Mapping: Nexus SecOps ↔ NIST AI Risk Management Framework (AI RMF 1.0)¶
This document maps Nexus SecOps benchmark controls (primarily the AIM and LLM domains) to the NIST AI Risk Management Framework 1.0 functions, categories, and subcategories.
The AI RMF 1.0 defines four core functions: GOVERN, MAP, MEASURE, and MANAGE.
AI RMF Function: GOVERN¶
The GOVERN function establishes AI risk management practices across the organization.
| AI RMF Category | Subcategory | Nexus SecOps Controls |
|---|---|---|
| GOVERN 1 | Policies, processes, and practices for AI risk management | Nexus SecOps-180, Nexus SecOps-201 |
| GOVERN 1.1 | Organizational policies on AI risk | Nexus SecOps-180, Nexus SecOps-201 |
| GOVERN 1.2 | Accountability for AI risk decisions | Nexus SecOps-180, Nexus SecOps-205 |
| GOVERN 1.3 | Roles and responsibilities for AI governance | Nexus SecOps-180, Nexus SecOps-205, Nexus SecOps-068 |
| GOVERN 1.4 | Organizational culture supports AI risk | Nexus SecOps-206, Nexus SecOps-180 |
| GOVERN 1.5 | Organizational teams are committed to AI risk | Nexus SecOps-180, Nexus SecOps-206 |
| GOVERN 1.6 | Policies require risk documentation | Nexus SecOps-161, Nexus SecOps-181 |
| GOVERN 1.7 | AI design, deployment monitored for rights/values | Nexus SecOps-180, Nexus SecOps-214 |
| GOVERN 2.1 | Policies for AI risk management exist | Nexus SecOps-180, Nexus SecOps-201 |
| GOVERN 2.2 | Oversight of AI risk | Nexus SecOps-180, Nexus SecOps-210 |
| GOVERN 4.1 | AI risk communicated to executives | Nexus SecOps-211, Nexus SecOps-180 |
| GOVERN 4.2 | AI risk management results inform policies | Nexus SecOps-179, Nexus SecOps-220 |
| GOVERN 5.1 | Organizational risk policies cover AI | Nexus SecOps-180, Nexus SecOps-207 |
| GOVERN 5.2 | AI risk management integrated into enterprise risk | Nexus SecOps-207, Nexus SecOps-180 |
| GOVERN 6.1 | AI risks and benefits to employees | Nexus SecOps-180, Nexus SecOps-206 |
| GOVERN 6.2 | AI risks and benefits to end users | Nexus SecOps-180, Nexus SecOps-191 |
AI RMF Function: MAP¶
The MAP function categorizes AI risk context and identifies relevant risks.
| AI RMF Category | Subcategory | Nexus SecOps Controls |
|---|---|---|
| MAP 1.1 | Context established for AI risks | Nexus SecOps-161, Nexus SecOps-181 |
| MAP 1.5 | Organizational risk tolerance applied to AI | Nexus SecOps-161, Nexus SecOps-207 |
| MAP 1.6 | AI risks from third-party providers | Nexus SecOps-181, Nexus SecOps-204 |
| MAP 2.1 | Scientific findings on AI risks considered | Nexus SecOps-161, Nexus SecOps-170 |
| MAP 2.2 | Scientifically informed approaches to AI risk | Nexus SecOps-162, Nexus SecOps-170 |
| MAP 2.3 | AI system context documented | Nexus SecOps-161, Nexus SecOps-181 |
| MAP 3.1 | AI task and output type identified | Nexus SecOps-181, Nexus SecOps-161 |
| MAP 3.2 | AI system components and dependencies | Nexus SecOps-161, Nexus SecOps-181 |
| MAP 3.3 | Risks of AI system enumerated | Nexus SecOps-161, Nexus SecOps-162 |
| MAP 3.4 | Risks from AI system dependencies | Nexus SecOps-181, Nexus SecOps-204 |
| MAP 3.5 | Risks to individuals identified | Nexus SecOps-180, Nexus SecOps-214 |
| MAP 4.1 | Likelihood of risks estimated | Nexus SecOps-162, Nexus SecOps-207 |
| MAP 4.2 | Risk prioritization based on likelihood and impact | Nexus SecOps-162, Nexus SecOps-207 |
| MAP 5.1 | AI likelihood and impact risks documented | Nexus SecOps-161, Nexus SecOps-162, Nexus SecOps-207 |
| MAP 5.2 | AI incident/error response | Nexus SecOps-179, Nexus SecOps-066 |
AI RMF Function: MEASURE¶
The MEASURE function analyzes, assesses, benchmarks, and monitors AI risk.
