AI governance is the set of accountabilities, policies, risk processes and controls an organisation puts in place so that its use of artificial intelligence is safe, lawful, and able to be explained to a board, a regulator or an affected person. It is a governance problem before it is a technical one.
Australian organisations are adopting AI faster than they are governing it. Boards remain accountable for the decisions their organisations make, whether or not a model was involved in making them. This page sets out the standards and government guidance that apply in Australia, what they ask of an organisation, and how AI governance fits into the risk and resilience arrangements most organisations already run.
Overview
What is AI governance?
AI governance is the organisational arrangement that makes someone accountable for each AI system in use, and that ensures the risks of that system are identified, treated, monitored and recorded. It covers who owns an AI use case, what the organisation permits and prohibits, how AI risk is assessed, how humans stay in control of consequential decisions, and what evidence exists to demonstrate all of that after the fact.
It is distinct from AI development and from data science. An organisation does not need to build models to need AI governance. Most Australian organisations are deployers: they buy or subscribe to AI capability built by someone else, embed it in a process, and inherit the risk without inheriting the visibility. That gap between where the risk lands and where the knowledge sits is the governance problem.
AI governance is also not a parallel framework. The organisations that manage it well fold it into the risk, security and resilience governance they already have, rather than standing up a separate regime that competes with it for attention.
The standards
Which standards apply to AI governance in Australia?
Three standards do most of the work, and they are designed to interlock.
AS ISO/IEC 42001:2023
The management system standard for AI. Sets requirements for establishing, implementing, maintaining and improving an AI management system. Standards Australia adopted it as an identical Australian Standard on 16 February 2024.
ISO/IEC 23894:2023
Guidance on managing risk specific to AI. Not a certifiable standard: a method for identifying and treating AI risk, written to be used together with ISO 31000 rather than beside it.
AS ISO 31000:2018
The risk management principles and process the other two build on. If an organisation already runs risk management to ISO 31000, AI risk extends that method rather than replacing it.
The practical significance of this structure is that AI governance is not a greenfield build for most organisations. AS ISO/IEC 42001 follows the same harmonised management system structure as other ISO management system standards, so it slots alongside existing arrangements. ISO/IEC 23894 is explicitly written to be used in connection with ISO 31000, which means an organisation with a functioning risk framework already owns the foundation.1, 2
Agilient does not certify organisations against AS ISO/IEC 42001 and is not a certification body. Certification is a separate activity performed by an accredited certification body. What an advisory firm can do is establish the governance, assess the gap, build the controls and evidence, and prepare an organisation for whatever assurance it chooses to pursue. See the security risk management pillar for how the underlying risk method works.
Government guidance
What does the Australian Government expect?
The National AI Centre published Guidance for AI Adoption on 21 October 2025. It sets out six essential practices for safe and responsible AI, and it comes in two versions: a foundations version for organisations early in their AI use, and an implementation version for organisations that build or customise AI, use it in complex ways, or manage higher-risk use cases.3
Decide who is accountable
Named accountable people, supply chain accountabilities, AI literacy, and a governance framework.
Understand impacts
Assess how a use case could affect people, and plan for it before deployment rather than after.
Measure and manage risks
AI-specific risk management, applied per use case and reviewed on an ongoing basis.
Share essential information
Transparency to users and to others in the AI supply chain about data, models and systems.
Test and monitor
Test before deployment against defined acceptance criteria, then monitor for drift and unintended effects.
Maintain human control
Meaningful human oversight, and the ability to intervene, across the AI lifecycle.
The sixth practice, maintaining human control, is the one that runs through all the others rather than sitting beside them.
The guidance is voluntary and creates no new legal duties. That is frequently misread as meaning it does not matter. It matters for two reasons. It is the clearest available statement of what the Australian Government considers reasonable practice, which makes it the benchmark an organisation is likely to be measured against if something goes wrong. And it aligns with AS ISO/IEC 42001, so adopting it is not wasted work if formal certification is later pursued.
The practices also map to Australia’s AI Ethics Principles: human, societal and environmental wellbeing; human-centred values; fairness; privacy protection and security; reliability and safety; transparency and explainability; contestability; and accountability.4
What changed
What happened to the Voluntary AI Safety Standard?
The Voluntary AI Safety Standard set out 10 guardrails for safe and responsible AI. It has been superseded. On 21 October 2025 the National AI Centre published Guidance for AI Adoption, which the Department of Industry, Science and Resources describes as updated and simplified guidance that evolves the Voluntary AI Safety Standard.3, 5
This matters more than a renaming usually would. Many Australian organisations built their first AI policy against the 10 guardrails during 2024 and 2025, and a policy that still cites the superseded standard as its authority is now pointing at the wrong document. The underlying expectations have not reversed, and an organisation that genuinely adopted the guardrails is not starting again. But the mapping should be refreshed, and the six essential practices are the current reference point.
The direction of travel is worth noting when setting AI policy. The guardrails were updated in 2024 to align more closely with the Government’s proposed mandatory guardrails for high-risk AI. Organisations building AI governance now are better served designing to a standard, AS ISO/IEC 42001, than to guidance that is still moving.
Sector obligations
Who has obligations beyond the general guidance?
General guidance is the floor. Several sectors carry obligations that reach AI use directly, and these are where AI governance stops being optional.
- Australian Government entities. The Protective Security Policy Framework (PSPF) carries policy advice on the use of generative AI with OFFICIAL information, and more recent advice addressing frontier AI and access to generative AI capability. Entities also carry technology and information security requirements that AI deployments engage directly.
- Critical infrastructure. Responsible entities under the Security of Critical Infrastructure Act must manage material risks to their critical infrastructure assets under a critical infrastructure risk management program. Where AI is embedded in an operational process, it is part of that hazard picture, not separate from it.
