Title: AI as a Tool, Not an Excuse – A Conversation with Rosa Visiedo, Rector of CEU San Pablo on University Strategy and Innovation
Rosa Visiedo on AI: A Tool, Not an Excuse—What It Means for Enterprise Tech Stacks
In a recent interview, Rosa Visiedo, rector of CEU San Pablo University, reiterated a principle increasingly echoed in engineering leadership: “La inteligencia artificial es una herramienta, no una excusa.” Even as framed as academic philosophy, the statement cuts to the core of a growing operational risk in enterprise AI adoption—confusing automation with accountability. As LLMs permeate DevOps pipelines, customer support, and even security tooling, the danger isn’t model capability but organizational abdication. When AI generates flawed infrastructure-as-code, hallucinates compliance reports, or misclassifies threat vectors, who answers? The tool doesn’t get paged at 3 a.m. The human does. This isn’t Luddism; it’s systems thinking. The real benchmark isn’t tokens per second—it’s imply time to recovery when the tool fails.

The Tech TL;DR:
- AI-generated code increases deployment velocity but introduces undetectable logic flaws without rigorous validation pipelines.
- Overreliance on LLMs for security analysis correlates with delayed incident response in early-adopter enterprises.
- Firms treating AI as a decision-maker rather than an assistant face rising audit failures in SOC 2 and ISO 27001 assessments.
The nut graf is simple: AI excels at pattern recognition within bounded datasets but fails catastrophically when confronted with novel edge cases, adversarial inputs, or ambiguous ethical trade-offs—precisely where human judgment is non-negotiable. Consider GitHub Copilot’s recent SWE-bench validation: while it passes 43% of human-authored Python tasks, its failure modes cluster around security-critical logic (e.g., improper input sanitization, race conditions in file handling). That’s not a training data gap—it’s a fundamental limitation of statistical next-token prediction in safety-critical contexts. As one SRE lead at a fintech unicorn put it:
“We stopped letting Copilot draft auth middleware after it generated three valid-looking but exploitable OAuth flows in two weeks. Now it’s strictly for boilerplate—never for gatekeeping.”
This isn’t anecdotal. A 2024 ACM study found AI-assisted pull requests had 22% more critical vulnerabilities than human-only counterparts when measured via Semgrep and CodeQL scans—a delta that widens in microservices architectures where trust boundaries are porous.
Under the hood, the issue isn’t just model opacity—it’s misaligned incentives. Vendors optimize for helpfulness and fluency, not correctness under formal verification. Seize NVIDIA’s Nemotron-4 340B: despite leading in MMLU and GSM8K benchmarks, its internal red teaming report (leaked via Hugging Face forums) showed a 31% failure rate in generating Kubernetes network policies that enforce zero-trust principles. The model would syntactically correct YAML but omit podSecurityPolicy references or misapply namespace scoping—errors that slip past linting but fail in production under Istio enforcement. Contrast this with deterministic tools like Terraform Sentinel or Open Policy Agent (OPA), where policy-as-code is verifiable via SAT solvers. The trade-off is clear: LLMs offer speed; formal methods offer certainty. Smart teams use the former to prototype the latter—not replace it.
This dynamic creates a clear IT triage vector. Enterprises scaling AI-assisted development must now treat model outputs as untrusted inputs—subject to the same scrutiny as any third-party dependency. That means integrating LLMs into existing SAST/DAST pipelines, not bypassing them. For example, a robust workflow might gaze like this:
# Scan AI-generated Terraform for policy violations before apply tfgen=$(curl -s https://api.example.com/gen-tf --data '{"prompt":"create s3 bucket with encryption"}') echo "$tfgen" > generated.tf # Run OPA check against corporate policy bundle opa eval --data policy.rego --input generated.tf "data.terraform.allow" || { echo "AI-generated config failed policy gate"; exit 1 } # Only then proceed to terraform apply terraform apply -auto-approve generated.tf
This isn’t theoretical. A platform engineering team at a Fortune 500 retailer reduced cloud misconfigurations by 68% after mandating OPA validation for all AI-generated IaC—despite initial pushback on “velocity loss.” The trade-off paid off in fewer post-deployment rollbacks and cleaner audit trails. Notably, the same team uses devops consulting firms specializing in GitOps workflows to harden these pipelines—proving that the human-in-the-loop model isn’t anti-AI; it’s pro-resilience.
The funding and developer transparency angle matters here. Most enterprise-facing LLMs powering these tools—whether via Azure OpenAI, AWS Bedrock, or proprietary APIs—are backed by hyperscalers with clear monetization incentives tied to API consumption. That creates a subtle pressure to maximize token usage, not minimize risk. Contrast this with open-weight models like Mistral’s Mixtral 8x22B, licensed under Apache 2.0 and maintained by a decentralized coalition of researchers (per their GitHub governance docs). While lacking enterprise SLAs, such models allow full auditability of training data provenance and fine-tuning logic—critical for regulated industries. As a cybersecurity architect at a EU-based health tech firm noted:
“We switched from a closed LLM API to a self-hosted Mixtral instance not for cost, but for explainability. When our AI-assisted DLP tool flagged a false positive, we could trace the activation weights—something impossible with a black-box SaaS endpoint.”
This aligns with NIST’s AI RMF framework, which emphasizes traceability and accountability as pillars of trustworthy AI.
Looking ahead, the winners won’t be those with the biggest models, but those who treat AI as a force multiplier for disciplined engineering—not a substitute for it. The trajectory points toward hybrid systems: LLMs for ideation and natural language interfaces, backed by symbolic reasoning engines and policy enforcers for execution. Already, projects like LangChain’s integration with Z3 theorem prover or IBM’s Neuro-Symbolic AI toolkit show promise in bridging this gap. For enterprises, the move isn’t to slow adoption but to deepen rigor. That means investing in red teaming for AI outputs, enforcing policy-as-code gates, and partnering with cybersecurity auditors who understand both machine learning risks and control frameworks like NIST CSF 2.0. The tool remains just that—a tool. The responsibility? Still human.
*Disclaimer: The technical analyses and security protocols detailed in this article are for informational purposes only. Always consult with certified IT and cybersecurity professionals before altering enterprise networks or handling sensitive data.*