AI Security & Compliance Readiness Survey

Average Score: / 4.0

Questions Answered Yes: / 25

Section Breakdown

Governance & Accountability

coverage

AI Inventory & Risk Identification

coverage

Security & Technical Controls

coverage

Transparency & Lifecycle Assurance

coverage

Continuous Improvement & Compliance Proof

coverage

Recommended Next Steps

Mend.io Solutions

See how

Gaps to Address

OWASP AI-MA

EU AI Act

ISO/IEC 42001

NIST AI RMF

Access Control

Asset Mapping

Asset Metadata

Audit

Audit & Logging

Behavioral Monitoring

Bias & Fairness Testing

Corrective Actions

Data Quality & Provenance §3.1

Explainability

Governance

Governance & Policies

Governance Reporting

Governance Review

Human Oversight

IR & Containment

Lifecycle Security

Operational Monitoring

Prompt Security

Risk Assessment

Supply Chain §2.4

Testing §4 (Red Teaming)

Threat Modeling §2.2

Transparency

Validation §3.1

Vulnerability Classification

Annex IV (Technical Documentation)

Article 10

Article 10(2)

Article 13

Article 14

Article 15(1)

Article 15(2)

Article 15(3)

Article 15(4)

Article 17

Article 19

Article 9

Article 9(2)

Article 9(3)

Annex A.7

Clause 10.2

Clause 10.3

Clause 5.2

Clause 5.3

Clause 6.1

Clause 6.2

Clause 6.3

Clause 8.1

Clause 8.2

Clause 8.3

Clause 8.4

Clause 8.5

Clause 9.1

Clause 9.2

Clause 9.3

GOVERN 1.1

GOVERN 1.2

GOVERN 1.4

GOVERN 2.2

GOVERN 3.1

GOVERN 3.3

GOVERN 3.4

GOVERN 4.1

MANAGE 1.3

MANAGE 1.4

MANAGE 2.1

MANAGE 2.4

MANAGE 3.1

MANAGE 3.3

MAP 1.2

MAP 1.3

MAP 2.2

MEASURE 1.1

MEASURE 2.2

MEASURE 2.3

MEASURE 3.2

No gaps - fully compliant!

Learn more

OWASP AI-MA

Access Control

Asset Mapping

Asset Metadata

Audit

Audit & Logging

Behavioral Monitoring

Bias & Fairness Testing

Corrective Actions

Data Quality & Provenance §3.1

Explainability

Governance

Governance & Policies

Governance Reporting

Governance Review

Human Oversight

IR & Containment

Lifecycle Security

Operational Monitoring

Prompt Security

Risk Assessment

Supply Chain §2.4

Testing §4 (Red Teaming)

Threat Modeling §2.2

Transparency

Validation §3.1

Vulnerability Classification

No gaps - fully compliant!

EU AI Act

Annex IV (Technical Documentation)

Article 10

Article 10(2)

Article 13

Article 14

Article 15(1)

Article 15(2)

Article 15(3)

Article 15(4)

Article 17

Article 19

Article 9

Article 9(2)

Article 9(3)

No gaps - fully compliant!

ISO/IEC 42001

Annex A.7

Clause 10.2

Clause 10.3

Clause 5.2

Clause 5.3

Clause 6.1

Clause 6.2

Clause 6.3

Clause 8.1

Clause 8.2

Clause 8.3

Clause 8.4

Clause 8.5

Clause 9.1

Clause 9.2

Clause 9.3

No gaps - fully compliant!

NIST AI RMF

GOVERN 1.1

GOVERN 1.2

GOVERN 1.4

GOVERN 2.2

GOVERN 3.1

GOVERN 3.3

GOVERN 3.4

GOVERN 4.1

MANAGE 1.3

MANAGE 1.4

MANAGE 2.1

MANAGE 2.4

MANAGE 3.1

MANAGE 3.3

MAP 1.2

MAP 1.3

MAP 2.2

MEASURE 1.1

MEASURE 2.2

MEASURE 2.3

MEASURE 3.2

No gaps - fully compliant!

