New AI Security Mandate: Look Beyond the Model, Focus on Governance

AUSTIN, Texas – March 18, 2026 – As enterprises race to deploy artificial intelligence into production, a leading cybersecurity authority is issuing a stark warning: focusing on the AI model alone is a critical mistake. Today, NSS Labs, in a landmark collaboration with Amazon Web Services (AWS), F5, and Microsoft, published two foundational white papers that aim to redefine the industry's approach to AI security, shifting the focus from narrow, model-centric controls to a comprehensive, governance-driven framework.

The papers, titled "AI Security Beyond the Model" and "Evaluating Enterprise AI Security," argue that the most significant risks often lie not within the AI model itself, but in the complex systems surrounding it. This initiative provides enterprise leaders with a structured roadmap for navigating the transition from AI experimentation to accountable, production-grade deployment, a move seen as crucial in an era of escalating regulatory and legal scrutiny.

A New Mandate: Security Beyond the AI Model

The central thesis presented by NSS Labs is that true AI security requires a system-level perspective. While much of the industry has been preoccupied with model vulnerabilities, the new guidance asserts that this view dangerously overlooks the broader attack surface. In production environments, AI models are not isolated; they are integrated with vast data sources, granted permissions, and connected to a wide array of tools and APIs. It is at these integration points where the most consequential failures often occur.

According to the research, threats such as sophisticated prompt injection attacks, malicious tool invocation, and sensitive data exfiltration are runtime problems that cannot be solved by simply securing the model's training data or architecture. Instead, the Austin-based firm advocates for the implementation of system-level "runtime guardrails." These external controls, described as AI Protection Systems, are designed to operate outside the model to enforce policy, protect data, and, critically, produce an auditable trail of evidence. This external layer of defense is positioned as the foundation for building resilience and accountability into enterprise AI.

This approach directly confronts the growing challenge of agentic AI systems—autonomous agents that can be delegated authority to perform tasks. The white papers identify the management of this delegated authority as a top priority, highlighting the need for robust controls that can verify actions and enforce strict operational boundaries, regardless of the AI's behavior.

From Tech Talk to Boardroom Priority

The new guidance from NSS Labs is explicitly designed to elevate the conversation about AI security from the IT department to the C-suite and the boardroom. As Vikram Phatak, CEO of NSS Labs, stated in the announcement, "AI security is a technical issue, but it is also a governance issue." This statement encapsulates the core message of the initiative: technical controls are meaningless without a strong governance framework to direct them.

The white papers provide concrete guidance for Chief Information Security Officers (CISOs), Governance, Risk, and Compliance (GRC) leaders, and enterprise buyers. The paper "Evaluating Enterprise AI Security" moves from theory into procurement discipline, equipping organizations with the critical questions they need to ask when evaluating and selecting AI security vendors. This aims to empower buyers to see past marketing claims and demand evidence of efficacy.

This emphasis on governance and accountability could not be more timely. Regulators across the globe are moving swiftly to codify AI risk management. Frameworks like the European Union's AI Act and the NIST AI Risk Management Framework (AI RMF) are establishing new legal and operational standards for AI trustworthiness. These regulations place a heavy emphasis on risk management, human oversight, and cybersecurity, mirroring the principles outlined by NSS Labs. By embedding AI security into established GRC frameworks, enterprises can proactively align with these emerging legal requirements and demonstrate due diligence in the event of an AI-related failure.

An Alliance Forging Industry Standards

The significance of this announcement is amplified by the names behind the collaboration. The involvement of AWS and Microsoft, the world's two largest enterprise cloud providers, along with F5, a leader in application and API security, signals a powerful industry consensus. This is not just one firm's opinion but a coordinated effort by market leaders to establish a common language and set of best practices for a new and complex security domain.

This alliance brings together crucial and complementary expertise. F5's deep experience in securing applications and APIs at runtime provides a practical foundation for testing and implementing the AI guardrails NSS Labs advocates. Meanwhile, AWS and Microsoft's involvement ensures the framework is grounded in the realities of the cloud environments where the vast majority of enterprise AI workloads are being deployed. Their participation suggests that AI runtime security is maturing into a distinct product category that demands standardized methodologies for testing and validation.

By working together on an independent framework, these giants are signaling a move away from purely proprietary, siloed security approaches and toward a more open, collaborative model for tackling shared industry challenges. This partnership aims to foster a more resilient ecosystem by creating a common understanding of risk and a unified set of expectations for security solutions.

The Push for Independent Validation

Underpinning the entire initiative is NSS Labs' core mission: independent, evidence-based validation. The white papers repeatedly stress the need for establishing measurable, repeatable, and independent validation practices for AI security controls. In a market flooded with bold claims about AI capabilities, this focus on empirical testing provides a crucial dose of reality.

The firm argues that without rigorous third-party validation, security claims for AI guardrails are little more than "empty promises." Enterprises are left making high-stakes decisions based on vendor marketing rather than objective data. The framework presented in the papers is designed to change that, giving organizations the tools to hold their vendors accountable and verify that deployed security technologies are performing as expected.

Ultimately, this push for validation is about building trust. For enterprises to move AI confidently from sandboxes and experiments into critical, customer-facing production systems, they must be able to trust that their security measures are effective and accountable. By providing a practical roadmap for governance, procurement, and validation, this collaborative effort seeks to lay the foundational trust required for the next phase of the enterprise AI revolution.