The Cyber and AI Governance Vault
Curated by Gerard Louis
Bridging the gap between emerging AI threats and global regulatory frameworks in the financial sector
No More Vendor Shield: AI Accountability in Financial Services
Why deploying AI through vendors does not reduce management accountability — and how regulators are applying existing governance, cybersecurity, and third-party oversight obligations to AI-enabled processes.
Read Article →All Posts
May 3, 2026 Industry Analysis 13 min
The Control Gap - Why AI Governance Must Pivot from Policy to Operations in 2026 The Stanford AI Index 2026 reveals a widening gap between AI capability and governance readiness. For financial institutions, closing this Control Gap before the EU AI Act and OSFI E-23 deadlines is no longer optional. May 2, 2026 Industry Analysis 6 min
The Rise of Agentic AI in Financial Services Beyond the Chatbot: Navigating the risks of autonomous AI agents in banking — from prompt injection 2.0 to memory poisoning, with mitigation controls mapped to NIST AI RMF and FS AI RMF 230. Apr 26, 2026 Industry Analysis 6 min
The Rise of Agentic AI and the 'All-Green' Fraud Problem Why financial crime is shifting from bad events to clean sequences — and how agentic AI is enabling multi-step, coordinated deception that passes every control. Apr 25, 2026 Frameworks 5 min
From AI Risk Principles to Production Reality How to operationalize NIST AI RMF, FS AI RMF, threat models, and MAESTRO across GenAI and agentic AI systems. Apr 13, 2026 Frameworks 13 min
FS AI RMF 230 Control Objectives - Mapping to NIST AI RMF and Implementation Guide A deep dive into the Treasury's Financial Services AI Risk Management Framework, its 230 control objectives, how they map to the NIST AI RMF, and a practical implementation guide for financial institutions. Apr 12, 2026 Industry Analysis 4 min
The Mythos AI Crisis and Banking Resilience How Anthropic's Mythos model triggered an emergency government response, what it means for financial services cybersecurity, and how the FS AI RMF provides a path to resilience. Apr 5, 2026 Regulations 6 min
NY DFS 23 NYCRR 500 - What You Need to Know A comprehensive breakdown of New York's landmark cybersecurity regulation for financial services — covering key requirements, the 2023 amendments, and practical steps for compliance. Mar 5, 2025 Industry Analysis 2 min
The Convergence of Cyber and AI Governance in Financial Services Why financial institutions can no longer treat cybersecurity and AI governance as separate disciplines, and how to build an integrated governance model. Feb 10, 2025 Regulations 2 min
EU AI Act — What Financial Institutions Need to Know in 2025 A breakdown of the EU AI Act's risk-based classification system and its direct implications for banks, insurers, and investment firms operating in or serving EU markets. Jan 15, 2025 Frameworks 2 min
NIST AI RMF 1.0 — A Practical Guide for Financial Services Breaking down the NIST AI Risk Management Framework and how financial institutions can operationalize its core functions: Govern, Map, Measure, and Manage.