v1.2 - June 2026

AI Body of Knowledge

The reference framework for AI governance, lifecycle management and organizational design

13 knowledge areas · 20 roles · 22 failure modes · RACI model · Maturity model · Templates
Based on DAMA-DMBOK, TOGAF, ISO 42001, NIST AI RMF and EU AI Act

View editions
13

Knowledge Areas

From AI Governance to AI Literacy (KA13). Each area with activities, roles, metrics and standards.

20

Roles

Complete role model with 20x13 RACI matrix, separation of duties and the AI Literacy Officer (Role 20).

22

Failure Modes

22 patterns where agentic and cyber-physical AI structurally fails - including drill scenarios and cognition-plane binding.

8

Lifecycle Phases

From ideation to decommissioning, with feedback loops, gate criteria and sprint checklists.

5

Templates

Governance Charter, Model Card, EU AI Act Checklist, Maturity Assessment and Shadow AI Inventory.

Choose your edition

Both editions contain the same complete content with 18 diagrams

Nederlands

AI Body of Knowledge

251 pages

AI Body of Knowledge (NL)

Het referentiekader voor AI-governance, lifecycle management en organisatie-inrichting

v1.2 · June 2026
€49.95 incl. VAT (9% VAT) Latest release - KA13 AI literacy + 22 failure modes included
Order now
English

AI Body of Knowledge

287 pages

AI Body of Knowledge (EN)

The reference framework for AI governance, lifecycle management and organizational design

v1.2 · June 2026
€49.95 incl. VAT (9% VAT) Latest release - KA13 AI literacy + 22 failure modes included
Order now
Enterprise

Enterprise Edition

One-time purchase for your entire organisation. All employees gain access to the AI Body of Knowledge - ideal as the reference framework for your AI governance programme.

  • Unlimited users within your organisation
  • EN + NL edition included (287 + 251 pages)
  • Free updates during the first year
  • Invoice on company name with VAT specification
€1995.00
€1495 incl. VAT (21% VAT) Order Enterprise
Free bonus

AI-BOK Toolkit v1.2

Five working files alongside the book: ArchiMate modelling conventions, KA9 risk-control library (YAML), maturity calibration kit, AI procurement clauses and filled example templates. Drop into your own organisation right away.

  • ArchiMate modelling conventions (purist mapping)
  • KA9 risk-control library (YAML checklist)
  • Maturity calibration kit + inter-assessor protocol
  • AI procurement clauses for contracts
  • Filled example templates (Charter, Model Card, IAMA, Article 4 evidence)

No registration required. ZIP with 5 PDFs (branded, ready to read) + Markdown sources + README (~940 KB). Dutch edition available on the Dutch page.

Sneak peek inside the book

Four of 18 diagrams from the AI-BOK - free preview

AI-BOK Framework

The 13 knowledge areas with AI Governance as the central hub

AI Lifecycle

The AI Lifecycle Model with 8 phases and 3 feedback loops

Three planes mapping

Knowledge areas mapped onto the three planes (Data / Control / Cognition)

v1.2 Reading paths + MVG

Eight role-based reading paths plus the MVG-7 growth path - new in v1.2

RACI matrix with 20 roles

Who is responsible, accountable, consulted and informed per knowledge area? The complete RACI matrix eliminates ambiguity.

5 ready-to-use templates

Governance Charter, Model Card, EU AI Act Checklist, Maturity Assessment and Shadow AI Inventory. Ready to fill in.

CIO 30-day plan

Week by week concrete actions to get AI governance off the ground. From inventory to board decision in one month.

Podcast

Prefer listening?

Discover the essence of the AI-BOK in a podcast episode — available in Dutch and English.

🎙

Securing Enterprise AI with the AI-BOK

How do you govern AI at enterprise scale? From the 13 knowledge areas and the cognition plane to operationalising the EU AI Act.

🎙
NEW

Governing Autonomous Non-Human Identities

AI agents as digital employees: why they need a formal identity profile, lifecycle management and a human owner. About the cognition plane, governance hooks and the key cabinet pattern.

🎙
DUTCH AUDIO

Grip op Shadow AI met de AI-BOK

Employees are already using ChatGPT and Claude without IT knowing. How do you inventory and govern Shadow AI?

🎙
DUTCH AUDIO

Manage AI agents as real employees

Your next colleague is an AI agent. Why agents need a mandate, escalation protocol and exit procedure.

🎙
DUTCH AUDIO

How your AI project survives production

70% of AI projects never make it to production. About the 8 phases of the AI lifecycle and why 50% of costs come after launch.

AI-BOK Unplugged — The framework behind responsible AI

Free preview

Read a chapter from the book

The foreword and the Start Here guide — directly applicable, no purchase required.

Foreword

For over 25 years I have worked as an architect at the intersection of technology, organisation and meaning. From the first enterprise architectures in the public sector to the current generation of AI systems that autonomously reason, consult sources and support decisions — the common thread in my work has always been the same: how do you make complex technology governable, understandable and valuable for the organisation?

This book was born from the conviction that AI deserves its own Body of Knowledge — comparable to what DAMA-DMBOK has done for data management and TOGAF for enterprise architecture. Not because existing frameworks are unusable, but because they are incomplete for the AI context.

The AI-BOK is not an academic document. It is written for the CIO who needs to present an AI governance proposal to the board tomorrow. For the enterprise architect who must fit AI into an existing landscape. For the data officer who knows that without data quality there is no AI quality. And for the project manager deploying an AI system to production for the first time, wondering: where do I begin?

