📄
Abstract - Risk Architecture for AI-Native Engineering Teams: An Organizational Framework for Agentic System Governance
Engineering management research has produced mature frameworks for software risk: ownership by feature, escalation by severity, and assurance by test coverage. These frameworks implicitly assume deterministic behavior, discrete and auditable change events, and clear component-to-owner mappings. Teams that build and operate agentic AI systems violate all three assumptions at once: outputs are probabilistic, systems take autonomous multi-step actions, and the risk surface mutates silently between deployments. Existing AI risk literature addresses this from above (policy frameworks such as the NIST AI RMF and ISO/IEC 42001) or below (threat taxonomies such as OWASP's agentic AI guidance), but not at the layer where an engineering manager (EM) operates: roles, decision rights, and escalation structures. This paper contributes (i) a seven-dimension profile distinguishing pure software-engineering, hybrid, and AI-native teams; (ii) a six-cluster failure-mode taxonomy including a previously unarticulated cluster, dependency-boundary determinism mismatch; and (iii) a synthetic framework-adequacy methodology scoring how well each profile's risk architecture detects, contains, and escalates a defined scenario set. Because the object of study is framework adequacy rather than human behavior, the evaluation yields derived rather than observed coverage claims. Coverage degrades as teams move from pure software engineering to AI-native operation, monotonically in the median and abruptly in the count of uncovered, high-consequence failures appearing only at the AI-native step. The degradation concentrates in specific failure-mode categories, and the most severe, least-covered failures arise not inside AI-native teams but at the organizational boundary where their probabilistic outputs are consumed by determinism-assuming dependencies.
AI原生工程团队的风险架构:面向智能体系统治理的组织框架 /
Risk Architecture for AI-Native Engineering Teams: An Organizational Framework for Agentic System Governance
1️⃣ 一句话总结
本文针对AI原生团队(开发自主智能体系统的团队)面临的独特风险,提出了一套组织级框架,通过识别七类团队、六种故障模式(包括一种新发现的“依赖边界确定性不匹配”故障),并评估不同团队架构对风险的检测、遏制与升级能力,揭示了传统软件风险管理方法在AI场景下的失效规律。