<?xml version="1.0" encoding="UTF-8"?><rss xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:atom="http://www.w3.org/2005/Atom" version="2.0" xmlns:itunes="http://www.itunes.com/dtds/podcast-1.0.dtd" xmlns:googleplay="http://www.google.com/schemas/play-podcasts/1.0"><channel><title><![CDATA[The Second Opinion]]></title><description><![CDATA[A second opinion on AI, sovereignty, and IT decisions — for leaders in regulated organizations. Written by a CTO with four decades in German federal law enforcement.]]></description><link>https://substack.lezgus.de</link><image><url>https://substackcdn.com/image/fetch/$s_!r5n_!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd6937342-83a4-4471-8c83-7c8942b5d77f_512x512.png</url><title>The Second Opinion</title><link>https://substack.lezgus.de</link></image><generator>Substack</generator><lastBuildDate>Sun, 05 Jul 2026 13:53:32 GMT</lastBuildDate><atom:link href="https://substack.lezgus.de/feed" rel="self" type="application/rss+xml"/><copyright><![CDATA[Andreas Lezgus]]></copyright><language><![CDATA[en]]></language><webMaster><![CDATA[info@lezgus.de]]></webMaster><itunes:owner><itunes:email><![CDATA[info@lezgus.de]]></itunes:email><itunes:name><![CDATA[Andreas Lezgus]]></itunes:name></itunes:owner><itunes:author><![CDATA[Andreas Lezgus]]></itunes:author><googleplay:owner><![CDATA[info@lezgus.de]]></googleplay:owner><googleplay:email><![CDATA[info@lezgus.de]]></googleplay:email><googleplay:author><![CDATA[Andreas Lezgus]]></googleplay:author><itunes:block><![CDATA[Yes]]></itunes:block><item><title><![CDATA[The Skipped Floor: Why Your Workforce Gets AI Training and Your Leadership Doesn’t]]></title><description><![CDATA[Left alone with the harder half of AI-Training for Leadership]]></description><link>https://substack.lezgus.de/p/the-skipped-floor-why-your-workforce</link><guid isPermaLink="false">https://substack.lezgus.de/p/the-skipped-floor-why-your-workforce</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Sun, 28 Jun 2026 10:32:22 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!UySD!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>The organization rolls out AI training. The workforce shows up. The completion numbers look good. And the most expensive competence gap in the building sits untouched, one floor higher. Why do we train everyone except the level that decides on risk, money, and people?</p><p>A working knowledge of AI is not optional for those who carry it. Roughly one in five executives is considered genuinely AI savvy. A large majority privately admit they overstate how much they understand. Nobody says it out loud, because a knowledge gap at the top reads like an admission of weakness. That silence is the real finding. Not that the workforce knows too little. That leadership was left alone with the harder half.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!UySD!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!UySD!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 424w, https://substackcdn.com/image/fetch/$s_!UySD!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 848w, https://substackcdn.com/image/fetch/$s_!UySD!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!UySD!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!UySD!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg" width="902" height="670" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:670,&quot;width&quot;:902,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:200168,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/203944173?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7a0a02bd-43dd-41af-9e40-7535921c7d0c_1200x670.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!UySD!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 424w, https://substackcdn.com/image/fetch/$s_!UySD!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 848w, https://substackcdn.com/image/fetch/$s_!UySD!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!UySD!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9c7ef772-82b7-4ba4-bfb7-019e1abea390_902x670.jpeg 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><h3>The comforting reflex</h3><p>There is a reflex that sounds right and points the wrong way. It says: leaders must model AI, so they should use the tools themselves. Half true. Personal tool use is pleasant, but it is not the competence that matters.</p><p>An executive does not need to train a model. An executive needs to judge whether a project is sound. That is a different class of knowledge. Operating a chat assistant fluently tells you nothing about whether a high-risk system is even permissible under the law, what it costs to run over five years, or how you would recognize that the rollout succeeded. The operation is visible. The judgment is what counts.</p><p>Why does standard training miss the top? Because it is built for the broad base. Paths to senior leadership never required data or AI knowledge. People who rose needed budgets, law, people, negotiation. AI was not a prerequisite. So today the employee curriculum gets passed upward, the same basics, the same click-throughs. It misses leadership because leadership decides elsewhere. The workforce applies AI. Leadership answers for what happens with it at scale. Those are not the same learning objective.</p><p>There is also a quiet incentive to leave the gap open. Training for the base produces attendance rates, and rates can be reported. An honest format for leaders produces something else first: the realization of how much the room does not yet know. Nobody enjoys reporting that upward. So the comfortable version wins, and the uncomfortable, more important one waits for later. Later rarely comes.</p><h3>The harder half</h3><p>What should leadership be able to do instead? The judgment splits across four domains, and none of them can be delegated to IT.</p><ol><li><p><strong>Protect</strong>. Governance, law, ethics. Which regulatory frameworks apply, what triggers a high-risk classification, where the line runs between permitted and forbidden. In a regulated or public context this is not a bonus. Human final say is non-negotiable, and anyone who cannot judge that signs blind.</p></li><li><p><strong>Prioritize</strong>. Value, economics, vendor choice. How do you measure whether an AI rollout succeeded? Not in minutes saved, but in an outcome you can tie to the goals of the organization. And what does the whole thing cost over time, not in the pilot year? Miss the full cost structure and you mistake a cheap entry for a cheap solution.</p></li><li><p><strong>Prepare</strong>. Workforce, roles, human-AI collaboration. Which role changes, which stays, who carries which context knowledge from here on. The most thankless task, because it is never finished.</p></li><li><p><strong>Position</strong>. Strategy, differentiation, business model. Where AI shifts the rules, and what that means for you.</p></li></ol><p>Serve only one domain and you make half decisions. The dangerous part: half decisions feel like whole ones, until someone demands the missing half.</p><h3>A concrete case</h3><p>A large organization in a heavily regulated environment took AI training seriously. It rolled out e-learning: foundational AI knowledge for everyone, plus specific courses on using individual tools. Done well. Well received. The participation figures were presentable.</p><p>And still the decisive part was missing. For the leadership level there were no targeted measures on the topics only leaders can own. AI governance. The requirements of European AI law for high-risk systems. Criteria for when an AI rollout counts as successful. The long-term cost trajectory and the question of where, given good domain context, costs can actually be reduced. And policy as code, the practice of turning rules into something a machine enforces, rather than a PDF nobody reads.</p><p>The pattern is uncomfortably symmetric. The workforce was enabled to use AI. Leadership was left alone with the question of whether and how to be accountable for it. The easy half was trained. The hard half was skipped. Not out of neglect, but because the hard half is not a finished module you can buy and deploy.</p><h3>Sequence beats speed</h3><p>There is a second mistake, and it tempts more than the first. It is called skipping ahead. An organization declares itself AI-first, and leadership wants to start with the big themes right away. Agentic systems, business-model reinvention, the frontier. Ambitious. Usually premature. Because a stated ambition is not the actual maturity of your leadership. One describes where you want to be. The other, where you stand.</p><p>A sensible order has three stages, and it does not shortcut. First the non-negotiable minimum: recognize risk, use the tools as a spark for curiosity, nothing more. Then the balancing act between control and value: from risk-only oversight to structured experiments that weigh effort against benefit. Only then the frontier, with advanced concepts and decisions under real uncertainty. Jump to stage three without an honest starting point, and you overwhelm leadership and call it incompetence, when only the sequence was wrong.</p><p>So the opening question is not how far do we want to go. It is: where do we actually stand? And the answer comes not from the mission statement but from a sober look at your own room. Is AI discussed precisely, or as a catch-all? Are risks named or smiled away? Can anyone connect a use case to a business outcome?</p><p>You can train the workforce as thoroughly as you like. It does not replace the judgment at the top. The easy half can be bought. The hard half you have to learn yourself.