CM-301c · Module 2

The Gatekeeper Brief

4 min read

Each gatekeeper function needs a customized brief — not because the initiative is different for each function, but because what is relevant and what is persuasive is completely different for each function. The IT brief and the HR brief cover the same initiative. They are not the same document. Building one generic overview deck and presenting it to all four gatekeepers is the communication equivalent of sending the same performance review to every employee regardless of role. It signals that you have not thought about their specific concerns, which signals that you probably have not addressed them.

IT GATEKEEPER BRIEF
• Architecture overview (with diagram)
• Data classification and flow documentation
• Security controls: authentication, encryption, access management
• Vendor security attestations (SOC 2, ISO 27001)
• Change management process for AI model updates
• Incident response and rollback procedures
• Integration touchpoints with existing systems
• Performance and availability SLAs

LEGAL GATEKEEPER BRIEF
• Regulatory applicability matrix (GDPR, HIPAA, SOX, CCPA as relevant)
• Liability framework: who is responsible for AI-generated outputs
• Vendor contract review summary (IP ownership, data rights, liability)
• Precedent: comparable deployments and their legal treatment
• Risk register with mitigation for each identified liability
• Data retention and deletion compliance procedures

HR GATEKEEPER BRIEF
• Workforce impact analysis: roles affected, how, and when
• Role change documentation: what is being added, removed, or modified
• Training plan: approach, timeline, resource requirements
• Employee communication plan: what employees hear, when, and from whom
• Manager enablement: how managers support their teams through transition
• Feedback mechanism: how employee concerns are surfaced and addressed

FINANCE GATEKEEPER BRIEF
• Total investment: implementation, licensing, training, support
• ROI model: expected returns, measurement approach, timeline
• Payback period: when does the investment break even
• Cost governance: how costs will be tracked and managed ongoing
• Success metrics: what financial KPIs define success
• Comparison to alternatives considered