Measure your organisation's AI risk maturity against a NIST-aligned framework — giving governance owners a structured, scored view of current capability, identified gaps, and progress over time.
Most organisations lack a clear, consolidated view of their AI risk maturity. Instead, insights are fragmented across policies, spreadsheets, and internal discussions. While frameworks like the NIST AI Risk Management Framework (RMF) provide strong guidance, operationalising them into a practical, repeatable assessment is often time-consuming.
Risk Assessment Baseline solves this by turning the NIST AI RMF into a guided, self-service assessment — enabling organisations to establish a clear starting point, benchmark progress, and justify investment in governance controls.
Purpose
Risk Assessment Baseline provides a consistent and measurable way to evaluate your organisation’s AI risk maturity across the four NIST AI RMF domains: Govern, Map, Measure, and Manage.
- Establish a clear baseline of your AI governance maturity using a structured scoring model
- Identify gaps across key domains and prioritise areas for improvement
- Track progress over time with repeatable, version-controlled assessments
- Support audit and reporting requirements with a defensible, standardised framework
This ensures organisations can move beyond informal assessments and demonstrate measurable improvement in AI risk management practices.
How It Works
Feature 1 - Structured Assessments
Run guided assessments based on a NIST-aligned questionnaire, covering all key domains of AI risk management. Each assessment provides a consistent framework for evaluating maturity across your organisation.
Feature 2 - Essential vs Comprehensive Modes
Choose between:
- Essential — Focus on core, high-impact questions for a quicker baseline
- Comprehensive — Complete the full assessment for a deeper, more detailed evaluation
This flexibility allows teams to balance speed and depth depending on their needs.
Feature 3 - Maturity Scoring Model
Responses are automatically scored and translated into maturity levels:
- Level 1 — Ad hoc
- Level 2 — Emerging
- Level 3 — Defined
- Level 4 — Managed
- Level 5 — Mature
Scores are calculated across sections and aggregated into an overall maturity rating, providing a clear snapshot of organisational readiness.
Feature 4 - Progress Tracking
Each assessment is versioned and saved, allowing you to compare results over time and demonstrate improvements in governance maturity.
Feature 5 - Resume & Auto-Save
Responses are automatically saved as you progress, enabling users to pause and resume assessments without losing work.
Feature 6 - Audit-Ready Snapshots
Every assessment captures a fixed snapshot of the questionnaire at the time it was started. This ensures results remain consistent and auditable, even as frameworks evolve.
Notes
- Assessments are aligned to the NIST AI RMF 1.0 framework across Govern, Map, Measure, and Manage domains
- Essential mode provides a fast entry point, while Comprehensive mode enables deeper analysis
- Maturity levels are calculated based on response scoring across all sections
- Each assessment is locked to a specific questionnaire version to maintain audit integrity
- Use this feature to establish a baseline, guide improvement initiatives, and support compliance reporting