Understanding AI Use, Certifications and Risk Classification
Some fields in asset documentation are designed for advanced compliance topics, such as AI usage, certifications and risk classification.
AI and Data Use
- Whether the system uses AI
- Whether there’s an AI-related risk
- If your company’s data is used to train the model
Certifications
Mark if the system (or vendor) holds relevant certifications:
- ISO 27001
- ISAE 3402
- SOC 2
You can link directly to documents or notes.
Risk Classification
Assets marked as critical are automatically included in:
- NIS2 risk assessments
- Asset-level security planning
You can also mark which security Measures are implemented vs. planned.
Related Articles
- Creating NIS2 Risk Reports
- Security Measures and Controls