Compliant Clauses

OWASP AI-MA

EU AI Act

ISO/IEC 42001

NIST AI RMF

Access Control

Asset Mapping

Asset Metadata

Audit

Audit & Logging

Behavioral Monitoring

Bias & Fairness Testing

Corrective Actions

Data Quality & Provenance §3.1

Explainability

Governance

Governance & Policies

Governance Reporting

Governance Review

Human Oversight

IR & Containment

Lifecycle Security

Operational Monitoring

Prompt Security

Risk Assessment

Supply Chain §2.4

Testing §4 (Red Teaming)

Threat Modeling §2.2

Transparency

Validation §3.1

Vulnerability Classification

Annex IV (Technical Documentation)

Article 10

Article 10(2)

Article 13

Article 14

Article 15(1)

Article 15(2)

Article 15(3)

Article 15(4)

Article 17

Article 19

Article 9

Article 9(2)

Article 9(3)

Annex A.7

Clause 10.2

Clause 10.3

Clause 5.2

Clause 5.3

Clause 6.1

Clause 6.2

Clause 6.3

Clause 8.1

Clause 8.2

Clause 8.3

Clause 8.4

Clause 8.5

Clause 9.1

Clause 9.2

Clause 9.3

GOVERN 1.1

GOVERN 1.2

GOVERN 1.4

GOVERN 2.2

GOVERN 3.1

GOVERN 3.3

GOVERN 3.4

GOVERN 4.1

MANAGE 1.3

MANAGE 1.4

MANAGE 2.1

MANAGE 2.4

MANAGE 3.1

MANAGE 3.3

MAP 1.2

MAP 1.3

MAP 2.2

MEASURE 1.1

MEASURE 2.2

MEASURE 2.3

MEASURE 3.2

No compliant clauses yet

Learn more

OWASP AI-MA

Access Control

Asset Mapping

Asset Metadata

Audit

Audit & Logging

Behavioral Monitoring

Bias & Fairness Testing

Corrective Actions

Data Quality & Provenance §3.1

Explainability

Governance

Governance & Policies

Governance Reporting

Governance Review

Human Oversight

IR & Containment

Lifecycle Security

Operational Monitoring

Prompt Security

Risk Assessment

Supply Chain §2.4

Testing §4 (Red Teaming)

Threat Modeling §2.2

Transparency

Validation §3.1

Vulnerability Classification

No gaps - fully compliant!

EU AI Act

Annex IV (Technical Documentation)

Article 10

Article 10(2)

Article 13

Article 14

Article 15(1)

Article 15(2)

Article 15(3)

Article 15(4)

Article 17

Article 19

Article 9

Article 9(2)

Article 9(3)

No gaps - fully compliant!

ISO/IEC 42001

Annex A.7

Clause 10.2

Clause 10.3

Clause 5.2

Clause 5.3

Clause 6.1

Clause 6.2

Clause 6.3

Clause 8.1

Clause 8.2

Clause 8.3

Clause 8.4

Clause 8.5

Clause 9.1

Clause 9.2

Clause 9.3

No gaps - fully compliant!

NIST AI RMF

GOVERN 1.1

GOVERN 1.2

GOVERN 1.4

GOVERN 2.2

GOVERN 3.1

GOVERN 3.3

GOVERN 3.4

GOVERN 4.1

MANAGE 1.3

MANAGE 1.4

MANAGE 2.1

MANAGE 2.4

MANAGE 3.1

MANAGE 3.3

MAP 1.2

MAP 1.3

MAP 2.2

MEASURE 1.1

MEASURE 2.2

MEASURE 2.3

MEASURE 3.2

No gaps - fully compliant!

AI security & compliance
Readiness assessment

Products

Solutions

Resources

Company

Compare

Developer Tools

AI Security & Compliance Assessment

AI security & compliance Readiness assessment

Products

Solutions

Resources

Company

Compare

Developer Tools

AI Security & Compliance Assessment

AI security & compliance
Readiness assessment