Earlier this year, the National Institute of Standards and Technology (NIST) issued an Artificial Intelligence Risk Management Framework (RMF), which offers organizations an approach to identifying and framing AI risk. Representatives from Microsoft, NIST and Luminos.Law recently examined each core function covered by the RMF – govern, map, measure and manage – as well as ongoing practical issues in adopting responsible AI, incident response and alignment of approaches to AI. This article discusses the key takeaways from their presentation at the IAPP's AI governance conference. See “NIST Advances Soft Law for AI While World Awaits Hard Laws” (Apr. 19, 2023).