SUNY’s systemwide AI governance policy requires the 64-campus system to establish or update AI guidelines by year-end, with specific attention to bias evaluation, student data privacy, and responsible AI use. The binding framework is pushing campus IT leaders to translate policy into vendor evaluation workflows and governance processes. In practice, CIOs are being asked to operationalize AI risk management at scale—covering how tools are assessed before adoption, how permissions and data flows are protected, and how institutions support responsible use across academic and student services. Campus leaders will need clear internal standards for procurement, monitoring, and incident response as AI adoption accelerates.