ISO/IEC 42001: AI governance, and how Senserva helps you prove it

ISO/IEC 42001 is the first international management system standard for artificial intelligence. It asks an organization to govern AI on purpose: set a policy, assess AI risk and impact, manage the AI lifecycle, and keep evidence that the controls are working. As Microsoft Copilot and AI agents move into everyday tenants, that governance has to cover the AI your people already use.

Senserva is not a certification body. What Senserva does is give you the running, repeatable evidence an ISO/IEC 42001 program needs for the Microsoft side: it audits the configuration of Microsoft AI and agents, ranks the risks, and produces audit-ready reports you can hand to an assessor today.

What ISO/IEC 42001 actually requires

Published in December 2023, ISO/IEC 42001 defines an AI Management System (AIMS). It uses the same management-system structure as ISO/IEC 27001, so if you have run an ISMS the shape is familiar: a Plan-Do-Check-Act cycle across these clauses.

Clause What it asks for
4. ContextUnderstand where and how AI is used, by whom, and the scope of the AIMS.
5. LeadershipAn AI policy, roles, and accountability set by leadership.
6. PlanningAI risk assessment and AI system impact assessment, with objectives to address them.
7. SupportResources, competence, awareness, and documented information.
8. OperationRun the controls: manage the AI lifecycle, data, and third-party AI in practice.
9. PerformanceMonitor, measure, audit internally, and review with management.
10. ImprovementCorrect nonconformities and improve the system over time.

Annex A lists the AI-specific controls (control objectives across areas such as AI policy, internal organization, resources for AI systems, the AI system lifecycle, data for AI, information for interested parties, use of AI systems, and third-party relationships). Clauses 9 and 10 are where most programs struggle, because they need continuous, current evidence rather than a one-time document.

How Senserva helps today: auditing Microsoft AI and agents

An AI policy on paper is not evidence. ISO/IEC 42001 wants proof that the controls run. Senserva scans the Microsoft AI surface in your tenant, every time, and turns it into ranked findings and audit-ready reports. That is the operational and performance evidence clauses 8 and 9 ask for.

Copilot and AI agent configuration
Senserva inspects how Microsoft Copilot and AI agents are configured in the tenant: who can use them, how they are exposed, and the settings that govern their reach.
App and agent permissions
OAuth grants, app registrations, and service principals are audited for over-broad scopes, so an AI app cannot quietly hold more access than it needs.
Data exposure and access
The identity, SharePoint, and access posture that decides what an AI assistant can reach is part of the same scan, so oversharing risk is visible, not assumed.
Logging and monitoring
Audit-log and sign-in health checks give you the monitoring evidence clause 9 expects, so AI use can actually be reviewed.

For the detail on exactly what the scanner checks on the Microsoft AI surface, see Microsoft AI security.

Mapping Senserva to ISO/IEC 42001

Senserva does not replace your AIMS. It supplies the Microsoft-side evidence for the controls that are hardest to keep current.

ISO/IEC 42001 area How Senserva provides evidence
AI risk assessment (Clause 6)Ranked findings across the Microsoft AI surface, prioritized by real-world risk, give you a repeatable input to the risk assessment.
AI system lifecycle and use (Annex A)Continuous configuration checks on Copilot and AI agents show the controls around how AI is deployed and used are actually in place.
Data for AI (Annex A)Identity, access, and SharePoint posture surface where an AI assistant could reach data it should not.
Third-party AI (Annex A)App registrations, OAuth grants, and service principals for AI apps are audited for excessive permissions.
Performance evaluation (Clause 9)Scheduled re-scans and audit-ready reports give you the monitoring and internal-audit evidence, with a clear before and after when you fix something.
Improvement (Clause 10)Validated, approve-before-apply remediation closes findings, and the next scan proves the nonconformity is resolved.

The AI you build should be governable too

ISO/IEC 42001 also asks that your own use of AI be responsible. Senserva's AI features are built that way on purpose: you bring your own model, your data stays on your machine, every answer is grounded in your real findings, and every remediation is reviewed before it is applied. That is the posture an assessor wants to see, and it is documented in Senserva Trustworthy AI.

Microsoft AI security AI compliance Scan your tenant free

Explore the AI Enhanced suite

Agentic AI for Microsoft 365 security, end to end. Each piece works with the AI of your choice.

Works with any AIChatGPT, Claude, Gemini, Copilot, or a local model, with a built-in prompt builder. Claude & MCPRun Microsoft 365 security agentically from Claude through the Senserva MCP. AI security reportsSix AI-enhanced report types generated from one scan. AI remediationValidated, approve-before-apply fixes for every finding. AI complianceMap and close gaps against CISA SCuBA, MCSB, and more.