Engineering Trustworthy Intelligent Systems book cover
ETIS
The ETIS Framework

Engineering Trustworthy
Intelligent Systems

Software Engineering, Governance,
and Operational Trust in the AI Era

ETIS is a practical engineering framework for building, governing, operating, and continuously improving trustworthy intelligent systems throughout their lifecycle.

Read OnlineStart Reading Volume IParts I–II Volume IIParts III–IV AppendicesReference Material DownloadFull PDF

Why ETIS?

The acceleration of AI and intelligent systems demands a new standard: trust must be engineered, not assumed.

  • AI systems introduce new risks and complexities.
  • Trustworthy systems require disciplined engineering.
  • Governance is architecture, not an afterthought.
  • Evidence creates accountability and enables trust.
  • Human judgment, verification, and oversight remain essential.
Learn more about the ETIS Framework →

ETIS Core Principles

AI Proposes; Engineers Verify

AI can propose, but engineers are responsible for verification, validation, and outcomes.

Governance is Architecture

Governance is not overhead; it is the architecture that enables trust and controls risk.

Context is Control

Meaning, intent, and context determine how systems behave and how decisions should be made.

Everything Important Leaves Evidence

If it is not documented, it did not happen in a reviewable way.

The Model Is Not the System

Models are components. The system includes data, interfaces, people, and processes.

A Demo Is Not Operational Proof

Demos impress. Operations prove. Operational trust is earned over time.

The ETIS Framework

A four-part framework covering the full lifecycle of trustworthy intelligent systems.

Part I
FoundationsPrinciples, context, and the engineering mindset.
Bridge at dusk representing engineering foundations
Part II
Engineering PracticeRequirements, architecture, planning, implementation, verification, and delivery.
Steel framework representing engineering practice
Part III
Operational TrustIncidents, observability, security, reliability, governance, and release authority.
Digital network representing operational intelligent systems
Part IV
Trustworthy Intelligent SystemsAgentic systems, context engineering, oversight, stewardship, and engineering identity.
Lighthouse at sunset representing stewardship and operational trust Explore all chapters →

Repository-Centered Engineering

ETIS uses a repository as the system of record. Every important decision, artifact, and outcome is captured, linked, and preserved.

RequirementsCapture intent, constraints, and acceptance.
ADRsRecord key architecture and design decisions.
👥ReviewsReview board oversight and decision records.
EvidenceVerification, validation, and test results.
🛡AI GovernanceAI use logs, prompts, evaluations, and model oversight.
OperationsRun records, monitoring, incidents, and continuous improvement.
ReleasesRelease decisions, approvals, and deployment records.

Everything important leaves evidence.

🛡Engineering FirstSound engineering practices applied to intelligent systems.
👥Human OversightEngineers remain accountable for outcomes and impact.
Operational TrustSystems earn trust in real-world operations.
🏛Governance by DesignGovernance is built in, not bolted on.
Continuous ImprovementLearn, adapt, and improve through evidence.
🌐For Every RoleStudents, engineers, architects, managers, and executives.
AppendicesReference framework and tools
Resource CenterDownloads, templates, and guides
Teaching with ETISCourses, assignments, and teaching materials
GitHub RepositorySource, examples, and ecosystem artifacts