Jan Willem van Veen

Principal Enterprise Architect — June 2026


Start Here — Set up AI governance in 5 steps

This quick start helps you establish a working AI governance within a quarter. Each of the five steps builds on the previous one and is linked to a concrete template.

1

Week 1-2: Inventory

Map which AI tools are already in use — including unauthorised ones. Use the Shadow AI Inventory template.

2

Week 3-4: Classify

Categorise all AI systems by risk according to the EU AI Act: minimal, limited, high or unacceptable.

3

Month 2: Organise

Establish the governance structure with an AI Governance Charter: who decides what, which principles apply.

4

Month 3: Register

Document each AI system with a model card. Start with the high-risk systems.

5

Quarter 2: Measure

Conduct a baseline measurement of your AI maturity using the Maturity Assessment to identify improvement areas.

This is just the beginning - the full book contains 13 knowledge areas, 20 roles, 22 failure modes, 5 templates and 287 pages of practical guidance.

View the full e-book
Release notes

What changed: v1.0 to v1.2

Two minor releases, one goal: a workable, audit-ready reference framework for AI governance.

v1.0 January 2026

Foundation: 12 knowledge areas + 19 roles

  • ·12 knowledge areas (KA1 to KA12) as canonical decomposition
  • ·19 roles distributed across 4 governance levels
  • ·8-phase lifecycle (from ideation to decommissioning)
  • ·10 metamodel entities + 5-level maturity model
  • ·Open ArchiMate 3.2 reference model with 48 views
v1.1 April 2026

Depth: agentic AI + regulation

  • ·Cognition plane as architectural integration layer (Mandate, NHI lifecycle, Authority Register, Policy-as-code, Escalation)
  • ·16 agentic AI failure modes (FM01-FM16) with cognition-plane binding
  • ·Regulatory traceability matrix across 9 jurisdictions (EU AI Act, NIS2, NIST, ISO 42001/23894/38507, VNG, BZK, US state laws)
  • ·Maturity evidence rubric (D/M/L per KA x level, with inter-assessor protocol)
  • ·Operational + cyber-physical addendum (three-tier device/edge/centre)
v1.2 June 2026

Integration + parity: KA13, Role 20, 22 FMs

  • ·KA13 AI Literacy & Capability Development integrated into canonical Module 1 (EU AI Act Article 4)
  • ·Role 20 AI Literacy Officer (Article 4 evidence file owner)
  • ·6 operational/cyber-physical failure modes (FM17-FM22) added - 22 patterns total
  • ·5 standalone addenda integrated as Module 3 sub-sections (3.3.8-3.3.9, 3.4.9, 3.6.7-3.6.8)
  • ·Role-based reading paths (8 paths) + Minimum Viable Governance profile (MVG-7)
  • ·NL + EN at full parity for the first time since v1.0
  • ·Open ArchiMate model expanded to 52 views; 1066 relations
  • ·SemanticXL pack ai-bok-1.2 (112 reference claims + 4 guardrails)
Roadmap

What is on the planning board

Five work packages that strengthen the framework in upcoming releases.

v1.3

SemanticXL ai-bok pack live

The ai-bok-1.2 pack as a runtime overlay in SemanticXL: 112 claims, 4 guardrails (MVG-7, FM coverage, Article 4 evidence, cognition-plane binding). Organisations load their own ArchiMate model and run gap analyses on the spot.

spec

NHI Federation Protocol (RFC draft)

Standards-track proposal for cross-organisation NHI mandate exchange: JOSE token format, revocation propagation, freshness budget across organisational boundaries. Builds on the cognition plane.

tool

AI-BOK Conformance Suite

`ai-bok check` CLI: ingest AI portfolio + ArchiMate model, output JSON with MVG-7 status, FM coverage percentage and KA maturity heatmap. Open source, vendor neutral.

service

Regulatory monitor

Continuous scraping of EU OJ, Dutch DPA, BZK, NIST, IMDA publications. Diff against the regulatory matrix; push notifications with impact mapping to KAs and evidence files.

edition

Sector overlays

Three sector overlays: banking (BCBS-239 / EBA), healthcare (FDA SaMD / EU MDR) and municipal (VNG deepdive). Each: 30-page booklet with 5 worked examples on the canonical MVG-7.

Join the open reference architecture: download the ArchiMate model and contribute feedback through the community issues.

Open reference architecture

AI is transforming your organization - whether you are ready or not

Your employees are already using ChatGPT, Copilot, Claude, Cursor and Gemini - often without IT knowing. The EU AI Act is in effect. Customers expect transparency about AI decisions. Every month without AI governance is a month without control over your biggest technology transformation.

Take the free Quick Scan

Why an AI Body of Knowledge?

ISO 42001 offers a management system but no knowledge area structure. NIST AI RMF offers risk management but no role model. The EU AI Act offers legal frameworks but no implementation guide.

The AI-BOK brings these puzzle pieces together and fills the gaps.

Written for the CIO who needs to present an AI governance proposal to the board tomorrow. For the enterprise architect who must fit AI into an existing landscape. For the CHRO shaping workforce transformation. And for the project manager deploying an AI system to production for the first time.

Cognition PlaneNew architecture layer for AI agents, alongside data and control plane
Privacy by DesignKey vault pattern for pseudonymisation in AI systems
Sprint ChecklistAI governance integrated into your agile workflow
CIO 30-day planGet started immediately with concrete weekly actions

About the author

Jan Willem van Veen

Jan Willem van Veen

Principal Enterprise Architect

Over 25 years of experience at the intersection of technology, organization and meaning. From the first enterprise architectures in the public sector to the current generation of AI systems. Background in semantic web technology, knowledge graphs and linked data.