AI Security Task Force

Our Mission

As generative AI becomes more integrated into cloud products across the public sector, the need for clear, consistent security standards is more important than ever. That’s why we’ve launched the AI Security Task Force—bringing together dedicated volunteers from GovRAMP’s public and private sector members to promote responsible and trustworthy innovation.

Our mission? To recommend enhancements to the GovRAMP Security Program that address the unique cybersecurity and trust challenges introduced by generative AI. Rather than building a new framework from scratch, we’re working within existing NIST-based standards—like NIST 800-53 Rev. 5 and the AI Risk Management Framework—to identify gaps, manage emerging risks, and share best practices. Through this collaborative and iterative approach, we aim to equip governments to confidently adopt AI-enabled cloud solutions while maintaining strong cyber resilience.

Task Force Update: January 2026

The GovRAMP AI Security Task Force has entered its 2026 implementation phase, advancing practical enhancements to the GovRAMP Security Program to address generative AI in cloud products.

In 2026, the Task Force is focused on implementing AI as a Significant Change Notification within the GovRAMP Security Program, launching a Self-Reporting AI Addendum, introducing AI notation on the Authorized and Progressing Product Lists, and developing guidance on shared responsibilities for trustworthiness — all aligned with evolving NIST guidance.

AI Executive Council

The AI Executive Council is a select group of state government CIOs and CISOs providing strategic guidance on cybersecurity standards for generative AI in cloud products.

Ryan Murray

AI Executive Council Member
CISO, Arizona

Dr. Craig Orgeron

AI Executive Council Member
CIO, Mississippi
Tony Sauerhoff Headshot

Tony Sauerhoff

AI Executive Council Member
Chief AI & Innovation Officer, Interim State CIO & Executive Director, Texas Division of Information Resources (DIR) | GovRAMP Board President

Jason Snyder

AI Executive Council Member
CIO, Massachusetts, EOTSS Secretary

Shawnzia Thomas

AI Executive Council Member
CIO, Georgia | Executive Director, Georgia Technology Authority​

Tarek Tomes

AI Executive Council Member
CIO, Minnesota

Razaq Ahmed

Smartronix / SMX

Dan Aiken

Rubrik

James Armstrong

Actsoft

Dennis Bachman

Kansas Racing and Gaming Commission

Laura Baga

Twilio

Tony Bai

RISCPoint

Susan Baker

Cross-Sell, LLC

Jim Beckner III

Trimble

Gayle Berkeley

Rubrik

Erica Bradshaw

Commonwealth of Massachusetts

Noah Brown

GovRAMP PMO

Richard Brown

Genesys Cloud Services, Inc.

Jeff Burklo

Savvas Learning Company, LLC

Nikki Bushong

State of Michigan

Ashlee Carter

GovRAMP PMO

Errika Celsey

State of Arizona

Fabio Cerullo

Kitman Labs

Siddique Chaudhry

Snowflake

Molly Cohen

Recidiviz

Jorge Conde-Berrocal

V3 Cybersecurity, Inc.

Ted Cotterill

Accenture

Brian DaSilva

Mark43

Glen Deskin

Check Point Software Technologies

Johann Dettweiler

StackArmor

Amrit Dhir

Recidiviz

Stephanie Donofrio

Orca Security

Justin Donohoe

JJD Software

Drenan Dudley

Zscaler

Saeed Elahi

Tenable

Lorenzo Estrella

Payson Unified School District

Pete Fagan

Motorola Solutions

Lauren Farese

Oracle

Kathy Fraser

State of Minnesota

James Globe

Center for Internet Security

Kevin Greene

BeyondTrust

Gary Guercio

Fortreum

Pat Guest

NICTD

Dustin Hartigan

State of Michigan - DTMB

Shelley Hawkins

State of Texas

Peter Henggeler

Recidiviz

Collin Hill

City of Indianapolis & Marion County

Jennie Hoelscher

State of Texas

Payam Hojjat

State of California

Kristine Holt

Utah Department of Corrections

Ernie Hudson

Counter Tools

Sheneika Hurley

Everlaw

Khenrio Jimenez

Brightstar Lottery

Eddie Kim

Everlaw

Colby King

Fivos

Ean Krenzin-Blank

SOS Technologies

Linda Markey

State of Texas - DIR

Rod Massey

SAP NS2

Chris Mayhew

Authorium, Inc.

