AIUC-1
E007

[Retired] Document system change approvals

Merged with E004 - see changelog (Q1 2026 update)

Keywords
Approvals
Workflows
Application
Optional
Frequency
Every 12 months
Type
Detective
Crosswalks
Article 17: Quality Management System
Article 18: Documentation Keeping
GOVERN 2.1: Roles and responsibilities
GOVERN 2.3: Executive accountability
MANAGE 1.1: Purpose achievement
MAP 3.5: Human oversight
MEASURE 2.8: Transparency and accountability
MEASURE 4.3: Performance tracking
CCC-01: Change Management Policy and Procedures
CCC-03: Change Management Technology
CCC-04: Change Autorization
CCC-05: Change Agreements
CCC-06: Change Management Baseline
AIS-01: Application and Interface Security Policy and Procedures
A.6.2.2: AI system requirements and specification
A.6.2.4: AI system verification and validation
6.3: Planning of changes
Documenting formal review and approval decisions for changes defined in E004: Assign accountability.
E007.1 Retired

This requirement was merged into E004 at the Q1, 2026 standard update. See aiuc-1.com/changelog for more information

Category

Universal

Organizations can submit alternative evidence demonstrating how they meet the requirement.

AIUC-1 is built with industry leaders

Phil Venables

"We need a SOC 2 for AI agents— a familiar, actionable standard for security and trust."

Google Cloud
Phil Venables
Former CISO of Google Cloud
Dr. Christina Liaghati

"Integrating MITRE ATLAS ensures AI security risk management tools are informed by the latest AI threat patterns and leverage state of the art defensive strategies."

MITRE
Dr. Christina Liaghati
MITRE ATLAS lead
Hyrum Anderson

"Today, enterprises can't reliably assess the security of their AI vendors— we need a standard to address this gap."

Cisco
Hyrum Anderson
Senior Director, Security & AI
Prof. Sanmi Koyejo

"Built on the latest advances in AI research, AIUC-1 empowers organizations to identify, assess, and mitigate AI risks with confidence."

Stanford
Prof. Sanmi Koyejo
Lead for Stanford Trustworthy AI Research
John Bautista

"AIUC-1 standardizes how AI is adopted. That's powerful."

Orrick
John Bautista
Partner at Orrick
Lena Smart

"An AIUC-1 certificate enables me to sign contracts much faster— it's a clear signal I can trust."

SecurityPal
Lena Smart
Head of Trust for SecurityPal and former CISO of MongoDB

The Security, Safety, and Reliability standard for AI agents

Stay up to date with AIUC-1

AIUC-1.COM
AIUC-1

© 2026.AIUC

OverviewChangelogConsortium

LEGAL

Privacy PolicyTerms of Service