US Treasury Releases AI Risk Management Framework for Financial Services

A New Era of Standardized Governance for Financial AI

On February 19, 2026, the United States Department of the Treasury marked a significant milestone in the evolution of financial technology governance. In a decisive move to support the President's AI Action Plan, the Treasury released two foundational resources designed to guide the adoption of artificial intelligence within the financial sector: the Artificial Intelligence Lexicon and the Financial Services AI Risk Management Framework (FS AI RMF).

This announcement represents a pivot from high-level theoretical discussions to practical, implementation-focused tools. As financial institutions increasingly integrate AI into critical workflows—from fraud detection to customer engagement—the need for a unified approach to risk and terminology has become undeniable. The release of these documents underscores the administration's commitment to ensuring that AI is deployed not only innovatively but also safely and responsibly, preserving the stability of the U.S. financial system.

For the readers of Creati.ai, who are deeply embedded in the intersection of creativity and artificial intelligence, this development signals a maturing regulatory landscape where clarity and standardized risk management are paramount.

Moving Beyond Aspirational Statements

The drive behind these new resources is rooted in the necessity for tangible, actionable guidance. For years, the conversation around AI in finance has been dominated by broad principles and ethical guidelines. While these are essential, they often lack the specificity required for compliance officers and technical teams to implement effective controls.

Derek Theurer, performing the duties of Deputy Secretary of the Treasury, emphasized this shift in focus during the announcement. He noted that implementing the President's AI Action Plan requires "more than aspirational statements; it requires practical resources that institutions can use." This pragmatic approach is designed to bridge the gap between policy intent and operational reality.

By establishing a common language and a tailored framework, the Treasury aims to protect consumers while simultaneously fostering an environment conducive to responsible innovation. The initiative recognizes that uncertainty is often the biggest barrier to adoption. When financial institutions are unsure of the regulatory guardrails, they hesitate to deploy advanced technologies. These new resources are intended to remove that ambiguity, allowing banks and FinTech companies to move forward with confidence.

The Artificial Intelligence Lexicon: establishing a Common Language

One of the most persistent challenges in the governance of emerging technologies is the lack of standardized terminology. In the complex ecosystem of financial services, a "model" might mean one thing to a data scientist, another to a risk officer, and something entirely different to a legal counsel. These linguistic discrepancies can lead to miscommunication, regulatory gaps, and inefficient oversight.

The newly released Artificial Intelligence Lexicon addresses this issue head-on. It serves as a dictionary for the industry, establishing common definitions for key AI concepts, capabilities, and risk categories.

Bridging Functional Silos

The Lexicon is designed to facilitate clearer communication across the distinct functions within a financial institution.

Regulatory Functions: Ensures that compliance teams interpret rules consistently.
Technical Functions: Helps engineers understand how their developments map to legal requirements.
Legal and Business Functions: Enables executives to make informed decisions based on a precise understanding of the technology.

Paras Malik, the Chief Artificial Intelligence Officer at the U.S. Department of the Treasury, highlighted the critical nature of this resource. "Clear terminology and pragmatic risk management are essential to accelerating AI adoption in financial services," Malik stated. By reducing semantic uncertainty, the Lexicon supports consistent supervision by regulators and scalable implementation by firms.

The Financial Services AI Risk Management Framework (FS AI RMF)

Building upon the foundation of a shared vocabulary, the Financial Services AI Risk Management Framework (FS AI RMF) provides the structural scaffolding for secure AI deployment. This framework is not a reinvention of the wheel; rather, it is a sector-specific adaptation of the widely respected NIST AI Risk Management Framework.

The National Institute of Standards and Technology (NIST) developed its framework as a general-purpose guide. The Treasury's FS AI RMF takes those core principles and tailors them to the unique operational, regulatory, and consumer protection considerations of the financial services industry.

Key Components of the Framework

The FS AI RMF provides a comprehensive set of tools and reference materials designed to help institutions navigate the entire AI lifecycle.

