v2.4.0 | Report Errata
docs operations docs operations

Quarterly Oversight Reviews — Six Agenda Items The AI Governance Lead convenes a quarterly review examining six areas: monitoring metric trends and threshold adequacy, operator escalation patterns (are operators escalating, and if not, is the pathway working?), break-glass procedure readiness, non-conformity register status, training and certification currency, and external developments affecting the system’s risk profile. The review produces documented minutes with action items, owners, and deadlines. Each item is tracked to completion. The quarterly review is the primary governance mechanism ensuring that operational oversight remains effective over time. Key outputs

  • Six-area structured review agenda
  • Documented minutes with tracked action items
  • Governance mechanism for sustained oversight effectiveness
  • Module 7 AISDP evidence

Annual Oversight Audit — Six Verification Areas The Internal Audit Assurance Lead conducts an annual audit testing six areas: whether the monitoring infrastructure is capturing required data, whether escalation pathways are functioning, whether break-glass procedures work as documented, whether training records are current, whether non-retaliation commitments are being honoured, and whether the oversight framework is proportionate to the system’s risk profile. Findings are reported to the audit committee. The annual audit provides the independent assurance that the quarterly self-assessment cannot; the AI Governance Lead’s review of their own governance framework benefits from external verification. Key outputs

  • Six verification areas tested annually
  • Internal Audit Assurance Lead independence
  • Audit committee reporting
  • Module 7 AISDP evidence

Lessons Learned Integration Findings from quarterly reviews, annual audits, break-glass exercises, and actual incidents are documented and integrated into the AISDP. Each finding that results in a change to the system, its documentation, or its operational procedures creates a new AISDP version, maintaining the living document principle. Lessons learned integration closes the governance feedback loop: operational experience improves the oversight framework, the improved framework produces better oversight, and better oversight produces new lessons. A system whose oversight framework is identical to its initial deployment state after two years of operation has failed to learn from its operational experience. Key outputs

  • Findings from reviews, audits, exercises, and incidents integrated
  • AISDP version updates from lessons learned
  • Governance feedback loop closure
  • Living document principle maintained
On This Page