The Signal

AI governance is the fastest-moving evaluation category in the DoGood network right now. Over the last 30 days, 1 in 10 IT leader priority submissions specifically targets AI governance, visibility, or control. That is nearly double the Q1 average of 5.9%.

Zoom out further: nearly 1 in 4 priorities now mention AI in some capacity. But the composition has shifted. In Q1, most AI submissions focused on adoption, tooling, and integration. In the last 30 days, the center of gravity moved to governance: who approved it, what data it touches, and whether anyone can see it running.

From the Network

"We have a project in plan, with budget allocated, to evaluate, select, and implement an AI governance and security solution next fiscal year."

— VP and CISO, Business Services

"Currently we have no structured or formalized approach. Discovering a lot of AI use that's not known or managed, curious what options and solutions exist for better managing this and enforcing policy."

— VP of IT and Security, Finance

"AI Governance is top of mind for our entire body of holdings. We are testing multiple solutions right now, but still in the stage of seeing what's out there to understand what capabilities to look for."

— Enterprise Security Program Manager, Finance

Budget allocated. No formal approach. Still evaluating. Three leaders, three different stages of the same realization: AI is already running, and governance is behind.

The Context

The Hacker News reported this week that shadow AI is now the most common entry point for enterprise data leakage. The numbers confirm it: employees are using over 3,400 AI apps at work, with usage quadrupling in the last 12 months. A Dark Reading survey found only 34% of enterprises have AI-specific security controls in place, even as AI agent adoption accelerates.

Gartner projects AI governance platform spending will reach $492 million this year and surpass $1 billion by 2030. Organizations that deploy these platforms are 3.4x more likely to achieve effective AI governance than those relying on manual processes.

Bottom Line: The market is building what the network already knows it needs. The gap between AI deployment speed and governance readiness is where the risk concentrates.

What to Do About It

Run an AI inventory this week. Not a survey. A technical discovery scan of what AI tools, agents, and copilots are active in your environment, who approved them, and what data they access. If you cannot produce that list by Friday, that is your next funded project.

The signal is only as strong as the network. Be part of it

The CXO Brief is powered by the DoGood network — 5,000+ IT leaders sharing what they're actually working on.

Know a CIO who needs this? Forward it — they can subscribe here.

Keep Reading

© 2026 The CXO Brief.
Report abusePrivacy policyTerms of use
beehiivPowered by beehiiv