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><div><hr></div><p>Read the article in german language:  <a href="https://www.lezgus.de/ki-kompetenz-der-fuhrung-warum-die-belegschaft-geschult-wird-und-der-vorstand-nicht/">https://www.lezgus.de/ki-kompetenz-der-fuhrung-warum-die-belegschaft-geschult-wird-und-der-vorstand-nicht/</a></p><p></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.lezgus.de&quot;,&quot;text&quot;:&quot;Die Zweite Meinung (german blog)&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.lezgus.de"><span>Die Zweite Meinung (german blog)</span></a></p><p></p>]]></content:encoded></item><item><title><![CDATA[Agentic AI: The flight to the wrong Portland]]></title><description><![CDATA[Autonomy Is a Property of Context, Not of the Model]]></description><link>https://substack.lezgus.de/p/agentic-ai-the-flight-to-the-wrong</link><guid isPermaLink="false">https://substack.lezgus.de/p/agentic-ai-the-flight-to-the-wrong</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Sat, 20 Jun 2026 11:28:29 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!GY4b!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Everyone in your peer group is buying autonomous AI agents this year. The demos are good. The slides are confident. The bottleneck is none of the things on those slides.</p><p>It is not the model. It never was.</p><p>The bottleneck is the unglamorous work of taking what your organization knows and writing it down in a form a machine can read. Most of that knowledge has never been written down at all. That is the whole problem, and almost nobody has budgeted for it.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><h3>The flight to the wrong Portland</h3><p>Picture the canonical demo. You tell the agent: &#8220;Book my flight to Portland for the client meeting tomorrow.&#8221; A chatbot would ask you a question. An autonomous agent acts.</p><p>So it books Portland, Maine. Your client sits in Portland, Oregon. The agent did not fail because the model was weak. It failed because it never knew the client is in Oregon, which travel vendors are approved, or where you are flying from. None of that lives in the model. It lives in your organization.</p><p>With a chatbot, a human catches the mistake before it costs anything. With an autonomous agent, the mistake is executed, paid for, and waiting at the wrong gate. The model was confident. It was confidently wrong.</p><p>A language model is stateless by design. It knows language. It does not know your workflows, your approval chains, or your operational reality. That gap is not a model problem you can buy your way out of. It is a context problem you have to build your way out of.</p><p>This is the part the market gets backwards. The industry sells autonomy as a property of the model: better LLM, more autonomy. The honest version is the opposite. A weaker model with clean context beats the best model with none. Autonomy is earned through context. It is not shipped in a release.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!GY4b!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!GY4b!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 424w, https://substackcdn.com/image/fetch/$s_!GY4b!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 848w, https://substackcdn.com/image/fetch/$s_!GY4b!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!GY4b!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!GY4b!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg" width="1029" height="670" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:670,&quot;width&quot;:1029,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:184300,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/202830382?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8fe41da4-ce82-49e5-8221-b610c18a237c_1200x670.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!GY4b!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 424w, https://substackcdn.com/image/fetch/$s_!GY4b!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 848w, https://substackcdn.com/image/fetch/$s_!GY4b!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!GY4b!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F8d215f58-0894-486d-b5d3-83a64c9c9eec_1029x670.jpeg 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h3>The dark matter problem</h3><p>Here is the uncomfortable part. The most valuable knowledge in your organization is not in any system. It is in people&#8217;s heads, in corridor conversations, in the unwritten rule that everyone follows and nobody documented.</p><p>Call it the dark matter of your organization. You cannot see it, but it holds everything together.</p><p>Turning that into machine-readable context is real work. Someone has to sit with your experts, watch how they actually decide, and translate undocumented judgment into something explicit. This is the work nobody wants to do, because it is slow, expensive, and impossible to delegate to a tool. It is also the work that decides whether autonomy is real or theatre.</p><p>And there is a problem underneath the problem. You are asking people to write down the very knowledge that makes them feel indispensable. Then you pretend this is a data exercise. It is not. It is the scar at the center of the whole effort, and treating it as a tooling question is how these projects quietly die.</p><p></p><h3>There is nothing off the shelf</h3><p>You cannot buy a finished context layer. The market is immature, the tools are fragmented, and the mature vendor product does not exist yet. Anyone who tells you otherwise is selling the slide, not the system.</p><p>For a large public-sector organization in Germany, in a heavily regulated environment, that turns out to be a feature. The codified knowledge stays in the building. It becomes a sovereign asset you own, not a dependency you rent. Digital sovereignty here is concrete: your context does not stop working because a vendor changed its terms, and your decision logic is not sitting on someone else&#8217;s roadmap.</p><p>I use international AI models extensively, for learning, prototyping, and strategic evaluation. For regulated data and operational casework, they are off the table. Knowing where to draw that line is the actual leadership skill, not a footnote to it.</p><p></p><h3>What I would do before the next pilot</h3><p>After four decades in regulated environments, I have watched enough automation projects fail at exactly this point to stop blaming the technology. Before you approve the next agent pilot, put the money into context, not models.</p><p>**Name the owners.** Every domain needs a named context owner plus one central curating function. Release through a defined four-eyes procedure, not ad hoc. Knowledge with no owner becomes a silo again.</p><p><strong>Fix the incentive. </strong>Frame codifying knowledge as a promotion, not a self-erasure. The person who writes down the context becomes the authority over the system, not its replacement. Tacit knowledge is never fully recoverable anyway. The human stays the final decision-maker. Say that out loud and mean it.</p><p><strong>Curate one source, not many copies.</strong> One concept, one governed definition, versioned, reviewed. Redundancy is how contradictions creep back in.</p><p><strong>Protect integrity like security code.</strong> Versioning, signatures, audit trails, role-based write access, four-eyes release. Context poisoning is real: feed an agent a false rule and it will execute it with full confidence. Validate dynamic inputs before the agent treats them as truth.</p><p><strong>Design for graceful failure</strong>. Where the codified context ends, the human takes over on purpose, not by accident.</p><p>The agents are coming, and they will do plenty of things better. They will do nothing better for an organization that has never written down what it actually knows. The model is not the hard part. The model was never the hard part.</p><p>What is the one piece of knowledge in your organization that lives entirely in one person&#8217;s head? Hit reply and tell me. I read every response.</p><p></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div><hr></div><p>Read the article in german language: <a href="https://www.lezgus.de/autonome-ki-agenten-warum-die-kontextlucke-teurer-wird-je-weniger-du-fragst/">https://www.lezgus.de/autonome-ki-agenten-warum-die-kontextlucke-teurer-wird-je-weniger-du-fragst/</a></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.lezgus.de&quot;,&quot;text&quot;:&quot;Die Zweite Meinung (german blog)&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.lezgus.de"><span>Die Zweite Meinung (german blog)</span></a></p><p></p>]]></content:encoded></item><item><title><![CDATA[Governance as Code or Not at All]]></title><description><![CDATA[Why more governance boards won't save you from autonomous agents.]]></description><link>https://substack.lezgus.de/p/governance-as-code-or-not-at-all</link><guid isPermaLink="false">https://substack.lezgus.de/p/governance-as-code-or-not-at-all</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Fri, 29 May 2026 05:29:25 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!By8h!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Governance documents, review boards, approval processes. Three instruments that have worked for decades. And three instruments that fail the moment an autonomous AI agent makes a decision in milliseconds.</p><p><strong>The question is no longer whether you need governance. The question is whether your governance is fast enough to still matter.</strong></p><p>Most of CIOs worldwide plan to deploy AI agents in production. The uncomfortable reality: most haven&#8217;t translated their governance rules into a format an autonomous agent can understand and follow. They&#8217;re planning autonomous systems while steering them with handbooks and quarterly reports.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!By8h!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!By8h!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 424w, https://substackcdn.com/image/fetch/$s_!By8h!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 848w, https://substackcdn.com/image/fetch/$s_!By8h!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!By8h!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!By8h!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg" width="1200" height="675" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/d54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:675,&quot;width&quot;:1200,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:244132,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/199622416?