- Regulated data. Privacy obligations attach to personal information regardless of whether a model is involved. AI use cases that ingest personal information, or generate inferences about people, engage those obligations directly.
- State government. Several jurisdictions run their own AI assurance requirements for agencies, which apply in addition to any national guidance.
- Health and hospitals. Clinical and administrative AI carry very different risk profiles, and both touch sensitive information.
- Transport and logistics. Automation decisions carry safety consequences, so human oversight and testing evidence matter more than elsewhere.
- Local government. Small teams carry the same obligations as large ones with a fraction of the capability, which makes scoping and sampling decisive.
Where an organisation already runs a security risk assessment cycle, the efficient path is to bring AI use cases into that cycle rather than to run a separate AI risk process alongside it.
When to act
When does an organisation need AI governance advice?
The request usually arrives from one of a small number of directions. Any one of them is a reasonable trigger; together they usually mean the gap is structural rather than incidental.
- The board has asked a question no one can answer. Typically some version of “where are we using AI, and who is accountable for it?” The inventory does not exist, and the answer is assembled by email.
- AI arrived without a decision being made. Capability appeared inside tools the organisation already licensed. No one procured “AI”, so no one governed it.
- A regulator, customer or insurer has asked. AI governance questions increasingly appear in tender responses, supplier assurance questionnaires and renewals.
- A use case has moved from experiment to consequence. An internal drafting aid is one risk profile. AI touching a hiring, eligibility, safety or customer decision is another entirely.
- Certification is being considered. An organisation intending to pursue AS ISO/IEC 42001 certification needs the management system built and the gap closed before a certification body arrives.
- Something went wrong. An incident, a near miss, or an output that should never have reached a customer.
Where the trigger is a live obligation rather than curiosity, the practical starting point is an AI governance maturity assessment, which establishes what is actually in place before anything is committed.
Approach
How to build AI governance that holds up
The failure mode is not a lack of policy. It is a policy no one can evidence. An AI governance arrangement is only worth what an organisation can demonstrate when a board, an auditor or a regulator asks. Agilient works the problem in five steps.
Find the AI
Build the inventory. Most organisations underestimate their AI footprint, because much of it arrived inside tools they already licensed.
Establish accountability
Name the owner for AI overall and for each consequential use case. Accountability cannot be outsourced to a supplier.
Assess the risk
Assess per use case, not per tool. The same model carries very different risk in an internal drafting aid and in a decision affecting a person.
Build the controls
Policy, human oversight, supplier obligations, testing and monitoring, and the records that evidence them.
Assure and sustain
Review, test against failure scenarios, and report to the board in terms the board can act on.
The third step carries most of the value and is the one most often skipped. Guidance for AI Adoption makes the same point: the same tool can create very different risks depending on how it is used, so each use case is reviewed on its own.3
Considering an AI governance assessment?
Agilient advises independently. We do not build, sell or resell AI, so the advice is shaped by your risk and obligations rather than by a product range.
Request an AI governance maturity assessmentor book a short briefing
How we help
How Agilient supports AI governance
Agilient is an independent security, risk and resilience consultancy. It advises on the governance of AI; it does not develop, sell or implement AI systems. That independence is the point: an organisation asking whether a control is adequate should not be asking the party that sold it.
Maturity assessment
A scoped diagnostic against AS ISO/IEC 42001 and ISO 31000, returning a maturity rating, a prioritised roadmap and a board-ready summary.
AI risk assessment
Structured assessment of use cases, data, model, supplier, human oversight and resilience risk, written into your existing risk register.
Assurance review
Independent review of AI systems and governance against the standards and your stated risk appetite.
Procurement and vendor assurance
Due diligence, contract clauses and ongoing supplier assurance, for the AI you buy rather than build.
Policy and playbooks
AI policy, acceptable use, data handling, human oversight and incident response, integrated with existing governance.
Board advisory and exercising
Briefings on oversight obligations, and scenario exercises for AI failure, misuse or regulatory breach.
How the work is scoped
The delivery model is deliberately lean, because AI governance engagements fail when they become a discovery exercise that consumes the organisation’s time and returns a document no one uses.
- Scoped and desktop-first. An evidence-based review of what already exists, before anyone is asked to sit in a workshop.
- One structured consultation per stream, with targeted interviews only where a gap genuinely requires one.
- High-impact use cases are sampled rather than attempting whole-of-organisation coverage.
- Scope, exclusions and dependencies are stated up front, so the engagement does not drift.
- Deliverables are written to be tabled, not translated: audit-ready and board-ready as produced.
AI failure is a resilience event as much as a compliance one. Where an AI system sits in a process that matters, the response belongs in the arrangements that already exist for disruption: see business continuity and business resilience programs. Read more about the full service line on the AI governance consulting page.
FAQs
Frequently asked questions
What is AI governance?
What is AS ISO/IEC 42001:2023?
Is the Voluntary AI Safety Standard still current?
What are the six essential practices for AI adoption?
Is AI governance mandatory in Australia?
Do we need AI governance if we only buy AI rather than build it?
Does Agilient certify organisations against AS ISO/IEC 42001?

References
- Standards Australia, Standards Australia adopts the international standard for AI Management System, AS ISO/IEC 42001:2023, 16 February 2024, standards.org.au
- International Organization for Standardization, ISO/IEC 23894:2023 Information technology — Artificial intelligence — Guidance on risk management, iso.org
- National AI Centre, Guidance for AI adoption, 21 October 2025, ai.gov.au
- Department of Industry, Science and Resources, Australia’s AI Ethics Principles, industry.gov.au
- Department of Industry, Science and Resources, Voluntary AI Safety Standard, industry.gov.au
