# risk-assessment

12 articlestagged with “risk-assessment”

AI Incident Severity Scoring

Frameworks and methodologies for scoring the severity of AI security incidents, integrating NIST AI RMF, MITRE ATLAS, and traditional CVSS approaches.

ai-forensics-irseverity-scoringincident-responserisk-assessment

Beginner

AI-Specific Severity Scoring Framework

Severity scoring framework designed for AI security incidents: model integrity impact, data exposure scope, blast radius analysis, reversibility assessment, and composite scoring methodology.

severityscoringrisk-assessmentincident-response

Intermediate

Thinking Like a Defender

Mental models for defensive thinking, risk assessment frameworks, defense tradeoffs, and why understanding the defender's perspective makes you a better red teamer.

defender-mindsetrisk-assessmenttradeoffsfalse-positivesthreat-modeling

Intermediate

AI Risk Assessment Methodologies

Structured methodologies for assessing AI system risks including quantitative, qualitative, and hybrid approaches.

governancerisk-assessmentmethodology

Intermediate

AI Compliance Tools Overview

Overview of tools, methodologies, and frameworks for maintaining AI compliance, including risk assessment, audit methodology, and continuous compliance monitoring.

compliancetoolsrisk-assessmentauditmonitoring

Intermediate

AI Risk Assessment Methodology

Structured approaches to evaluating AI system risks including identification, scoring frameworks, treatment planning, and templates for conducting comprehensive AI risk assessments.

risk-assessmentmethodologyscoringtemplatesrisk-management

Intermediate

Impact Categories

Overview of the real-world consequences of successful AI attacks, from misinformation and harmful content to financial fraud and regulatory violations.

impactrisk-assessmentowaspmitreai-security

Beginner

Threat Modeling for AI Infrastructure Using STRIDE

Systematic threat modeling methodology for AI/ML systems using STRIDE, data flow diagrams, and attack trees tailored to machine learning pipelines

infrastructurethreat-modelingstriderisk-assessmentmethodology

Intermediate

Building AI-Specific Threat Models

Step-by-step walkthrough for creating threat models tailored to AI and LLM systems, covering asset identification, threat enumeration, attack tree construction, and risk prioritization.

threat-modelingai-securityrisk-assessmentmethodologywalkthrough

Intermediate

Classifying AI Vulnerability Severity

Framework for consistently classifying the severity of AI and LLM vulnerabilities, with scoring criteria, impact assessment, and examples across common finding categories.

severityclassificationvulnerabilityrisk-assessmentmethodologywalkthrough

Intermediate

How to Scope an AI Red Team Engagement

Comprehensive walkthrough for scoping AI red team engagements from initial client contact through statement of work, covering target enumeration, risk-based prioritization, resource estimation, boundary definition, and legal considerations.

scopingengagementplanningmethodologystatement-of-workrisk-assessmentwalkthrough

Intermediate

Threat Modeling for LLM-Powered Applications

Step-by-step walkthrough for conducting threat modeling sessions specifically tailored to LLM-powered applications, covering data flow analysis, trust boundary identification, AI-specific threat enumeration, risk assessment, and mitigation planning.

threat-modelingllm-securityrisk-assessmentmethodologySTRIDEwalkthrough

Intermediate