HomePublicationsThe CISO Autonomy Mandate: Command, Control, and Governance...
Board & CISO

The CISO Autonomy Mandate: Command, Control, and Governance for Agentic AI Systems

✎ Kieran Upadrasta 📅 2026-03-08 🎓 CISSP, CISM, CRISC, CCSP
📖 Read Online (Flipbook) ⬇ Download PDF
Abstract

The shift from securing human-controlled systems to governing autonomous AI fundamentally redefines the CISO mandate. This report establishes the operational and strategic foundations of CISO authority in the age of agentic AI. Covers command authority over autonomous systems, control architecture for non-human identities, governance metrics tied to board-level risk, escalation authority during autonomous system failures, and the organizational structures required to exercise meaningful oversight.

Table of Contents
  1. 01The CISO in the Age of Agentic AI
  2. 02Command Authority Over Autonomous Systems
  3. 03Control Architectures for Non-Human Identities
  4. 04Governance Metrics and Board Accountability
  5. 05Escalation Authority and Crisis Decision-Making
  6. 06Organizational Structure for Agentic Oversight
  7. 07Mandate Alignment with Board and Executive
  8. 08Implementing the Autonomy Mandate
K

Kieran Upadrasta

CISO & Strategic Cyber Consultant · CISSP, CISM, CRISC, CCSP

27 years securing financial services · Big 4 pedigree (Deloitte, PwC, EY, KPMG) · Zero breaches managing £500B+ in assets

https://www.kieranupadrasta.com · LinkedIn