RESEARCH

Original frameworks and analysis on enterprise AI governance.

Most AI governance programs in 2026 are moving faster than the organizational design work that gives them meaning. An agent can be fully configured, fully logged, and fully compliant, and still have no written record showing who authorized it, what it was supposed to accomplish, or who is accountable when it produces a harmful output. This research addresses that gap directly. Every framework and every brief here is built from named primary sources. No product agenda. No consulting pitch.

Attribution

Sougata Roy | sougataroy.com | Views are my own

WHITE PAPERS

1 paper

Long-form research for governance decisions

White Paper

Who Owns the Agent?

The Organizational Accountability Architecture That Existing Governance Frameworks Require But Do Not Implement at the Agent Level

A framework white paper for CISOs, CTOs, security architects, and board members. The Intent Architecture Stack gives the accountability requirement in NIST AI RMF, EU AI Act, and the CSA Agentic Profile its organizational form at the individual agent level, before deployment, not after an incident.

v1.0 · May 2026 · 10 sections · Full diagnostic included

Read the paper Download PDF

Frameworks

Eight operational frameworks

Eight operational frameworks that implement the concepts explored in the white paper. Each one produces a governance artifact an examiner can inspect.

Explore frameworks

The Governance Gap - weekly newsletter

Research delivered every Tuesday at 7am.

Enterprise AI governance on the Microsoft stack. Built from primary sources. Updated as the platform evolves.

Read the newsletter