The operating question.
The AI Audit checklist.
The checklist turns an AI estate into an auditable operating read: approved tools, Shadow AI, embedded AI, internal agents, spend waste, risk exposure, eval coverage, owners, and board-ready evidence.
Checklist sections.
- Inventory every approved and unapproved AI surface.
- Map material workflows and the business decision each one touches.
- Attach owners, reviewers, data sensitivity, and exception paths.
- Record what evidence exists today and what is missing.
Output.
The result is not a raw inventory. It is a scoped audit memo with findings, materiality, exceptions, and the next funded workstream.
Guidethe question, evidence, artifact, and action to sequence
Evidencethe source-linked facts needed for a defensible read
Next movehow the guidance connects back to the AI Audit