Bob's AI Fundamentals Platform

Question 1

A healthcare organization plans to deploy an AI system that assists physicians with treatment recommendations. Before deployment, management requires a formal review of potential privacy, fairness, and operational risks. Which governance activity is MOST appropriate?

A) Data backup testing B) Infrastructure monitoring C) AI impact assessment D) Vendor contract renewal

Question 2

An organization has documented AI governance policies, but different business units apply them inconsistently. What is the MOST likely governance concern?

A) Lack of policy enforcement and oversight B) Excessive regulatory compliance C) Overly restrictive monitoring D) Insufficient cloud capacity

Question 3

A governance auditor discovers that a deployed AI model cannot be linked to its original training dataset or approval records. Which governance capability is MOST likely missing?

A) Incident response planning B) Traceability and lineage management C) Vendor due diligence D) Data retention scheduling

Question 4

A financial institution uses an AI model to assist with loan approvals. The organization maintains clear records showing who approved the model, who owns the associated risks, and who is responsible for monitoring performance. Which governance principle is BEST demonstrated?

A) Scalability B) Availability C) Accountability D) Virtualization

Question 5

An auditor is evaluating a third-party AI provider used for customer service automation. Which activity should have occurred BEFORE adopting the solution?

A) Employee training B) Vendor due diligence and risk assessment C) Model retirement planning D) Incident response testing

Question 6

An organization performs quarterly reviews to verify that AI governance controls continue operating as intended. This activity is BEST described as:

A) Assurance testing B) Feature engineering C) Model optimization D) Capacity management

Question 7

A regulator asks an organization to demonstrate that a high-risk AI system underwent governance review before deployment. Which evidence would BEST satisfy this request?

A) System uptime reports B) User satisfaction surveys C) Governance approval documentation and assessment records D) Network architecture diagrams

Question 8

A governance committee reviews all high-risk AI projects before production deployment. What is the PRIMARY purpose of this committee?

A) Software development B) Governance oversight and accountability C) Infrastructure management D) Data labeling

Question 9

An AI system begins producing less reliable predictions because customer behavior has changed significantly since training. Which issue is MOST likely occurring?

A) Model drift B) Data minimization C) Credential compromise D) Change management failure

Question 10

During an audit, management cannot produce documentation showing that fairness testing was completed before deployment. What is the MOST appropriate auditor conclusion?

A) The testing probably occurred informally B) The model should be retired immediately C) Fairness is not a governance requirement D) The organization lacks sufficient evidence to demonstrate compliance with governance expectations

Question 11

An organization has established AI governance policies and procedures. However, governance activities are performed differently depending on which department owns the AI system. Which governance objective is MOST at risk?

A) Infrastructure resilience B) Governance consistency C) Data retention D) Vendor management

Question 12

A governance auditor reviews an AI risk assessment and finds that risks have been identified and documented, but no owners have been assigned. What is the PRIMARY concern?

A) Risk accountability may be unclear B) Model performance may decline C) Data quality may improve D) Security monitoring may increase

Question 13

A company uses a model registry to manage AI systems. What governance benefit does a model registry provide?

A) Automated regulatory approval B) Reduced cloud costs C) Version control and traceability of AI assets D) Increased model complexity

Question 14

An organization deploys a new AI model version without testing, approval, or rollback planning. Which governance process was MOST likely bypassed?

A) Vendor assessment B) Change management C) Data classification D) Records retention

Question 15

A governance auditor asks management to demonstrate how training data was collected, transformed, and used throughout the AI lifecycle. Which governance concept is being evaluated?

A) Data lineage B) Encryption C) Business continuity D) Incident response

Question 16

An AI vendor processes sensitive customer information on behalf of an organization. Which governance activity is MOST important for managing this relationship?

A) Increasing model complexity B) Conducting third-party governance reviews C) Reducing monitoring activities D) Eliminating documentation requirements

Question 17

An organization performs regular reviews of AI system performance, fairness metrics, and operational risks after deployment. What governance objective is MOST directly supported?

A) Lifecycle monitoring and assurance B) Vendor procurement C) Data deletion D) Infrastructure expansion

Question 18

During an audit, an organization cannot explain how an AI system arrived at a recommendation affecting customers. Which governance principle is MOST impacted?

A) Availability B) Scalability C) Explainability D) Encryption

Question 19

A regulator requests evidence showing that governance controls are operating effectively rather than simply existing on paper. Which evidence would be MOST valuable?

A) Draft policy documents B) Records demonstrating control testing and review activities C) Marketing materials D) Vendor advertisements

Question 20

An organization conducts a maturity assessment of its AI governance program. What is the PRIMARY purpose of this activity?

A) To measure governance capability and identify improvement opportunities B) To increase model training speed C) To eliminate compliance requirements D) To reduce cloud infrastructure costs

Question 21

A multinational organization deploys a high-risk AI system across several countries. During an audit, management cannot demonstrate how local regulatory requirements were incorporated into governance reviews. What is the MOST significant governance concern?

A) Model accuracy may decrease B) Infrastructure costs may increase C) Regulatory compliance risks may not have been adequately assessed or managed D) Data storage requirements may change

Question 22

A governance auditor discovers that a model producing significant business decisions has not undergone independent validation since its initial deployment three years ago. Which risk is MOST likely increased?

A) The organization may not detect emerging performance, fairness, or governance issues B) Vendor contracts may expire C) Training data volume may decrease D) Cloud utilization may increase

Question 23

An executive asks whether an AI system should be approved for deployment despite several unresolved governance findings. The findings are documented, risk owners have been assigned, and senior leadership is considering accepting the remaining risks. Which governance principle is MOST relevant?

A) Data minimization B) Formal risk acceptance and accountability C) Capacity planning D) Model compression

Question 24

During an assurance review, an organization demonstrates documented policies, assigned responsibilities, continuous monitoring, governance metrics, control testing, and regular improvement initiatives. Which governance maturity level is MOST likely represented?

A) Initial B) Ad Hoc C) Repeatable D) Managed

Question 25

A governance auditor is evaluating two organizations. Both maintain governance policies and documentation. However, one organization continuously monitors controls, measures governance effectiveness, performs maturity assessments, and updates controls based on lessons learned. What BEST distinguishes the second organization?

A) Greater focus on infrastructure management B) Stronger vendor relationships C) Higher governance maturity and continuous assurance capability D) Larger AI development teams

AI Governance/Auditor Quiz