RiskRubric.ai Launches as First AI Model Risk Leaderboard to Address Enterprise Security Challenges

The Cloud Security Alliance (CSA), Noma Security, Harmonic Security, and Haize Labs have launched RiskRubric.ai, the first AI model risk leaderboard designed to provide comprehensive security assessments for large language models. This free resource addresses critical challenges faced by AI builders and users who struggle with security evaluation and approval bottlenecks, offering instant, actionable risk grades for hundreds of commonly deployed AI models.

RiskRubric.ai evaluates AI models through rigorous testing protocols including over 1,000 reliability prompts, 200+ adversarial security tests, automated code scans, and comprehensive documentation reviews. Each model receives objective scores from 0-100 across six risk pillars: transparency, reliability, security, privacy, safety, and reputation, which roll up to A-F letter grades enabling rapid risk assessment without requiring deep AI expertise. The platform currently covers 150+ popular AI models including GPT-4, Claude, Llama, Gemini, and specialized enterprise models, with new assessments added continuously.

The launch comes at a critical time as AI agents rapidly proliferate across enterprises, gaining increasing autonomy and access to critical business systems. Traditional security frameworks designed for predictable technology have proven inadequate for the rapid pace of AI development where new models launch weekly and capabilities shift dramatically between versions. Niv Braun, CEO and Co-Founder of Noma Security, emphasized that without standardized risk assessments, teams are essentially flying blind when making AI deployment decisions.

Caleb Sima, Chair of the CSA AI Safety Initiative, stated that the rapid adoption and evolution of AI has created an urgent need for a standardized model risk framework that the entire industry can trust. RiskRubric.ai embodies CSA's mission to deliver AI security best practices, tools, and education to the cybersecurity industry at large. By providing transparent, vendor-neutral assessments free to the community, the initiative ensures organizations of all sizes can make informed decisions about AI development and deployment.

The collaborative effort brings together leading expertise from multiple organizations. Noma Security serves as the technical architect and AI security platform provider, bringing deep expertise in AI and agent security to form the technical backbone of the LLM risk assessment engine. The company is working with partners and leading AI platform providers such as Hugging Face and Databricks on the RiskRubric.ai initiative, underscoring the importance of standardized AI safety for the global AI community.

Haize Labs contributed advanced adversarial testing methodologies to the project, with CEO Leonard Tang noting that the black-box nature of modern AI systems demands sophisticated testing approaches that go beyond traditional security assessments. Harmonic Security provided critical insights on privacy assessment and data leakage prevention, addressing organizations' concerns about AI models training on sensitive data where legacy DLP solutions struggle to provide adequate protection.

Michael Machado, RiskRubric.ai Product Lead, explained that building the platform required solving the fundamental challenge of creating consistent, comparable risk metrics across wildly different AI architectures. The assessment framework scales from evaluating a single model in minutes to continuously monitoring hundreds of models as they evolve, transforming how security teams approach AI governance and risk management.

RiskRubric.ai is now generally available at https://riskrubric.ai, with AI model risk ratings freely accessible to all users. The platform represents a significant step forward in enabling responsible AI innovation at scale by providing the standardized risk assessment framework needed to align AI governance with the rapid pace of AI development and deployment across enterprises worldwide.