Drawing on our latest Security and AI report, based on a survey of OASIS Open members, this session will explore how organizations approach AI governance in practice. Will examine how entities assess AI use cases, manage procurement and risk, limit data exposure, and monitor business and security outcomes. The session will highlight patterns, challenges, and areas where guidance is still evolving.