NIST AI RMF
How to Choose NIST AI RMF Software: Key Capabilities
A capability-by-capability breakdown of what to look for when choosing NIST AI RMF software, with a comparison framework and the questions that separate serious platforms from rebrands.
July 5, 2026 · 17 min read
NIST AI RMF
Plenty of platforms now claim NIST AI RMF alignment — the framework's popularity as a reference structure has made it a common marketing checkbox. Very few map to its actual 19 categories and 72 subcategories with any real depth. This is a capability-by-capability breakdown for telling the difference before you sign a contract.
TL;DR
- Verify subcategory-level tracking specifically — function-level scores ('Measure: 70%') hide exactly what's incomplete underneath.
- Confirm you can define your own target profile and risk tolerance rather than being locked into a fixed, generic model.
- If you use generative AI, confirm the Generative AI Profile's 12 risk categories are explicitly supported, not just the base four functions.
- Check whether the platform connects Measure data back to Govern policy updates, or treats Govern as a one-time setup step.
- Build makes sense only if you have very few AI systems and minimal external pressure (customers, procurement, insurers) to demonstrate RMF alignment formally.
The Problem: Plenty of Platforms Claim RMF Alignment
"NIST AI RMF aligned" appears on countless vendor pages, but alignment can mean anything from deep subcategory-level mapping to a single marketing slide referencing the four function names. For what RMF-mapped software should automate at a conceptual level, see NIST AI RMF Software. This post focuses specifically on how to tell real implementations apart during evaluation.
Core Capabilities to Verify
Testing Subcategory-Level Mapping in a Demo
Ask the vendor to show a specific subcategory under Measure — not the Measure function as a whole — and demonstrate exactly what evidence satisfies it for a real system. If they can only show function-level or category-level scoring, you're looking at a shallower implementation than the marketing suggests.
Evaluating Profile Support
| Capability level | What it looks like |
|---|---|
| Weak | Fixed, generic risk scoring with no customizable target profile |
| Adequate | You can set a target profile per system, manually tracked against current state |
| Strong | Target profiles are configurable per use case, with the gap to current state automatically actionable |
Evaluating Generative AI Profile Support
If generative AI is part of your AI portfolio, ask specifically whether the 12 risk categories from NIST AI 600-1 — including confabulation, data privacy, information security and human-AI configuration — are tracked as distinct categories, or absorbed vaguely into general risk fields.
Integration With Existing Security and ML Tooling
Measure-stage evidence often already exists in security scanning tools or ML evaluation pipelines. Ask how the platform ingests or links to that existing data, rather than requiring your team to manually re-enter results that are already generated elsewhere.
Vendor Red Flags
- Only function-level scoring. No visibility into which of the 72 subcategories are actually addressed.
- No customizable target profile. A one-size-fits-all risk tolerance model doesn't reflect how organizations actually differ.
- GenAI Profile absent or vague. A significant gap for any organization using generative AI meaningfully.
Questions Worth Sending in Writing
- How many of the 72 RMF subcategories are natively trackable in the platform?
- Can we define a custom target profile and risk tolerance per AI system?
- How is the Generative AI Profile (NIST AI 600-1) supported, specifically?
- How does Measure-stage data connect back to Govern policy updates?
- What integrations exist with common security scanning and ML evaluation tools?
Build vs. Buy, Revisited for RMF Specifically
A Simple Comparison Table Template
| Capability | Vendor A | Vendor B |
|---|---|---|
| Subcategory-level tracking | Score 1-5 | Score 1-5 |
| Custom target profiles | Score 1-5 | Score 1-5 |
| GenAI Profile support | Score 1-5 | Score 1-5 |
| Integration depth | Score 1-5 | Score 1-5 |
| Update cadence | Score 1-5 | Score 1-5 |
Primary Sources
- NIST — AI Risk Management Framework
- NIST — AI RMF Playbook
Where Unorma Fits
Try the capability checklist on us
Frequently asked questions
What's the clearest way to test if RMF software has real depth?
Ask for a specific subcategory under Measure or Map, live in a demo, and see exactly what evidence satisfies it for a real system — function-level-only scoring signals a shallower implementation.
Do we need software if we only have 2-3 AI systems?
Not necessarily — a lightweight, documented process can work at that scale. The case for software strengthens once you have multiple systems, multiple people involved, or external pressure to formally demonstrate alignment.
How important is Generative AI Profile support?
Very important if generative AI is part of your portfolio — the 12 GenAI-specific risk categories from NIST AI 600-1 address risks (like hallucination and prompt injection) that the base RMF functions don't capture explicitly.
Should target profiles be customizable per system?
Yes — a fixed, generic risk tolerance model doesn't reflect that different AI systems carry genuinely different risk profiles and organizational priorities.
What integration capability matters most?
Connections to existing security scanning and ML evaluation tools, so Measure-stage evidence can be linked rather than manually re-entered from data that already exists elsewhere.
How do we compare multiple vendors objectively?
Use a simple weighted scoring table across the core capabilities — subcategory tracking, profile customization, GenAI Profile support, integration depth and update cadence — rather than relying on demo impressions alone.
Is a generic GRC platform with 'AI risk' features good enough?
Only if it maps specifically to the RMF's actual categories and subcategories. A generic risk score with RMF branding attached doesn't provide the structure the framework is actually built around.
Key terms in this article
About the author

Compliance Specialist
Compliance specialist focused on management-system standards and risk frameworks, helping teams turn certification requirements into working programs.
View full profileKeep reading
More from the blog
AI Compliance Software
AI Compliance Software
What Is AI Compliance Software? A Complete Guide for 2026
AI compliance software turns scattered spreadsheets and PDFs into a live system of record for every AI system you build or use. Here's what it does, who needs it, and how to evaluate it.
EU AI Act
EU AI Act
EU AI Act Deadlines in 2026 and 2027: What the Digital Omnibus Actually Changed
In May 2026, EU lawmakers provisionally agreed to delay the AI Act's high-risk deadlines. Here's exactly what changed, what didn't, and what's legally binding today.
ISO 42001
ISO 42001
ISO 42001 Certification Requirements: The Complete Checklist
ISO 42001 has 10 clauses and 38 Annex A controls. This is the complete, plain-language checklist for what you actually need to have in place before your audit.