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!By8h!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 424w, https://substackcdn.com/image/fetch/$s_!By8h!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 848w, https://substackcdn.com/image/fetch/$s_!By8h!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!By8h!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd54e6863-13ba-46fb-b679-d401707a47c6_1200x675.jpeg 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h3>What happens when governance can&#8217;t keep up</h3><p>An autonomous agent processing data, issuing recommendations, or initiating transactions needs clear boundaries. Not as a PDF in a SharePoint folder. Not as a slide in a steering committee presentation. As version-controlled code that physically prevents an action outside the permitted scope.</p><p>I&#8217;ve spent years in a large, heavily regulated organization watching what happens when those boundaries don&#8217;t exist in machine-readable form. Review boards that meet four times a year routinely delay decisions by six months or longer. A deferral here, a supplementary review there, a referral to another committee the quarter after. While the board deliberates, the technology moves on. The organization stops steering. It reacts. At best. At worst, it doesn&#8217;t notice that autonomous systems are already making decisions no committee has ever seen.</p><p><strong>Policy-as-Code reverses this logic.</strong> Instead of discussing rules in meetings and approving them by resolution, they get deployed as machine-readable logic. <strong>Like software: with tests, with versioning, with automatic enforcement in real time.</strong></p><p>Concretely: a rule like &#8220;no personal data transferred to external interfaces without clearance&#8221; stops being a paragraph in a governance document. It becomes a constraint embedded in the agent&#8217;s code. The agent cannot cross that boundary because the code physically prevents it. Not because it read the policy. Because the policy is part of its architecture.</p><h3>The demographic dimension most organizations ignore</h3><p>In many organizations I&#8217;ve worked with, the most important business rules don&#8217;t exist in documents. They live in people&#8217;s heads. Passed along in hallway conversations, refined in informal discussions, explained over coffee. The colleague who has known for thirty years which data categories must never go to external systems has never written it down. She didn&#8217;t need to. She was always there.</p><p>In five years, she&#8217;ll be retired. None of that knowledge is machine-readable. None of it survives the generational transition unless someone captures it in a form an autonomous system can interpret. This isn&#8217;t an abstract risk. <strong>It&#8217;s a concrete knowledge loss already priced into the age structures of many organizations.</strong></p><h3>Three things you can do this week</h3><p><strong>Start with three rules, not thirty.</strong> Identify the three governance rules whose violation would cause the most damage. Access rights to critical data, budget limits for autonomous procurements, classification rules for sensitive information. Code them as machine-readable constraints. Three working rules matter more than three hundred documented ones.</p><p>Create the role of the <strong>governance engineer</strong>. Someone who writes governance rules as code, reviews them, deploys them into the agent environment. The experienced staff bring domain knowledge. The younger colleagues bring the technical implementation. Neither replaces the other.</p><p>Make the governance auditable. Every change to a governance rule gets versioned. Who changed what, when, and why? In regulated environments, this traceability isn&#8217;t a nice-to-have. It&#8217;s an obligation that coded rules make easier to fulfill than any document-based governance ever could.</p><p></p><p><strong>The biggest hurdle isn&#8217;t the technology. It&#8217;s the culture.</strong> Most governance teams see themselves as gatekeepers. Policy-as-Code demands the opposite: not &#8220;no,&#8221; but &#8220;yes, within these boundaries.&#8221; From preventer to enabler. That sounds like a nuance. In practice, it&#8217;s a paradigm shift that touches the self-image of entire departments.</p><p>I&#8217;ve caught myself underestimating that shift. The hard part isn&#8217;t writing the code. It never was.</p><p></p><p>If this resonates -- or if you&#8217;d push back on any of it -- I&#8217;d genuinely like to hear it. Hit reply.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div><hr></div><p>Read the article in german language: <a href="https://www.lezgus.de/ki-governance-als-code-warum-richtlinien-autonome-agenten-nicht-aufhalten/">https://www.lezgus.de/ki-governance-als-code-warum-richtlinien-autonome-agenten-nicht-aufhalten/</a></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.lezgus.de&quot;,&quot;text&quot;:&quot;Die Zweite Meinung (german blog)&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.lezgus.de"><span>Die Zweite Meinung (german blog)</span></a></p><p></p>]]></content:encoded></item><item><title><![CDATA[Sovereignty ends where your contract is silent]]></title><description><![CDATA[The contract clause nobody checks.]]></description><link>https://substack.lezgus.de/p/sovereignty-ends-where-your-contract</link><guid isPermaLink="false">https://substack.lezgus.de/p/sovereignty-ends-where-your-contract</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Sun, 24 May 2026 17:35:32 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!mdJS!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<h4>Your Contract Is Your Sovereignty Level</h4><p>Most organizations invest in sovereign infrastructure - then sign contracts that undermine it.</p><p>Contracts, jurisdictions, subcontractors, acquisitions. Four words that rarely appear in sovereignty debates - and yet they determine whether your organization can still act independently tomorrow. Everyone talks about sovereign cloud infrastructure. Almost nobody talks about the contracts that are supposed to protect it.</p><p>I&#8217;ve spent four decades in a national law enforcement agency. For most of that time, I believed sovereignty was primarily a technical question: Where are the servers? Who controls the encryption keys? Who has root access? These questions matter. But they&#8217;re not enough.</p><p>The real vulnerability sits in the fine print.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!mdJS!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!mdJS!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!mdJS!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!mdJS!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!mdJS!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!mdJS!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg" width="1200" height="628" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:628,&quot;width&quot;:1200,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:214232,&quot;alt&quot;:&quot;contract and sovereignty&quot;,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/199088236?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="contract and sovereignty" title="contract and sovereignty" srcset="https://substackcdn.com/image/fetch/$s_!mdJS!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!mdJS!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!mdJS!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!mdJS!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F6470ef9d-9293-46bb-a333-e54ed71226c3_1200x628.jpeg 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><h4>The problem nobody discusses</h4><p>The sovereignty debate focuses on data centers, open-source alternatives, and European cloud providers. That&#8217;s not wrong. But it&#8217;s incomplete.</p><p>Your technical infrastructure is only as sovereign as the contract governing it. In regulated environments, I see the same pattern repeatedly: organizations invest heavily in sovereign infrastructure and then sign contracts with no mechanism to verify data residency, no control over subcontractor changes, and no realistic exit path. The contract says &#8220;data stays in your Country.&#8221; Whether that&#8217;s true, nobody knows. Because nobody checks.</p><p>This problem has gained a new dimension. In the AI space, innovative startups are being acquired at breathtaking speed by other Country corporations. Your contract partner from yesterday belongs to a company operating under an entirely different legal framework tomorrow. And your contract? Has no clause for this scenario. Your data is there anyway.</p><p>This isn&#8217;t a future risk. It&#8217;s a present condition.</p><h4>Five levels of contractual sovereignty</h4><p>Most organizations believe their contracts protect them. An honest maturity model reveals where you actually stand.</p><p><strong>Level 1 - Implicit</strong>. Sovereignty is assumed but never contractually defined. Your provider stores data &#8220;somewhere in the geopolitical restriction.&#8221; You trust that. Until you can&#8217;t.</p><p><strong>Level 2 - Reactive.</strong> Standard clauses from provider boilerplate. Data residency appears somewhere on page 47 of the terms and conditions. No monitoring. Compliance is assumed until an incident proves otherwise. The difference from Level 1 is cosmetic.</p><p><strong>Level 3 - Defined.</strong> This is where real sovereignty begins. Custom clauses become part of the contract: data residency with specific locations, subcontractor transparency with approval requirements, exit mechanisms with defined timelines and data portability guarantees. Verification through periodic audits - manual, but systematic. The critical difference: someone actually checks whether the contract is being honored.</p><p><strong>Level 4 - Managed. </strong>Sovereignty controls are actively and continuously enforced. Dashboards show compliance status. Third-party risk assessments are integrated. Geopolitical risk evaluation is a standing agenda item in vendor reviews - not as a formality, but as an early warning system.