AI GOVERNANCE LEAD (ISO 42001 IMPLEMENTER & AUDITOR)

AI GOVERNANCE LEAD (ISO 42001 IMPLEMENTER & AUDITOR)
Standing up and stewarding AI Management Systems (AIMS) certified to ISO/IEC 42001—and helping our clients do the same.

Are you an ISO 42001 practitioner who can turn responsible-AI principles into auditable practice? Do you enjoy building management systems, running internal audits, and defending them before external assessors? We are hiring an AI Governance Lead (ISO 42001 Implementer & Auditor) to design, implement, and maintain Allendevaux & Company’s AIMS and to advise client teams on obtaining and sustaining ISO 42001 certification.

You will partner with the AI Systems Architect, ML/MLOps, Prompt Engineering, Security, and Legal to embed governance controls throughout the model lifecycle—so our AI services are trustworthy, compliant, and ready for external scrutiny.

BACKGROUND

Allendevaux & Company is building Digital Trustify, a 25-module GRC platform that embeds AI at its core. Our mission is to make advanced compliance effortless for enterprises. Your role ensures that the way we build and operate AI is itself governed to the highest standard—internally and for our clients.

Must have a laptop that supports documentation work and Microsoft Teams meetings. Company will provide all software.

EXPERIENCE

The ideal candidate has implemented one or more management systems in practice (ISO 42001, and/or ISO 27001/27701), led internal audits, and guided teams through external certification. You should be comfortable translating standards into policies, controls, records, and metrics across AI data pipelines and model operations. The ideal candidate must hold ISO 42001 implementer certification and auditor certification.

PERSONAL CHARACTERISTICS & SKILLS

• Excellent communicator in English, able to brief executives and engineers with equal clarity.
• Methodical and evidence-driven; insists on traceability, version control, and audit-ready artefacts.
• Collaborative and pragmatic—balances governance with delivery timelines.
• Strong facilitator capable of running workshops and corrective-action reviews.
• Ethically minded, with a firm grasp of risk, bias, security, and privacy implications of AI.

RESPONSIBILITIES

• AIMS build-out: Establish and maintain the ISO 42001-aligned AI Management System (policies, procedures, control catalogue, metrics, records, and governance forums).
• Risk & impact management: Operationalise AI risk assessment in line with ISO 23894; coordinate model/AI impact assessments; maintain risk registers and treatment plans.
• Lifecycle gates: Define and enforce model-lifecycle checkpoints (data governance, training/finetuning approval, evaluation/guard-rails, release/rollback criteria) in collaboration with AI Engineering and MLOps.
• Assurance & audits: Plan and run internal audits; manage management-review meetings; coordinate external audits; draft and track CAPA for non-conformities.
• Cross-standard mapping: Maintain crosswalks to ISO 27001/27701, SOC 2, NIST AI RMF 1.0, and (as applicable) EU AI Act readiness; align with privacy and security requirements.
• Client enablement: Lead workshops and readiness engagements to help client teams implement ISO 42001; prepare evidence packs and defend audits with external assessors.
• Training & culture: Develop role-based training for engineers, product, and leadership; champion responsible-AI practices and continuous improvement.
• Records & reporting: Keep audit-ready documentation (policies, model cards, data sheets, evaluation reports, change logs) and report governance KPIs to the CAIO.

MINIMUM QUALIFICATIONS

• Bachelor’s degree in Computer Science, Information Security, Data/AI, or related field.
• ISO 42001 Lead Implementer certification and ISO 42001 Lead Auditor certification.
• 5+ years in governance, assurance, or compliance for technology products, including hands-on experience with management systems (e.g., ISO 42001, ISO 27001, 27701).
• Practical familiarity with AI/ML delivery (MLOps, dataset governance, evaluation/guard-rails) and with security/privacy control design.

PREFERRED QUALIFICATIONS

• Master’s degree in Law/Policy, Information Security, or Computer Science.
• Additional certifications (ISO 27001 LI/LA, CIPP/CIPT/CIPM, or NIST-focused credentials).
• Experience preparing organisations for public-sector or federal compliance.
• Working knowledge of bias/fairness testing, model documentation (model cards, data sheets), and AI incident response.
• Prior consulting experience leading external ISO readiness projects.

If you are excited to operationalise responsible AI—so that models clear audits without slowing innovation—we’d love to hear from you.