| AI RMF Category | Subcategory | Nexus SecOps Controls |
|---|---|---|
| MEASURE 1.1 | AI risk measurement approaches identified | Nexus SecOps-162, Nexus SecOps-175 |
| MEASURE 1.3 | Internal experts identified for AI testing | Nexus SecOps-162, Nexus SecOps-205 |
| MEASURE 2.1 | AI system tested before deployment | Nexus SecOps-162, Nexus SecOps-176 |
| MEASURE 2.2 | AI system evaluated for trustworthy AI | Nexus SecOps-175, Nexus SecOps-176 |
| MEASURE 2.3 | AI systems tested for risks | Nexus SecOps-162, Nexus SecOps-171, Nexus SecOps-172 |
| MEASURE 2.5 | AI system accuracy and bias tested | Nexus SecOps-176, Nexus SecOps-190 |
| MEASURE 2.6 | AI system performance metrics | Nexus SecOps-175, Nexus SecOps-190 |
| MEASURE 2.7 | AI risk or performance communicated | Nexus SecOps-175, Nexus SecOps-211 |
| MEASURE 2.8 | AI impact on individuals or groups | Nexus SecOps-180, Nexus SecOps-190 |
| MEASURE 2.9 | Confidentiality, integrity, availability considered | Nexus SecOps-162, Nexus SecOps-215 |
| MEASURE 2.10 | Privacy risks to individuals | Nexus SecOps-186, Nexus SecOps-214 |
| MEASURE 2.11 | AI fairness tested | Nexus SecOps-176, Nexus SecOps-190 |
| MEASURE 2.12 | Environmental impact considered | Nexus SecOps-161 |
| MEASURE 2.13 | Effectiveness of risk management | Nexus SecOps-175, Nexus SecOps-179 |
| MEASURE 3.1 | AI risks tracked over time | Nexus SecOps-175, Nexus SecOps-179, Nexus SecOps-210 |
| MEASURE 3.2 | Risk metrics tracked consistently | Nexus SecOps-175, Nexus SecOps-210 |
| MEASURE 3.3 | AI incidents tracked | Nexus SecOps-179, Nexus SecOps-074 |
| MEASURE 4.1 | Post-deployment monitoring | Nexus SecOps-175, Nexus SecOps-179 |
| MEASURE 4.2 | Targeted monitoring for risk | Nexus SecOps-175, Nexus SecOps-177 |
AI RMF Function: MANAGE¶
The MANAGE function addresses and responds to AI risks on an ongoing basis.
| AI RMF Category | Subcategory | Nexus SecOps Controls |
|---|---|---|
| MANAGE 1.1 | Risks prioritized and addressed | Nexus SecOps-162, Nexus SecOps-179 |
| MANAGE 1.2 | Resources allocated for AI risk management | Nexus SecOps-205, Nexus SecOps-180 |
| MANAGE 1.3 | Responses to identified risks prepared | Nexus SecOps-179, Nexus SecOps-208 |
| MANAGE 1.4 | Risk responses communicated | Nexus SecOps-179, Nexus SecOps-211 |
| MANAGE 2.1 | Affected communities' risks treated | Nexus SecOps-180, Nexus SecOps-214 |
| MANAGE 2.2 | AI system treatment options evaluated | Nexus SecOps-179, Nexus SecOps-162 |
| MANAGE 2.4 | Risk treatments documented | Nexus SecOps-161, Nexus SecOps-179 |
| MANAGE 3.1 | Responses to deployment risks | Nexus SecOps-179, Nexus SecOps-066 |
| MANAGE 3.2 | Treatment of identified risks implemented | Nexus SecOps-179, Nexus SecOps-162 |
| MANAGE 4.1 | Post-deployment risks identified | Nexus SecOps-175, Nexus SecOps-179 |
| MANAGE 4.2 | Team performance on risk reviewed | Nexus SecOps-179, Nexus SecOps-210 |
Nexus SecOps AI Domain Controls Summary (AIM + LLM)¶
AIM Domain (Nexus SecOps-161–180)¶
| Control | Title | AI RMF Alignment |
|---|---|---|
| Nexus SecOps-161 | AI/ML Tool Inventory | MAP 1.1, MAP 2.3, MAP 3.1 |
| Nexus SecOps-162 | AI Risk Assessment per Deployment | MAP 3.3, MEASURE 1.1, MANAGE 1.1 |
| Nexus SecOps-163 | Feature Engineering Documentation | MEASURE 2.1 |
| Nexus SecOps-164 | Training Data Governance | MEASURE 2.5, MAP 1.6 |
| Nexus SecOps-165 | Model Bias Testing | MEASURE 2.5, MEASURE 2.11 |
| Nexus SecOps-166 | ML Pipeline Security | MEASURE 2.9 |
| Nexus SecOps-167 | Model Versioning | MEASURE 3.1 |
