures and Manuals

  • Organisational Culture and AI Risk Governance

  • Elements of Effective AI Training and Awareness

AI Regulatory Compliance and Legal Considerations

  • Compliance With Laws and Regulations

  • Gaps in Regulatory Coverage

  • Mapping Legal Requirements for AI

  • Assessing Legal Exposure and Liability for AI Actions

  • Intellectual Property Considerations in AI

  • Vendor Contract Review

AI Trustworthiness, Ethical and Societal Implications

  • Responsible Use of AI Systems 68

  • Bias and Fairness

  • Transparency and Explainability

  • Trust and Safety

  • Human Rights and Societal Impact

  • Environmental Impact

Domain 2: AI Life Cycle Risk Management

AI Design, Development, Procurement, and Documentation

  • Plan and Design

  • Data Requirements for AI Models

  • Procurement of AI Solutions

  • Build, Adapt, and Document Models

AI Model Training, Testing and Validation

  • Sourcing Datasets

  • Validating the Data

  • Model Training

  • Model Testing and Validation

  • Model Performance and Fine Tuning

AI Implementation, Maintenance, and Decommissioning

  • AI Deployment and Implementation

  • Robustness and Scalability Considerations

  • Monitoring and Managing Model Drift

  • Change Management in AI Systems

  • Decommissioning AI Solutions

AI Data and Asset Management

  • AI Asset Inventory

  • Data Collection for AI

  • Data Classification

  • Data Confidentiality

  • Data Quality

  • Data Balancing

  • Data Scarcity

  • Data Security

  • Data Preparation and Normalisation

  • Data Minimisation and Privacy Considerations

Domain 3: AI Risk Program Management

AI Risk Scenario Identification and Assessment

  • AI Threat Landscape

  • AI Threat Modeling

  • Development of AI Risk Scenarios

  • AI Risk Classification

  • AI Risk Assessment

AI Risk Treatment Strategies

  • Accept

  • Avoid

  • Mitigation

  • Transfer/Share

AI Controls Management

  • AI Control Types and Control Frameworks

  • AI Control Selection and Validation

  • Control Performance

  • Controls Specific to AI Solutions

  • Use of AI in Control Management

AI Risk Metrics, Monitoring, and Reporting

  • Risk and Performance Metrics

  • AI Risk Reportings

AI Supply Chain Risk Management

  • AI Vendor Management

  • AI Shared Responsibility Model

  • AI Software Supply Chain Risk

  • Cloud Computing Risk in AI Supply Chains

AI Incident Response, BIA, Business Continuity, and Disaster Recovery

  • AI Business Impact Analysis

  • Prepare

  • Identify and Report

  • Assess

  • Respond

  • Post-incident Review

Prerequisites

If you are planning on sitting the exam, you need to pass the exam and possess one of the following:

• ISACA Designation: CISA, CISM, CRISC, CGEIT, CDPSE

• Non-ISACA Designation: CRMP, CRMP-FED, CRMA, CERP, CRCM, CGRC, CISSP, CIA, ANAN CAN, Canadian CPA, AACA, FCCA, Japanese CPA, ACA, FCA, CA ANZ, FCA ANZ, CPA HKICPA, or FCPA HKICPA certification

Industry Association Recognition

This course is eligible for Continuing Professional Education (CPE) hours/points to assist in maintaining your ISACA certification.

  • Contact hours: 14 hours

  • Continuing Professional Education: 14 CPEs

If you wish to claim CPEs, Lumify Work can verify your attendance. Please complete this ISACA form and email us at nz.training@lumifywork.com.

Lumify Work is proud to be Cyber Security Training Business of the Year

Australian Cyber Awards 2025 winner Cyber Security Training Business of the Year

Terms & Conditions

The supply of this course by Lumify Work is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.

Request Course Information

Awaiting course schedule

If you would like to receive a notification when this course becomes available, enter your details below.

Personalise your schedule with Lumify USchedule

Interested in a course that we have not yet scheduled? Get in touch, and ask for your preferred date and time. We can work together to make it happen.

Looking for more course options?

View all ISACA coursesView all Cyber Security coursesView all AI and Machine Learning courses