# ISO 42001 AI Risk Register > Draft and validate the AI risk register for ISO/IEC 42001:2023 with ownership, treatment, and residual risk. Tags: ISO 42001, Risk Register, Risk Management, Compliance, AI ## Example Prompts - Draft our AI risk register for ISO 42001 - Update the risk register with new risks and owners - Validate our risk register for audit URL: https://rakenne.app/skills/iso42001-risk-register/index.md Try this skill: https://rakenne.app/a/?skill=iso42001-risk-register ## Overview Draft and validate the AI risk register for ISO/IEC 42001:2023 with ownership, treatment, and residual risk. ## Getting Started Add your source materials to the project workspace, then activate the *ISO 42001 AI Risk Register* skill. The agent will guide you through the process step by step. ## Example conversation **You:** We need an AI risk register for our recommendation engine—bias, transparency, data, and operational risks—with owners, treatment, and residual risk. **Agent:** I’ll draft the risk register using the skill’s requirements: risk identification (AI-specific), evaluation (likelihood/impact), treatment (accept/mitigate/transfer/avoid), control owner, residual risk, and status. I’ll link to our impact assessment and methodology where relevant. Then I’ll run **risk_register_check** to confirm all required elements are present. ## Output excerpt ### AI risk register excerpt | Risk | Evaluation | Treatment | Owner | Residual risk | Status | |------|------------|-----------|-------|--------------|--------| | Bias in recommendations affecting protected groups | M / H | Mitigate | Product lead | Medium (after bias testing and monitoring) | Mitigation in progress | | Lack of transparency on AI-driven content | L / M | Mitigate | Product lead | Low | Implemented: in-app disclosure | | Training data quality or provenance gap | M / H | Mitigate | Data lead | Medium | Data governance procedure in place | | Model drift degrading performance | M / M | Mitigate | ML engineer | Low | Monitoring and retrain process defined | ## Extension and validation The skill includes **risk_register_check**, which validates the AI risk register draft for required elements: risk identification/description; risk evaluation; risk treatment; control/risk owner; residual risk; status or mitigation progress. Run it after drafting to ensure the register is complete for audit. --- Back to [Skill Library](https://rakenne.app/skills/index.md)