vCIO Insights is a thought leadership series from Mike Nazli, vCIO at i-Tech Support, sharing practical perspectives on AI, cybersecurity, compliance, and technology strategy for business leaders.
Just a few years ago, the biggest buzzword in executive meetings was cybersecurity. Last year, it was almost impossible to sit through a leadership meeting, conference, or board presentation without hearing the letters “AI.”
Today, I’m hearing a different word more and more in conversations with executive teams.
Governance.
AI adoption is moving faster than any technology shift I’ve seen in my career. Just a few months ago, many executive teams were debating whether they should even allow AI in the workplace. Today, AI is already being used across nearly every department, and leadership is trying to determine how to govern it responsibly.
The good news is you don’t need to have every answer today, but you do need to start asking better questions. Before we talk about where to begin, here’s a conversation that illustrates why this has become such an important leadership issue.
A Conversation That Changed the Room
Recently, an organization reached out to us looking for guidance on developing an AI strategy. During our conversation, one of the executives shared a story that immediately changed the tone of the meeting.
An employee responsible for coordinating schedules across multiple departments had discovered a free AI tool that could automate hours of manual work. Every month, they spent hours balancing staffing requests, availability, and changing priorities. Looking for a better way, they exported what they believed was simply a scheduling spreadsheet from the company’s HR system and uploaded it into a public AI platform. Within minutes, AI generated an optimized schedule that would have taken hours to build manually.
Everyone was impressed by the productivity gains until someone asked a simple question:
“Did you know that spreadsheet contained personally identifiable information (PII)?”
The room changed immediately. What started as a conversation about productivity quickly became a discussion about data governance, acceptable use, and organizational risk.
The employee wasn’t trying to expose sensitive information. They were trying to solve a business problem more efficiently. No one had explained what information was appropriate to enter into a public AI platform, and leadership hadn’t realized AI had already become part of everyday work.
That conversation reinforced something we’ve been seeing more frequently: in many organizations, AI adoption begins long before an AI strategy does.
AI Adoption Is Already Happening
Employees aren’t waiting for executive approval to experiment with AI. Instead, they’re using it to solve real business problems every day.
Marketing teams are creating content. HR is drafting job descriptions. Finance is analyzing spreadsheets. Operations teams are automating repetitive administrative work. Across nearly every department, employees are finding ways to save time and improve productivity.
In many organizations, AI adoption didn’t begin with a formal implementation plan. It happened organically as employees discovered tools that helped them work more efficiently. By the time leadership begins discussing an AI strategy, AI is often already embedded in day-to-day operations.
That’s why the conversation has shifted from AI adoption to AI governance.
The Governance Gap
Over the past several months, I’ve had conversations with organizations across different industries that are all trying to answer the same question:
How do we govern AI responsibly?
What surprised me wasn’t that organizations were thinking about governance. It was that nearly every organization had a different answer when it came to ownership.
Some believed AI governance should sit with Operations. Others pointed to Compliance, Legal, or Human Resources. Many assumed IT or the CIO should lead the effort.
None of those answers are necessarily wrong. Every organization will structure governance differently. What stood out to me was something much simpler. Organizations recognize AI governance is important, but many haven’t yet established clear ownership or accountability.
The Question Every Leadership Team Should Ask
During these conversations, I’ve started asking executive teams one simple question:
“Can you identify every employee currently using public AI tools and explain what company data they’re uploading?”
The response is almost always the same: silence. Not because leadership doesn’t care, but because they don’t have visibility into how AI is already being used across the organization.
That silence tells me something important. The challenge isn’t ChatGPT or generative AI itself. The challenge is understanding where AI is being used, what information is being shared, and who is responsible for establishing guardrails.
Trust isn’t governance.
Governance creates the visibility and accountability that allow organizations to innovate with confidence.
Organizations have always trusted employees to make good decisions, and that trust is important. But trust alone isn’t a governance strategy. Leadership needs visibility, accountability, and clear expectations that allow employees to innovate while protecting the business.
AI Is a Leadership Conversation
For many organizations, the biggest challenge isn’t the technology itself.
It’s governance.
IT will absolutely play a critical role in enabling AI securely, evaluating platforms, and protecting company data. At the same time, AI influences business operations, employee productivity, compliance, intellectual property, risk management, and company culture.
Those aren’t technology decisions alone. They’re business decisions that require executive leadership and cross-functional collaboration.
The conversation needs to evolve from:
“Which AI tool should we buy?”
to
“How do we govern AI in a way that enables innovation while protecting our business?”
AI may be implemented through technology, but it’s governed through leadership.
Where Executive Teams Should Start
The good news is you don’t need a comprehensive AI governance program before taking action. The most successful organizations I’ve worked with start by answering three foundational questions.
1. Understand Where AI Is Already Being Used
Start by asking every department leader one simple question:
“Where are your teams already using AI today?”
You can’t govern what you can’t see. The answers may surprise you and will provide a clearer picture of how AI is already being used across your organization.
2. Establish Clear Guardrails
Employees shouldn’t have to guess what information is appropriate to enter into a public AI platform. Clearly define what data should never be shared, including personally identifiable information (PII), customer information, financial records, confidential business data, and HR information. Then provide practical guidance on approved AI tools and acceptable use.
Good governance shouldn’t discourage innovation. It should make responsible innovation easier.
3. Assign Ownership
Someone needs to be accountable for AI governance.
That doesn’t necessarily mean IT owns every decision.
It does mean leadership should clearly define who is responsible for developing policies, coordinating AI initiatives, managing risk, and ensuring governance evolves alongside the technology.
Leadership Alignment Matters More Than Technology
Through years of helping organizations navigate technology, cybersecurity, and compliance initiatives, I’ve learned that the technical implementation is rarely the hardest part.
Leadership alignment almost always is.
Every policy, every control, and every governance decision has the potential to change how an organization operates. Those decisions require executive buy-in, recurring conversations, and a willingness to adapt as AI capabilities continue to evolve.
Governance isn’t something you implement over a weekend.
It’s something you build over time.
Organizations don’t need perfect answers before they begin. They simply need to acknowledge that AI is already changing how work gets done and that leadership has a responsibility to provide direction before innovation outpaces governance.
Your Next Leadership Meeting
Whether your organization has an AI strategy or not, your employees have likely already started building one.
At your next executive leadership meeting, ask one question:
“Can we confidently identify where AI is being used across our organization, what company data is being shared, and who is responsible for governing it?”
If the answer is no, don’t panic. You’re not behind. You’re simply at the point where governance needs to catch up with innovation.
The organizations that establish thoughtful AI governance today won’t slow innovation. They’ll be in the best position to accelerate it responsibly tomorrow.
Because AI is no longer just an IT initiative.
It’s a leadership conversation.
Continue the Conversation
AI governance doesn’t have to be overwhelming, but it does require leadership, visibility, and a thoughtful plan.
Whether you’re evaluating AI policies, establishing governance, or simply trying to understand how AI is already being used across your business, i-Tech Support can help. We work with executive teams to assess AI readiness, identify governance gaps, and develop practical strategies that balance innovation with security and compliance.
If your organization is ready to develop an AI governance strategy or simply wants to better understand where AI is already being used, we’d love to help.



