Washington, D.C. – Today, the Paladin Global Institute (PGI), led by Kemba Walden, released a primer entitled “The Governance Layer: A Primer for Tech and Cyber Policy.” This follows the 2025 introduction of the “AI Tech Stack” framework by PGI. This latest paper proposes a new governance paradigm that acknowledges AI’s distinct risks and has a foundational structure made up of protocols, principles, policy, and law.
“As AI systems rapidly mature, it is essential we establish a clear governance strategy to encourage a competitive and secure AI future,” said Kemba Walden, President of Paladin Global Institute. “Effective governance can increase public trust, ignite innovation, and advance national security interests. The Paladin Global Institute is proud to release our second primer on the AI Tech Stack which aims to create a shared vocabulary for policymakers and cyber practitioners around AI governance and the technology landscape.”
The proposed Governance Layer includes recommendations for both external and internal governance systems. The primer explains the essential role of strong public-private collaboration between tech, cyber, and policy professionals to address emerging challenges across the tech stack and to support responsible AI development and makes the following policy recommendations:
- Legislate for understanding first—then regulate with evidence. Congress should prioritize AI system mapping and risk visibility before setting jurisdictional boundaries or preempting state law.
- Move AI governance from static rules to dynamic, runtime oversight. S. policy must reflect how AI systems operate across development, deployment, and continuous updates.
- Codify and fund CAISI as the federal AI systems authority. Establish the Center for AI Standards and Innovation (CAISI) at the U.S. Department of Commerce to map risks across the AI tech stack, resolve federal–state conflicts, and review incidents modeled on the NTSB.
- Align governance to the AI tech stack and the model lifecycle. Implement layered oversight – from data and models to infrastructure and applications – with pre-deployment testing, post‑deployment monitoring, and continuous safeguards for high‑risk systems.
- Lead interoperable global AI standards while fixing U.S. fragmentation. Set a national data security and privacy baseline and align with allies – especially the EU – to reduce regulatory patchwork and ensure U.S. values shape global AI norms.
“We must implement responsible governance now to build trusted, safe, and secure AI systems as capabilities advance,” said Devin Lynch, Senior Director of the Paladin Global Institute. “This primer’s recommendations position leaders to establish the institutions that shape technological development and societal impact. We look forward to developing further recommendations for each layer of the AI Tech Stack.”
The report was authored by PGI, and Paladin Managing Director and founding CEO of the National Cyber Security Centre Ciaran Martin, among others, served as a reviewer.
The Paladin Global Institute was founded by Paladin Capital Group – the multistage investor specializing in cyber and advanced technology – to protect the world’s critical infrastructure from AI, cyber, and deep tech risks.
About Paladin Capital Group
Paladin Capital Group was founded in 2001 and has offices in Washington DC, New York, London, Luxembourg, and Silicon Valley. As a multi-stage, dual-use investor, Paladin’s core strength is identifying, supporting, and investing in innovative companies that develop promising, early-stage technologies to address the critical cyber, AI, defense and advanced technology needs of both commercial and government customers.
Combining proven investment experience with deep expertise in global security, cyber technology, and cutting-edge research, Paladin has invested in more than 88 companies since 2008 and has been a trusted partner to investors, entrepreneurs, and governments for over two decades.
For more on Paladin Capital Group, follow us on LinkedIn or visit our website.
About Paladin Global Institute
The Paladin Global Institute’s mission is to protect global critical infrastructure from cyber, AI, and deep tech threats and enhance the safety of people online by investing in research and advocacy, making informed policy recommendations, and bringing together the public and private sectors to share knowledge and create and invest in innovative technologies.