NIST AI RMF Playbook: Categories and Subcategories

NIST AI RMF Playbook: Categories and Subcategories – A Comprehensive Guide for the AIGP Exam

Introduction

The NIST AI Risk Management Framework (AI RMF) Playbook is a practical companion document to the NIST AI RMF 1.0. While the AI RMF itself provides the overarching structure for managing AI risks, the Playbook offers granular, actionable guidance organized into categories and subcategories that help organizations operationalize each function of the framework. For anyone preparing for the IAPP AI Governance Professional (AIGP) certification, a thorough understanding of the Playbook's structure and content is essential.

Why Is the NIST AI RMF Playbook Important?

1. Bridges Theory and Practice: The AI RMF provides high-level principles and functions (Govern, Map, Measure, Manage), but organizations often struggle with implementation. The Playbook fills this gap by offering specific suggested actions, references, and considerations for each category and subcategory.

2. Voluntary but Influential: Although the NIST AI RMF is a voluntary framework, it has become a de facto standard in the United States and increasingly globally. Federal agencies, contractors, and private organizations reference it for AI governance programs. Understanding the Playbook positions professionals to lead compliance and governance efforts.

3. Risk-Based and Context-Specific: The Playbook does not prescribe one-size-fits-all solutions. Instead, it provides suggested actions that organizations can tailor based on their specific AI use cases, risk tolerance, sector, and maturity level.

4. Alignment with Trustworthy AI Characteristics: The Playbook's categories and subcategories are designed to address the seven characteristics of trustworthy AI identified by NIST: validity and reliability, safety, security and resiliency, accountability and transparency, explainability and interpretability, privacy-enhanced, and fair with harmful bias managed.

5. Cross-Referencing Capability: The Playbook maps its suggested actions to other standards and frameworks (e.g., ISO/IEC standards, OECD AI Principles), making it a useful tool for organizations operating under multiple regulatory or standards-based regimes.

What Is the NIST AI RMF Playbook?

The Playbook is a supplementary resource that expands on the four core functions of the AI RMF. Each function is broken down into categories, and each category is further broken down into subcategories. For each subcategory, the Playbook provides:

- Suggested actions that organizations can take
- Transparency and documentation considerations
- References and resources (including links to AI standards, research, and best practices)

The four core functions and their categories are:

1. GOVERN (GV)
This is the cross-cutting function that applies across all other functions. It establishes the organizational structures, policies, processes, and culture needed for AI risk management.

Categories include:
- GV-1: Policies, processes, procedures, and practices are in place and regularly updated to govern AI risk management.
- GV-2: Accountability structures are in place so that the appropriate teams and individuals are empowered, responsible, and trained for mapping, measuring, and managing AI risks.
- GV-3: Workforce diversity, equity, inclusion, and accessibility processes are prioritized in the mapping, measuring, and managing of AI risks.
- GV-4: Organizational teams are committed to a culture that considers and communicates AI risk.
- GV-5: Processes are in place for robust engagement with relevant AI actors (including third parties and affected communities).
- GV-6: Policies and procedures are in place to address AI risks and benefits arising from third-party software and data and other supply chain issues.

2. MAP (MP)
This function is about understanding the context in which AI systems operate and identifying risks. It focuses on framing risks related to an AI system so they can be properly measured and managed.

Categories include:
- MAP-1: Context is established and understood (intended purposes, expected benefits, and potential costs and risks).
- MAP-2: Categorization of the AI system is performed (classification based on risk level, technical characteristics, etc.).
- MAP-3: AI capabilities, targeted usage, goals, and expected benefits and costs compared with appropriate benchmarks are understood.
- MAP-4: Risks and benefits are mapped for all components of the AI system including third-party software and data.
- MAP-5: Likelihood and magnitude of each identified AI risk is assessed based on context and potential impact.

3. MEASURE (MS)
This function uses quantitative and qualitative tools, techniques, and methodologies to analyze, assess, benchmark, and monitor AI risk and related impacts.

