Something shifted in India’s boardrooms over the past 12 months. I have sat across enough tables - in banking, healthcare, telecom and financial services - to know when a conversation changes register. And it has changed. Decisively.
Not long ago, every board discussion around AI opened with the same cautious questions: Are we ready? Should we be moving faster? The language of organisations was watching a wave from a safe distance.
That language has disappeared.
The boards I advise today ask something entirely different. What is our AI roadmap, quarter by quarter? Who owns accountability when a system fails - or discriminates - or leaks data? How do we measure outcomes, not just activity? A recent front-page report in a leading national financial publication confirmed what I see across my advisory work: Indian companies are moving from AI adoption as a concept to demanding immediate, time-bound roadmaps. Boards are inducting technology-savvy independent directors. Dedicated AI adoption units are being established. A senior partner at a global professional services firm described AI disruption as no longer a future risk topic - but a core strategic and governance agenda item today.
This is not a trend. It is a reset. And the boards demanding roadmaps deserve more than a think-piece. They deserve the actual roadmap.
Why the Old Playbook Is Already Obsolete
Most organisations invested in AI through a familiar sequence: identify a use case, run a proof of concept, demonstrate ROI and scale. Sensible. Risk-managed. And now dangerously inadequate.
Generative AI did not arrive as an incremental improvement. It arrived as a category shift. Foundation models capable of reasoning, generating and soon acting autonomously have fully exposed the limits of the PoC-and-scale model. The gap between what AI can do and what most organisations are deploying has widened faster than any governance framework has kept pace.
More critically, boards have woken up to the fact that many technology teams have been slow to acknowledge: AI is no longer purely a technology decision. When an AI system makes a biased lending recommendation, that is a regulatory event. When an agentic AI executes a transaction without human review, that is a security event. When an AI-generated document reaches a regulator with a factual error, that is a compliance event. None of these can be managed by a technology team alone. They require board-level visibility, accountability structures and clear ownership - from the outset, not after something goes wrong.
What Board-Level AI Governance Actually Requires
The phrase risks becoming corporate language that means everything in a presentation and nothing in a meeting. Let me be specific, because I have seen what happens when it is absent.
It begins with literacy. A board cannot govern what it does not understand. Directors do not need to interpret a loss function. They do need to understand what AI hallucination means in a regulated industry. They need to understand AI bias as a concrete regulatory risk, not an abstract ethical concern. Without this, every AI governance discussion is either a rubber-stamping exercise or a debate between people who do not share a common language.
The induction of technology-savvy independent directors is therefore not cosmetic. It is structural. It changes the quality of every question asked. Beyond composition, governance requires structure - a dedicated AI governance committee that meets regularly, reviews material deployments before they go live and owns the organisation's AI ethics policy as an operational document, not a public-relations artefact.
And governance requires measurement. The failure mode I see most often: a gradual slide from tracking impact to tracking activity. Models deployed. Use cases in the pipeline. Employees trained. These metrics are easy to produce and, as evidence of transformation, nearly useless. The right metrics - revenue generated by AI-assisted processes, fraud prevented, risk identified earlier, customer retention improved - are harder to define and harder to present. Boards must insist on them and reject the substitutes. Activity without outcomes is not transformation. It is theatre.
The Quarterly Roadmap Boards Are Demanding
Boards no longer accept phase-gate roadmaps that say, "Explore, Pilot, Scale." They want to know which specific capabilities will be live, in which business units, at what points in time and how they will be measured against what outcomes. Based on delivering transformation at scale across India’s most complex financial institutions, this is the architecture I recommend.
Data governance must precede AI deployment without exception. Audit data assets, establish ownership at a senior level and ensure pipelines are clean and governed. AI built on ungoverned data produces ungovernable outcomes.
Three to five high-impact use cases - selected on data availability, regulatory clarity and business priority - deployed with human oversight built in from day one, not retrofitted later. In banking, AI-assisted credit assessment with mandatory human review above defined thresholds. In healthcare, diagnostic support requires a clinician's sign-off. The specifics matter less than the principle: deploy with guardrails, measure rigorously and resist the pressure to scale before you understand what you have.
AI systems degrade. Models trained on last year's data behave differently when the world changes. Bias invisible in a pilot becomes visible at scale. This quarter is explicitly reserved for reviewing deployments against stated outcomes, identifying failure modes and making necessary adjustments. Skipping it is consistently where value is lost.
Active monitoring, ongoing model governance and accountability structures that follow the deployment wherever it goes in the organisation.
The Agentic AI Horizon Cannot Wait
Just as organisations are getting to grips with generative AI, the next wave is already here. Agentic AI - systems that do not just generate content but take actions, execute workflows and operate with significant autonomy - is entering enterprise environments faster than most boards have registered.
A generative AI system that produces a document can be reviewed. An agentic system that approves a transaction or provisions access operates at machine speed. The governance frameworks being built for language models are necessary but insufficient. Boards that are only now establishing AI governance will need to design those frameworks with extensibility - built not just for today's AI, but for what arrives in two years.
Three Actions. Ninety Days. No Excuses
First: commission an honest AI readiness assessment. Not a management presentation - an independent evaluation of where the organisation actually stands on data governance, AI capability, regulatory alignment and board literacy. If the output is comfortable, it is probably not honest.
Second: establish a formal AI governance committee at the board level with a real remit, regular cadence and direct access to independent expertise. Not a subcommittee in name only.
Third: invest in board-level AI literacy calibrated to your specific industry and risk profile. The risks in banking AI differ from those in healthcare AI. Directors need education relevant to the decisions they will actually be making.
The organisations that will lead the AI era are not those with the largest technology budgets. They are those that build governance infrastructure early - before regulators require it, before a competitor's failure makes the risk tangible, before the gap has widened beyond recovery.
After thirty years at the intersection of technology and institutional leadership, I am convinced of one thing: the difference between transformation that succeeds and transformation that fails is never the technology. It is always the governance.
The boards demanding roadmaps are asking exactly the right question. The answer is not a slide deck. It is a decision to lead.
Disclaimer: The views expressed in this article are those of the author and do not necessarily reflect the views of the publication. |
