AI Security Task Force

As AI reshapes government operations, GovRAMP is leading a cross-sector initiative to define how AI can be adopted securely, responsibly, and in alignment with trusted NIST standards.

Join the Task Force
Read the Charter

Our Mission

As generative AI becomes embedded in cloud services across government, the need for consistent, risk-based security guidance is clear. That’s why GovRAMP launched the AI Security Task Force — a collaborative body of public- and private-sector members dedicated to promoting responsible and trustworthy AI innovation.

Rather than creating new frameworks, the Task Force builds upon established NIST standards, including NIST 800-53 Rev. 5 and the NIST AI Risk Management Framework, to identify gaps, manage emerging risks, and share actionable recommendations.  Through this shared effort, GovRAMP is helping governments adopt AI-enabled cloud solutions confidently, ensuring innovation and cybersecurity advance together.

AI Security Task Force

AI Executive Council

Guided by public-sector leaders, the AI Executive Council includes state CIOs and CISOs who provide strategic direction for AI security standards in government cloud adoption. Their insight ensures GovRAMP’s AI recommendations reflect real-world needs and practical implementation across all levels of government.
Ryan Murray Headshot
Ryan Murray

CISO

State of Arizona

Craig Orgeron Headshot
Dr. Craig Orgeron

Executive Director & State Chief Information Officer

Mississippi Department of Information Technology Services

Tony Sauerhoff Headshot
GovRAMP Board President 
Tony Sauerhoff

Chief AI & Innovation Officer and Interim State CIO & Executive Director

Texas Department of Information Resources (DIR)

Jason Snyder Headshot
Jason Snyder

Secretary of the Executive Office of Technology Services and Security and Commonwealth CIO

Commonwealth of Massachusetts

Shawnzia Thomas Headshot
Shawnzia Thomas

CIO Georgia / Executive Director of GTA

State of Georgia

AI Security Task Force Members

The AI Security Task Force brings together GovRAMP member organizations across the public and private sectors — uniting experts who share a commitment to secure, transparent, and trustworthy AI innovation.

Through working groups and discussions, members help identify risks, surface insights, and develop actionable recommendations that strengthen public trust in AI-enabled technology.

Join the Task Force

  • Razaq Ahmed, Deputy Chief Information Security Officer, Smartronix

  • Dan Aiken, Staff Information Security Program Manager, Rubrik

  • James Armstrong, VP Development, Actsoft

  • Dennis Bachman, Director of IT and Cybersecurity, Kansas Racing and Gaming Commission

  • Laura Baga, Senior Strategic Account Executive, Impact and Public Sector Accounts, Twilio

  • Tony Bai, Chief Solutions Officer, RISCPoint

  • Susan Baker, IT/Data Director, Cross-Sell, LLC

  • Jim Beckner III, FedRAMP Program Manager, Trimble

  • Gayle Berkeley, Director, Information Security, Rubrik

  • Joe Bielawski, GovRAMP Past President & Co-Founder

  • Erica Bradshaw, Deputy Secretary, Massachusetts

  • Richard Brown, Principal Product Manager, Genesys Cloud Services, Inc.

  • Noah Brown, Chief Information Security Officer, Knowledge Services

  • Jeff Burklo, VP, CISO, Savvas Learning Company, LLC

  • Nikki Bushong, State of Michigan

  • Ashlee Carter, Information Security Analyst III, GovRAMP PMO

  • Errika Celsey, Chief Privacy & Compliance Officer, Arizona

  • Fabio Cerullo, Director of Security, Kitman Labs

  • Siddique Chaudhry, Sr. Manager, Global Public Sector Compliance, Snowflake

  • Molly Cohen, Director of Partnerships, Recidiviz

  • Jorge Conde-Berrocal, CEO / Founder, V3 Cybersecurity, Inc.

