[Improvement] [AI-SBOM-Compliance] In section 3.8 "Effectively Resourced," I would like to request the requirement for "executive signature."

[stakiran]

Describe the improvement

In section 3.8 "Effectively Resourced," require an executive's signature to ensure the program is officially recognized by the organization and to prevent executives from evading responsibility for supporting the AI SBOM.

Additional context

The executives hold real power within the organization. Their signature would solidify the program's legitimacy and mitigate risks of them avoiding engagement with AI SBOM. Without this requirement, there may be a risk that executives could evade responsibility.

Expected behavior

The policy would be updated to include a requirement for an executive's signature in section 3.8 "Effectively Resourced." This ensures that the program is officially sanctioned and that accountability is clear, reducing potential excuses for lack of support.

Additional context: For reference, I discussed this with ChatGPT o3 and it agreed that the suggestion is reasonable. It proposed two potential places for the insertion of this requirement: sections 3.1 "Policy" and 3.8 "Effectively Resourced."