Governance & Compliance

Framework compliance, risk quantification, insurance coverage, and incident management

HG

Compliance Score

76%

Avg Risk Score

78

7 active risks

Insurance Limits

$60M+

5 active policies

Open Incidents

5

2 critical

Active Policies

8

2 in draft

Compliance Frameworks

4 of 8 fully compliant

NIST AI RMF 1.0

Compliant

AI Risk Management Framework — Govern, Map, Measure, Manage lifecycle functions

Implemented all 4 functions with 19 categories and 42 subcategories. Continuous monitoring active via automated telemetry.

87%

Coverage

42

Controls

2026-02-15

Last Audit

DoW AI Ethical Principles

Compliant

Responsible, equitable, traceable, reliable, governable AI principles for defense systems

Full alignment with 5 ethical principles. Traceability logging covers all model inference paths. Human-in-the-loop for high-stakes decisions.

94%

Coverage

18

Controls

2026-03-01

Last Audit

MITRE ATLAS v4.6

Partial

Adversarial Threat Landscape for AI Systems — tactics, techniques, and procedures

Covering 12 of 14 tactic categories. Active red-team benchmarks map to TTP matrix. Gaps in ML supply chain and physical-domain attacks.

72%

Coverage

56

Controls

2026-01-20

Last Audit

EU AI Act (Title III)

Partial

High-risk AI system requirements — risk management, data governance, transparency, human oversight

Applicable for allied interoperability. Conformity assessment procedures partially implemented. CE marking pathway defined but not yet submitted.

65%

Coverage

34

Controls

2026-02-28

Last Audit

ISO/IEC 42001:2023

In Progress

AI Management System standard — Annex A controls for organizational AI governance

10 Annex A control categories mapped. Gap analysis completed. Certification audit targeted for Q3 2026. AIMS documentation 60% complete.

48%

Coverage

39

Controls

Last Audit

EO 14110 (Safe AI)

Compliant

Executive Order on Safe, Secure, and Trustworthy AI — federal agency requirements

Dual-use foundation model reporting thresholds met. Red-team testing protocols implemented per NIST guidance. OMB M-24-10 compliance verified.

91%

Coverage

24

Controls

2026-03-05

Last Audit

NAIC Model Bulletin (AI)

Compliant

Insurance regulatory guidance on AI/ML usage — adopted by 24 states for governance of AI in insurance

Covers AIS Program requirements, third-party AI governance, bias testing, and consumer transparency. Maps to NIST AI RMF functions.

82%

Coverage

16

Controls

2026-02-20

Last Audit

SR 11-7 (Model Risk Mgmt)

Partial

Federal Reserve / OCC model risk management guidance adapted for AI/ML systems

Model inventory, independent validation, ongoing monitoring, and outcome analysis. Extended to cover foundation model supply chain risks.

70%

Coverage

28

Controls

2026-01-30

Last Audit