Categories include:
- MEASURE-1: Appropriate methods and metrics are identified and applied to measure AI risks and trustworthiness characteristics.
- MEASURE-2: AI systems are evaluated for trustworthy characteristics (validity, reliability, fairness, safety, etc.).
- MEASURE-3: Mechanisms for tracking identified AI risks over time are in place.
- MEASURE-4: Feedback about efficacy of measurement is collected and used to improve measurement practices.

4. MANAGE (MG)
This function involves allocating resources to address mapped and measured risks on a regular basis and as defined by the Govern function.

Categories include:
- MANAGE-1: AI risks based on assessments and other analytical output from the Map and Measure functions are prioritized, responded to, and managed.
- MANAGE-2: Strategies to maximize AI benefits and minimize negative impacts are planned, prepared, implemented, documented, and informed by input from relevant AI actors.
- MANAGE-3: AI risks and benefits from third-party resources are managed.
- MANAGE-4: Risk treatments, including response and recovery, and communication plans for the identified and measured AI risks are documented and monitored regularly.

How the Playbook Works in Practice

The Playbook is designed to be used iteratively. Here is how organizations typically engage with it:

Step 1: Establish Governance (GOVERN)
Organizations first establish the policies, roles, responsibilities, and culture necessary to manage AI risk. This is the foundation upon which all other activities rest. The GOVERN function is unique because it is cross-cutting—it informs and is informed by all other functions.

Step 2: Map the AI System and Its Context (MAP)
Before measuring or managing risk, organizations must understand what the AI system does, who it affects, what data it uses, and what the intended and potential unintended outcomes are. The MAP function helps organizations identify and categorize risks before they can be quantified.

Step 3: Measure AI Risks (MEASURE)
Using appropriate metrics, tools, and methodologies, organizations assess the risks identified in the MAP phase. This includes evaluating trustworthiness characteristics, benchmarking performance, and monitoring for drift, bias, or degradation over time.

Step 4: Manage AI Risks (MANAGE)
Based on the measurement results, organizations prioritize risks and implement mitigation strategies. This may include technical fixes, process changes, communication plans, or even decisions to discontinue an AI system if risks are too high.

Key Features of the Playbook Structure

- Each subcategory (e.g., GV-1.1, MAP-2.3, MS-1.2, MG-4.1) has a unique identifier that allows precise referencing.
- Suggested actions are not mandatory; they represent recommended practices that organizations can adopt, adapt, or decline based on context.
- The Playbook acknowledges that not all subcategories will apply to every AI system or organization.
- The Playbook is a living document that NIST intends to update as AI technology and governance practices evolve.

How to Answer Exam Questions on the NIST AI RMF Playbook

The AIGP exam may test your understanding of the Playbook in several ways:

1. Function Identification: You may be asked which function (Govern, Map, Measure, Manage) a particular activity falls under. For example, establishing accountability structures is GOVERN; identifying intended use and affected stakeholders is MAP; applying fairness metrics is MEASURE; implementing risk mitigations is MANAGE.

2. Category and Subcategory Recognition: You may need to identify what a specific category addresses. For instance, GV-6 relates to third-party and supply chain risk governance, while MAP-1 relates to establishing context.

3. Cross-Cutting Nature of GOVERN: A frequently tested concept is that GOVERN is the only cross-cutting function. It establishes the foundation that enables MAP, MEASURE, and MANAGE to operate effectively.

4. Trustworthy AI Characteristics: Questions may ask you to connect specific Playbook activities to the seven characteristics of trustworthy AI. Know which characteristics are addressed by which functions and categories.

5. Voluntary Nature: Remember that the AI RMF and its Playbook are voluntary. The Playbook provides suggested actions, not mandates.

6. Scenario-Based Questions: You may be presented with a scenario (e.g., an organization deploying a hiring algorithm) and asked which Playbook function, category, or subcategory is most relevant to a described activity.

Exam Tips: Answering Questions on NIST AI RMF Playbook: Categories and Subcategories

Tip 1: Master the Four Functions First
Before diving into categories and subcategories, ensure you have a rock-solid understanding of what each function does. Use this mnemonic: G-M-M-M (Govern, Map, Measure, Manage). Govern sets the rules; Map identifies risks; Measure quantifies risks; Manage addresses risks.

