Internal Build in the Age of AI – Part 2
For Part 1: When Friction Disappears, Sprawl Begins
Implementation cost and ownership cost have always been different problems. Building something requires a concentrated effort over a defined period of time. Owning something requires a sustained commitment with no defined end: maintenance, support, continuity planning, and the organizational knowledge that keeps a system legible to the people who depend on it long after the people who built it have moved on. These two cost structures have always been asymmetric. The current environment has made that asymmetry consequential in a new way.
When internal development was expensive and slow, the gap between implementation cost and ownership cost was large enough that most organizations were forced to confront it before committing. The cost of building was high enough to demand serious evaluation, and that evaluation tended to surface ownership questions as a matter of course: who supports this, what is the continuity plan, what happens when it fails. Not always, and not always well. But the economic weight of the decision created pressure to ask.
That pressure has eased considerably. And in many organizations, the ownership questions that pressure used to surface have not been replaced by anything more deliberate.
The conventional framing of internal build decisions treats them as a choice between building and buying (between internalizing capability and acquiring it from a vendor). What that framing tends to obscure is that neither option eliminates complexity from the environment. Both options relocate it.
Before addressing where that complexity goes, it is worth being precise about why the case for selective internal development has genuinely improved. Some vendor platforms are substantially overbuilt for what an organization actually needs: designed for the broadest possible market, carrying features and integrations the organization will never use, and priced accordingly. Some workflows are specific enough to the business that no vendor solution will ever map cleanly onto them without significant customization that effectively converts the vendor relationship into an internal development project anyway. Some internal capabilities are narrow enough in scope that the cost of assembling, adapting, and evolving them internally is now meaningfully lower than the cost of managing a vendor relationship over the same period.
These are not rationalizations. They are real conditions, and for organizations with the operational maturity to evaluate them clearly, AI has expanded the set of cases where building internally is the more rational choice. That is a legitimate strategic development, and leadership that dismisses it wholesale is leaving real capability and economic efficiency on the table.
The governance discipline that follows is not an argument against building. It is a condition of building well.
When an organization acquires a vendor platform, it takes on vendor dependency: contract risk, pricing leverage, roadmap alignment, and the constraint of building on someone else’s architecture. Those are real costs, and they are sometimes reason enough to build internally instead, particularly now, when the economics of doing so have improved.
But when an organization builds internally, the complexity that the vendor relationship was carrying does not disappear. It reappears as maintenance burden, support obligation, continuity risk, and ownership concentration. The vendor relationship ends. The operational dependency it was carrying gets transferred inward, usually to a smaller number of people, with less documentation, less redundancy, and less institutional structure around it than the vendor maintained.
This is the ownership transfer that rarely gets priced honestly at the moment of decision. The organization is not simplifying its environment. It is deciding where the complexity is going to live; and in most cases, it is moving from a structured external relationship with contractual accountability into an informal internal one with accountability that depends heavily on individual continuity.
The same conditions that make more internal builds rational also increase the likelihood that organizations will take on ownership obligations without fully pricing them. The expanded decision surface does not come with expanded evaluation discipline by default, and the more build decisions an organization makes, the more ownership commitments it accumulates, regardless of how sound the individual cases appeared at the time.
The risk that follows from that transfer is not hypothetical, and it is not confined to organizations with immature IT functions. It is the normal trajectory of internal builds that were useful enough to survive but never governed well enough to age cleanly.
The Python stack that handles something in the critical path but mostly lives in one person’s head. The automation tied to a service account nobody remembers creating and everyone is reluctant to touch. The internal approval workflow that started as a temporary solution and is now embedded in every new hire’s onboarding. The dashboard someone built quickly that became the authoritative source for a business process without anyone deciding that it should.
These are not edge cases. They are the predictable result of build decisions that were made without sufficiently pricing what ownership would require: decisions where the question of who owns this in three years either did not get asked or did not get answered honestly.
For leadership, the significance of this pattern is not operational. It is structural. Each of those systems represents a point of concentrated dependency: a place where the organization’s ability to function depends on a narrow set of people, undocumented knowledge, or infrastructure that was never designed to be maintained by anyone other than its original builder. That concentration is a form of structural fragility that does not appear on any balance sheet but sits there nonetheless, accumulating quietly until something disrupts it.
In environments where speed, integration, or transformation pressure is already compressing the space for governance discipline (and private equity portfolio environments are a particularly acute version of this) the accumulation accelerates. The decisions get made faster, the ownership questions get deferred further, and the cost of surfacing the fragility later compounds accordingly.
The governance question this creates for leadership is not how to slow down internal development. The case for building more selectively and strategically than before is real, and the organizations that act on it thoughtfully will likely carry better economics and tighter operational fit than those that default to vendor solutions out of habit. The governance question is how to make ownership cost visible at the moment of decision, before the obligation is already in place, so that the builds the organization commits to are ones it is genuinely prepared to sustain.
That requires a different organizing principle than the one most build vs. buy evaluations use. The traditional evaluation asks whether the organization can build something, whether the economics favor building over buying, and whether the internal team has the capacity to execute. Those are reasonable questions, but they are implementation questions. They do not address the ownership horizon.
The more useful organizing principle for leadership is reversibility. Where you trust internal builds first, and where you extend AI-enabled development first, should be determined by the reversibility of the errors those decisions can produce, not by the speed at which they can be deployed.
A system that sits at the intelligence and interaction layer of operations (intake, summarization, reporting assistance, operational query support) fails in ways that are usually recoverable. A decision made on a bad summary can be revisited. A report generated incorrectly can be corrected. The cost of error is real but bounded, and the learning curve is survivable.
A system embedded in the operational spine (identity management, change control, approval authority, ownership records) fails in ways that compound structurally. Errors here do not stay local. They propagate through processes that depend on the system’s integrity, and the cost of unwinding them tends to be significantly higher than the cost of the original build looked at the time.
The sequencing principle that follows is straightforward: start where the upside is high, the structural risk is lower, and the reversibility of error is greatest. Build the governance discipline that surrounds ownership before extending internal build commitments into the parts of the environment where failure is harder to recover from.
This is not a constraint on ambition. It is a structure for exercising it without accumulating fragility that leadership cannot see until it surfaces at the worst possible moment.
The questions that should precede any significant internal build commitment are not complicated. Who owns this in three years? What is the continuity structure if the people who built it are no longer available? What breaks structurally if this fails, and what does recovery require? If those questions cannot be answered clearly before the decision is made, the organization is not evaluating a build decision. It is deferring an ownership decision, and deferring it into a future where the options will be narrower and the costs will be higher.
Governance discipline at this level is not about slowing down. It is about building a structure in which the organization knows what it is taking on before it has already taken it on. That is where judgment gets exercised: not at the moment of deployment, but in the design of the standards that govern what the organization is willing to own.
That design responsibility belongs at the same organizational altitude as capital allocation, not delegated into the IT function as an operational matter, but owned at the level where commitments of this kind are evaluated and authorized. DevOps formalized the discipline around how organizations build and release. SDLC formalized the discipline around how development work gets structured and governed. The ownership and sequencing discipline this environment now requires is the governance-altitude equivalent of that work: a set of standards applied not to how the organization executes internally, but to what it decides it is prepared to sustain. Organizations that treat this as an IT problem will continue to discover the costs of that decision later than is useful. Organizations that treat it as a governance problem will be positioned to capture the strategic opportunity that the current environment has genuinely created.
Version 1.1 – last review April 2026
The.Smorg tech 