EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Evaluating Control-Based AI Governance in Cybersecurity GRC Programs: An Expert Assessment Study

Miranda Stanfield ()
Additional contact information
Miranda Stanfield: Capitol Technology University, Laurel, MD, USA

RAIS Conference Proceedings 2022-2026 from Research Association for Interdisciplinary Studies

Abstract: This study proposes and evaluates the Lifecycle-Integrated AI Governance Control Framework (LIAGCF), a Design Science Research artifact that maps 16 administrative, technical, and operational AI governance controls across seven lifecycle phases. Each control aligns to NIST AI RMF core functions and NIST SP 800-53 control families within a unified enterprise cybersecurity GRC architecture. Structured expert review (N = 10) validated NIST AI RMF structural alignment (9 of 10) and confirmed SP 800-53 control family assignments as technically defensible (7 of 10). Lifecycle coverage was validated as comprehensive, and the framework was affirmed as a meaningful contribution to AI governance scholarship. Theoretically, the LIAGCF addresses a documented structural gap as the first lifecycle-integrated, control-categorized governance framework to operationalize both NIST AI RMF core functions and NIST SP 800-53 control families within a unified architecture, bridging the persistent disconnect between strategic AI risk oversight and operational cybersecurity enforcement. In practice, the LIAGCF equips GRC practitioners, CISOs, and federal risk management program leads with a standards-aligned, auditable governance structure that operationalizes AI risk management intent as assignable, lifecycle-anchored controls, with designated implementation artifact requirements.

Keywords: AI Governance; Cybersecurity Governance; Governance; Risk; and Compliance (GRC); Control-Based Governance; NIST AI Risk Management Framework (search for similar items in EconPapers)
Pages: 37 pages
Date: 2026-03
References: Add references at CitEc
Citations:

Published in Proceedings of the 43rd International RAIS Conference on Social Sciences and Humanities, March 12-13, 2026, pages 293-329

Downloads: (external link)
https://rais.education/wp-content/uploads/0658.pdf Full text (application/pdf)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:smo:raiswp:0658

Access Statistics for this paper

More papers in RAIS Conference Proceedings 2022-2026 from Research Association for Interdisciplinary Studies
Bibliographic data for series maintained by Eduard David ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2026-05-01
Handle: RePEc:smo:raiswp:0658