Independent reference. We are independent of every vendor listed. No affiliate links. No sponsored placements.
Compliance

NIST AI RMF and Generative AI Profile: Cost Mapping

The AI Risk Management Framework (NIST AI 100-1) and the Generative AI Profile (NIST AI 600-1) name prompt-injection-adjacent risks across Govern / Map / Measure / Manage.

AI 100-1
AI RMF v1.0 (2023)
AI 600-1
GenAI Profile (2024)
4
Core functions
12+
GenAI-specific risk items
Prompt injection attacks can compromise GAI models and their integrations with external systems, resulting in data leakage or unauthorized actions.
NIST AI 600-1, Artificial Intelligence Risk Management Framework: Generative AI Profile, July 2024

Function-by-function cost reading

  • Govern: policy authoring, ownership assignment. Cost = engineer + legal time.
  • Map: inventory every LLM call. Cost = AI-SPM tool (Wiz, Noma, Mend AI). All quote-only.
  • Measure: red-team + eval. Cost = Lakera Red / Promptfoo / Garak + FTE.
  • Manage: runtime guardrails + on-call. Cost = hyperscaler-native + specialist + SOC integration.

For SOC 2 and ISO 27001 cost reading, see soc2cost.com and iso27001cost.com. For federal AI controls cost, see fedrampcost.com.

Last verified June 2026Source: vendor pricing pages. See /methodology.