Building Governance that Holds Because the Mission Demands It—Not Because Anyone Required It
We have spent years in this industry talking about who belongs in the room—the board table, the executive suite, the security leadership track. What we have talked about far less is what it actually takes to get there, and whether the commitments organizations have made to broadening who leads are holding when the environment makes it easier to let them quietly lapse. Jameeka Green Aaron has operated at both levels simultaneously: as the CISO responsible for making security governance work inside a global digital health company serving millions of members, and as a board member whose job was to ask the harder questions about whether the organization was doing what it said it would. In this conversation with Navroop Mitter—recorded just one day after her move to Emerson Collective—Jameeka traces the arc from the South Side of Stockton to Black Hat MEA in Saudi Arabia, names the structural conditions that have kept the pipeline too thin for too long, and explains what it actually took to build AI governance at Headspace that held because people's wellbeing demanded it—not because regulation required it.
