AI model risk management
Defense and government contractors are under direct pressure on AI model risk management, with the U.S. Department of Defense's updated Responsible AI guidelines and the Office of the Under Secretary of Defense for Acquisition and Sustainment's contractor oversight requirements setting concrete expectations for how AI systems embedded in contract performance must be governed, validated, and documented. The National Institute of Standards and Technology AI Risk Management Framework (NIST AI RMF 1.0) is now referenced by contracting officers in source selection criteria, meaning model governance is no longer an internal IT question. Compliance teams are actively mapping their AI system inventories against DFARS clause requirements before new contract cycles open.
Watch
- NIST AI RMF 1.0 adoption as a de facto DFARS evaluation criterion
- DoD Directive 3000.09 updates covering autonomous and AI-assisted weapons-adjacent systems
- Contractor incident reporting obligations when AI model outputs affect contract deliverables
- CMMC 2.0 intersection with AI tool data handling in controlled unclassified information environments
Recent material activity in Defense & Government Contracting
Active monitoring in place across Defense & Government Contracting. Material developments related to ai model risk management will appear here as they are published.