What the heck is an AI governance role that would remotely require these kinds of ratios? PCI compliance is critical in payments and no one would suggest you need "PCI governance" in a single digit ratio to "builders".
Because there are no widely agreed upon standards for AI use. The EU AI Act still doesn't really solve this. Until we can all agree what safe and fair AI use is, companies will scramble to implement their own safeguards