</p><p><strong>Level 5 - Dynamic.</strong> Automated monitoring of all contractual sovereignty obligations. Changes in legal jurisdictions or corporate structures are detected and trigger defined escalation processes. The organization doesn&#8217;t react to incidents. It recognizes shifts before they become incidents.</p><p>The jump from Level 2 to Level 3 is the most critical. It requires no new technology. It requires a decision: Do we want to enforce our sovereignty contractually - or just document it?</p><p>Most organizations I know operate at Level 1 or 2. They have contracts with sovereignty references, but no contracts with sovereignty effect.</p><h4>Who governs when the contract is silent?</h4><p>A good contract alone isn&#8217;t enough. Without active governance, it&#8217;s a statement of intent, not a shield.</p><p>Contractual sovereignty needs clear responsibilities across the organization. Four tasks that someone must own concretely: defining and updating sovereignty requirements, continuous monitoring of contract compliance, geopolitical risk assessment with impact analysis on existing contracts, and incident response for sovereignty violations.</p><p>In regulated environments, I regularly see that none of these tasks are assigned to a specific team. IT thinks Legal handles it. Legal thinks Procurement covered it in the contract. Procurement thinks IT monitors it. Nobody monitors.</p><p>The result: the first contact with reality happens when the damage is already done.</p><p>Here&#8217;s a simple test. In your next meeting, ask who is responsible for monitoring the sovereignty clauses in your IT contracts. If the answer takes longer than three seconds, you have your answer.</p><h4>Four red flags in your contracts</h4><p>Before you start a major overhaul, check your existing contracts for these warning signs.</p><p><strong>No exit without pain.</strong> Your contract contains no clear exit clauses. No defined migration path, no data portability guarantee, no realistic transition period. You&#8217;re technically sovereign but contractually trapped. Your provider knows it.</p><p><strong>Subcontractors in the fog.</strong> You don&#8217;t know which subcontractors your provider uses - or you find out after the change is complete. No approval requirement, no advance notification, no control over which jurisdiction actually processes your data.</p><p><strong>Change of control without protection.</strong> Your contract has no change-of-control clause. When your AI startup is acquired by am other corporation tomorrow, contractually nothing changes. Practically, everything does - legal jurisdiction, data access rights, business policies, willingness to cooperate. The consolidation wave in the AI market makes this not a question of possibility but of timing.</p><p><strong>Compliance on trust.</strong> Your contract prescribes data residency but contains no verification mechanism. No audit rights, no transparency reports, no technical verification. You hope the provider complies. That&#8217;s not risk management. That&#8217;s faith.</p><h4>What you can do this week</h4><p>Three measures that require no major restructuring but have immediate impact.</p><p><strong>First:</strong> Take your most critical IT contracts and check them against the four red flags above. Start with contracts where personal or security-relevant data flows. One week is enough for the initial assessment. After that, you&#8217;ll know where you stand - which is more than most organizations can claim.</p><p><strong>Second:</strong> Develop modular contract components -- standardized sovereignty modules for data residency, subcontractor governance, change of control, and exit management. Not new framework contracts. Supplements that can be built into existing contracts. One component that&#8217;s often forgotten: mandatory prior written approval for every offshore subcontractor change.</p><p><strong>Third:</strong> Put IT, Legal, Procurement, and Information Security at one table. Not as a project group with an expiration date, but as a permanent body with a clear mandate: sovereignty monitoring, escalation, contract adaptation. With named individuals, not role descriptions that everyone interprets differently.</p><p>One note on a distinction that belongs in every contract: for exploration, prototyping, and evaluation, I use international AI models extensively. For regulated data and operational law enforcement work, they&#8217;re out of the question. This distinction must be contractually specified. Explicitly, not as an implicit assumption.</p><p><strong>Your contract is your sovereignty level. Not your data center. Not your strategy paper. Your contract.</strong></p><p>If you&#8217;ve done the three-second test in your own organization - I&#8217;d genuinely like to hear what happened. Hit reply.</p><p></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p>]]></content:encoded></item><item><title><![CDATA[What's your organization's approach to agentic AI?]]></title><description><![CDATA[Three Irreversible Shifts Leaders Must Prepare.]]></description><link>https://substack.lezgus.de/p/whats-your-organizations-approach</link><guid isPermaLink="false">https://substack.lezgus.de/p/whats-your-organizations-approach</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Sat, 16 May 2026 18:55:06 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!fJnc!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>You&#8217;ve approved the pilot. The demo looked impressive. The vendor promised autonomous workflows that plan, execute, and self-correct &#8212; no human in the loop between instruction and outcome. Everyone in the steering committee nodded.</p><p>Nobody asked what happens to the 340 people currently doing that work.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!fJnc!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!fJnc!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!fJnc!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!fJnc!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!fJnc!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!fJnc!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg" width="1200" height="628" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:628,&quot;width&quot;:1200,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:147850,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/198036576?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!fJnc!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!fJnc!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!fJnc!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!fJnc!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F20532589-e6dc-4427-adc2-4afe16a804d4_1200x628.jpeg 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><p>Agentic AI isn&#8217;t a chatbot upgrade. It&#8217;s an architecture where systems independently plan their approach, select tools, reflect on results, and adjust course. Large financial institutions already use autonomous agents for credit assessments. Consumer goods companies let AI systems orchestrate marketing campaigns &#8212; pulling data, segmenting audiences, reallocating budgets &#8212; without a human approving each step.</p><p>This isn&#8217;t incremental change. It&#8217;s structural. And in my experience running technology for a 7,000-person federal security organization, three effects are converging that most leadership teams haven&#8217;t fully reckoned with.</p><h3>Self-organizing workflows change what leadership means</h3><p>Here&#8217;s the shift most leaders miss: you&#8217;re no longer managing processes. You&#8217;re managing goal definitions and guardrails.</p><p>An agent receives an objective, decomposes it into tasks, selects appropriate tools, executes, and self-corrects when intermediate results don&#8217;t match expectations. In practice: it searches a database, evaluates results against defined criteria, pulls a second source if needed, and produces a report. All in real time. All dynamically adapting.</p><p>The question is no longer &#8220;who does what.&#8221; It&#8217;s &#8220;what outcomes do I expect, and what boundaries do I set?&#8221;</p><p>In heavily regulated environments &#8212; law enforcement, healthcare, financial services &#8212; this creates a particular tension. Governance here means auditable decision chains, revision-proof documentation, clear accountability. An agent that finds its own path must meet those requirements just as rigorously as the case officer on the fourth floor. If it doesn&#8217;t, you haven&#8217;t gained efficiency. You&#8217;ve gained legal liability.</p><h3>The digital workforce isn&#8217;t a metaphor anymore</h3><p>This is the uncomfortable part. Agentic AI creates a digital workforce. Not figuratively. Operationally.</p><p>An agent is goal-oriented. It receives a task, pursues it to completion, reports back. Multiple agents coordinate, assign subtasks to each other, consolidate results. That&#8217;s not accidentally similar to a team. It functions like one.</p><p>The question leaders need to ask: if three coordinated agents complete in 20 minutes the same research task that took four people two weeks &#8212; what follows?</p><p>Here&#8217;s where I see organizations making a dangerous mistake: they plan agentic AI only as augmentation. A tool that supports existing teams. But the technology compresses experience. What previously required seniority &#8212; forming coherent pictures from fragmented information &#8212; a well-orchestrated agent system can partially replicate.</p><p>This doesn&#8217;t make people redundant. But it shifts which competencies matter. Tomorrow&#8217;s workforce configures agents, evaluates their outputs, and handles the exceptions no algorithm can resolve. That&#8217;s potentially a gain. But only if the organization designs this transition deliberately.</p><p>Three strategic options: reposition people into new roles that agentic AI creates. Limit deployment to defined areas, protecting human expertise where it&#8217;s irreplaceable. Or acknowledge that in some areas, the digital workforce will absorb capacity gaps from demographic change. Most organizations will need all three simultaneously.