Skip to main content

NIST AI Risk Management Framework (AI RMF)

Risk & governance

A voluntary U.S. framework for managing AI risks across map, measure, and manage activities—common vocabulary in enterprise governance and vendor reviews.

The NIST AI RMF helps teams inventory systems, assess impacts, and document mitigations. It does not replace law or contracts, but it aligns cross-functional conversations with responsible AI and complements ISO/IEC 42001 and the EU AI Act where products are global.

For practitioners

Use it to structure assessments: where are unknowns, who owns monitoring, what is the incident path?