90 Days to Responsible AI Governance

A Leadership playbook for building accountable AI systems

Book description

Elevator pitch: How to lead responsibly in the age of AI.

Reader promise: This book helps leaders translate Responsible AI principles into business processes, manage organisational resistance, and build governance that supports trust, performance, and accountability.

Premise: A newly appointed Head of Responsible AI has 90 days to design a credible governance strategy inside an organisation already using AI across operations, HR, marketing, and customer services.

Approach: Each chapter mixes real cases, templates, and reflective prompts to move readers from awareness to action.

The organisation believes it has AI under control. The board believes risks are being managed. The reality is more complicated: fragmented ownership, hidden risks, vendor dependencies, accountability gaps, and competing organisational priorities.

This is a narrative-driven leadership challenge. The story is fictional, the risks are realistic, and the tools are practical. The reader follows the protagonist through three months of investigation, diagnosis, and governance design.

The 90-Day Challenge

Days 1–30 · Taking Stock

Objective: understand what is actually happening before trying to govern it.

Days 31–60 · Diagnosing

Objective: identify where risk, accountability, and governance failures emerge.

Days 61–90 · Designing

Objective: build a credible governance strategy leadership can support.

Filter by tag:
All Fundamentals Governance Risk Frameworks Workshop Accountability Board Vendor Monitoring

Section I · Month 1: Taking Stock

Theme: You cannot govern what you cannot name. This section helps the new Responsible AI lead understand the terrain before trying to change it.

Chapter 1 · Day 1: The Illusion of Control

Fragmented ownership, compliance theatre, board reassurance vs operational reality.

Outline

fundamentalsgovernancepolitical mapping

The protagonist enters an organisation that claims it already has AI under control, but quickly sees ambiguity, fragmentation, and informal power structures.

Chapter 2 · Speaking the Language of AI

Strategic AI literacy for leaders.

Outline

fundamentalsAI literacygovernance

AI vs automation
Model vs system vs workflow
Provider vs deployer responsibility
Generative AI implications

Chapter 3 · Why Responsible AI Is Hard

Why Responsible AI often fails between principles and operations.

Outline

governanceframeworksimplementation

Core realities: principles vs operationalisation, governance vs documentation, legacy systems, framework overload, and ethics statements without structural change.

Chapter 4 · Taking Stock: The Listening Tour

Interviews and workshops to map AI use across the organisation.

Feature

workshopinventorylistening tour

Tool 1: AI System Mapping Workshop

Tool 2: Executive Vocabulary Reset

Tool 3: Framework Orientation Map

Tools in this section

These practical assets support the Month 1 work of mapping the AI landscape, clarifying vocabulary, and creating a shared view of the governance terrain.

Tool 1 · AI System Mapping Workshop Identifies AI-enabled systems, owners, automated decision points, and vendor dependencies.

Tool 2 · Executive Vocabulary Reset Clarifies the terms leaders need before making governance decisions, including AI versus automation, provider versus deployer, and model versus system.

Tool 3 · Framework Orientation Map Positions NIST AI RMF, EU AI Act, ISO 42001, and OECD principles so leaders can avoid framework overload.

Section II · Month 2: Diagnosing AI Challenges

Theme: Governance fails where accountability is unclear. This section moves from general awareness to diagnosis, risk mapping, and structural gaps.

Chapter 5 · Where Risk Actually Lives

Shadow AI, vendor black boxes, weak monitoring, operational over-reliance.

Outline

riskshadow AIvendor

This chapter shows that risk is usually embedded in workflows, procurement, monitoring gaps, and over-reliance, not only in the model itself.

Chapter 6 · The Accountability Gap

“If something goes wrong, who signs their name to it?”

Outline

accountabilityoversightgovernance

Themes include diffused responsibility, human-in-the-loop myths, escalation confusion, and decision authority gaps.

Chapter 7 · Governance Illusions

Policy does not equal governance. A registry does not equal oversight.

Outline

governanceriskpolicy

Exposes common substitutions: policy ≠ governance, model registry ≠ oversight, ethics statement ≠ accountability, compliance ≠ safety.

Tool 4: Accountability Mapping Session

Tool 5: Risk Tiering Workshop

Chapter 8 · From Principles to Practice

Translating Responsible AI values into business processes.

Bridge

frameworksworkshopvalues to process

Translation model: Value → Decision Point → Process Control.

Tool 6: Values-to-Process Workshop

Tool 7: Values-to-Process Matrix

Tools in this section

These tools help the reader move from awareness to diagnosis by mapping accountability, classifying risk, and translating Responsible AI values into process controls.

Tool 4 · Accountability Mapping Session Maps who is accountable, responsible, consulted, and informed across procurement, deployment, monitoring, and incident escalation.

Tool 5 · Risk Tiering Workshop Creates a simple internal classification model using dimensions such as human impact, financial impact, reputational risk, and automation depth.