</p><h3>When machines prepare decisions nobody questions</h3><p>This is the most consequential shift. Agentic AI doesn&#8217;t just prepare decisions. In certain contexts, it makes them.</p><p>Autonomy levels are the key. At the lower end: advisory agents that collect information and present options. A human decides. At the upper end: fully autonomous agents that analyze, evaluate, decide, and act. Reality lives in the spectrum between.</p><p>The temptation is obvious: if the agent was correct in 98% of the first 500 credit decisions, why keep the human sign-off? The answer, for anyone who&#8217;s worked in regulated environments: because the 2% errors aren&#8217;t randomly distributed. They cluster in complex, ambiguous, context-sensitive cases. The ones that affect lives.</p><p>What leaders need now is a differentiated governance model for decision autonomy. Not one model for the entire organization &#8212; but a clear matrix: which decisions can an agent make autonomously? Where must a human approve? Where shouldn&#8217;t the agent even recommend?</p><p>From my experience deploying multiple AI systems in a large federal agency: building this differentiation takes time. Significant time. But it&#8217;s the foundation that prevents agentic AI from becoming a legal and reputational risk.</p><h3>What you can do this quarter</h3><p>Four areas deserve immediate attention:</p><p><strong>Governance before technology.</strong> Before deploying your first agent, establish the rulebook. Which decisions may be automated? Who&#8217;s liable when an agent is wrong? How do you ensure traceability? These questions protect you from the moment an autonomous process makes a decision you can&#8217;t explain.</p><div class="callout-block" data-callout="true"><p><strong>Build competence, not just technology.</strong> The biggest investment isn&#8217;t the platform license. It&#8217;s your people&#8217;s understanding. Those who grasp what an agent can and cannot do make better deployment decisions. Start with pilot projects that have clear learning objectives &#8212; not lighthouse projects with executive ambitions.</p></div><div class="callout-block" data-callout="true"><p><strong>Secure experiential knowledge</strong>. When agents take over routine tasks, the tacit knowledge embedded in those routines disappears. The case officer who&#8217;s reviewed applications for 15 years knows things no manual captures. Document that knowledge before it&#8217;s lost. It&#8217;s exactly what agents need to be configured well.</p></div><div class="callout-block" data-callout="true"><p><strong>Stay flexible.</strong> The augmented scenario &#8212; humans and agents working in hybrid teams &#8212; is most likely. But planning for only one scenario repeats the mistake of everyone who said in 2019 that language models would remain niche.</p></div><p>The technology will evolve in the next 12 months. Your governance must keep pace. That requires not just technical competence &#8212; it requires organizational learning capacity.</p><p>And that, ultimately, is the real leadership challenge.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><p></p>]]></content:encoded></item><item><title><![CDATA[Context Is Your Next Critical Infrastructure]]></title><description><![CDATA[Your AI needs context, not more tools.]]></description><link>https://substack.lezgus.de/p/context-is-your-next-critical-infrastructure</link><guid isPermaLink="false">https://substack.lezgus.de/p/context-is-your-next-critical-infrastructure</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Sat, 16 May 2026 13:29:23 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!gKsY!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>I recently came across a striking number: organizations that report the highest satisfaction with their AI outcomes spend four times more on foundations than on tools. Not twice. Four times. As a percentage of revenue, they pour money into data quality, governance structures, and people &#8212; not into platform licenses.</p><p>This stopped me. Because in most strategy conversations I witness, the budget discussion starts with: Which tool should we buy? Not: Is our data in a state that any tool could actually work with?</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!gKsY!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!gKsY!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!gKsY!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!gKsY!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!gKsY!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!gKsY!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg" width="1200" height="628" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:628,&quot;width&quot;:1200,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:154908,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/197994103?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!gKsY!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!gKsY!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!gKsY!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!gKsY!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb60939fc-947a-49f5-9870-3a14f46ba94e_1200x628.jpeg 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><h3>The Real Bottleneck</h3><p>Here is what I have learned from decades in a highly regulated government environment: the bottleneck is never the model. The bottleneck is context.</p><p>A structured context layer &#8212; semantic mappings, ontologies, machine-readable rules &#8212; reduces the computational cost of reasoning models by a factor of two to three. Same accuracy. Lower cost. Context is simultaneously a quality lever and an efficiency lever. Yet almost no one treats it as infrastructure.</p><p>In my domain, this is not optional. Without semantic labeling of individual data points, analysis is constitutionally prohibited. No labeling, no analysis. Full stop. This is not a bureaucratic inconvenience. It is a design constraint that determines everything else.</p><p>But here is the transferable insight: every organization working with sensitive data faces the same fundamental question. Do you invest in the tool, or in the foundation the tool needs to stand on?</p><h3>The Cautious Paradox</h3><p>There is a popular framework that classifies organizations as AI-first, AI-opportunistic, or AI-cautious &#8212; and then declares the cautious position a high-risk one by 2030.</p><p>I disagree. Or rather: I think the classification is too blunt.</p><p>The real dividing line runs between cautious-without-foundation and cautious-with-foundation. An organization that deliberately delays tool deployment while building its context layer, governance architecture, and semantic infrastructure is not at risk. It is preparing.</p><p>An organization that is cautious AND idle &#8212; that is a different story entirely.</p><p>Caution without preparation is paralysis. Caution with preparation is strategy.</p><h3>Three Things Worth Doing Now</h3><div class="callout-block" data-callout="true"><p><strong>Run a context audit.</strong> Take your last AI initiative. Ask: what percentage of project time went into data preparation? If the answer is above 60 percent, you are missing the context layer.</p></div><div class="callout-block" data-callout="true"><p><strong>Declare context as infrastructure.</strong> Knowledge graphs, semantic layers, policy-as-code &#8212; these deserve the same project status as network infrastructure. With dedicated budget, governance, and a board-level sponsor.</p></div><div class="callout-block" data-callout="true"><p><strong>Redefine stewardship.</strong> The role of data stewards is shifting from reactive compliance to strategic refereeing. Quality, reusability, and governance effectiveness need clear ownership at leadership level.</p></div><h3>A Question for You</h3><p>I am curious: does your organization distinguish between being cautious and being unprepared? Or does the strategy conversation collapse both into the same bucket?</p><p>Hit reply. I read every response.</p><p>&#8212; Andreas</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div><hr></div><p>Read the article in german language: <a href="https://www.lezgus.de/ki-kontext-als-kritische-infrastruktur-warum-deine-datenstrategie-ein-fundament-problem-hat/">https://www.lezgus.de/ki-kontext-als-kritische-infrastruktur-warum-deine-datenstrategie-ein-fundament-problem-hat/</a></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.lezgus.de&quot;,&quot;text&quot;:&quot;Die Zweite Meinung (german blog)&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.lezgus.de"><span>Die Zweite Meinung (german blog)</span></a></p><p></p>]]></content:encoded></item><item><title><![CDATA[Your Data Isn't Ready for AI Agents]]></title><description><![CDATA[Most organizations want autonomous data management. Almost none have the foundation it requires.]]></description><link>https://substack.lezgus.de/p/your-data-isnt-ready-for-ai-agents</link><guid isPermaLink="false">https://substack.lezgus.de/p/your-data-isnt-ready-for-ai-agents</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Mon, 04 May 2026 07:25:52 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!sTQ2!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>I&#8217;ve spent the last four decades building and overseeing data infrastructure in one of the most regulated environments you can imagine: a federal law enforcement agency with thousands of staff, strict data sovereignty requirements, and zero tolerance for getting classification wrong.</p><p>So when industry analysts predict that 75 percent of all data engineering workflows will be automated by AI agents by 2029, I don&#8217;t feel excitement. I feel a very specific kind of concern. The kind you develop after watching three decades of automation promises crash into the same wall.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p></p><p>That wall has a name. It&#8217;s called: we don&#8217;t actually know what data we have.