← Articulet TPM, Made Clear Chapter 9.1
Module 9The AI-Era TPM

Anatomy and Lifecycle of an AI-Enabled System

The 60-second version: The unit of delivery is the AI-enabled system, not the model: data, orchestration, tools, people, controls, operations, vendors, and feedback all shape outcomes. The TPM maps seams and lifecycle evidence while model, product, security, legal, and operational owners retain their decisions.

Chapter 33 of 4082% through the course
Module 9: The AI-Era TPM

Mission

By the end of this chapter, you can map an AI-enabled system across models, data, tools, humans, controls, operations, vendors, and lifecycle decisions.

  • Measurable outcome: Draw an AI system context that includes data, model, orchestration, tools, human workflow, controls, monitoring, and feedback, then identify five program seams and their owners; score at least 3 of 4.
  • Prerequisites: Chapters 5–9, 13–16, 25, and 28.
  • Work product: An AI System and Lifecycle Map.
  • Time: 75–95 minutes.

Before you read: Predict → Commit → Connect

Helios Support uses a capable language model and performs well on a demonstration set. Leadership asks, “When can we launch the model?” Predict why that is the wrong program object. Commit to three non-model components that could determine success or harm.

Connect to Chapter 5: trace one customer request across the complete system. AI adds probabilistic behavior; it does not remove APIs, state, identity, operations, or people.

The system is the unit of delivery

An AI-enabled system combines a model with data sources, retrieval, prompts or policies, application logic, tools, identity, user experience, human judgment, monitoring, and organizational process. The model may be purchased, fine-tuned, or trained internally. In every case, system behavior emerges from the combination.

Helios can fail while the model behaves “as designed”: retrieval returns another tenant’s content; an account tool has excessive permission; a prompt template omits a policy; the user treats a suggestion as an approved refund; monitoring stores sensitive text; Support lacks an escalation path; a model update changes behavior outside the original evaluation.

AI-enabled system context from user request to governed outcome

Mark trust boundaries: where data enters, where identity changes, where third parties act, where untrusted text becomes instructions, and where an output can create real-world effect. Those boundaries determine security, privacy, evaluation, and operational workstreams.

Lifecycle means repeated governance, not a one-time model release

NIST AI RMF 1.0 organizes risk-management outcomes around Govern, Map, Measure, and Manage. It is voluntary and is being revised as of July 2026, so use the current publication and record your adopted version. The program lesson is durable: risk work spans context, measurement, action, and governance throughout the lifecycle.

A practical lifecycle includes:

  1. Frame the problem and non-AI alternative. What outcome and affected people justify an AI component? What should remain deterministic or human?
  2. Map context and risk. Intended use, foreseeable misuse, stakeholders, impact, laws/policies, data, human roles, and system boundaries.
  3. Acquire/build/configure. Data, model, retrieval, prompts, tools, UI, infrastructure, access, and documentation.
  4. Evaluate and validate. Technical performance, user workflow, safety/security/privacy, fairness where relevant, robustness, and operational readiness.
  5. Deploy progressively. Bound population, permissions, and consequences; observe with stop criteria.
  6. Operate and monitor. Quality, drift, incidents, data changes, model/vendor changes, abuse, cost, latency, and human outcomes.
  7. Change or retire. Re-evaluate material changes, preserve records, migrate users/data, revoke access, and remove unsupported paths.
AI lifecycle with evidence and change loops

Do not force a linear development method. The lifecycle is a governance coverage map. Discovery and evaluation will iterate. What must not disappear is evidence and ownership at each transition.

Map the program seams

For Helios, useful seams include:

  • Product intent ↔ measurable user outcome.
  • Customer data purpose ↔ retrieval/index implementation.
  • Identity ↔ tool authorization.
  • Model output ↔ policy and human decision.
  • Vendor model update ↔ evaluation and release control.
  • Conversation monitoring ↔ privacy and incident investigation.
  • Support workflow ↔ fallback staffing and escalation.

Each seam needs an interface, owner on both sides, evidence, and change path. The TPM is the person who ensures the system has no ownerless seam, not the person who becomes owner of every component.

Decision rights: Who owns what?