Tool 6 · Values-to-Process Workshop Turns declared Responsible AI values into concrete process changes with the right business, legal, risk, and product stakeholders.

Tool 7 · Values-to-Process Matrix Connects values, affected processes, concrete changes, and owners, for example fairness to bias testing before go-live.

Section III · Month 3: Designing the Governance Structure

Theme: Responsible AI must be structural. This section turns diagnosis into governance design, controls, monitoring, and board-level strategy.

Chapter 9 · Designing the Governance Architecture

Governance bodies, reporting cadence, escalation pathways, review thresholds.

Outline

governancearchitectureboard

Tool 8: Responsible AI Governance Blueprint

Chapter 10 · Embedding Practical Controls

System reviews, vendor due diligence, sign-off, monitoring, exit criteria.

Outline

controlsvendorframeworks

Tool 9: Responsible AI System Review Template

Tool 10: Vendor Due Diligence Framework

Chapter 11 · Sustaining Responsible AI

Lifecycle governance, automation sprawl prevention, regulatory evolution, resilience.

Outline

monitoringlifecyclerisk

Tool 11: Post-Deployment Monitoring Dashboard

Chapter 12 · Day 90: Presenting to the Board

Governance strategy, prioritised risk roadmap, accountability map, monitoring structure.

Finale

boardroadmapaccountability

The protagonist presents the governance structure and a practical 12-month implementation plan. The book ends with a 90-day roadmap summary.

Tools in this section

These tools support the final month of the 90-day challenge by turning diagnosis into a governance structure, review process, vendor controls, and monitoring model.

Tool 8 · Responsible AI Governance Blueprint Defines governance layers, roles, responsibilities, reporting cadence, and escalation pathways.

Tool 9 · Responsible AI System Review Template Reviews problem definition, impact, accountability, monitoring, oversight, and exit criteria before deployment or major system change.

Tool 10 · Vendor Due Diligence Framework Structures questions on training data, bias testing, explainability, monitoring, audit rights, and contractual governance requirements.

Tool 11 · Post-Deployment Monitoring Dashboard Tracks drift, incidents, complaints, bias testing, review cadence, and ownership after deployment.

Tools & Templates

This author view lists the practical assets that make the book more than a narrative: workshops, matrices, review templates, governance blueprints, and monitoring tools.

Each tool can be expanded. Use this tab to track whether the manuscript has introduced, explained, and applied each tool in the relevant chapter.

Tool 1 · AI System Mapping Workshop

Appears in Chapter 4. Identifies AI-enabled systems, owners, automated decision points, and vendor dependencies.

Month 1

Participants: IT, Data Science, Procurement, Legal, Risk, Operations lead, and frontline user. Output: AI inventory and automated decision-point map.

Tool 2 · Executive Vocabulary Reset

Appears in Chapter 4. Clarifies the terms leaders need before making governance decisions.

Month 1

Key concepts: AI vs automation, provider vs deployer, model vs system, high vs low risk.

Tool 3 · Framework Orientation Map

Appears in Chapter 4. Positions NIST AI RMF, EU AI Act, ISO 42001, and OECD principles.

Month 1

Purpose: prevent framework overload by clarifying what each framework provides and how to use it.

Tool 4 · Accountability Mapping Session

Appears in Chapter 7. Maps who is accountable, responsible, consulted, and informed.

Month 2

Covers procurement, deployment, monitoring, and incident escalation.

Tool 5 · Risk Tiering Workshop

Appears in Chapter 7. Creates a simple internal classification model.

Month 2

Risk dimensions: human impact, financial impact, reputational risk, and automation depth.

Tool 6 · Values-to-Process Workshop

Appears in Chapter 8. Turns declared Responsible AI values into process changes.

Month 2

Participants: COO, Legal, Risk, Procurement, and Product.

Tool 7 · Values-to-Process Matrix

Appears in Chapter 8. Connects values, affected processes, concrete changes, and owners.

Month 2

Examples: fairness → model validation → bias testing before go-live; accountability → procurement → executive sign-off.

Tool 8 · Responsible AI Governance Blueprint

Appears in Chapter 9. Defines governance layers, roles, and responsibilities.

Month 3

Layers: board, executive, risk committee, and operational teams.

Tool 9 · Responsible AI System Review Template

Appears in Chapter 10. Reviews problem definition, impact, accountability, monitoring, oversight, and exit criteria.

Month 3

Designed as a practical checkpoint before deployment or major system change.

Tool 10 · Vendor Due Diligence Framework

Appears in Chapter 10. Structures questions on training data, bias testing, explainability, monitoring, and audit rights.

Month 3

Designed to expose vendor opacity and clarify contractual governance requirements.

Tool 11 · Post-Deployment Monitoring Dashboard

Appears in Chapter 11. Tracks drift, incidents, complaints, and bias testing review cadence.

Month 3

Example owners: Data Team, Risk, Operations, and Compliance.