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!sTQ2!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!sTQ2!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!sTQ2!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!sTQ2!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!sTQ2!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!sTQ2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg" width="1200" height="628" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:628,&quot;width&quot;:1200,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:146501,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:false,&quot;topImage&quot;:true,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/196391307?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!sTQ2!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!sTQ2!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!sTQ2!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!sTQ2!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fb9c2109a-37c2-44d8-9455-b25e4e0dada5_1200x628.jpeg 1456w" sizes="100vw" fetchpriority="high"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h3>The promise sounds familiar</h3><p>The current trajectory is clear: we&#8217;re heading toward a world where autonomous agents build pipelines, monitor data quality in real time, enforce governance rules, and self-heal when something breaks. Three types of agents are supposed to work together: specialized task agents for cleaning and transformation, orchestration agents coordinating across systems, and multi-agent systems that learn and optimize the whole thing.</p><p>The architecture is sound. The vision is compelling. And if you&#8217;ve been dealing with manual data pipeline maintenance for years, the appeal is immediate.</p><p>Here&#8217;s what the vision quietly assumes: that your organization already has a semantic layer. Machine-readable business definitions. A data catalog that reflects reality. Clear ownership for every data domain. Governance rules that are documented, not tribal knowledge.</p><p>In my experience, most organizations have none of this. Not partially. Not in rough form. Simply not at all.</p><h3>What happens without the foundation</h3><p>I&#8217;ve seen this pattern more than once: a large organization launches a data quality initiative with the best intentions. Identify problems systematically, measure them, fix them. Automated rules, clear metrics, repeatable processes.</p><p>The project stalls before it properly begins. Not because the technology fails &#8212; but because nobody can answer the most basic question: what data do we actually have, where does it live, and what does it mean?</p><p>There was no data catalog. No machine-readable definitions. No clear ownership. The quality rules had nothing to attach to. The team had to step back and inventory before they could measure. It sounds almost embarrassingly simple. That&#8217;s precisely why it matters.</p><p>Now imagine what happens when you skip that step entirely and deploy an autonomous agent instead. An agent that classifies data as non-sensitive when it doesn&#8217;t understand the classification scheme. An agent that restructures a pipeline because its model detected an anomaly that wasn&#8217;t one. An agent that adjusts access permissions based on patterns it inferred from inconsistent metadata.</p><p>In a hospital, that could mean patient records exposed to the wrong department. In financial services, regulatory violations. In law enforcement, where I&#8217;ve spent my career, it could mean classified information flowing into unclassified systems. These aren&#8217;t theoretical risks. They&#8217;re the predictable consequence of deploying autonomous decision-making on a foundation that doesn&#8217;t exist.</p><h3>The real problem isn&#8217;t speed</h3><p>Every automation wave I&#8217;ve lived through started with the same diagnosis: too much manual work, not enough speed. ETL tools were supposed to eliminate manual transformation. Self-service BI was going to free analysts from IT dependencies. DataOps promised to unify development and operations. Each time, the prescription was the same. Automate more. Move faster.</p><p>Each time, the organizations that struggled weren&#8217;t struggling with speed. They were struggling with understanding. They didn&#8217;t know what their data meant, who was responsible for it, or what &#8220;correct&#8221; looked like. More automation didn&#8217;t solve that. It amplified it.</p><p>AI agents are the most powerful amplifier yet. A rule-based system that runs on bad metadata produces one bad report. An autonomous agent running on the same bad metadata makes a thousand bad decisions per hour. And it makes them with a confidence no human would have, because it lacks the awareness of its own blind spots.</p><p>The question isn&#8217;t &#8220;which agent platform should we buy?&#8221; The question is: &#8220;Do we know our data well enough to trust an agent with it?&#8221;</p><p>For most organizations I&#8217;ve worked with, the honest answer is no.</p><h3>Three things before your first agent</h3><p>This isn&#8217;t about saying no to AI agents. They will transform data management, and they should. But the sequence matters, and it can&#8217;t be shortcut.</p><div class="callout-block" data-callout="true"><p><strong>Start with the catalog, not the platform.</strong> You don&#8217;t need to inventory everything. Start with the three to five data domains that matter most to your critical processes. Five percent well-documented beats a hundred percent in a spreadsheet nobody maintains.</p></div><div class="callout-block" data-callout="true"><p><strong>Architect human oversight in, don&#8217;t bolt it on.</strong> For every decision an agent might make, define three levels: where it acts autonomously, where it recommends, and where it stops and asks a human. In regulated environments, this isn&#8217;t optional. It&#8217;s the minimum viable architecture.</p></div><div class="callout-block" data-callout="true"><p><strong>Define the outcome, not the tool.</strong> Not &#8220;we want AI in data management&#8221; but &#8220;we want to detect and resolve data quality issues in pipeline X within four hours instead of four days.&#8221; If you can&#8217;t state the outcome in one measurable sentence, the agent can&#8217;t deliver it either.</p></div><p>And one more thing that rarely makes it into the vendor presentation: metadata sovereignty. Who owns the business definitions and classifications your agent processes on a cloud platform? That question feels abstract until the vendor changes their API or discontinues the service. For organizations in Europe operating under strict data sovereignty rules, this isn&#8217;t a theoretical concern. It&#8217;s a strategic decision you make today whose consequences surface three years from now.</p><h3>The uncomfortable truth</h3><p>The organizations that will benefit most from AI agents in data management are the ones that need them least right now. They&#8217;ve done the unglamorous groundwork. They know their data. They have governance that works before it&#8217;s automated.</p><p>For everyone else, the path isn&#8217;t shorter because the tools got smarter. It&#8217;s the same three steps: know your data, organize your data, then automate. No agent makes the first step unnecessary.</p><p>The hard part isn&#8217;t the technology. It never was.</p><p>If you&#8217;re navigating this in your own organization, I&#8217;d like to hear how it&#8217;s going. What&#8217;s the biggest gap you&#8217;re seeing between the agent promise and your data reality? Hit reply.</p><p><em>I also write in-depth analysis in German on my blog: www.lezgus.de </em></p><p></p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">Thanks for reading The Second Opinion! Subscribe for free to receive new posts and support my work.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div><hr></div><p>Read the article in german language: <a href="https://www.lezgus.de/agentic-ai-im-datenmanagement-was-du-brauchst-bevor-der-erste-agent-startet/">https://www.lezgus.de/agentic-ai-im-datenmanagement-was-du-brauchst-bevor-der-erste-agent-startet/</a></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.lezgus.de&quot;,&quot;text&quot;:&quot;Die Zweite Meinung (german blog)&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.lezgus.de"><span>Die Zweite Meinung (german blog)</span></a></p><p></p>]]></content:encoded></item><item><title><![CDATA[Why Your Government AI Strategy Has Three Blind Spots]]></title><description><![CDATA[AI agents, digital sovereignty, and vibe coding are converging into a perfect storm for public sector IT leaders &#8211; here is what most strategies miss.]]></description><link>https://substack.lezgus.de/p/why-your-government-ai-strategy-has</link><guid isPermaLink="false">https://substack.lezgus.de/p/why-your-government-ai-strategy-has</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Sat, 21 Feb 2026 20:13:40 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!_ikd!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<h2>The uncomfortable math</h2><p>Nearly 60% of organizations have evidence of unsanctioned AI agents operating in their environment. At the same time, vendors are slapping the label &#8220;AI agent&#8221; on everything from basic workflow automation to traditional machine learning. The result is a gold rush mentality colliding with organizations that are nowhere near ready for it.</p><p>But this is only one of three fault lines I see forming right now. And the dangerous part is not any single one of them. It is how they reinforce each other.</p><h3>Fault line one: AI agents outpace regulation</h3><p>Governments worldwide are tying their AI ambitions to agents. Conversational service experiences, autonomous decision support, citizen-facing automation &#8211; the use cases multiply faster than the governance frameworks.</p><p>Here is the uncomfortable truth: 62% of surveyed organizations believe AI agents should only be created by IT departments, not end users. Only 15% are even considering fully autonomous agents. Yet the deployment keeps accelerating.