Kasyapp Ivaaturi: An Automated Action Should Be as Explainable and Accountable as a Human Action. Otherwise, Instead of Innovation, You Get an Incident Generator

The rise of agentic artificial intelligence—software that can act autonomously within enterprise systems—has outpaced the development of robust governance frameworks. While executives chase speed and cost savings, many organizations still wrestle with basic controls such as authentication, permission granularity, and audit trails. Industry analysts at the WSJ Technology Council Summit highlighted that these gaps can turn promising automation into a source of frequent incidents, especially in finance, ERP, and operations where a single erroneous transaction can cascade into regulatory exposure.

Kasyapp Ivaaturi’s experience at Framestore illustrates a pragmatic path forward. By treating automation as an execution system, he first mapped decision rights, set tight access boundaries, and codified exception handling before any code was written. A series of stakeholder workshops realigned more than 50 business units, and the creation of a Center of Excellence provided ongoing ownership and governance. This disciplined approach not only restored senior management confidence but also avoided external consulting fees, delivering roughly $254,000 in savings. Ivaaturi also stresses a build‑versus‑buy rule: core controls and auditability stay in‑house, while mature, low‑risk components can be sourced externally.

For CEOs contemplating AI‑driven process automation, the first concrete step is to draft a control specification for a high‑volume, low‑risk workflow. The document should list permissible actions, required approvals, data access limits, and evidence collection requirements. If an organization cannot answer these questions, it is not ready to scale. Companies that embed such operating models will see faster cycle times, fewer errors, and audit trails that stand up to scrutiny—turning AI from a potential liability into a sustainable competitive advantage.