[FINOS Community] AI Governance Framework v1 Released

2 views
Skip to first unread message

'Colin Eberhardt (He/Him)' via FINOS Announcements

unread,
Jun 21, 2025, 1:15:00 PMJun 21
to anno...@finos.org
Hi All,

Over the past few months we have made amazing progress on the AI Governance Framework (AIGF). I am happy to announce that the v1 release is live: 


This framework was developed by a sub-group of the AI Readiness SIG. We have a total of 34 documented risks and mitigations. That's 2,569 lines of text  and 33,827 words. An amazing effort.

We have mappings to seven different external references:
  • OWASP LLM Top 10
  • OWASP Machine Learning Security Top 10
  • FFIEC
  • EU AI Act
  • ISO42001
  • NIST Trustworthy and Responsible AI (NIST AI 600-1)
  • NIST Special Publication 800-53
Which far exceeds are earlier goal to map to just NIST and OWASP. 

A big thank-you to all the recent contributors. Well done all.

So, what's next?
  • A closer collaboration with Common Cloud Controls, to make it easier to provably implement AI controls
  • An exploration of further "AI Readiness" issues. We have a governance framework that helps ease adoption, what AI challenges do we want to tackle next? (there are more than enough of them)
  • Create a reference implementation of an AI system, with AIGF controls.
  • Explore how the AIGF needs to evolve to tackle the growing challenges of Agentic AI.
  • And more ... this is open source ... your ideas and creativity are critical

Call to action:
  • Take a look at the AIGF, if you like it, give it a try within your organisation (I'd be happy to discuss and assist).
  • At the very least give the repo a star!
  • Join the AI Readiness SIG, to tackle AI challenges


Regards, Colin E.

The contents of this email and any attachments are intended solely for the addressee and may contain confidential or legally privileged information. If you have received this message in error, please send it back to us, and immediately and permanently delete it. The information may not be used or disclosed except for the purpose for which it has been sent.

Email is susceptible to data corruption, interception, unauthorised amendment, viruses, and unforeseen delays. Although Scott Logic Limited has taken reasonable precautions to avoid these situations, it cannot accept responsibility for any loss or damage sustained as a result of any of these actions and the recipient must ensure that the email (and attachments) are virus-free.

Please note, that we do not accept notification of changes to bank account details by email. This applies to notifications from or to us.

Scott Logic Limited is a limited company registered in England and Wales with registration number 05377430. Registered office address: 6th Floor, The Lumen, St James Boulevard, Newcastle Helix, Newcastle upon Tyne, NE4 5BZ . Our VAT number is 866 1051 30.

--
--
To unsubscribe from this group, send email to community+...@finos.org
View this message at https://groups.google.com/a/finos.org/d/msg/community/topic-id/message-id
 
Stay informed on the latest updates from FINOS, including the FINOS newsletter and notifications of upcoming FINOS events - see www.finos.org/sign-up
Reply all
Reply to author
Forward
0 new messages