Voluntary standardUS
NIST AI Risk Management Framework
The NIST AI Risk Management Framework (AI RMF 1.0) provides a voluntary, rights-preserving, non-sector-specific, and use-case-agnostic approach to managing risks from AI. It is organized around four core functions — Govern, Map, Measure, and Manage — and is widely adopted by US federal agencies and enterprises as the de facto governance baseline.
Jurisdiction
US
Enforcement
January 26, 2023
Maximum penalty
Voluntary framework; no statutory penalties
Key obligations
- 01Govern: establish a culture of risk management
- 02Map: identify context and categorize AI risks
- 03Measure: assess, analyze, and track risks
- 04Manage: prioritize risks and act on them
- 05Generative AI Profile (NIST AI 600-1) — July 2024
Vendors that support NIST AI RMF
Sorted by coverage level. Full coverage shown first.
20 vendors
| Vendor | HQ | Founded | Size | Pricing | Coverage | Last verified |
|---|---|---|---|---|---|---|
| LatticeFlow AI | Zurich, Switzerland | 2020 | 11-50 | No public pricing. Enterprise platform sold via direct sales. Contact sales for demo and pricing. | Full | Apr 22, 2026 |
| Holistic AI | London, United Kingdom | 2020 | 51-200 | Enterprise-only with modular pricing by use case. | Full | Apr 21, 2026 |
| Enzai | Belfast, United Kingdom | 2021 | 2-10 | SaaS platform, enterprise subscription. No public pricing listed. Contact sales via enz.ai. | Full | Apr 22, 2026 |
| Robust Intelligence | San Francisco, United States | 2019 | 11-50 | Now integrated into Cisco AI Defense / Cisco Security Cloud. Standalone Robust Intelligence is no longer sold independently. Pricing through Cisco. | Full | Apr 22, 2026 |
| FairNow | New York, United States | 2023 | 11-50 | Pricing not publicly listed; contact sales. | Full | Apr 21, 2026 |
| Credo AI | San Francisco, United States | 2020 | 51-200 | Enterprise-only; typical engagements start in the mid-five figures annually. | Full | Apr 21, 2026 |
| Collibra AI Governance | New York, United States | 2008 | 1000+ | Enterprise subscription; contact sales for custom quote based on users, assets, modules. | Full | Apr 23, 2026 |
| Monitaur | Boston, United States | 2019 | 11-50 | Enterprise annual subscription; no public pricing listed. Forrester Wave cited 'pricing flexibility and transparency' as a highest-score criterion. Contact sales for quotes. | Full | Apr 22, 2026 |
| Trustible | Arlington, United States | 2023 | 11-50 | Contact sales for enterprise pricing; no public plans listed | Full | Apr 23, 2026 |
| ModelOp | Chicago, United States | 2018 | 11-50 | No public pricing listed; contact sales for enterprise quotes. | Full | Apr 23, 2026 |
| Saidot | Helsinki, Finland | 2018 | 11-50 | No public pricing listed; contact sales implied via demos and sign-ups. | Partial | Apr 23, 2026 |
| Arthur | New York, United States | 2018 | 51-200 | Shield has a free tier; enterprise monitoring is contact-only. | Partial | Apr 21, 2026 |
| HiddenLayer | Austin, United States | 2022 | 51-200 | Enterprise-only, contact sales for pricing. No public pricing listed on website. | Partial | Apr 22, 2026 |
| Lakera | Zurich, Switzerland | 2021 | 51-100 | Enterprise-focused SaaS. No public pricing listed. API-based pricing model expected. Contact sales. | Partial | Apr 22, 2026 |
| Prompt Security | Tel Aviv, Israel | 2023 | 11-50 | Now part of SentinelOne Singularity Platform. Continues as a standalone product. Enterprise pricing only; contact sales or SentinelOne. | Partial | Apr 22, 2026 |
| Protect AI | Seattle, United States | 2022 | 51-200 | Now integrated into Palo Alto Networks Prisma AIRS. Original standalone Protect AI pricing was enterprise-only, contact sales. Current pricing through Palo Alto Networks. | Partial | Apr 22, 2026 |
| Fairly AI | Kitchener, Canada | 2020 | 11-50 | On-premises or private-cloud deployments; quote-based. | Partial | Apr 21, 2026 |
| TrojAI | Saint John, Canada | 2019 | 11-50 | Enterprise-only, no public pricing. Contact sales at troj.ai. | Partial | Apr 22, 2026 |
| Fiddler AI | Palo Alto, United States | 2018 | 51-200 | Contact for pricing | Partial | Apr 21, 2026 |
| OneTrust AI Governance | Atlanta, United States | 2016 | 1000+ | Enterprise platform; contact sales for quote, no public pricing listed | Partial | Apr 23, 2026 |
Compare across industries
See which vendors support NIST AI RMF in your sector.
NIST AI RMF in Defense & National SecurityNIST AI RMF in EducationNIST AI RMF in Employment & HRNIST AI RMF in Financial ServicesNIST AI RMF in Government & Public SectorNIST AI RMF in HealthcareNIST AI RMF in InsuranceNIST AI RMF in Legal ServicesNIST AI RMF in Retail & E-commerceNIST AI RMF in SaaS & Technology
Last verified April 21, 2026. Informational summary only — not legal advice. Consult qualified counsel for specific obligations.