Compliance Library Blog Product Sign In
NIST-RMF-MG-4-05 Documentation MG-4 — Risk Treatment and Communication Plans

Follow and document incident and error tracking, response, and recovery processes

Description

Organizations must establish, follow, and document processes for tracking, responding to, and recovering from incidents and errors in AI systems.

Full Analysis & Evidence Requirements

Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.

Sign In to View

Related Obligations

NIST-RMF-MG-4-01 Documentation

Document and monitor risk treatment and communication plans
NIST-RMF-MG-4-02 Monitoring

Implement post-deployment AI system monitoring plans
NIST-RMF-MG-4-03 Requirement

Integrate measurable continual improvement activities into AI system updates
NIST-RMF-MG-4-04 Transparency

Communicate incidents and errors to relevant AI actors

Map this obligation to your AI systems

ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.

Get Started

Start your compliance assessment

Map obligations to your AI systems, identify gaps, and generate board-ready reports. Plans start at $149/mo.

Get Started