Donnie McCleskey

Twilio

Felipe Medina

Geographic Solutions

Jodie Monette

State of Minnesota - BCA

Ken Morris

RAMPxchange

Rashad Munawar

BlackBerry

Brian O'Connor

Extreme Networks

Olutosin Oguntunde

Accenture

Jason Oksenhendler

Moss Adams

Anthony O'Neill

Commonwealth of Massachusetts

Derly Ortiz

Commonwealth of Massachusetts

Robert Otten

Flock Safety

Gaurav Pal

StackArmor

Roy Park

San Joaquin County Office of Education

Andy Perkins

Jadu

Nick Peters

Rubrik

Robert Peterson

Washington County, Idaho

Jennifer Pittman-Leeper

GovRAMP Staff

Nicolas Ponce

Addigy

Ashwin Rao

Find Help

Ava Rassouli

Marin County

David Resler

GovRAMP PMO

Jon Ridpath

Aztec Software

Cheri Rolfes

Commonwealth of Massachusetts

Andrew Rudder

Commonwealth of Massachusetts

John Santore

Constellation GovCloud

Mary Schafer

Abnormal AI, Inc.

Calli Schlientz

DataBank, Ltd.

Wil Seiler

360Advanced

Tammy Spangler

NCSBN

Jared Spurgeon

State of Arizona - DES

Patrick Sullivan

Telos Corp.

Marvell Summerow

MapLarge

Said Syed

Snyk, Inc.

Bryan Tobek

GovRAMP PMO

Vladimir Trushkin

Chemwatch

Thomas Twigg

Michigan State Police

Joel Varty

Agility

Amy Ventura

GovRAMP Staff

Justine Verigin

Matrix Pointe Software

Thomas Volpe Jr.

C2 Labs

Nathan Willigar

Microsoft

Christopher Wright

Fortreum

Track the Task Force’s Progress

The AI Security Task Force is advancing through a series of planned phases throughout 2026. The timeline below outlines where we are in the process and what’s coming next, so you can stay informed on the Task Force’s ongoing work.

Q1 2026

Foundation & Implementation

Finalize and roll out the AI Self Reporting Addendum, implement generative AI as a Significant Change Notification, introduce AI notation on the Authorized and Progressing Product Lists, and begin alignment with NIST AI RMF updates and overlays to NIST 800-53.

Q1 2026

Q2 2026

Guidance Development & Rollout

Draft shared responsibility and procurement guidance for AI-enabled products, continue analysis of AI overlays, and complete rollout of the AI Addendum and APL/PPL notation to members.

Q2 2026

Q3 2026

Overlay Advancement & Committee Engagement

Refine AI overlays and trustworthiness guidance in coordination with GovRAMP committees, aligned with evolving NIST guidance.

Q3 2026

Q4 2026

Continued Engagement & Planning

Continue Executive Council and Task Force meetings, advance overlay development, and prepare for broader member engagement and education.

Q4 2026

Resources

PRESS RELEASE

GovRAMP Launches AI Security Task Force

Read more about how this collaborative initiative brings together GovRAMP members to identify the unique security risks of generative AI and develop guidance for secure integration across cloud products.

Read More

RESOURCE

AI Security Task Force Charter

The charter outlines the purpose, scope, and objectives of the AI Security Task Force, guiding its efforts to enhance cybersecurity and trust standards for AI in cloud products through collaboration across the public and private sectors.

Read More

REGISTRATION

AI Security Task Force Members

The AI Security Task Force is open to all GovRAMP member organizations—both public and private—who are committed to responsible AI innovation, cross-sector collaboration, and shaping the future of secure, trustworthy cloud adoption.

Join the Task Force

GovRAMP Contacts

Leah McGrath

Executive Director GovRAMP
leah@govramp.org

Fred Brittain

Executive Advisor to GovRAMP PMO
fred@govramp.org

Aysha Davis

Program Analyst GovRAMP PMO
aysha@govramp.org

Chandler McGuire

Marketing Specialist
chandler@govramp.org