All Volumes/

Corporate Operating Model

Complete enterprise operating model with governance structure, steering committees, board oversight, organisational charts, and reporting lines.

Governance Structure

The Corporate Operating Model establishes a multi-layered governance structure for AI oversight, balancing strategic direction, operational execution, and independent assurance. This structure ensures AI initiatives align with corporate strategy, regulatory requirements, and ethical commitments.

Three Lines of Defence Model

LineFunctionKey ActivitiesReporting
First LineBusiness & OperationsOwn AI risks, implement controls, daily complianceBusiness Unit Leader → Executive
Second LineRisk, Compliance, LegalSet standards, monitor compliance, adviseCRO / Chief Legal Officer → Board Risk Committee
Third LineInternal AuditIndependent assurance, control effectiveness testingHead of Internal Audit → Audit Committee

AI Governance Hierarchy

  1. Board of Directors — Ultimate accountability for AI strategy and risk appetite. Receives quarterly AI governance reports.
  2. Board Risk Committee — Oversees AI risk framework, approves risk appetite statements, reviews major incidents.
  3. AI Ethics Board — Independent body reviewing high-risk AI use cases, bias assessments, and ethical appeals.
  4. AI Steering Committee — Executive body chaired by CTO/CIO with cross-functional membership. Meets fortnightly.
  5. AI Centre of Excellence — Central team providing standards, tooling, training, and expert support to product teams.
  6. Product AI Teams — Embedded teams responsible for AI system development, operation, and compliance in their domains.

Independence of AI Ethics Board

The AI Ethics Board must include at least 50% external or independent members with no reporting line to business unit leadership. Board members serve staggered 2-year terms.

AI Steering Committee

The AI Steering Committee is the primary executive body for AI governance, responsible for directing AI strategy, approving high-risk projects, resolving cross-functional issues, and monitoring the AI governance programme.

Committee Composition

RoleResponsibilityAttendance
ChairCTO or CIOMandatory
Permanent MembersCRO, Chief Legal Officer, CISO, Chief Data Officer, Head of AI EthicsMandatory
Rotating MembersProduct VP, HR Director, Procurement Lead, Customer Success LeadAs required by agenda
SecretaryAI Governance ManagerMandatory (non-voting)

Decision Authority Matrix

Decision TypeAuthorityEscalation Path
AI Strategy & BudgetAI Steering CommitteeBoard of Directors
High-Risk AI Project ApprovalAI Steering Committee (unanimous)Board Risk Committee
Medium-Risk AI Project ApprovalAI Steering Committee (majority)AI Steering Committee (unanimous)
Low-Risk AI Project ApprovalAI Centre of Excellence LeadAI Steering Committee
AI Policy ChangesAI Steering CommitteeBoard Risk Committee
Ethics AppealsAI Ethics BoardBoard of Directors

Organisational Structure & Reporting Lines

The following organisational structure depicts the formal reporting lines, dotted-line relationships, and functional alignment for AI governance across the enterprise.

Executive Reporting Structure

  • CEO → Board of Directors (quarterly)
  • CTO/CIO → CEO (monthly operational, quarterly strategic)
  • CRO → CEO (monthly risk dashboard)
  • Chief Legal Officer → CEO (as required, quarterly compliance summary)
  • CISO → CTO/CIO (weekly security operations, monthly strategic)
  • Chief Data Officer → CTO/CIO (monthly data governance report)
  • Head of Internal Audit → Audit Committee (quarterly assurance report)

AI Centre of Excellence Structure

FunctionLead RoleTeam SizeKey Deliverables
AI GovernanceAI Governance Manager2-3Policy, standards, compliance monitoring, reporting
ML EngineeringPrincipal ML Engineer4-8Model development, MLOps, validation frameworks
AI SecurityAI Security Lead2-4Threat modelling, adversarial testing, security reviews
AI Ethics & BiasAI Ethics Officer1-2Ethics assessments, bias audits, training programmes
AI OperationsAI Operations Manager3-5Monitoring, incident response, capacity planning
Data EngineeringPrincipal Data Engineer3-6Data pipelines, quality frameworks, lineage tools

Scalability Guidance

For organisations with fewer than 500 employees, the AI Centre of Excellence may be consolidated into a 3-person team (Governance, Engineering, Operations). For enterprises exceeding 10,000 employees, each business unit should establish a dedicated AI liaison reporting to the central CoE.