Respond and verify potential threshold b…

BackConduct regular training and scenario drills

This page is still being polished. If you have thoughts, please share them via the feedback form.

Data on this page is preliminary and may change. Please do not share or cite these figures publicly.

Conduct regular training and scenario drills

Somai (2025)|LLM classified

Mitigation Taxonomy

2Organisation

2.3Operations & Security

2.3.4Incident Response

Response plans, escalation procedures, and incident management for operational emergencies.

Also in Operations & Security

2.3.1 Deployment Management2.3.2 Access & Security Controls2.3.3 Monitoring & Logging

Additional Informationp. 4

Stage: Escalation; Stakeholder: AI Developers; Additional information: AI developers should establish well-defined escalation protocols and conduct regular training exercises to ensure their effectiveness. Developers should create incident response plans in advance, with well-defined, evidence-based thresholds for when to trigger an emergency response. Incident plans should assign critical roles, including an 'incident commander' who has decision making authority, direct access to leadership and the authority to coordinate cross-functional teams and suspend models. Incident protocols should be customisable to accommodate variations, and organisations should drill escalation pathways (Webb & Chevreau 2006).

LLM Classification Details

Reasoning

Regular training and scenario drills prepare teams to execute incident management and escalation procedures.

Code: 2.3.4Version: v0.5Classified: Jan 22, 2026

Other mitigations from Somai (2025) (38)

Monitor critical capability levels

2.2.2 Testing & Evaluation

Lifecycle:Other (multiple stages)Actor:DeveloperAIRM:Measure

Identify early warning signs and emergent capabilities

2.2.1 Risk Assessment

Lifecycle:Build and Use ModelActor:DeveloperAIRM:Measure

Establish standardised benchmarks and reporting

3.2.1 Benchmarks & Evaluation

Lifecycle:Verify and ValidateActor:DeveloperAIRM:Measure

Implement compute monitoring and anomaly detection

1.2.3 Monitoring & Detection

Lifecycle:Other (multiple stages)Actor:Infrastructure ProviderAIRM:Measure

Enhance hardware and supply chain oversight

2.3.3 Monitoring & Logging

Lifecycle:Other (stage not listed)Actor:Infrastructure ProviderAIRM:Govern

Lead efforts to establish shared criteria for AI LOC

3.2.2 Technical Standards

Lifecycle:Plan and DesignActor:Governance ActorAIRM:Govern

View all 38 mitigations from this source →

Source Document

Strengthening Emergency Preparedness and Response for AI Loss of Control Incidents

Somani, Elika; Friedman, Anjay; Wu, Henry; Lu, Marianne; Byrd, Christopher; van Soest, Henri; Zakaria, Sana (2025)

As artificial intelligence (AI) systems become increasingly embedded in essential infrastructure and services, the risks associated with unintended failures rise. Developing comprehensive emergency response protocols could help mitigate these significant risks. This report focuses on understanding and addressing AI loss of control (LOC) scenarios where human oversight fails to adequately constrain an autonomous, general-purpose AI.

View source DOI: 10.7249/RRA3847-1

Classification

AI Lifecycle Stage

Operate and Monitor

Running, maintaining, and monitoring the AI system post-deployment

Responsible Actor

Developer

Entity that creates, trains, or modifies the AI system

NIST AI RMF Function

Manage

Prioritising, responding to, and mitigating AI risks