  • Ted Cotterill, Associate Director & Security Account Lead, Accenture

  • Brian DaSilva, Sr. Director, GRC, Mark43

  • Glen Deskin, Head of Engineering, Office of the CTO, Check Point Software Technologies

  • Johann Dettweiler, CISO and Compliance SME, StackArmor

  • Amrit Dhir, Director of Partnerships, Recidiviz

  • Stephanie Donofrio, Director of Public Sector Channels, Orca Security

  • Justin Donohoe, President, JJD Software

  • Drenan Dudley, Head of State, Local, Tribal, and Territorial Government Partnerships, Senior Advisor for Global Cyber Policy, Zscaler

  • Saeed Elahi, Director Information Security, Tenable

  • Lorenzo Estrella, Technology Specialist II, Payson Unified School District

  • Pete Fagan, Director, CJIS Compliance Program, Motorola Solutions

  • Lauren Farese, Group Vice President - SLED | Solution Engineering, Oracle

  • Kathy Fraser, CIO, State of Minnesota

  • James Globe, Vice President, Strategic Advisor Cybersecurity Capabilities, Center for Internet Security

  • Kevin Greene, Chief Cybersecurity Technologist – Public Sector, BeyondTrust

  • Gary Guercio, Vice President, Service Delivery, Fortreum

  • Pat Guest, Director of PTC, NICTD

  • Dustin Hartigan, State Administrative Manager, State of Michigan - Department of Technology, Management & Budget

  • Shelley Hawkins, Executive Assistant, Texas Department of Information Resources

  • Peter Henggeler, Information Security Officer, Recidiviz

  • Glenn Herdrich, GovRAMP Board Member

  • Collin Hill, CIO, City of Indianapolis and Marion County

  • Jennie Hoelscher, Chief Privacy Officer, Texas

  • Payam Hojjat, Cyber Risk & Governance Chief, State of California

  • Kristine Holt, Director of Technology and Innovation, Utah Department of Corrections

  • Ernie Hudson, Senior Director, Product & Technology, Counter Tools

  • Sheneika Hurley, Senior Solutions Architect, Everlaw
  • Miguel Jimenez, Network Operations Analyst, Brightstar Lottery
  • Eddie Kim, Head of AI Value Strategy, Everlaw
  • Colby King, Information Security Officer, Fivos, Inc.

  • Ean Krenzin-Blank, Vice President of Software, SOS Technologies

  • Linda Markey, Director, Security Policy and Planning, Texas Department of Information Resources

  • Rod Massey, Sr. Director, Secure Cloud Sales, SAP NS2

  • Chris Mayhew, CISO, Authorium, Inc.

  • Donnie McCleskey, Director of Sales, Public Sector, Twilio

  • Felipe Medina, CISO, Geographic Solutions

  • Jodie Monette, CJIS Information Security Officer, Security Architect, State of Minnesota - MN Bureau of Criminal Apprehension

  • Ken Morris, Advisor, RAMPxchange

  • Rashad Munawar, Director, Security Compliance & Operations, BlackBerry

  • Brian O'Connor, Director - Global Security & Compliance Office, Extreme Networks

  • Olutosin Oguntunde, Managing Director, Accenture

  • Jason Oksenhendler, Director, Baker Tilly

  • Anthony O'Neill, Commonwealth CISO & Chief Risk Officer, Massachusetts

  • Derly Ortiz, Senior Executive Assistant, Commonwealth of Massachusetts - Executive Office of Technology Services and Security

  • Robert Otten, Director Risk and Compliance, Flock Safety

  • Gaurav Pal, Principal, StackArmor

  • Roy Park, Cybersecurity Architect, San Joaquin County Office of Education

  • Andy Perkins, CTO, Jadu

  • Nick Peters, Security Program Manager - FedRAMP Change Control, Rubrik

  • Robert Peterson, IT Director, Washington County Idaho

  • Dugan Petty, GovRAMP Board Member, GovRAMP Board

  • Jennifer Pittman-Leeper, Field CISO, GovRAMP

  • Nicolas Ponce, VP, Operations & Security, Addigy

  • Ashwin Rao, Director, Infrastructure and Security, Find Help

  • Ava Rassouli, IT Manager, Marin County

  • David Resler, Senior Director, GovRAMP PMO

  • Rita Reynolds, Director of Public Sector, Computer Aid, Inc. (CAI)

