Questions for an AI Strategy
Most AI strategies fail before they start because the right questions were
not asked at the outset. The questions below are the ones that determine
whether a strategy produces a working system or an expensive experiment.
What does the business need?
Start from the solution: what the business needs to be able to do, not what
technology makes possible. The solution is a business priority, not
a technical one. It is defined by which processes matter, where the
friction is, what good outcomes look like in this organisation, with these
clients and these regulatory obligations. Technology choices follow from
that understanding.
A strategy that begins with a technology selection is working in the wrong
order, and the consequences show up later: pilots that cannot be
operationalised, capabilities that do not connect to anything that matters,
investments that produce activity rather than outcomes.
The organisations that get this right treat the initial diagnostic as real
work. Not a workshop. A structured examination of how the business actually
operates, where the burden falls and what solving it would require
architecturally.
What is our data position?
Most AI strategies encounter the data problem after the strategy has been
committed to. The question belongs at the start. What data does the
organisation have, in what state, and where is it? Is it structured or
unstructured, centralised or scattered across spreadsheets and systems that
do not talk to each other? What would need to be true about the data for
the intended automation to work?
The answers determine what is achievable in what timeframe. A strategy
built on a realistic assessment of the data position is far more likely to
deliver than one that assumes the data will be ready when it is needed.
What do we know, and how do we make it operational?
Automated systems are only as good as the knowledge encoded in them. That
knowledge lives in the heads of experienced people who often find it
difficult to articulate. Getting it into the system requires a deliberate
process: structured conversations, careful formalisation, direct
participation from senior people who understand the work. This is as much
an organisational challenge as a technical one.
The people whose work is being automated are often also the people who hold
the knowledge the system needs. That creates a challenge that is easy to
underestimate. Systems built from documented processes rather than from how
work actually gets done tend to discover the gap at the worst possible
moment. The knowledge extraction process needs to begin early and involve
the right people.
Where do we start?
Automation compounds. The firms that will hold the strongest positions in
five years are not necessarily the ones moving fastest now: they are the
ones sequencing deliberately, building capability that accumulates rather
than deploying point solutions that have to be replaced.
The right starting point is where the process burden is highest and the
consequences of error are lowest. Operations, compliance, investor
communications: high volume, well-understood, rule-governed work that is
laborious to run manually. Automating this layer does two things
simultaneously: it frees capacity and it builds organisational confidence
in automated systems. That confidence is what allows scope to expand toward
higher-stakes work over time.
The firms that skip this and go straight to the analytical core tend to
discover that their data does not work, their knowledge is not organised
and their people are not ready. The sequence matters.
What can we do that we currently cannot do at all?
Efficiency is the obvious benefit of automation: the same work done faster,
with less manual effort. But the more significant opportunity is capacity
expansion: work that the organisation could not do before, at a scale that
was previously impossible.
A manager running a manual investor communications process can maintain
a certain depth of relationship with a certain number of investors. An
automated system changes both numbers. The same logic applies to
opportunity triage, compliance surveillance, portfolio monitoring. The
question worth asking is not just where automation saves time, but where it
opens territory that was previously out of reach.
What does governance look like?
The firm's existing governance frameworks were designed around human
decision-making. A person makes a call, owns the outcome, can be held
accountable. Automated systems distribute that decision-making across
workflows, agents and models, and the governance framework has to
follow.
Which processes require human oversight? How is authority delegated to
automated systems? How does the firm demonstrate control to regulators and
investors? These questions require explicit answers before deployment, not
after.
Established governance functions: risk committees, compliance frameworks,
model risk management, provide a foundation, but they were designed for
a different problem. They tend to treat AI systems the way they treat
vendor software: assessed at procurement, then trusted to run. That is not
sufficient.
The knowledge dimension is equally consequential and less often addressed.
What an agent can know shapes its outputs as directly as what it is
authorised to do. The knowledge made available to an agent: what it can
retrieve, what context it operates within, what it is permitted to reason
over, is a governance surface in its own right. Governing an automated
organisation means governing both dimensions explicitly.
Who is accountable when something goes wrong?
Governance frameworks establish controls. Accountability frameworks
establish who answers when the controls are not enough. These are different
questions and both need answers before an automated system goes into
production.
