Risk Register Template (AI)

Risk Register Template (AI)

Zen AI Governance — Knowledge Base Templates & Toolkits Updated 19 Nov 2025 www.zenaigovernance.com ↗

Risk Register Template — Artificial Intelligence Systems

ISO 42001 Template Risk Management Toolkit
+ On this page
Key takeaways
  • Captures AI risks across design, data, model and post-market stages.
  • Each entry is quantified and linked to evidence (EV-IDs) and CAPA logs.
  • Supports automated reporting to PMM dashboards and governance reviews.

Purpose & Scope

This template enables teams to record, evaluate and treat AI-related risks in a consistent and traceable manner. It is used during model design reviews, pre-deployment validation, and quarterly AIMS risk assessments.

Register Structure & Field Guide

FieldDescriptionExample
Risk IDUnique identifier for tracking and audit reference.AI-R-2025-002
CategoryOperational / Technical / Ethical / Legal / Reputational.Ethical
Process StageDesign / Data / Model / Post-Market.Data Preparation
Risk DescriptionConcise statement of risk scenario.Biased training dataset causing unequal outcomes.
Impact (1–5)Severity of consequence if realised.5
Likelihood (1–5)Probability of occurrence.4
Inherent Risk ScoreImpact × Likelihood (before controls).20
Controls in PlaceExisting technical / organisational measures.Bias testing script + review board
Residual Risk ScorePost-control calculated risk.8
OwnerAccountable person or role.AI Ethics Officer
Evidence IDLink to EV-### artefacts.EV-FAI-007
StatusOpen / Mitigated / Closed.Mitigated
Next Review DateScheduled follow-up review.2025-12-30

Risk Scoring Model & Colour Bands

  • Formula: Score = Impact × Likelihood (1 – 25 range).
  • Bands: Low (1–5 = Green) / Medium (6–10 = Amber) / High (11–15 = Orange) / Critical (>15 = Red).
  • Control Effectiveness Factor: Strong (× 0.5) / Moderate (× 0.75) / Weak (× 1.0).
  • Heatmap: Matrix auto-generated in Zoho Analytics or Sheets.

Sample Risk Entries

Risk IDRisk TitleStageScoreOwnerStatus
AI-R-2025-011Model drift reducing accuracy below thresholdPost-Market12ML Ops LeadOpen
AI-R-2025-013Prompt injection attack on AnswerBotDeployment16Security EngineerMitigated

CSV Schema & Form Layout

Risk_ID,Category,Process_Stage,Risk_Description,Impact,Likelihood,Inherent_Score,Controls,Residual_Score,Owner,Evidence_ID,Status,Next_Review

Framework Alignment

FrameworkReferenceRelevance
ISO/IEC 42001§6.1 & §9.1Risk management and evaluation process.
NIST AI RMFMap & ManageIdentification and treatment of AI risks.
EU AI ActArticles 9–10Defines mandatory risk management system and controls.
UK DSIT FrameworkPrinciple 3Encourages systematic and proportionate AI risk oversight.

Implementation Checklist

  • ✅ Template uploaded to central Evidence Repository (EV-RMS-001).
  • ✅ Risk Register maintained by AI Risk Officer & reviewed quarterly.
  • ✅ Heatmap dashboard active and linked to CAPA Tracker.
  • ✅ Cross-reference enabled between risk items and post-market incidents.
  • ✅ Audit trail stored for all risk updates with timestamps.

© Zen AI Governance UK Ltd • Regulatory Knowledge • v1 19 Nov 2025 • This page is general guidance, not legal advice.

    • Related Articles

    • Audit Plan Template & Checklist (ISO 42001 §9.2 + NIST RMF)

      Zen AI Governance — Knowledge Base • Templates & Toolkits • Updated 19 Nov 2025 www.zenaigovernance.com ↗ Audit Plan Template & Checklist (ISO 42001 §9.2 + NIST RMF) ISO 42001 Template Internal Audit & CAPA + On this page On this page Purpose & ...

    • DPIA & AI Risk Profile Template

      Zen AI Governance — Knowledge Base • Templates & Toolkits • Updated 20 Nov 2025 www.zenaigovernance.com ↗ DPIA & AI Risk Profile Template (GDPR + EU AI Act + ISO 42001) GDPR Art. 35 DPIA EU AI Act Art. 9–10 Risk Mgmt + On this page On this page ...

    • Scope Statement Template (AIMS)

      Zen AI Governance — Knowledge Base • Templates & Toolkits • Updated 19 Nov 2025 www.zenaigovernance.com ↗ Scope Statement Template — AI Management System (AIMS) ISO 42001 Template Governance Toolkit + On this page On this page Purpose & Use Template ...

    • Incident Response Playbook (AI Context)

      Zen AI Governance — Knowledge Base • Templates & Toolkits • Updated 20 Nov 2025 www.zenaigovernance.com ↗ Incident Response Playbook — Artificial Intelligence Context ISO 42001 / EU AI Act Template AI Incident Management + On this page On this page ...

    • Transparency Notice Examples

      Zen AI Governance — Knowledge Base • Templates & Toolkits • Updated 20 Nov 2025 www.zenaigovernance.com ↗ Transparency Notice Examples (Web • Chat • IVR • Email • UI) EU AI Act Art. 52 Compliance Transparency & User Rights + On this page On this page ...