ISO/IEC 42001 alignment

An AI management system your agents already run inside.

ISO/IEC 42001 is the first certifiable AI management system (AIMS) standard. Like ISO 27001 for security, it specifies a management system — policies, objectives, roles, controls, records, and continual improvement — for organizations that develop or use AI. It is auditable and certifiable by an accredited body. Cortex provides the operational substance an AIMS needs: the enforced controls and the tamper-evident records that auditors sample.

Built for ISO/IEC 42001:2023 · AIMS · Annex A controls

audit/verify
#101hash ✓#102hash ✓#103hash ✓#104hash ✓#105hash ✓
head 0x9f3a…c1ok: true
verifyChain ▸ chained SHA-256 · signed receipts
What ISO/IEC 42001 is

ISO/IEC 42001:2023 — AI Management System, in plain language.

ISO/IEC 42001:2023 follows the Annex-SL high-level structure shared by ISO 27001 and ISO 9001: context, leadership, planning, support, operation, performance evaluation, and improvement (Clauses 4-10), plus a normative Annex A of AI-specific controls covering data, model lifecycle, transparency, human oversight, and impact assessment. A management system is mostly about evidence — documented policies, records of operation, and proof of continual improvement. Cortex doesn't replace the management system, but it supplies the operational layer: Policy-as-Code is the documented control, the Trust Ledger is the record of operation, and the reliability score and evaluations are the performance evaluation feeding continual improvement.

applies to ▸ International · organizations operating AI systems

The obligations — and how Cortex maps to them

Each requirement becomes an enforced, recorded control.

An AIMS auditor samples records: do your documented controls actually operate, and can you prove it? Cortex makes the Annex A controls executable and keeps the records sealed so sampling finds substance, not slideware.

Clause 5-6 · Policy & planning
  • Policy-as-Code expresses controls as testable rules
  • Agent IAM assigns ownership and accountability
  • Risk register supports the AI risk assessment
  • Golden policy tests guard planned changes
Clause 8 · Operation (records)
  • Every run sealed into the hash-chained Trust Ledger
  • Signed receipts as durable records of operation
  • verifyChain proves records were not altered
  • Lineage records the operational context of decisions
Clause 9 · Performance evaluation
  • Reliability score measures agent performance over time
  • Evaluation suites benchmark quality and safety
  • Observability streams metrics for management review
  • Simulation lab supports internal audit of changes
Clause 10 · Continual improvement
  • Reliability score gates which versions may publish
  • Improvement loop feeds evals back into policy
  • Versioned ontology with draft / publish / rollback
  • Nonconformities surface as denied gates in the ledger
Annex A · Human oversight
  • Five Oversight Modes set the autonomy of each agent
  • Approval gate enforces human-in-the-loop control
  • Audited break-glass with a mandatory recorded reason
  • Risk floor cannot be loosened by autonomy settings
Annex A · Data for AI
  • Ontology object / property / action permissions
  • DLP screens data in and out of tool calls
  • Datapoint provenance documents data sources
  • Tenant isolation enforced on every query
The control mapping

From a written obligation to provable evidence.

Every obligation reduces to a fail-closed runtime gate whose verdict lands in a tamper-evident ledger you can hand an examiner. This is the table a Compliance Pack exports for this framework.

ObligationEnforced Cortex controlLedger evidence
Clause 6 — AI risk assessment & treatmentRisk register + Policy-as-Coderisk tier · golden tests
Clause 8 — operational records of the AIMSTrust Ledger (hash-chained)verifyChain ▸ ok:true
Clause 9 — monitoring & management reviewObservability + reliability scorequality { overall: 100 }
Clause 10 — continual improvementEvals → reliability gate → publishversion gated on score
Annex A — human oversight of AIOversight Modes + approval gate409 hold · approver receipt
Records are complete & tamper-evidentSigned receipts, sealed chainhashOk:false flags edits
Compliance Packs

One-click evidence export, straight from the Trust Ledger.

An ISO 42001 audit is an evidence exercise: the auditor samples records of operation and looks for continual improvement. A Compliance Pack maps the clauses and Annex A controls to their Cortex enforcement and bundles the sealed records and reliability trends an assessor will sample.

  • The ISO/IEC 42001 control map, generated — not assembled by hand
  • Sealed run records you can verifyChain offline
  • Datapoint provenance: every fact threads back to its source
  • Honest by construction — evidence is generated, never asserted
01 · Humanrisk-ops@nw02 · AgentFraud Triage03 · Skilltriage.v404 · Promptsha 0x3a…05 · Policyapprove≥5k06 · Modelclaude-opus07 · ToollookupCase08 · Artifactmemo #447109 · Outcomeapproved10 · Approvalj.lee
Prove it — don't just claim it

The ISO/IEC 42001 verdicts you'll see in the demo.

These are not slideware promises — they are the literal codes and receipts the runtime returns when you challenge it against this framework's controls.

gate verdicts ▸ ISO/IEC 42001
Record of operation sealedverifyChain ok:trueproven
Performance metric for review{ overall: 100 }enforced
Version blocked below reliability gatepublish deniedenforced
Property-level data control fired403 read deniedenforced
compliance-pack ▸ generated from the trust ledger · verifiable offline
Getting audit-ready

Three steps from ISO/IEC 42001 on paper to provable.

  1. 01

    Map

    Pick ISO/IEC 42001. Cortex lines each obligation up against the runtime gate that enforces it — no spreadsheet archaeology.

  2. 02

    Enforce

    Every agent run passes the same fail-closed gates. A denied control returns a real code (402 / 403 / 409) — never a silent pass.

  3. 03

    Prove

    Export a Compliance Pack: the mapping table plus the sealed ledger records that show each control fired, verifiable offline.

Aligned with — never certified-claimed

ISO/IEC 42001 is certified by an accredited body, not by a vendor. Cortex is built for and aligned with the standard and provides the operational controls and records an AIMS needs; the certification is awarded to your organization, not to Cortex.

Compliance framing

Built for the frameworks your auditors already cite.

The sealed ledger, signed receipts, and lineage graph map to the obligations across every regime you report against — aligned with, never claiming a certification you don't hold.

EU AI ActNIST AI RMFISO 42001SOC 2HIPAAFINRAIRS Circular 230

Turn ISO/IEC 42001 from a burden into a button.

See how Cortex maps ISO/IEC 42001 to enforced controls and exports auditor-grade evidence on demand.