Evaluation of Use Cases: Tools to assess the viability and risk profile of specific AI applications before deployment.
Lifecycle Management: Guidelines for managing risks from the initial design phase through to retirement of the model.
Embedded Accountability: Mechanisms to ensure transparency and responsibility are woven into the fabric of AI decision-making.

The framework emphasizes that risk management is not a one-time checklist but a continuous process. As AI models evolve and learn, the risks associated with them can change. The FS AI RMF encourages a dynamic approach to governance that evolves alongside the technology.

Scalability and Flexibility

A critical feature of the FS AI RMF is its design for scalability. The financial sector is diverse, ranging from massive multinational banks to small community credit unions and agile FinTech startups. A rigid, one-size-fits-all approach would be ineffective.

Josh Magri, CEO of the Cyber Risk Institute, praised the framework for this versatility. "The FS AI RMF not only aligns closely with NIST standards but also offers practical, scalable guidance tailored to the varying stages of AI adoption," Magri observed. He noted that the framework empowers institutions of all sizes to manage AI risks effectively while driving growth.

Collaborative Development: A Public-Private Partnership

The development of these resources was not a solitary effort by the Treasury. It was the result of extensive collaboration between the public and private sectors, reflecting the complexity of the financial ecosystem.

The documents were developed through the Financial and Banking Information Infrastructure Committee (FBIIC) and the Financial Services Sector Coordinating Council's (FSSCC) Artificial Intelligence Executive Oversight Group (AIEOG). This partnership ensures that the guidelines are not just theoretically sound but also practically applicable in real-world banking environments.

This collaborative model is intended to translate national AI priorities into tools that are useful for all stakeholders:

Financial Institutions: Banks, credit unions, and investment firms.
Regulators: State and federal oversight bodies.
Technology Providers: The vendors and developers creating the AI systems.

By involving industry leaders in the drafting process, the Treasury has ensured that the resources address the actual pain points faced by the sector, rather than perceived issues.

Summary of New Resources

The following table provides a concise comparison of the two primary resources released by the Treasury, outlining their distinct functions and benefits for the industry.

Resource Name	Primary Function	Key Benefit
Artificial Intelligence Lexicon	Standardizes terminology across regulatory, technical, and legal functions	Enables clearer communication and reduces interpretation errors within institutions
Financial Services AI Risk Management Framework	Adapts NIST standards specifically for the financial services sector	Provides scalable, practical tools for managing risks across the full AI lifecycle

Future Outlook: Identity, Fraud, and Explainability

The release of the Lexicon and the FS AI RMF is not the conclusion of the Treasury's efforts but rather the beginning of a coordinated series of deliverables. The Artificial Intelligence Executive Oversight Group (AIEOG) is actively working on additional resources that address specific priority areas.

According to the announcement, future deliverables will focus on:

Identity: Managing digital identity verification in an age of AI-generated content.
Fraud: utilizing AI to detect complex financial crimes while preventing AI-enabled fraud.
Explainability: Ensuring that AI decision-making processes, particularly in credit and lending, can be understood and justified to consumers and regulators.
Data Practices: Establishing standards for the data used to train and validate financial AI models.

These efforts reflect a broader administration strategy to emphasize public-private collaboration. As AI adoption accelerates, the focus remains on implementation-focused solutions that strengthen trust, resilience, and accountability.

Conclusion

For the financial services industry, the release of the AI Lexicon and the FS AI RMF marks a turning point. The era of ambiguity is giving way to an era of structured, risk-based governance. By providing clear definitions and a tailored risk framework, the US Treasury is laying the groundwork for a financial system that can harness the power of AI without compromising on security or stability.

As the Treasury continues to work with federal and state regulators, the industry can expect a more cohesive regulatory environment. For FinTech leaders and AI practitioners, the message is clear: successful innovation now requires not just technical capability, but also rigorous, standardized risk management.