Tag

#governance

2 posts tagged governance.

analysis

The NIST AI Risk Management Framework: A Practitioner's Field Guide

What the NIST AI RMF actually asks you to do — the GOVERN, MAP, MEASURE, MANAGE functions, the Generative AI Profile's 12 risk categories, and how a security team turns a voluntary framework into concrete controls without drowning in documentation.
May 22, 2026
advisory

Shadow AI: Ungoverned LLM API Keys and Data Exfiltration Risk

Employees using personal Claude, OpenAI, and Gemini API keys for work tasks bypass corporate DLP controls and send sensitive business data to external providers without logging, consent, or data handling agreements. Here's the threat model.
May 9, 2026