Audits & Assessments

Ensure you company is compliant, secure, and validated

Tailored AI & Cybersecurity Audits

 

Ensure your organization meets legal mandates and insurance requirements for cybersecurity and AI accountability. We offer comprehensive AI & Cyber Risk Audits designed specifically to validate your organization’s controls, practices, and safeguards against required regulatory, contractual, and insurance obligations. 

  • Ensure controls, response plans, and third-party risk management meet the defined expectations.
  • Validated proof of your security program or automated decision-making practices.

Whether you’re preparing for cyber liability insurance underwriting, responding to legal discovery, or aligning with AI regulations like the EU AI Act, NIST AI RMF, or state-level privacy laws, our audit ensures you’re not just checking boxes but demonstrating verified, defensible compliance.

Artificial Intelligence (AI) Audits

ISO/IEC 42001 AI Management System Readiness Assessment or Audit

Assess your AI Management System (AIMS) against the ISO/IEC 42001 standard, the first international standard for AI management systems.

 

NIST AI Risk Management Framework (RMF) Readiness Audit

Prepare your organization for the NIST AI RMF, which guides the management of risks associated with AI systems.

Audit Process:

  • Assessment: Evaluate AI systems against the NIST AI RMF’s core functions: Map, Measure, Manage, and Govern.
  • Gap Analysis: Identify areas for improvement and develop a roadmap for alignment with the framework.
  • Maturity Assessment and Report: Summarized maturity assessment report highlighting current maturity and concise recommendations. ​

 

EU AI Act Compliance Audit

Ensure your AI systems comply with the EU AI Act, which categorizes AI applications based on risk levels and imposes corresponding requirements.

Audit Process:

  • Risk Classification: Determine the risk category of your AI systems (minimal, limited, high, or unacceptable).
  • Compliance Assessment: Evaluate adherence to requirements such as transparency, data governance, and human oversight.
  • Remediation Plan: Provide recommendations to address identified compliance gaps.

 

NYC Local Law 144 Bias Audit

For organizations using Automated Employment Decision Tools (AEDTs) in New York City, conduct annual bias audits to comply with Local Law 144.

Audit Process:

  • Pre-Audit Scoping: Determine the scope of AEDTs and required documentation.
  • Audit Review: Evaluate AEDTs for potential biases, on selection rates and impact ratios of protected categories.
  • Final Report: Provide a public report detailing audit findings and compliance status.

 

EEOC Bias Audit

Proactively Address Algorithmic Bias in Employment Practices

With an increased focus on fairness in employment by regulators and society, organizations that use algorithmic or automated systems in hiring, promotion, or evaluation must ensure these systems are free from bias and aligned with the principles of the Equal Employment Opportunity Commission (EEOC).

  • Scope & System Review: Inventory all systems and vendors involved in employment decision-making.
  • Bias & Fairness Assessment: Analyze outcomes across race, sex, national origin, disability, age, and other protected categories.
  • Legal & Ethical Gap Analysis: Assess compliance with EEOC guidance, Title VII, ADA, and relevant state laws.
  • Mitigation & Remediation Plan: Recommend changes to system design, data collection, documentation, or usage.

 

Digital Services Act (DSA) Compliance Audit

Achieve Transparency, Safety, and Governance at Platform Scale

The EU Digital Services Act (DSA) introduces sweeping new obligations for digital platforms, especially Very Large Online Platforms (VLOPs) and Very Large Online Search Engines (VLOSEs). It mandates risk management, algorithmic transparency, content moderation standards, and systemic auditability.

DSA Compliance Audit Process:

  • Platform Scope & Risk Profiling
  • Risk Mitigation & Transparency Assessment
  • Algorithmic System & Data Governance Review
  • Audit Trail & Reporting Framework

Cybersecurity Assessments

NIST CMMC & CSF Maturity Audits

Align your cybersecurity practices with the NIST CSF to manage and reduce cybersecurity risk.

  • Assessment: Evaluate current cybersecurity posture against the five core functions: Identify, Protect, Detect, Respond, and Recover.
  • Gap Analysis: Identify areas for improvement and develop a roadmap for alignment with NIST CSF.

CMMC Readiness Assessment

  1. Scope Definition & Documentation Review
  2. Gap Assessment Against CMMC Practices
  3. Risk-Based Prioritization
  4. Remediation Roadmap
  5. Mock Assessment (Optional)

ISO 27001 Readiness Assessment or Auditor

Assessed Intelligence provides ISO/IEC 27001 audit and readiness support to help organizations achieve and maintain compliance with this global information security standards. Our services include internal audits, gap assessments, and certification readiness.

Demonstrate not only that your organization takes risk seriously, but also that your controls are independently verified, defensible, and aligned with the future of AI and cybersecurity.