AI governance and risk
- Types of AI and machine learning models
- Overview of AI lifecycle from planning to decommissioning
- Business use cases, cost-benefit analysis, and deployment options
- Governance strategies, roles, and AI-specific policies
- AI training, awareness, and metrics
- AI risk landscape, identification, assessment, and monitoring
- Data governance for AI (classification, licensing, retention)
- Privacy and regulatory considerations (GDPR, consent, ownership)
- Ethical practices including bias, fairness, and transparency
AI operations
- AI-specific data management (collection, confidentiality, security)
- Managing AI lifecycle phases with development methodologies
- Privacy-by-design and security-by-design principles
- Change management considerations for AI environments
- Supervision strategies: human-in-the-loop, observability, hallucination
- Testing AI models: from conventional to AI-specific techniques
- Threats and vulnerabilities including model poisoning and prompt injection
- Incident response planning, assessment, containment, and review
AI auditing tools and techniques
- Planning and designing an AI audit
- Identifying AI assets and controls
- Common audit use cases and auditor training needs
- Audit testing and sampling
- AI testing methodologies and sampling strategies
- Expected outcomes and performance indicators
- Data handling, transformation, and extraction
- Walkthroughs, interviews, and AI-driven log analysis
- Ensuring clean, relevant data
- Applying sentiment analysis and advanced dashboards
- Advisory reporting, visuals, and automation
- Conducting audit follow-up and ensuring quality assurance
- Evidence collection techniques
- Data quality and analytics
- Reporting AI audit outcomes
Exams and assessments
The ISACA Advanced in AI Audit exam voucher is included, taken, and booked post course directly via ISACA
Hands-on learning
Participants will:
- Analyse case studies simulating real-world AI audit challenges
- Perform structured walkthroughs and risk assessments
- Evaluate audit evidence using simulated data sets
- Apply concepts through guided scenarios on AI lifecycle, privacy, and governance
- Participate in instructor-led discussions to enhance cross-functional audit understanding
Product Access Change
Important Update to ISACA Product Access Periods
Effective 16 April 2026, ISACA is changing product access times from 12-months to 6-months across Exams, QAE, Online Review Courses, non-sponsored Webinars, and Virtual Workshops.
Access periods will change from 12 months to 6 months, as outlined below.
How the New Access Windows Work
- 1. Assignment & Redemption Window: Products must be assigned and redeemed within 6 months of the purchase date.
- 2. Access & Completion Window: Once redeemed, learners will have 6 months of access to use the product. This includes - Accessing learning content, Scheduling exams, Sitting exams (where applicable).
What This Means for You as a Learner
- Review Manuals – Learners will continue to have longterm access
- QAE Databases & Online Review Courses – Available for 6 months after redemption
- Exams – Must be scheduled and completed within 6 months of redemption
- We recommend redeeming products promptly and planning your study and exam schedule early to make the most of your access period.