Unit 2 of 3
7.2 — Cross-Module Integration
The exam tests your ability to connect concepts across modules. Expect questions that require applying knowledge from multiple frameworks simultaneously.
Framework Mapping: NIST ↔ ISO 42001 ↔ EU AI Act
NIST AI RMF Function
ISO 42001 Clauses
EU AI Act Requirements
GOVERN
Cl. 5 (Leadership) + Cl. 6 (Planning)
Quality Management System, AI Literacy (Art. 4)
MAP
Cl. 4 (Context) + Cl. 8 (Operation — risk assessment)
Risk Classification (Art. 6), Conformity Assessment
MEASURE
Cl. 9 (Performance Evaluation)
Post-Market Monitoring, Performance Testing
MANAGE
Cl. 8 (Operation — risk treatment) + Cl. 10 (Improvement)
Incident Reporting, Corrective Actions
Multi-Framework Compliance Approach
Identify Systems
Inventory all AI systems
→
Classify Risks
Per each framework
→
Map Controls
Unified control set
→
Assess Gaps
Against all requirements
→
Remediate
Prioritized action plan
★EXAM TIP
Common integration question pattern: 'An organization operating in both India and the EU must comply with...' — You need to identify applicable laws (DPDP Act + GDPR + EU AI Act), map overlapping requirements, and recommend a unified governance framework (ISO 42001 + NIST AI RMF).
Auditors must assess compliance holistically — checking whether an organization's single governance framework adequately addresses requirements from multiple applicable regulations and standards.
Key Points
Exam tests cross-module connections
Framework mapping across NIST, ISO, EU AI Act
Multi-jurisdiction compliance analysis
Lifecycle coverage across frameworks
Holistic audit approach across all applicable standards
CREATE YOUR CHARACTER ON THE PREP INDEX PAGE TO UNLOCK CHALLENGES