| Nexus SecOps-168 | Anomaly Detection Thresholds | MEASURE 2.6 |
| Nexus SecOps-169 | UEBA Deployment Standards | MEASURE 2.2 |
| Nexus SecOps-170 | AI Use Case Suitability | MAP 2.1, MAP 2.2 |
| Nexus SecOps-171 | Adversarial Testing | MEASURE 2.3 |
| Nexus SecOps-172 | Data Poisoning Defense | MEASURE 2.3, MEASURE 2.9 |
| Nexus SecOps-173 | Model Explainability | MEASURE 2.7, GOVERN 6.2 |
| Nexus SecOps-174 | Feedback Loop Management | MANAGE 4.1 |
| Nexus SecOps-175 | Model Performance Metrics | MEASURE 2.6, MEASURE 3.1 |
| Nexus SecOps-176 | Pre-Deployment Evaluation | MEASURE 2.1, MEASURE 2.5 |
| Nexus SecOps-177 | Model Monitoring and Drift Detection | MEASURE 4.1, MEASURE 4.2 |
| Nexus SecOps-178 | Human Override Capability | GOVERN 6.2, MANAGE 1.3 |
| Nexus SecOps-179 | Model Failure Response | MANAGE 1.1, MANAGE 3.1 |
| Nexus SecOps-180 | AI Ethics Review | GOVERN 1.7, MAP 3.5 |
LLM Domain (Nexus SecOps-181–200)¶
| Control | Title | AI RMF Alignment |
|---|---|---|
| Nexus SecOps-181 | LLM Deployment Inventory | MAP 1.1, MAP 3.1 |
| Nexus SecOps-182 | Prompt Injection Defense | MEASURE 2.9, MANAGE 1.1 |
| Nexus SecOps-183 | Output Validation | MEASURE 2.1, MANAGE 2.4 |
| Nexus SecOps-184 | Grounding and RAG | MEASURE 2.5, MAP 2.2 |
| Nexus SecOps-185 | Hallucination Detection | MEASURE 2.5, MEASURE 2.6 |
| Nexus SecOps-186 | PII Filtering for LLM | MEASURE 2.10, GOVERN 1.7 |
| Nexus SecOps-187 | Context Window Management | MEASURE 2.9 |
| Nexus SecOps-188 | LLM Vendor Risk Assessment | MAP 1.6, MAP 3.4 |
| Nexus SecOps-189 | LLM Access Control | GOVERN 2.2, MANAGE 1.2 |
| Nexus SecOps-190 | LLM Evaluation Framework | MEASURE 2.6, MEASURE 2.11 |
| Nexus SecOps-191 | Human Oversight for LLM | GOVERN 6.2, MANAGE 1.3 |
| Nexus SecOps-192 | LLM Prompt Logging | MEASURE 3.3, GOVERN 1.6 |
| Nexus SecOps-193 | LLM Cost and Usage Monitoring | MEASURE 3.2 |
| Nexus SecOps-194 | LLM Incident Response | MANAGE 3.1, MEASURE 3.3 |
| Nexus SecOps-195 | Fine-Tuning Governance | MEASURE 2.1, MAP 3.2 |
| Nexus SecOps-196 | On-Premises LLM Option | GOVERN 5.2, MEASURE 2.9 |
| Nexus SecOps-197 | LLM Change Management | MANAGE 4.2, GOVERN 4.2 |
| Nexus SecOps-198 | Knowledge Base Security (RAG) | MEASURE 2.9 |
| Nexus SecOps-199 | LLM Performance Benchmarking | MEASURE 2.6, MEASURE 3.1 |
| Nexus SecOps-200 | LLM Transparency to Users | GOVERN 6.1, GOVERN 6.2 |
AI RMF Trustworthy AI Characteristics vs. Nexus SecOps¶
The AI RMF defines trustworthy AI characteristics. Nexus SecOps controls addressing each:
| Characteristic | Definition | Key Nexus SecOps Controls |
|---|---|---|
| Accountable | Clear ownership of AI decisions | Nexus SecOps-180, Nexus SecOps-205 |
| Explainable | AI decisions can be explained | Nexus SecOps-173, Nexus SecOps-191 |
| Fair | Bias tested and mitigated | Nexus SecOps-165, Nexus SecOps-176, Nexus SecOps-190 |
| Interpretable | Humans can understand the model | Nexus SecOps-173, Nexus SecOps-178 |
| Privacy-Enhanced | Personal data protected | Nexus SecOps-186, Nexus SecOps-214 |
| Reliable | Performs consistently | Nexus SecOps-175, Nexus SecOps-177, Nexus SecOps-179 |
| Safe | Avoids harm | Nexus SecOps-178, Nexus SecOps-191, Nexus SecOps-180 |
| Secure | Resistant to attacks | Nexus SecOps-171, Nexus SecOps-172, Nexus SecOps-182 |
| Transparent | Open about AI use | Nexus SecOps-200, Nexus SecOps-177, Nexus SecOps-180 |
| Valid | Meets intended purpose | Nexus SecOps-162, Nexus SecOps-175, Nexus SecOps-176 |
See AI/ML Chapter and LLM Copilots Chapter for implementation guidance. Reference: NIST AI RMF 1.0