Glossary · MRM

Model Risk Management (MRM)

Model risk management (MRM) is the discipline of governing the risk that a model is wrong or misused — through inventory, independent validation, ongoing monitoring, and clear ownership. In US banking it derives from SR 11-7.

Classic MRM assumes a definable model with stable inputs and a measurable output. Agentic AI breaks that assumption — it is non-deterministic and acts across steps — and was placed outside the scope of revised US guidance (OCC 2026-13 / SR 26-02).

Governing agents therefore leans on frameworks like the NIST AI RMF and ISO/IEC 42001, plus validation over decision sequences, audit trails, and human oversight.

Related terms

Audit trail
Explainable AI
Human-in-the-Loop (HITL)
EU AI Act

Learn more

Model risk management for agentic AI
US AI regulation for financial services

Sources

Federal Reserve SR 11-7, Guidance on Model Risk Management (Apr 2011)
OCC Bulletin 2026-13 / SR 26-02, Model Risk Management: Revised Guidance (Apr 2026)

Book a demo Back to glossary