Week of 12 January 2026
NIST's CAISI has issued an RFI on securing AI agent systems, with submissions closing 9 March 2026.
Key points
- The RFI targets risks unique to agentic AI: prompt injection, data poisoning, misaligned objectives, and specification gaming.
- Outputs will inform voluntary US guidelines - a likely reference point for Australian agentic AI governance work.
Import AI 440 covers four distinct research items: adversarial LLM evolution, AI-automated compliance, o-ring labour economics, and LLM persuasion of conspiracy beliefs.
Key points
- The automated compliance piece proposes 'automatability triggers' - regulations that activate only once AI can cheaply enforce them - directly relevant to AI governance design.
- The LLM persuasion research and labour economics item have indirect APS relevance; the adversarial evolution item is primarily technical interest.
NIST NCCoE hosted a hybrid workshop on 14 January 2026 to develop its Cyber AI Profile under the Cybersecurity Framework.
Key points
- The preliminary Cyber AI Profile and SP 800-53 COSAiS overlay are open for public comment until 30 January 2026.
- This is a past event with a closed comment window - limited immediate action available for APS readers.
AI Now Institute publishes a series critically analysing the 2026 India AI Impact Summit and its governance discourse.
Key points
- Contributors examine how terms like sovereignty, democratisation, and accountability are used in AI policy debates.
- Limited direct relevance to APS practitioners; useful background on critical perspectives in global AI governance framing.
Week of 5 January 2026
DTA's updated Policy for the responsible use of AI in government came into effect 15 December 2025 for all non-corporate Commonwealth entities.
Key points
- New mandatory requirements include internal AI use-case registers, accountable owners, AI impact assessments, and foundational AI training for all APS staff.
- First mandatory requirement begins 15 June 2026; all remaining requirements take effect December 2026, giving agencies a staged implementation window.
Good Ancestors' January 2026 newsletter covers Australia's AISI hiring, Grok deepfake crisis, Productivity Commission AI regulation findings, and global safety warnings.
Key points
- Multiple items directly affect APS work: MYEFO reveals $166M GovAI Chat, AISI founding team roles, ACCC agentic AI warnings, and automated welfare liability.
- Roundup format means each item warrants separate engagement at source; this is a curated signal, not a single-issue analysis.
Meta's KernelEvolve uses LLMs to automate AI kernel design, cutting development time from weeks to hours.
Key points
- Epoch AI analysis finds decentralised AI training growing at 20x per year, raising governance and sovereignty implications.
- Item is a technical research newsletter; policy implications are present but require significant extrapolation for APS use.
Alan Turing Institute blog advocates using AI and data science to address sustainability challenges.
Key points
- Extracted text is too sparse to assess specific claims, methods, or findings in detail.
- Limited direct relevance to Australian federal AI governance - primarily a UK think-tank perspective piece.
Week of 22 December 2025
Stanford/CMU research shows AI agents with scaffolding match professional penetration testers at $18/hour versus $60/hour for humans.
Key points
- The ARTEMIS framework demonstrates frontier AI systems are systematically under-elicited - more capable than they appear without structured scaffolding.
- Remaining items cover robotics data transfer (OSMO glove) and AI-assisted chip design - limited direct APS relevance.
MLCommons AI Safety Benchmark v0.5 defines 13 hazard categories for evaluating chat-based AI system safety.
Key points
- Practical testing tools including ModelBench are openly available, making this usable for agency-level AI evaluation.
- V0.5 has been superseded by V1.0 (AILuminate, Feb 2025); this spotlight is retrospective context, not a new release.
MIT AI Risk Repository spotlights a 2023 paper categorising catastrophic AI risks into four proximate causes.
Key points
- The four categories — malicious use, AI race, organisational risks, and rogue AI — each include mitigations.
- This is a secondary blog summary of a 2023 paper; primary value is as a reference for risk taxonomy work.
Week of 15 December 2025
NIST has released a preliminary draft Cyber AI Profile (NISTIR 8596) for 45-day public comment, closing 30 January 2026.
Key points
- The profile maps cybersecurity guidance across three areas: securing AI systems, AI-enabled defence, and AI-enabled attack resilience.
- Still in preliminary draft stage; a refined initial public draft is planned for 2026, limiting immediate applicability for Australian agencies.
