Back to NIST AI RMF View canonical source
NIST AI RMF · GOVERN 1
Policies, processes, procedures
“Policies, processes, and procedures to manage AI risks are in place, transparent, and implemented effectively.”
AI RMF 1.0 GOVERN 1
framingdeployment
Sub-items
- GOVERN 1.1Legal and regulatory requirementsLegal and regulatory requirements involving AI are understood, managed, and documented.
- GOVERN 1.4Risk management roles & accountabilityProcesses for risk management are in place and documented; roles and lines of communication are clear and accountable.
- GOVERN 1.5Ongoing monitoring and reviewOngoing monitoring and periodic review of the risk management process are planned and resourced.
Cross-framework relationships
Lattice uses an explicit, four-type vocabulary and refuses ‘equivalent.’ Each relationship below carries a rationale and an editorial reviewer credit.
No cross-framework relationships have been recorded for this item. Either editorial review is pending, or no other framework speaks here.
Version: 1.0 + Generative AI Profile (NIST AI 600-1)Last reviewed: 2026-04-30