As artificial intelligence becomes embedded in core business processes, auditors, regulators, and boards are raising the bar. Organisations are increasingly expected not only to demonstrate what their AI does, but also how it is governed, controlled, and validated — particularly where AI influences financial reporting or regulated activities.
What this publication covers
Our publication "Responsible AI and Audits" provides a practical perspective on what organisations need to know — and do — to be prepared for audit scrutiny in the age of AI:
- Governance frameworks: Establishing robust structures covering AI decision-making, explainability, data lineage, and documentation.
- Risk management integration: Embedding AI-specific risks into existing risk taxonomies and control assessments.
- AI inventory: Building a complete and transparent inventory of AI use cases, with particular focus on those carrying financial or regulatory relevance.
- Risk-based assurance: Prioritising assurance efforts based on business function, data sensitivity, and materiality.
- Output validation and controls: Demonstrating effectiveness through documented reviews, exception logs, and human oversight.
- Team alignment: Equipping Finance, IT, Internal Audit, and R&D teams to confidently explain AI usage, governance, and validation during audits.
Who should read this
This publication is designed for CFOs, Audit Committees, Internal Audit functions, and leaders across finance, IT, and technology — particularly within Swiss organisations that rely on Internal Control Frameworks or operate under SEC/SOx or FINMA regulation.