NIST has released a preliminary draft Cybersecurity Framework Profile for AI (NIST IR 8596) open for public comment until 30 January 2026.
Key points
- The profile addresses three focus areas: securing AI system components, AI-enabled cyber defence, and thwarting AI-enabled attacks.
- A companion workshop is scheduled for 14 January 2026; this is a US standard with no immediate Australian compliance obligation.
A 2022 academic framework organises AI/ML risks into data-level and model-level categories with root causes and outcomes.
Key points
- The framework targets high-stakes decision settings like healthcare and transport - domains relevant to APS service delivery.
- This is a 2022 paper spotlighted by MIT's AI Risk Repository blog; it is not new primary research or Australian guidance.
Major US insurers including AIG are seeking to exclude AI-related risks from coverage, per OECD AI analysis.
Key points
- OECD argues insurers should instead incentivise sound AI risk management rather than exclude AI liabilities.
- Only a truncated extract is available; full argument and any policy recommendations are behind the link.
The Alan Turing Institute's FRIDGE project enables secure research using sensitive data on AI supercomputers.
Key points
- Addresses a genuine governance challenge—safely accessing frontier compute for sensitive-data research—relevant to Australian research and public sector contexts.
- Extracted text is minimal; substantive detail of the approach is not available from this item alone.
University of Birmingham and Alan Turing Institute won £610,000 to develop AI space-threat detection tools.
Key points
- The project targets national security applications - a domain of growing interest to Australian defence and intelligence agencies.
- Limited direct relevance to APS AI governance practitioners; more pertinent to defence science and space policy communities.
NIST CAISI is hiring an AI Research Scientist focused on evaluation methods and trustworthy AI measurement.
Key points
- The role signals continued US investment in rigorous AI evaluation infrastructure relevant to international standards work.
- Job postings carry low signal for APS readers; included for context on CAISI's capability build-out only.
NIST has finalised cybersecurity guidelines for smart speaker use in home telehealth and hospital-at-home programs.
Key points
- Guidelines draw on NIST CSF 2.0, Privacy Framework, and IoT baseline standards - not AI governance frameworks specifically.
- Limited direct relevance to APS AI governance work; this is primarily a health-sector IoT/cybersecurity item.
Week of 8 December 2025
Good Ancestors' December 2025 newsletter covers Australia's National AI Plan, AISI announcement, and multiple international developments.
Key points
- The Australian AISI ($30m, early 2026 start) and National AI Plan are the headline items, with APS AI Plan also featured.
- Newsletter spans AI espionage, model releases, deepfake legislation, CSIRO restructure, and EU AI Act delays across 15+ distinct items.
Import AI's issue 437 covers four distinct topics: co-improving AI, AI labelling policy complexity, SimWorld simulator, and DeepMind's SIMA 2 agent.
Key points
- The AI labelling section directly illustrates why simple-sounding AI policy can impose significant compliance burdens on industry.
- Coverage is research-forward and internationally focused; limited direct APS operational relevance but useful as a frontier signal.
Week of 1 December 2025
DTA has released an updated AI policy, a new AI Impact Assessment Tool, and new AI procurement guidance, effective 15 December 2025.
Key points
- The updated Policy mandates AI impact assessments for all use cases and requires agencies to develop and communicate a strategic position on AI adoption.
- An AI Review Committee for high-risk use cases across the APS is being finalised, with terms of reference expected in Q1 2026.
The National AI Centre released practical guidance on labelling, watermarking, and metadata for AI-generated content.
Key points
- Guidance targets businesses but applies equally to APS agencies producing AI-assisted communications and official documents.
- Framed around regulatory risk reduction and trust-building, aligned with responsible AI use principles in government.
MIT AI Risk Repository Version 4 now includes over 1,700 coded risks drawn from 74 published frameworks.
Key points
- Nine newly added frameworks span government reports, peer-reviewed papers, and industry sources, including a UK DSIT frontier AI paper.
- A structured, living reference for AI risk taxonomy - useful for APS governance and risk assessment work.
Alan Turing Institute research identifies new AI risks specific to financial sector institutions.
Key points
- Financial sector AI risk findings are relevant to Australian agencies managing financial data or payment systems.
- Extracted text is truncated - full research scope and findings are not assessable from available content.