  • Product/Business owner owns intended outcome, use-case priority, and acceptable product behavior within policy.
  • Data owners/stewards own data meaning, allowed use, quality obligations, access, and lifecycle.
  • ML/Engineering/Architecture owns system design, model integration, implementation, and technical evidence.
  • Security, Privacy, Legal, Compliance, Safety/Risk own specialist requirements and acceptance routes defined locally.
  • Operations/SRE/Support owns operability, response, fallback, and service processes.
  • Human decision owners retain authority for decisions explicitly assigned to people; an AI recommendation does not transfer accountability.
  • The TPM owns lifecycle integration, system seams, evidence sequence, decision forums, change control, and readiness recommendation.

I do

I redraw “launch the model” as “launch a bounded billing-assistance service.” I identify one model, three retrieval sources, a policy layer, no write-capable tools, trained support agents as approvers, a monitored handoff, and an emergency disable path. I ask for evidence at the service boundary: grounded answer or timely human handoff, not model fluency alone.

We do

Helios’s vendor plans an automatic model-version upgrade. The vendor promises better quality, and the API contract is unchanged. Together decide whether the change is material.

Show the model answer

Model answer

Treat model behavior as part of the system contract. An unchanged API does not establish unchanged output, safety, cost, latency, tool-use, or refusal behavior. Inventory affected use cases, run the approved evaluation suite plus targeted regression tests, compare operational limits, review vendor documentation, stage exposure, and retain rollback/version pinning where available. The authorized release forum decides materiality from evidence, not vendor marketing.

Rubric (0–4)

  • 0: Accepts automatically or rejects all vendor updates.
  • 1: Requests generic testing without system scope.
  • 2: Evaluates model output but omits workflow, controls, or rollback.
  • 3: Connects change to system risks, evaluation, staged deployment, owner, and recovery.
  • 4: Also addresses vendor dependency, unavailable version pinning, monitoring baseline, and user communication.

You do

Draw an AI system context. Include user, data sources, model(s), orchestration, prompts/policies, tools, identity, human decision, output, monitoring, vendor, and emergency control. Mark at least five trust boundaries and five seams.

Then complete:

Lifecycle decision Claim to establish Evidence Affected people Owner/authority Change trigger
Enter pilot Bounded users can obtain grounded assistance with safe handoff Offline + workflow + control tests Agents/customers Product + Eng + Privacy Model/data/prompt/tool change

Pause & Recall

Name the seven lifecycle stages without looking. Recall Chapter 5: where does state live in your diagram? Recall Chapter 25: which readiness evidence belongs outside the model team? Recall Chapter 28: identify one privacy and one security trust boundary.

Production lens

Inventory exact model, prompt, retrieval index, tool schema, policy, dependency, and configuration versions. Monitor change, not just failures. Establish who can disable the feature, revoke tool access, switch to human-only mode, and notify affected teams. A vendor “managed service” transfers implementation work, not your organization’s accountability for its use.

Workplace artifact: AI system and lifecycle cover sheet

Use case/outcome: [ ] Affected people and decisions: [ ] System boundary and model/vendor: [ ] Data sources/purpose/retention: [ ] Tools and permissions: [ ] Human authority and fallback: [ ] Evaluation/readiness evidence: [ ] Monitoring/incident/disable path: [ ] Material-change triggers and forum: [ ]

Chapter compression

Deliver the AI-enabled system, not “the model.” Map data, orchestration, tools, people, controls, operations, and vendors. Govern the lifecycle from problem framing through retirement. Treat model, prompt, data, policy, and tool changes as potential system changes. Keep human decision accountability explicit.

Retrieval deck

  • Q: What is the unit of delivery? A: The complete sociotechnical AI-enabled system and its workflow.
  • Q: What are NIST AI RMF’s four core functions? A: Govern, Map, Measure, and Manage.
  • Q: Why can an unchanged API still be a material model change? A: Behavior, quality, safety, cost, latency, refusals, and tool use may change.
  • Q: What is a program seam? A: A cross-owner boundary where meaning, data, authority, or behavior must remain coherent.
  • Q: What does a human-in-the-loop label fail to tell you? A: Which human, what evidence they see, what authority/time they have, and whether intervention is feasible.

Spaced review

  • Now: Draw the system boundary and mark five owner-to-owner seams.
  • +1 day: Recreate the AI system and lifecycle diagrams from memory.
  • +3 days: Trace one request, tool action, and monitoring signal end to end.
  • +7 days: Trace a data correction or deletion through every component.
  • +14 days: Compare recorded model, prompt, retrieval, policy, and tool versions with production.

Sources and further study

Keep your retrieval practice honest. Progress is saved only in this browser.