Skip to main content

Building the Future of Governance-as-Code

Transforming AI Governance with Open Standards

Financial institutions are rapidly deploying agentic AI systems, but governance, security, and cost visibility remain fragmented. FINOS is leading the charge to integrate open standards—from policy definition to runtime observability—into a seamless governance-as-code pipeline. Discover how our collaborative initiatives are shaping the future of responsible AI in financial services.

Get StartedJoin us
Abstract illustration representing AI and open governance

Why Governance-as-Code?

Agentic AI systems—agents that autonomously invoke models, tools, and protocols—require robust governance to ensure compliance, security, and cost efficiency. Traditional governance approaches are manual, siloed, and unable to scale with the complexity of modern AI workloads. FINOS is addressing this gap by building an open-source governance-as-code pipeline that integrates:

  • Policy Definition – Standardized frameworks for AI governance.
  • Security & Compliance – Automated controls and audits.
  • Observability – Real-time monitoring and cost tracking.
  • Feedback Loops – Continuous improvement through operational data.

This pipeline leverages existing open-source projects—FINOS AI Governance Framework, CALM, OpenTelemetry, OpenSSF, FOCUS, and Grafana—to create a unified system for the financial services industry.

AI Initiatives at FINOS

FINOS advances AI governance and production-ready systems through interoperable initiatives that help teams standardize requirements, architecture, and operational practices.

AI Governance Framework

Defines what to govern for agentic AI systems, including model selection, agent autonomy boundaries, and compliance requirements.

  • Standard governance policy structure
  • Targets for automated validation
Explore docs →

AI Reference Architecture

Provides a practical blueprint for building production AI systems with clear component boundaries for security, observability, and cost-aware operations.

  • Composable system patterns
  • Integration points for telemetry and controls
Explore docs →

Related open-source projects that extend the ecosystem with architecture-as-code tooling and agentic orchestration building blocks.

CALM (Architecture as Code)

Turns architecture and governance requirements into machine-readable specifications so teams can automate validation and keep systems aligned as they evolve.

  • Machine-readable architecture specs
  • Validation and policy-driven workflows
Explore docs →

Fluxnova (Agentic Orchestration)

Provides orchestration building blocks for agentic workloads, supporting repeatable execution patterns with hooks for governance and operations.

  • Orchestration primitives for agents
  • Operational hooks for visibility
Explore docs →