Tip 2: Remember GOVERN Is Cross-Cutting
This is one of the most commonly tested distinctions. Unlike Map, Measure, and Manage (which follow a more sequential flow), Govern applies to everything. If a question asks about policies, accountability, culture, workforce diversity in AI teams, or third-party governance structures, the answer is almost certainly GOVERN.

Tip 3: Distinguish MAP from MEASURE
Students often confuse these two. MAP is about identifying and understanding risks (qualitative context-setting). MEASURE is about quantifying and evaluating those risks using metrics and tools. If the question describes understanding context, identifying stakeholders, or categorizing the AI system, it's MAP. If it describes applying metrics, benchmarking, or monitoring, it's MEASURE.

Tip 4: Know the Third-Party Risk Theme
Third-party and supply chain risk management appears in multiple functions: GV-6 (governance of third-party risks), MAP-4 (mapping risks from third-party components), and MANAGE-3 (managing third-party risks). If an exam question focuses on third-party AI components, consider which function is being emphasized—governance, identification, or active management.

Tip 5: Connect to Trustworthy AI Characteristics
The exam may ask you which Playbook activities support specific trustworthiness characteristics. For example:
- Fairness and bias management → typically addressed in MAP (identifying bias risks) and MEASURE (applying fairness metrics)
- Accountability and transparency → primarily addressed in GOVERN (establishing accountability structures) and MEASURE (documentation and explainability metrics)
- Safety and security → addressed across MAP (identifying safety risks), MEASURE (testing for vulnerabilities), and MANAGE (implementing safeguards)

Tip 6: Focus on the Suggested Actions Concept
The Playbook provides suggested actions, not requirements. If an exam answer choice uses mandatory language (e.g., 'organizations must'), it is likely incorrect in the context of the NIST AI RMF Playbook. The framework is voluntary and flexible.

Tip 7: Understand the Iterative Nature
The AI RMF is not a linear, one-time process. It is iterative and ongoing. Risk management activities should be revisited as AI systems evolve, as new data becomes available, and as the deployment context changes. Questions that describe ongoing monitoring, feedback loops, or continuous improvement are testing this concept.

Tip 8: Use Process of Elimination
When facing a multiple-choice question about which category applies to a scenario:
- First, identify the correct function (Govern, Map, Measure, or Manage)
- Then narrow down to the correct category based on the specific activity described
- Eliminate answer choices that reference activities from a different function

Tip 9: Pay Attention to Stakeholder Engagement
GV-5 specifically addresses engagement with relevant AI actors, including affected communities, end users, domain experts, and civil society. If a question asks about stakeholder engagement, public consultation, or community input in the governance context, think GV-5.

Tip 10: Review the Playbook's Structure, Not Just Content
You don't need to memorize every subcategory number, but you should understand the organizational logic of the Playbook. Know that each function has categories, each category has subcategories, and each subcategory has suggested actions. This structural understanding will help you navigate scenario-based questions even if you don't recall a specific subcategory number.

Summary Table for Quick Review

GOVERN (GV): Policies, accountability, culture, workforce diversity, stakeholder engagement, third-party governance
MAP (MP): Context establishment, AI system categorization, capabilities assessment, risk and benefit mapping, risk likelihood and magnitude assessment
MEASURE (MS): Metrics and methods, trustworthiness evaluation, risk tracking, feedback and improvement
MANAGE (MG): Risk prioritization and response, benefit maximization and impact minimization, third-party risk management, risk treatment documentation and monitoring

Conclusion

The NIST AI RMF Playbook is a critical resource for operationalizing AI risk management. Its structured approach—organized by functions, categories, and subcategories—provides a clear roadmap for organizations seeking to build trustworthy AI systems. For the AIGP exam, focus on understanding the purpose and scope of each function, the distinction between categories, the cross-cutting nature of GOVERN, the voluntary and flexible nature of the Playbook, and how its activities map to trustworthy AI characteristics. With this knowledge, you will be well-prepared to answer both conceptual and scenario-based questions on this topic.