</p><p>The gap between ambition and control creates real risk. When an underregulated AI agent makes a mistake in a citizen interaction, the vendor does not lose credibility. The government does. And in the public sector, trust is not a soft metric. It is the operating license.</p><p>By 2029, an estimated 20% of government service failures will trace back to underregulated AI agent interactions. That is not a theoretical warning. It is a predictable consequence of moving faster than your governance can follow.</p><p><strong>The question nobody asks in the meeting:</strong>  &#8220;Is this actually an AI agent &#8211; or rebranded automation we already have?&#8221;</p><h3>Fault line two: sovereignty as strategic illusion</h3><p>Digital sovereignty has become a political priority in nearly every region. But current estimates suggest that by 2028, 60% of government sovereignty initiatives will miss their objectives. The culprit: unrealistic timelines and investment estimates driven by political cycles rather than technical reality.</p><p>Most sovereignty efforts focus narrowly on data residency and basic cloud services. The deeper risks across entire technology stacks &#8211; from workplace tools to AI platforms to SaaS applications &#8211; remain invisible.</p><p>I call this **sovereignty washing**: local providers promise sovereign solutions on their websites while relying on hyperscalers in their supply chains. The dependency is just hidden one layer deeper.</p><p>Digital sovereignty is not a project you complete in one budget year. It is a strategic posture that takes years to build. Leaders who treat it as a checkbox exercise will waste money and political capital without reducing actual risk.</p><h3>Fault line three: vibe coding creates invisible debt</h3><p>Here is the fault line that gets the least attention: vibe coding. The concept of creating applications through natural language prompts &#8211; without writing traditional code &#8211; is gaining traction fast. 72% of surveyed government organizations plan to increase their application modernization budgets. 46% already use low-code platforms. Vibe coding is the logical next step.</p><p>For prototypes and innovation labs, this makes sense. The danger lies in the creep from experiment to production.</p><p>A vibe-coded prototype works for the demo. But it knows nothing about architectural standards, security policies, or integration requirements. When budget pressure and short election cycles push that prototype into production, you create technical debt that takes years to unwind.</p><p>By 2028, an estimated 75% of governments without vibe coding controls will rank architectural technical debt as their biggest modernization challenge.</p><h3>Where the three fault lines meet</h3><p>Here is what keeps me up at night: these three trends are not independent. They converge.</p><p>An unregulated AI agent running on a non-sovereign platform, built with vibe coding and no architectural oversight &#8211; this is not a hypothetical scenario. It is the direction of the current trend.</p><p>The role of government CIOs is shifting from technology stewards to strategic risk managers. Success depends on balancing innovation with resilience and building local ecosystems that mitigate foreign technology dependencies.</p><h3>The path forward</h3><p>We can address these fault lines. Not through panic. Not through blanket rejection of new technology. Through deliberate governance.</p><p><strong>For AI agents:</strong> Deploy preventive risk assessments before any agent goes into production. Demand transparency, observability, and manual fallback mechanisms from every vendor. Existing automation solutions already in your cloud may achieve the same results with far less risk.</p><p><strong>For sovereignty:</strong>  Map direct and indirect foreign dependencies across your core technology stacks. Prioritize by risk, cost, and strategic value. The goal is rarely full decoupling. It is maintaining the ability to act in a crisis.</p><p><strong>For vibe coding:</strong>  Limit current use to non-critical experiments. Adjust your software development lifecycle to specifically address vibe coding risks. Require human review and architectural sign-off before any production deployment.</p><p></p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!_ikd!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!_ikd!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!_ikd!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!_ikd!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!_ikd!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!_ikd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg" width="1200" height="628" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:628,&quot;width&quot;:1200,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:150356,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/188740833?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!_ikd!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!_ikd!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!_ikd!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!_ikd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3b524585-58b8-4e92-a1c5-4c355dc0179a_1200x628.jpeg 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h3>Before you close this tab &#8211; here is your practical takeaway.</h3><p>&#9989; Audit your organization for unsanctioned AI agents &#8211; the number will likely surprise you</p><p>&#9989; Ask every AI vendor: &#8220;Is this genuinely agentic, or rebranded automation we already own?&#8221;</p><p>&#9989; Map your supply chain dependencies at least two levels deep &#8211; sovereignty washing hides there</p><p>&#9989; Define clear boundaries for vibe coding: what may be prototyped, what requires architectural review</p><p>&#9989; Require human sign-off before any AI-generated application enters production</p><p>&#9989; Add a quarterly technical debt review to your IT steering committee agenda</p><p>&#9989; Create a sovereignty register documenting where your data actually resides &#8211; not where it should</p><p></p><div><hr></div><p><strong>If this gave you one idea worth testing &#8211; consider subscribing. I publish weekly with practical frameworks for AI leaders who need clarity, not hype.</strong></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe now&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://substack.lezgus.de/subscribe?"><span>Subscribe now</span></a></p><div><hr></div><p><strong>What is the biggest blind spot in your organization&#8217;s AI strategy right now?</strong>  I am genuinely curious &#8211; your experience helps me write better frameworks for everyone.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/p/why-your-government-ai-strategy-has/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://substack.lezgus.de/p/why-your-government-ai-strategy-has/comments"><span>Leave a comment</span></a></p><p></p><p><em>I also write in-depth analysis in German on my blog: www.lezgus.de </em></p><p></p>]]></content:encoded></item><item><title><![CDATA[Your AI Pilots Are Stuck. Architecture Is the Way Out.]]></title><description><![CDATA[Most organizations either block AI experimentation or lose control of it. Heads of Enterprise Architecture can fix both &#8212; if they stop being gatekeepers.]]></description><link>https://substack.lezgus.de/p/your-ai-pilots-are-stuck-architecture-40c</link><guid isPermaLink="false">https://substack.lezgus.de/p/your-ai-pilots-are-stuck-architecture-40c</guid><dc:creator><![CDATA[Andreas Lezgus]]></dc:creator><pubDate>Sat, 07 Feb 2026 19:42:43 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!b4gZ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>Your teams want to experiment with AI. Legal says slow down. Security says stop. Business units say hurry up. And somewhere in the middle, a dozen unsanctioned AI tools are already in production &#8212; deployed by people who got tired of waiting.</p><p>I&#8217;ve lived this paradox for years as a CTO in one of Germany&#8217;s most security-sensitive federal agencies. The tension between innovation speed and institutional control isn&#8217;t new. But with AI, it&#8217;s sharper than ever. And the organizations that don&#8217;t resolve it will find themselves stuck between two equally dangerous outcomes: paralysis or chaos.</p><p>The question isn&#8217;t whether your people will experiment. They already are. The question is whether you&#8217;ve given them a safe lane &#8212; or forced them into the shadows.</p><h3><strong>The gatekeeper trap</strong></h3><p>Here&#8217;s what happens in most large organizations. A team identifies a promising AI use case. They build a prototype. Then they hit the governance wall: no approved tools, no reference architecture, no clear path to production. The pilot stalls. Meanwhile, three other teams quietly spin up their own solutions using whatever SaaS tool has the friendliest onboarding flow.</p><p>This is AI sprawl. And it&#8217;s the predictable result of governance that says &#8220;no&#8221; without offering an alternative.</p><p>Heads of Enterprise Architecture are uniquely positioned to break this cycle. Not by loosening standards, but by creating reusable pathways &#8212; clear architectural blueprints that make it easier to do the right thing than the wrong thing.</p><p>This is a mindset shift. From blocking unapproved initiatives to enabling approved ones. From reviewing every request to publishing a catalog of pre-validated patterns. How many of your teams could start an AI pilot tomorrow using only approved tools and documented patterns? If the answer is &#8220;none,&#8221; your architecture isn&#8217;t enabling anything.</p><h3><strong>Build the blueprint before the pressure hits</strong></h3><p>The first concrete step: create an AI reference architecture grounded in both business strategy and technical reality. That blueprint should define common use cases, approved technology stacks, deployment patterns for cloud and on-premises environments, and security controls with privacy requirements baked in.