AI Risk and Compliance: Audit and Governance Foundations

This advanced course provides a practical, end-to-end approach to governing, securing, and auditing AI systems in enterprise environments. Learners begin by examining adversarial threats to AI systems—including jailbreaks, prompt injection, data leakage, manipulation, and misinformation attacks—and practice structured red teaming using both manual and automated techniques. Participants learn how to analyze vulnerability severity and exploitability, prioritize remediation, and evaluate AI system readiness under adversarial conditions while communicating findings through clear, audit-ready documentation. The course then explores regulatory and governance frameworks, focusing on the EU AI Act and the NIST AI Risk Management Framework (Govern, Map, Measure, Manage). Learners analyze AI system classifications, risk tiers, and obligations, and apply NIST AI RMF principles across the AI lifecycle. The course also covers key legal and compliance risks, including copyright, licensing, and data usage concerns in training data and outputs, and guides learners in creating concise compliance documentation and policies aligned with EU AI Act and NIST AI RMF requirements. Learners dive into explainability for LLMs and other AI models, exploring challenges and techniques such as SHAP, LIME, and attention visualization. They apply these tools to generate human-readable explanations, and critically evaluate the faithfulness, reliability, and quality of these explanations for different stakeholders. Finally, the course turns to safety engineering and organizational governance, including implementing guardrails frameworks (e.g., Guardrails AI, NVIDIA NeMo) and using Presidio for PII detection, masking, and anonymization in AI and RAG pipelines. Learners assess Shadow AI risks and design governance strategies, monitoring, and control architectures that mitigate unsafe AI usage, document vulnerabilities, and support continuous regulatory compliance. Disclaimer: This is an independent educational resource created by Board Infinity for informational and educational purposes only. This course is not affiliated with, endorsed by, sponsored by, or officially associated with any company, organization, or certification body unless explicitly stated. The content provided is based on industry knowledge and best practices but does not constitute official training material for any specific employer or certification program. All company names, trademarks, service marks, and logos referenced are the property of their respective owners and are used solely for educational identification and comparison purposes.