๐Ÿ”AI RiskAtlas
โ† Risk Taxonomy
#27

Lack of continuous monitoring

Risk taxonomy

Definition

Absence of ongoing and systematic surveillance of how Gen AI systems are performing and being utilised, to ensure they remain in accordance with intended purposes, ethical guidelines and regulatory requirements.

Interactive deep-dive

This risk has an interactive treatment with technical detail, attack surface, detection signals, and scenarios.

Controls & guardrails that address this

4

Grouped by control function, with the AI lifecycle stage(s) to apply each and the other risks it addresses. Filter by control category below.

Control category
Preventive ยท 2
Risk-tiered minimum monitoring requirements at design

Define minimum monitoring requirements at design stage calibrated to the use case risk tier.

Lifecycle stage1 โ€“ Use Case Context & Design
Programmable conversation controls

Configure monitoring hooks in the conversation layer at deployment to capture metrics required by S1 monitoring requirements.

Lifecycle stage4 โ€“ Deployment
Detective ยท 2
Synthetic evaluation datasets

Construct synthetic evaluation datasets during build to serve as the ongoing monitoring baseline.

Lifecycle stage3 โ€“ Onboarding, Build & Review
Robustness testing

Build monitoring infrastructure during build: performance metrics collection, alerting thresholds, dashboards.

Lifecycle stages3 โ€“ Onboarding, Build & Review4 โ€“ Deployment5 โ€“ Usage, Monitoring & Change
Open these in the Control Library โ†’

Other risks in Robustness & Stability

AI RiskAtlas is an educational model of how GenAI & agentic systems work and fail. Architectures and payloads are illustrative and simplified for learning โ€” not operational guidance. Real-world cases are summarised from public reporting.

Sources & further reading โ†’ยทBuilt by Shi Yuan โ†—