Autonomous weapon systems have moved from research labs into active procurement cycles. Governments now allocate substantial capital to AI-enabled defence capabilities while multilateral forums debate legal thresholds and accountability structures. The policy conversation has matured. The governance challenge now sits inside code repositories, system architectures, procurement contracts, and capital allocation frameworks. 

According to the Stockholm International Peace Research Institute, global military expenditure reached US$2.72 trillion in 2024, the highest level ever recorded. Within this spending, central defence budgets in the United States and China allocate significant resources to AI-enabled systems. Capital intensity has elevated ethical guardrails from aspirational principles to operational requirements embedded across the defence technology lifecycle. 

International Humanitarian Law as a System Requirement 

Any governance model for lethal autonomy begins with binding legal frameworks. The International Committee of the Red Cross has clarified that autonomous weapon systems remain subject to International Humanitarian Law, including the principles of distinction, proportionality, and precautions in attack. 

Article 36 of Additional Protocol I obliges states to review new weapons to determine whether they comply with international law. Several states, including the United Kingdom and Sweden, maintain formal weapons review processes anchored in this obligation. Governance frameworks for lethal autonomy, therefore, map legal review checkpoints directly into development lifecycles, validation protocols, and authorisation procedures. 

Military Doctrine as Governance Architecture 

National defence strategies define operational control thresholds and accountability structures. The U.S. Department of Defence updated Directive 3000.09 in 2023 to formalise policy on autonomous and semi-autonomous weapon systems. The directive requires senior-level review for designated categories and mandates human judgment over the use of force. It also codifies verification, validation, and test and evaluation requirements before fielding. 

These directives shape procurement conditions. Contractors must demonstrate traceability, safety controls, and reliability benchmarks before systems enter operational environments. Institutional review authorities embedded within defence hierarchies, therefore, function as structured governance checkpoints across the acquisition cycle. 

Technical Safeguards Embedded in System Design 

Technical governance provides the most immediate ethical control surface. The Defence Innovation Unit has issued Responsible AI guidelines aligned with Department of Defence AI Ethical Principles, emphasising traceability, governability, and reliability across system design and deployment. 

Large defence contractors integrate these controls into product development pipelines. 

Lockheed Martin, headquartered in Bethesda, Maryland, is one of the world's largest aerospace and defence companies and develops advanced military aircraft, missile systems, and space technologies. The company states in its corporate disclosures that it aligns AI development with the Department of Defence's ethical principles and applies internal governance processes for advanced technologies. 

BAE Systems, based in London, is a multinational defence, aerospace, and security company serving governments, including those of the United Kingdom and the United States. It has publicly described a Responsible AI framework that includes governance committees and structured risk-assessment processes for AI-enabled systems. 

Model assurance also depends on external oversight. The U.S. Government Accountability Office has reported on the need for strengthened testing and evaluation of advanced defence technologies, reinforcing accountability through independent audit and congressional review. 

Procurement, Capital Markets, and ESG Pressure 

Financial governance exerts a measurable influence on defence companies developing autonomous capabilities. Publicly listed firms disclose risk management practices in annual reports and sustainability filings, enabling investor scrutiny. 

BlackRock, headquartered in New York and the world's largest asset manager by assets under management, states in its stewardship guidelines that it evaluates material governance and product risks as part of investment oversight. Such scrutiny introduces capital market discipline into advanced defence technology programs. 

Export control regimes reinforce these controls. The Wassenaar Arrangement coordinates multilateral export controls on conventional arms and dual-use technologies. Participating states implement licensing systems that assess end-use and end-user risk, requiring companies to maintain traceable compliance infrastructures across international supply chains. 

Multilateral Negotiations and Norm Formation 

Global governance continues through multilateral engagement. The United Nations Convention on Certain Conventional Weapons hosts ongoing discussions on lethal autonomous weapon systems. Participating states have reaffirmed the applicability of international humanitarian law and the importance of human responsibility in the use of weapons. 

Parallel frameworks from the Organisation for Economic Co-operation and Development on AI principles influence national regulatory approaches, including transparency and accountability standards that extend into defence supply chains. NATO has also adopted an AI strategy and a Responsible Use framework that member states integrate into defence capability planning, reinforcing alliance-level governance expectations. 

Dual-Use AI and Emerging Defence Technology Firms 

Emerging defence technology firms operate within the same legal and export control regimes as established contractors, while often leveraging commercial AI infrastructure. 

Anduril Industries, headquartered in Costa Mesa, California and founded in 2017, develops autonomous surveillance and defence systems for the U.S. Department of Defence and allied governments. The company publicly states that it complies with applicable export controls and national security regulations. 

Palantir Technologies, headquartered in Denver, Colorado, provides AI-enabled data analytics platforms to defence and intelligence agencies as well as commercial enterprises. As a publicly listed company, it discloses government oversight and compliance obligations in filings with the U.S. Securities and Exchange Commission. 

Cloud infrastructure providers also form part of the defence AI ecosystem. 

Amazon Web Services, based in Seattle, Washington, delivers cloud computing and AI infrastructure services to enterprises and government agencies globally. 

Microsoft, headquartered in Redmond, Washington, provides cloud platforms, AI tools, and secure government cloud environments used by defence customers. 

Both companies publish responsible AI commitments and transparency reports, and they structure government contracts around defined compliance, security, and audit standards. 

Governance as an Integrated Control System 

Ethical guardrails for lethal autonomy now span international law, military doctrine, corporate governance, export controls, investor oversight, and multilateral norm formation. Each layer reinforces system-level accountability.

Legal review informs engineering requirements. Military directives shape procurement criteria. Corporate boards and investors require documented risk controls. Export regimes constrain technology transfer. 

The resulting governance architecture resembles a distributed control system embedded across institutions and technologies. As AI-enabled defence capabilities scale, credibility will depend on measurable compliance mechanisms integrated into development pipelines, operational command structures, and capital markets. Durable governance will arise from structured oversight embedded throughout the autonomous weapons lifecycle.