  • Jon Ridpath, Sr. Security Engineer, Aztec Software

  • Cheri Rolfes, Chief of Staff, Massachusetts Executive Office of Technology Services and Security

  • Andrew Rudder, Sr. Enterprise Risk Management Analyst, Massachusetts

  • John Santore, Director, Cyber Acceleration, Constellation GovCloud

  • Mary Schafer, Senior FedRAMP Program Manager, Abnormal AI, Inc.

  • Calli Schlientz, Director of Compliance, DataBank, Ltd.

  • Wil Seiler, Technical Service Manager, 360Advanced

  • JR Sloan, GovRAMP Past President & Co-Founder

  • Tammy Spangler, Director, Information Security Assurance, NCSBN

  • Jared Spurgeon, Chief Privacy Officer, Arizona Department of Economic Security

  • Patrick Sullivan, VP, Xacta Solutions and Services, Telos Corp.

  • Marvell Summerow, Security Program Manager, MapLarge

  • Said Syed, CISO, Snyk, Inc.

  • Bryan Tobek, Senior Consultant, GovRAMP PMO

  • Vladimir Trushkin, CTO, ChemWatch

  • Thomas Twigg, Data Privacy Specialist, Michigan State Police

  • Joel Varty, CTO, Agility

  • Amy Ventura, Government Engagement Director, GovRAMP

  • Justine Verigin, Compliance Attorney, Matrix Pointe Software

  • Thomas Volpe Jr., Vice President, Cybersecurity Risk and Compliance, C2 Labs

  • Nathan Willigar, State & Local Government and Education -  Chief Security Advisor, Microsoft

  • Christopher Wright, Security Assurance, Fortreum

GovRAMP Staff Contacts

For questions about participation or updates on AI Task Force initiatives, reach out to our team.
Leah McGrath (4)

Leah McGrath

Executive Director
GovRAMP
Fred Brittain Headshot

Fred Brittain

Executive Advisor
GovRAMP PMO
Aysha Davis Headshot

Aysha Davis

Program Analyst
GovRAMP PMO
Chandler McGuire Headshot-1

Chandler McGuire

Marketing Specialist
GovRAMP

Track the Task Force’s Progress

The AI Security Task Force is advancing through structured phases to ensure every recommendation is informed, reviewed, and aligned with the needs of the GovRAMP community.

2026

Q1 2026

Foundation & Implementation

Finalize and roll out the AI Self Reporting Addendum, implement generative AI as a Significant Change Notification, introduce AI notation on the Authorized and Progressing Product Lists, and begin alignment with NIST AI RMF updates and overlays to NIST 800-53.

Q2 2026

Guidance Development & Rollout

Draft shared responsibility and procurement guidance for AI-enabled products, continue analysis of AI overlays, and complete rollout of the AI Addendum and APL/PPL notation to members.

Q2 2026

Q3 2026

Overlay Advancement & Committee Engagement

Refine AI overlays and trustworthiness guidance in coordination with GovRAMP committees, aligned with evolving NIST guidance.

Q4 2026

Continued Engagement & Planning

Continue Executive Council and Task Force meetings, advance overlay development, and prepare for broader member engagement and education.

Q4 2026

2027

Follow our progress as findings evolve into published AI guidance available in the GovRAMP Documents.

Stay Connected with GovRAMP

GovRAMP’s AI Security Task Force continues to advance best practices for trustworthy AI in government cloud adoption. Subscribe to receive updates, new guidance, and opportunities to contribute.