Exam AAISM Topic 2 Question 213 Discussion

Actual exam question for ISACA's AAISM exam
Question #: 213
Topic #: 2
A post-incident investigation finds that an AI-powered anti-money laundering system inadvertently allowed suspicious transactions because certain risk signals were disabled to reduce false positives. Which of the following governance failures does this BEST demonstrate?

Suggested Answer: B Vote an answer

AAISM requires formal model change governance: documented justification, risk assessment, validation
/verification (V&V), approvals, and post-deployment monitoring when altering features, thresholds, or signals. Disabling risk indicators to reduce false positives without rigorous validation and controlled rollout reflects a failure in model validation and change control, which AAISM treats as a core safeguard against unintended harms and regulatory breaches.
References: AI Security Management™ (AAISM) Body of Knowledge - Model Risk Governance; Change Management & Approvals; Validation/Verification Requirements. AAISM Study Guide - Control Gates for Feature/Threshold Changes; Post-Change Monitoring and Backout Criteria.

by Hazel at Feb 14, 2026, 01:07 AM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어