
# Lab 3 — Capstone: Build a Full AI Risk Strategy (Colab)

This notebook guides you through building a **comprehensive AI Risk Strategy** for a simulated case study involving an AI-powered recruitment screening tool. You will:
- Analyze the bias and governance risks in the scenario
- Build a structured **risk strategy template** in Python
- Classify controls across **Technical, Operational, Ethical, and Legal** domains
- **Export** the strategy as YAML for documentation
- **Visualize** coverage across domains using a bar chart
- Reflect on priorities via an interactive prompt

> **Source:** Lab 3: *Capstone: Build Full AI Risk Strategy* (Global Knowledge Training LLC)



## Task 1 — Set up your environment
Run the cell below on **Google Colab**. It installs the required packages for this lab.


In [None]:

# If running on Colab, install dependencies.
# (In Colab, matplotlib is available by default, but we ensure PyYAML is present.)
!pip -q install pyyaml matplotlib
print("Dependencies installed.")



## Task 2 — Define the case scenario

**Scenario summary:**  
An AI recruitment screening tool ranks male candidates significantly higher than female candidates for similar profiles. The model is a **black-box** trained on **historical hiring data** and the system lacks **logging**, **monitoring**, and **bias mitigation**.


In [None]:

# Capstone Case: AI Tool for Recruitment
# Issue: Gender bias in screening results, lack of explainability,
# absence of logging or risk assessment.

scenario = {
    "title": "AI Recruitment Screening Tool",
    "issues": [
        "Gender bias in ranked outcomes (male > female for similar profiles)",
        "Black-box model trained on historical hiring data",
        "Lack of logging, monitoring, and documented bias mitigation"
    ],
    "context": {
        "domain": "Hiring/HR",
        "model_type": "Black-box (unspecified)",
        "data_source": "Historical hiring data"
    }
}

print("Scenario defined. Key issues:")
for i, issue in enumerate(scenario["issues"], start=1):
    print(f"{i}. {issue}")



## Task 3 — Build the strategy template
We'll assemble a strategy across **four domains**:

- **Technical**: engineering controls (testing, monitoring, explainability)  
- **Operational**: lifecycle, versioning, incident response  
- **Ethical**: fairness, inclusion, stakeholder engagement  
- **Legal**: consent, transparency, regulatory compliance


In [None]:

# Define a risk strategy template across key domains
risk_strategy = {
    "Technical": [
        "Fairness testing on sensitive attributes",
        "Model drift detection and retraining",
        "Implement explainable model alternatives"
    ],
    "Operational": [
        "Version control for model and data",
        "Data lineage and change tracking",
        "Incident response plan for AI failure"
    ],
    "Ethical": [
        "Bias audits using diverse datasets",
        "Inclusive design during feature engineering",
        "Stakeholder input for fairness criteria"
    ],
    "Legal": [
        "Consent for data collection",
        "Right-to-explanation mechanism for rejected candidates",
        "Compliance with GDPR & EU AI Act"
    ]
}

# Display strategy
for domain, items in risk_strategy.items():
    print(f"\n{domain.upper()} CONTROLS:")
    for control in items:
        print(f" - {control}")



## Task 4 — Document the strategy in YAML
We'll export both **metadata** and the **risk strategy** into a `final_risk_strategy.yaml` file for sharing and governance documentation.


In [None]:

import yaml
from datetime import datetime

metadata = {
    "project": "AI Recruitment Risk Strategy",
    "created_by": "Your Name",
    "date": "2025-10-25",
    "description": "Risk strategy to address AI bias, transparency, and compliance issues."
}

with open("final_risk_strategy.yaml", "w") as f:
    yaml.dump({"metadata": metadata, "risk_strategy": risk_strategy}, f, sort_keys=False)

print("Strategy successfully written to final_risk_strategy.yaml")



## Task 5 — Visual summary using matplotlib
This bar chart shows **how many controls** you have in each domain.


In [None]:

import matplotlib.pyplot as plt

domains = list(risk_strategy.keys())
control_counts = [len(risk_strategy[d]) for d in domains]

plt.figure()
plt.bar(domains, control_counts)
plt.title("AI Risk Strategy Coverage by Domain")
plt.ylabel("Number of Controls")
plt.xticks(rotation=45)
plt.grid(axis="y", linestyle="--", alpha=0.7)
plt.tight_layout()
plt.show()



## Task 6 — Reflection and submission
Reflect on the **most critical** domain for this case and explain **why**.

> *Tip:* Consider where the **largest risk** currently lies (e.g., biased outcomes), what is **fastest to mitigate**, and what enables **ongoing governance**.


In [None]:

# Interactive reflection prompt
try:
    user_reflection = input("What is one risk domain you found most important and why? ")
    print(f"You highlighted: {user_reflection}")
except Exception as e:
    print("If running as a batch (no stdin), skip this prompt. You can reflect in a markdown cell.")



## Lab review — Knowledge check (single-choice)
1. Why is **Fairness testing** placed under the **Technical** domain?  
   A. It is required for documentation  
   B. It improves model transparency  
   C. It addresses ethical tradeoffs  
   D. It involves technical metrics and model logic ✅

2. What is a key **ethical** consideration in AI hiring tools?  
   A. Whether drift detection exists  
   B. Inclusion of legal disclaimers  
   C. Use of inclusive and unbiased training data ✅  
   D. Use of open-source libraries



---

### Appendix — How to download artifacts from Colab
- The YAML file `final_risk_strategy.yaml` is created in the current working directory.  
- In Colab, use the file browser (left sidebar) to **right‑click → Download**, or run:

```python
from google.colab import files
files.download("final_risk_strategy.yaml")
```
