Black Kite has announced the release of its Global Adaptive AI Assessment Framework™ (BK-GA³™), a new standard designed to address the rapidly evolving threat landscape of artificial intelligence. Developed as the first truly global framework for assessing AI risk, BK-GA³™ synthesizes best practices from over 50 existing assessment frameworks to provide a unified, continuously updated standard for third-party cyber risk management teams.
Quick Intel
Black Kite has launched the BK-GA³™ Global Adaptive AI Assessment Framework.
It is designed as a unified global standard for assessing third-party AI risk.
The framework synthesizes hundreds of requirements from over 50 existing frameworks.
It is continuously updated by a working committee to reflect emerging AI threats.
The framework maps to established standards like ISO and NIST.
It is available both publicly for free and within the Black Kite platform for customers.
Solving the Fragmentation in AI Risk Assessment
The new framework directly addresses a critical challenge in third-party risk management: the proliferation of fragmented, overlapping, and industry-specific AI risk assessments. By evaluating hundreds of unique requirements across numerous frameworks, Black Kite has synthesized them into a single, focused standard. This allows organizations to efficiently identify vendor control gaps across their entire third-party ecosystem using one consistent methodology, rather than navigating a complex web of different standards.
Key Capabilities and Industry Collaboration
BK-GA³™ is built with several core capabilities to ensure its effectiveness and longevity. It is designed for continuous adaptation, with a dedicated working committee updating it to reflect new threats and standards. The framework also features global assurance alignment, mapping to established frameworks like those from ISO and NIST. The development involved consultation with Shared Assessments LLC, a leader in third-party risk assurance, to ensure it serves as a trusted, industry-wide standard.
Availability and Industry Endorsement
The framework is offered in two forms: a publicly available, free version to foster industry-wide adoption and a version integrated into the Black Kite platform for automated vendor risk assessments. The initiative has received endorsement from industry bodies. Andrew Moyad, CEO of Shared Assessments, noted that the framework "complements and extends" their own SIG framework, while Julie Gaiaschi, CEO of the Third Party Risk Association (TPRA), highlighted that it "gives organizations a shared foundation to address AI risk more effectively."
The launch of the BK-GA³™ framework represents a significant step towards standardizing the chaotic field of AI risk assessment. By providing a unified, adaptive, and globally-aligned standard, Black Kite is empowering organizations to manage the complex third-party risks associated with AI adoption more effectively and with greater confidence, turning a fragmented challenge into a manageable process.
About Black Kite
Black Kite is the AI-native third-party cyber risk management platform trusted by over 3,000 customers to manage every supplier and every risk across their extended ecosystem. Powered by the industry's highest-quality risk intelligence, spanning over 40 million companies, Black Kite is differentiated by the accuracy, transparency, and actionability of its data. The platform automates vendor monitoring and risk assessments, surfacing reliable insights into ransomware susceptibility, regulatory gaps, financial exposure, and more. With Black Kite, security and risk teams gain always-on visibility and trusted intelligence to act early, reduce exposure, and stay ahead of third-party threats. Black Kite has received numerous industry awards and recognition from customers. Learn more at www.blackkite.com, or on the Black Kite blog.
About Shared Assessments
Shared Assessments is a member-driven organization committed to advancing best practices and standards to empower practitioners to navigate their careers and build stronger TPRM programs. Shared Assessments' Standardized Information Gathering Questionnaire (SIG) is updated with industry standards, emerging risks and regulations, and the collective intelligence of its members every year to keep pace with the shifting third-party risk landscape.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.