Mark Aklian is Chiri’s Chief Information Security Officer and has vast senior security experience including Point72, Bank of America, and many more.
Having curated and battle-tested this checklist for over a year, itβs grown from a simple review aid into a board-ready framework I use with our clients, product teams, vendors, and red-team exercises. Itβs been hardened against real incidents, mapped to emerging regs, and trimmed to what actually moves risk. Hereβs the zero-BS version π
AI Security, Privacy & Risk β What I Actually Check:
π§ Architecture transparency
β’ Where do models run (vendor/self-hosted)?
β’ Which FMs, fine-tunes, agents?
β’ Any third-party AI APIs, embeddings, vector DBs?
π Data flow & retention
β’ Are prompts/outputs logged? For how long and by whom?
β’ Used for training/evals? Opt-out controls?
π RAG hygiene
β’ Sources, chunking/metadata, pre-index redaction
β’ Tenant-scoped indices, per-doc ACLs
β’ Vector deletion workflows
π Privacy controls
β’ Legal basis (GDPR/CCPA), purpose limitation
β’ DSRs for prompts/vectors/model snapshots
β’ Handling of sensitive data (ATS/HR/health/finance)
π‘οΈ Guardrails against abuse
β’ Prompt-injection defenses, retrieval allow-lists
β’ Output filtering/citations, jailbreak/misuse protections
β’ Abstain on low confidence
π§° Tool/agent safety
β’ Sandboxing & controlled egress
β’ Scoped credentials, auditable tokens
β’ Function-calling with least privilege
π Governance & change management
β’ Model cards & documentation
β’ Prompt/model version control, approvals, rollback
β’ Audit trails on safety rule changes
π§ͺ Testing & red-teaming
β’ Pre-prod & continuous evals (accuracy, leakage, injection resilience, bias)
β’ Independent red-teaming with concrete attack playbooks
π Explainability & human-in-the-loop
β’ Source-grounded answers, rationale visibility
β’ Human review gates for high-impact decisions (hiring, finance, legal)
π Keys, secrets & spend
β’ Central LLM gateway, vaulting & rotation
β’ No secrets in prompts
β’ Rate limits/quotas, cost anomaly detection
π§ Regulatory alignment
β’ Map to NIST AI RMF, ISO/IEC 42001, and (where relevant) EU AI Act
β’ Sector overlays: EEOC / SEC / FINRA / HIPAA
π¨ AI incident response
β’ Playbooks: injection, RAG exfil, model/safety regressions
β’ Forensics: retain prompts/outputs, retrieval snapshots, versions
If your AI implementation (or third party that utilizes AI to enhance their services) canβt answer these with evidence, you’re likely carrying an inordinate amount of risk.
Reach out for guidance. We’re here to help.