Threat & Vulnerability Management
CSA AI Controls Matrix v1.1 domain
Identify, prioritize, remediate, and disclose threats and vulnerabilities.
What this domain means for procurement
AI systems combine conventional vulnerabilities with model, prompt, data, and agent threats. A mature program covers both and adapts as new attack techniques emerge.
How TrustAtlas dimensions support it
Security captures testing and remediation; transparency captures disclosure channels, timelines, and evidence of closure.
SecurityTransparency
This is an interpretive TrustAtlas cross-walk, not an official CSA mapping or evidence of AICM conformity.
Questions to ask vendors
Use these procurement prompts alongside the official CSA AICM v1.1 materials. They name the domain but do not invent or paraphrase control identifiers.
- How do threat models cover models, prompts, retrieval, training data, agents, tools, and conventional application infrastructure?
- What remediation timelines apply by severity, and how are overdue exceptions approved and communicated?
- Do you operate a vulnerability disclosure or bug-bounty program that accepts AI-specific findings?
Related
- Back to all 18 CSA AICM v1.1 domains
- Official CSA AICM v1.1 artifact
- NIST AI RMF cross-walk
- TrustAtlas methodology — how the nine risk dimensions are scored