When an automated workflow produces a bad output: a miscommunication to an
investor, a missed compliance obligation, an erroneous trade instruction,
who is responsible? How is that determined? What is the process for
investigation, remediation and disclosure? These are not hypothetical
questions. They are questions that regulators are beginning to ask, and
that boards will ask when something goes wrong.
Accountability cannot be distributed to the system. It remains with people.
The design of an automated system should make it clear at every
consequential decision point who is accountable for the outcome, and the
system should produce the evidence needed to support that
accountability.
What kind of people do we need?
Automated organisations suit systematically minded people. The processes are
explicit, the workflows are defined, the knowledge is encoded: that environment
rewards those who can configure, administer and interrogate automated systems,
understand when outputs look wrong and know how to intervene. It is a different
kind of analyst. A different kind of operations person. Hiring profiles change.
Training changes. Over time, the culture changes.
This is not a problem to be managed. It is an opportunity. The firms that
recognise it early build teams that compound in capability alongside their
systems.
What becomes commercially possible?
Operational capability shapes what a firm can offer. A manager that can
assess opportunities faster, respond to investors with greater depth,
monitor compliance continuously and report with more granularity is
a different firm commercially. It can serve clients it previously could not
afford to serve. It can take on mandates it previously could not handle. It
can differentiate on the quality of its operational infrastructure in ways
that are visible to sophisticated investors and hard for competitors to
replicate quickly.
AI strategy and product strategy are the same conversation. Firms that
treat them separately end up with operational capability that does not
translate into commercial advantage.
What do our clients and investors need to know?
The governance question faces inward: how does the firm control what it has
built? The external question faces outward: how does the firm account for
what it has built to the people who depend on it?
Investors and clients are increasingly asking about AI use. Some want
assurance that the firm's processes are controlled and its outputs are
reliable. Some want to understand what decisions are being made by
automated systems and what oversight exists. Regulators are moving in the
same direction.
The firms that answer these questions well are the ones that built their
systems in a way that makes the answers available on demand: not
reconstructed from memory, not approximated from a survey, but produced
directly from the system itself.
How do we know it is working?
An automated system that is running is not necessarily a system that is
working. Output quality can degrade without obvious failure. Agents can
produce plausible-looking results from degraded knowledge. Workflows can
complete successfully while the outcomes they produce drift from what was
intended.
Measurement needs to be designed in from the start. What does good output
look like for each process? How is that assessed, and by whom? Where does
human review sit, and what does the reviewer actually check? What signals
would indicate that something is wrong before it produces a visible
failure?
Observability is not a feature to add later. It is a requirement that
shapes how the system is built.
How do we build to evolve?
The technology is changing. The regulatory environment is changing. The
business is changing. A system designed for today's AI landscape will need
to accommodate capabilities that do not yet exist, regulatory requirements
that have not yet been written and business priorities that have not yet
been identified.
Build to evolve: composable systems, explicit versioning and the discipline
to keep the architecture clean as scope expands. Systems that cannot evolve
get replaced. Replacement is expensive and disruptive in ways that
compounding systems are not.
What does it cost to run?
Every technical decision in this space has an economic dimension as
consequential as its technical one. Frontier AI models are powerful and
expensive. Many tasks are better served by smaller, cheaper, faster, more
specialised models: classifiers, embedding models, time series models, that
do their specific job with more precision and at a fraction of the cost.
Infrastructure choices carry the same logic.
The discipline to match the model to the task rather than default to the
most capable available tool is one of the clearest differentiators between
AI deployments that are economically sustainable and those that are not.
Procurement relationships, vendor commitments and the pull toward being
seen to use the most advanced technology push consistently toward
overspecification. A strategy that does not include an economic model is
not a strategy: it is a capability wish list.
How do we recover when things go wrong?
Things will go wrong. The question is whether the system is designed to
surface failures, contain their consequences and recover cleanly: or
whether failures propagate silently until they produce an outcome that is
difficult to explain.
That requires an immutable record of what happened, what the system knew at
the time and what it decided. It requires knowing which actions carry
sufficient consequence to warrant human review before completion. It
requires that escalation paths to human oversight are designed in from the
outset, not added later when something has already gone wrong. A system
that cannot recover cleanly and cannot explain what happened is a system
that cannot be trusted: and cannot be governed.