Securing generative AI systems demands more than conventional cybersecurity approaches, and OWASP GenAI Security provides the framework organizations need. The OWASP GenAI Security Project developed the Threat Defense COMPASS 1.0, a toolkit designed to identify, assess and defend against security threats unique to generative AI systems. This framework offers structured methodologies and practical steps that help organizations secure their GenAI deployments.
In this piece, we’ll explore what the Threat Defense COMPASS 1.0 framework covers, including its core components, practical implementation steps and how security professionals can use it to protect their GenAI applications. Whether you’re a developer or security professional, this piece will help you learn what you need to strengthen your GenAI security posture.
What is OWASP GenAI Security Project Threat Defense COMPASS 1.0
Image Source: OWASP GenAI Security Project – OWASP Foundation
Released on September 10, 2025, the Threat Defense COMPASS 1.0 combines AI threats, vulnerabilities, defenses and mitigations into a unified AI Threat Resilience Strategy Dashboard. The framework lets organizations review everything from external adversaries using AI tools to internal deployments of Microsoft Copilot, Google Gemini and proposed GenAI or Agentic projects.
COMPASS serves dual purposes. It functions as both a structured methodology and a practical spreadsheet tool that guides security teams through rapid threat prioritization and strategic decision making. The framework is provided as a Google Sheet template and comes with a detailed RunBook and training video available through the project’s Learning Video Library.
The OODA loop framework (Observe, Orient, Decide, Act) forms the foundation for COMPASS, which implements a 5-point scoring system for threat assessment. This scoring mechanism reviews threats based on two dimensions: Impact measures how disruptive a threat would be if realized (1: Low, 5: Critical), while Likelihood assesses the probability of occurrence (1: Unlikely, 5: Highly Likely). Organizations can customize this scoring system to line up with their specific risk tolerance and operational requirements.
The framework allows security teams to adapt and mature their defenses over time through iterative use. This approach translates abstract AI security threats into a tangible, repeatable risk management process.
Core Components of the Threat Defense Framework
OWASP GenAI Security Project delivers COMPASS as a complete package of operational resources you can implement right away. The framework has three main deliverables: a Google Sheet template that serves as the working dashboard, a complete RunBook providing step-by-step guidance, and a training video available through the project’s Learning Video Library. These components work together and create a hands-on experience for security teams navigating GenAI threat assessment.
The Google Sheet template functions as the central workspace. Teams conduct their threat analysis and track resilience strategies there. COMPASS provides in-depth documentation that guides operational use beyond these core tools. Security professionals, developers, and risk managers working with GenAI solutions find it available to them. The framework supports practical, day-to-day security operations with built-in training and guidance.
Customization stands as a fundamental principle of the framework. Organizations can modify any aspect of COMPASS to suit their specific needs. The scoring method adapts to any scale that works for individual teams. COMPASS integrates with other OWASP resources like CycloneDX, API Top 10, and ASVS. This supports a broader threat resilient strategy.
How to Use COMPASS: Step-by-Step Implementation Guide
Image Source: OWASP Foundation
Implementing COMPASS begins with downloading the Google Sheet template from the OWASP GenAI Security Project website. You can then access the COMPASS RunBook and training video from the project’s Learning Video Library to understand the operational framework.
The implementation follows a structured seven-step process. Define the scope of your GenAI system or component under assessment first. Gather architectural details, data flows and AI model specifications that are the foundations of your analysis. The provided threat taxonomies and checklists help identify potential risks specific to your environment. COMPASS’s assessment templates determine exposure and risk levels when you assess vulnerabilities. The RunBook references mitigation strategies that address identified vulnerabilities. The tool’s reporting formats let you document your findings, actions taken and residual risks. Your GenAI system will evolve and new threats will emerge, so you should revisit the assessment regularly.
OWASP emphasizes that you should evaluate artificial intelligence as part of your organization’s technology stack and threat landscape, not in isolation. Total risk assessment should include regulatory compliance and reputational damage alongside disruptions to daily operations. Organizations facing complex GenAI deployments can Book a Readiness Call with security specialists to optimize their COMPASS implementation strategy.
Conclusion
COMPASS 1.0 revolutionizes GenAI security from abstract concerns into practical defense strategies. We’ve explored how this framework delivers practical tools and customizable assessment processes that adapt to your organization’s unique needs. Organizations seeking specialized guidance for complex GenAI deployments can Book a Readiness Call with security experts to optimize their implementation approach. Security teams possess a repeatable, iterative process now to build resilient AI systems and strengthen their overall security posture against evolving threats.
Key Takeaways
OWASP’s Threat Defense COMPASS 1.0 provides security teams with practical tools to assess and defend against GenAI-specific threats through structured methodologies and actionable frameworks.
• COMPASS delivers a complete toolkit: Google Sheet template, comprehensive RunBook, and training videos enable immediate implementation of GenAI threat assessment processes.
• 5-point scoring system evaluates threats systematically: Impact and Likelihood dimensions (1-5 scale) help prioritize risks and guide strategic security decisions effectively.
• Seven-step implementation process ensures thorough coverage: From system scoping to residual risk documentation, the framework provides structured guidance for comprehensive GenAI security assessment.
• Framework integrates with existing OWASP resources: COMPASS connects with API Top 10, ASVS, and other security tools to support broader organizational threat resilience strategies.
• Customizable and iterative approach adapts to organizational needs: Teams can modify scoring systems and assessment criteria while continuously updating defenses as GenAI systems evolve.
The framework transforms abstract AI security concerns into tangible, repeatable risk management processes that security professionals can implement immediately to strengthen their GenAI security posture.
FAQs
Q1. What is the OWASP GenAI Security Threat Defense COMPASS 1.0 framework? COMPASS 1.0 is a specialized toolkit released by the OWASP GenAI Security Project that helps organizations identify, assess, and defend against security threats unique to generative AI systems. It consolidates AI threats, vulnerabilities, defenses, and mitigations into a unified dashboard, functioning as both a structured methodology and a practical spreadsheet tool for rapid threat prioritization and strategic decision-making.
Q2. What components are included in the COMPASS framework? The COMPASS framework includes three primary deliverables: a Google Sheet template that serves as the working dashboard for threat analysis, a comprehensive RunBook providing step-by-step guidance, and training videos available through the project’s Learning Video Library. These components work together to provide hands-on resources for security teams conducting GenAI threat assessments.
Q3. How does COMPASS score and evaluate threats? COMPASS uses a 5-point scoring system built on the OODA loop framework to evaluate threats across two dimensions. Impact measures how disruptive a threat would be if realized (1: Low to 5: Critical), while Likelihood assesses the probability of occurrence (1: Unlikely to 5: Highly Likely). Organizations can customize this scoring system to align with their specific risk tolerance and operational requirements.
Q4. Who should use the COMPASS framework? The COMPASS framework is designed for security professionals, developers, and risk managers working with GenAI solutions. It’s particularly valuable for organizations evaluating external adversaries using AI tools, internal deployments of AI systems like Microsoft Copilot or Google Gemini, and proposed GenAI or Agentic projects.
Q5. Can organizations customize the COMPASS framework for their specific needs? Yes, customization is a fundamental principle of COMPASS. Organizations can modify any aspect of the framework to suit their specific needs, including adapting the scoring method to any scale that works for their teams. The framework is designed for iterative use, allowing security teams to continuously adapt and mature their defenses over time as their GenAI systems evolve.