</p><p>In my experience, the organizations that move fastest are those that did this work before the first AI pilot landed on the CTO&#8217;s desk. The ones that scramble to build governance after a dozen pilots are already running? They end up with a patchwork of contradictory rules and frustrated teams.</p><p>A solid approach follows roughly ten steps &#8212; from understanding your strategic context and defining AI principles, through building your technology reference model and standards, all the way to designing your decision tree for when to build, buy, or partner. But here&#8217;s what matters most: you don&#8217;t need perfection. You need a first version.</p><p>A reference architecture that covers 80% of common scenarios and ships in four weeks beats a comprehensive framework that takes eight months. Start with your most frequent use cases. Add guardrails for data privacy and model deployment. Publish it. Iterate.</p><h3><strong>Security isn&#8217;t a phase &#8212; it&#8217;s a foundation</strong></h3><p>Security controls must be designed from the outset, not retrofitted. This sounds obvious. In practice, I&#8217;ve seen it ignored more often than followed.</p><p>Every AI system should undergo threat modeling before deployment. Frameworks like MITRE ATLAS (purpose-built for AI and machine learning threats) and the NIST AI Risk Management Framework are solid starting points. OWASP&#8217;s Top 10 for LLM Applications and ENISA&#8217;s AI Threat Landscape add useful depth. But the framework matters less than the discipline of actually doing the assessment &#8212; and doing it early enough to influence design decisions.</p><p>What deserves more attention is data governance. The quality and security of training data is where many AI projects silently fail. Architecture teams should work closely with data and analytics stakeholders to identify and prepare datasets before experimentation begins. Waiting until a model is half-trained to discover the data violates privacy regulations is an expensive lesson. I&#8217;ve watched organizations learn it the hard way.</p><p>One promising development for regulated environments: synthetic data &#8212; machine-generated datasets that mimic real-world scenarios without exposing sensitive production data. It can accelerate experimentation significantly, provided strict boundaries between sandbox and production environments are maintained.</p><p>And then there&#8217;s shadow AI &#8212; the unsanctioned use of AI tools that bypass every policy you&#8217;ve written. Without strong governance, shadow AI introduces data breaches, regulatory violations, and unintended bias. The principle of least privilege isn&#8217;t just a security concept here. It&#8217;s a governance survival strategy.</p><h3><strong>Your AI agents need identity cards</strong></h3><p>Here&#8217;s a blind spot that too few architecture teams address: identity and access management for AI systems.</p><p>Traditional IAM was designed for humans. Log in, get a role, access resources. But AI agents don&#8217;t log in. They operate autonomously, often on behalf of users, sometimes chaining actions across multiple systems. If you don&#8217;t assign a clear identity to every AI agent and service account &#8212; with traceable ownership back to a responsible human &#8212; you&#8217;ve built a compliance nightmare.</p><p>What&#8217;s needed: robust authentication using tokens or certificates, fine-grained authorization based on least privilege, and comprehensive logging of every action. In regulated industries, every action an AI agent takes must be auditable. Every delegation of authority must be traceable.</p><p>Credential lifecycle management matters too. Automated provisioning, rotation, and deprovisioning of machine credentials sounds like plumbing. It is plumbing. And when the plumbing fails, the flood reaches the boardroom.</p><h3><strong>Governance needs people, not just policies</strong></h3><p>The final piece &#8212; and perhaps the most underestimated &#8212; is cross-functional collaboration. An AI governance forum should bring together enterprise architecture, legal, security, data science, product management, and executive leadership. With real decision authority. Not advisory status.</p><p>I&#8217;d add a warning from experience: these forums only work if they meet regularly and have teeth. I&#8217;ve seen too many &#8220;AI boards&#8221; that convene quarterly, rubber-stamp decisions made months earlier, and wonder why shadow AI keeps spreading.</p><p>What works better: tight feedback loops. Daily stand-ups during critical implementation phases. Retrospectives after each pilot. Legal advisors who review data handling during design, not after launch. Security experts who validate controls before deployment, not in the incident report.</p><p>The Head of EA should be the orchestrator &#8212; not the sole decision-maker, but the person who ensures the right stakeholders are in the room at the right time. When legal, security, data, and business teams operate in silos, AI governance becomes a bureaucratic exercise. When they collaborate early and continuously, it becomes a competitive advantage.</p><h3><strong>The real question behind all of this</strong></h3><p>The four pillars &#8212; standardized architecture, security-first controls, AI-specific identity management, and cross-functional governance &#8212; cover the essential ground. But frameworks don&#8217;t transform organizations. Execution does.</p><p>The deeper question for every Head of EA reading this: are you enabling experimentation, or are you just managing risk on paper?</p><p>If your teams can&#8217;t go from AI idea to approved pilot in under four weeks, your architecture isn&#8217;t enabling anything. If no one knows which tools are approved for which use cases, your governance exists only in documents. If your AI agents don&#8217;t have registered identities, your security posture has a gap that grows with every new deployment.</p><p>The organizations that will lead in AI aren&#8217;t the ones with the most sophisticated frameworks. They&#8217;re the ones where the architecture team made it easy to experiment safely. And that, in my experience, is the hardest thing to get right &#8212; not because it&#8217;s technically complex, but because it requires letting go of the gatekeeper role that made us feel important in the first place.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!b4gZ!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!b4gZ!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!b4gZ!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!b4gZ!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!b4gZ!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!b4gZ!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg" width="1200" height="628" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/d8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:628,&quot;width&quot;:1200,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:147850,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:&quot;image/jpeg&quot;,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:&quot;https://andreaslezgus.substack.com/i/187227665?img=https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg&quot;,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!b4gZ!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 424w, https://substackcdn.com/image/fetch/$s_!b4gZ!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 848w, https://substackcdn.com/image/fetch/$s_!b4gZ!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 1272w, https://substackcdn.com/image/fetch/$s_!b4gZ!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fd8b91572-81b4-4e6d-905e-2a016aafbca9_1200x628.jpeg 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p></p><h4><strong>Before you close this tab &#8212; here&#8217;s your practical takeaway.</strong></h4><p></p><p>&#9989; Publish a first-version AI reference architecture within 30 days &#8212; cover your top 3 use cases, approved stacks, and security baselines. Perfection later, momentum now.</p><p>&#9989; Inventory every AI tool and agent currently in use across your organization &#8212; you can&#8217;t govern what you can&#8217;t see.</p><p>&#9989; Mandate threat modeling for all AI initiatives before deployment, using MITRE ATLAS or NIST as your starting framework.</p><p>&#9989; Register every AI agent and service account with a named human owner &#8212; no orphaned machine identities.</p><p>&#9989; Establish an AI governance forum that meets at least biweekly with actual decision authority &#8212; not a quarterly rubber-stamp committee.</p><p>&#9989; Prepare curated, validated datasets for experimentation before teams ask for them &#8212; proactive data governance beats reactive firefighting.</p><p>&#9989; Measure your time-to-approved-pilot &#8212; if it&#8217;s longer than four weeks, your architecture is a bottleneck, not an enabler.</p><div><hr></div><p>If this gave you one idea worth testing &#8212; consider subscribing. <strong>I publish weekly with practical frameworks for AI leaders who need clarity, not hype.</strong></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe now&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://substack.lezgus.de/subscribe?"><span>Subscribe now</span></a></p><div><hr></div><p><strong>Have you found a way to balance speed and security in AI experimentation that actually works &#8212; or is your organization still stuck between "block everything" and "hope for the best"?</strong> Let me know in the comments.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://substack.lezgus.de/p/your-ai-pilots-are-stuck-architecture-40c/comments&quot;,&quot;text&quot;:&quot;Leave a comment&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://substack.lezgus.de/p/your-ai-pilots-are-stuck-architecture-40c/comments"><span>Leave a comment</span></a></p><p></p><p><em>I also write in-depth analysis in German on my blog: www.lezgus.de </em></p><p></p>]]></content:encoded></item></channel></rss>