Internal Audit AI Use Case Assessment Tool
ISO/IEC 42001-aligned assessment for inherent risk, control effectiveness, residual risk, and audit prioritisation.
Low = Blue
Medium = Amber
High = Red
Assessment Intake
Assessment Details
Capture the core administrative, use case, and governance context before scoring the AI solution.
Assessment Administration
Basic ownership and review details for the assessment record.
AI Use Case Profile
Describe what the AI solution does, where it is used, and how decisions are influenced.
Governance and Control Context
Capture regulatory sensitivity, oversight arrangements, third-party exposure, and operational readiness.
Scoring Settings
Methodology
Inherent Risk = ((Likelihood × Likelihood Weight) + (Impact × Impact Weight)) ÷ 100. Residual Risk = Inherent Risk × Control Factor, where stronger controls reduce the residual score.
Control Effectiveness scale: 1 = Weak, 2 = Limited, 3 = Moderate, 4 = Strong, 5 = Very Strong.
Overall Inherent Risk
0.00 / 5.00
0%
Overall Residual Risk
0.00 / 5.00
0%
Risk Temperature
Low
Audit Conclusion
Monitor Only
Automated audit prioritisation
Review Frequency
Annual
Recommended reassessment interval
Residual Risk Counts
High: 0
Medium: 0
Low: 0
Risk Category Assessment
| Category | Description | Likelihood | Impact | Control Effectiveness | Inherent | Residual | Rating | Heat |
|---|
Category Summaries