The Non-Human & AI Identity Podcast

Ian Forrest is Mr NHI's Human Identity in the Hot Seat

4 min · 14 de abr de 2026
Portada del episodio Ian Forrest is Mr NHI's Human Identity in the Hot Seat

Descripción

AI is evolving faster than most organisations can secure it. The real question is - are you ready? In this episode of Human Identity in the Hot Seat, Mr NHI sits down with Ian Forrest from Andromeda Security to unpack the growing challenges at the intersection of AI security, identity management, and data privacy. As businesses rapidly integrate AI, the focus is shifting. It’s no longer just about driving efficiency — it’s about protecting AI systems, managing identities, and controlling access at scale. Welcome to the next frontier: “IAM for AI.”🎙️ What we dive into: Why traditional IAM models are being reshaped by AI adoption How AI is redefining roles, workflows, and the future of work The rise of sophisticated AI-driven cyber threats and exploitation techniques. Real-world approaches to strengthening security in AI-enabled enterprises, where data privacy risks are increasing — and how to stay ahead of them 🚀 Whether you're a CISO, cybersecurity expert, tech leader, or AI builder, this conversation delivers actionable insights to help you stay ahead in an AI-driven world.- Connect with Lalit - https://www.linkedin.com/in/lalit-choda-5b924120/- Connect with Ian - https://www.linkedin.com/in/ianpforrest/#AISecurity #AICybersecurity #IAM #AIrisks #LLMsecurity #DataPrivacy #CyberSecurity #AIhacking #TechTrends #InfoSec

Comentarios

0

Sé la primera persona en comentar

¡Regístrate ahora y únete a la comunidad de The Non-Human & AI Identity Podcast!

Empezar

2 meses por 1 €

Después 4,99 € / mes · Cancela cuando quieras.

  • Podcasts exclusivos
  • 20 horas de audiolibros / mes
  • Podcast gratuitos

Todos los episodios

82 episodios

Portada del episodio Eve Maler is Mr NHI's Human Identity In The Hot Seat

Eve Maler is Mr NHI's Human Identity In The Hot Seat

Non-human identity governance is failing — and the agentic AI wave is about to make it catastrophic. Static credentials are still everywhere. OAuth permissions are ungoverned. Service accounts nobody owns are sitting wide open. And now autonomous AI agents are being deployed into that same environment, with no accountability framework, no revocation policy, and no one asking whether they have the authority to act. This is what NHI risk looks like before it becomes a breach. 🔑 Key Takeaways: -Static long-lived credentials aren't dying on their own — someone has to decide to kill them - The line between agentic AI identity and legacy NHI security isn't as clean as the market wants it to be - Regulators are not moving fast enough — the accountability gap will be exploited before it's closed Eve Maler, President and Founder of Venn Factory and author of Mastering Digital Identity: From Risk to Revenue, answers 10 unfiltered questions on NHI risk, agentic AI governance, and whether the identity industry is drawing the right lines. From The Non-Human & AI Identity Podcast 🎙️ ⏱ Chapters: 00:00 Introduction00:28 Are You a Fan of Vibe Coding? 01:07 Will Static Long-Lived Credentials Still Exist in 5 Years? 02:16 Are Organisations Taking NHI Risks Seriously Enough? 03:15 Is IAM for AI More Important Than AI for IAM? 03:35 Will the AI Agent Digital Workforce Cause Mass Unemployment? 03:58 Are AI Agents Being Deployed Without Security Guardrails Right Now? 04:26 Will Hackers Be the Biggest Winners From AI? 04:58 Do Agents Behave More Like Employees or Software? 05:50 Do Agentic AI Identities Need to Be Treated Separately From Legacy NHIs? 07:07 Are Regulators Moving Fast Enough to Keep Up With Agentic AI? #CyberSecurity #NonHumanIdentity #IAM #AIAgents #IdentitySecurity #AgenticAI #ZeroTrust #DigitalIdentity #NHI #MachineIdentity #SecretsManagement #PrivilegedAccess #CISO #IdentityGovernance #shorts

Ayer7 min
Portada del episodio Ep # 13 - Agent NHI

Ep # 13 - Agent NHI

Identity security is broken — and AI agents are exposing exactly why. Most organisations still treat identity as an IT control function. That framing is costing them. In the agentic era, non-human identity (NHI) determines whether you can trust every agent action, every automated transaction, and every API call running through your infrastructure. But NHI authentication only solves half the problem: it can verify the agent, not whether that agent has authority to act. That gap is unsolved — and almost no one is talking about it. Eve Maler, President and Founder of Venn Factory and author of Mastering Digital Identity: From Risk to Revenue, joins Mr. NHI to explain why identity must become a board-level strategic function, not a cybersecurity afterthought — and what that demands in an agentic AI world. What you'll learn: - The "identity homelessness" problem — why no one owns identity governance in most enterprises - The Four Ps framework (Protection, Personalisation, Payment, People) and why Productivity as the hidden fifth P explains every bad identity decision - The agent authority gap: how NHI authenticates agents but can't yet verify their right to bind your organisation - The "ultimate bot owner" concept and what financial services accountability models can teach agentic AI security - Why agent actions must be classified as revocable or compensatable — and why self-assertion isn't enough - How to build on OAuth, OpenID Connect, and existing identity standards rather than starting from scratch. Essential for CISOs, identity architects, IAM leaders, and business executives who need to understand why identity is now a revenue and risk issue — not just an IT control. Key Moments: Introduction & Meet Eve Maler [00:00–02:07] Mr NHI's Human Identity in the Hot Seat [02:07–09:55] Mastering Digital Identity: From Risk to Revenue [09:55–15:20] Executive Misconceptions About Modern Identity Risk [15:20–17:36] Secure by Design: Will AI Tooling Break the Cycle? [17:36–19:15] The Agentic Standards Landscape: Chaos, Competition & the Road Ahead [19:15–24:07] The Four P's Framework: Protection, Personalisation, Payment & People [24:07–27:25] Identity Homelessness: Who Actually Owns Identity in Your Organisation? [27:25–29:45] The Four P's in the Agentic World: Payment, Delegation & Binding [29:45–31:37] Agent Accountability, Transaction Tokens & the Ultimate Bot Owner [31:37–36:30] What Happens When an Agent Goes Wrong? Accountability in Practice [36:30–42:40] Closing Advice for CISOs: Identity as a Product, Accept No Compromises [42:40–51:06] Identiverse, Book Resources & Final Thoughts [51:06–53:17] 📚 NHI Knowledge Centre: nhimg.org 🔗 Venn Factory: vennfactory.com 🎟️ Non-Human & AI Identity Summit at Identiverse — 15 June Subscribe & follow: LinkedIn — https://www.linkedin.com/company/non-human-identity-management-group TikTok — https://www.tiktok.com/@mr_non_human_identity #cybersecurity #nonhumanidentity #iam #aiagents #agenticsecurity #agenticai #identitysecurity #zerotrust #digitalidentity #nhi #artificialintelligence #ai #ciso #machineidentity #privilegedaccess

Ayer53 min
Portada del episodio Alexis Moyse is Mr NHI's Human Identity In The Hot Seat

Alexis Moyse is Mr NHI's Human Identity In The Hot Seat

Assuming NHI risk is under control while AI agents are already in production isn't a security strategy — it's a liability waiting to surface. Alexis Moyse, from Clarity Security, faces 10 rapid-fire questions on whether organisations are taking non-human identity risk seriously enough, whether the identity market consolidation is actually improving security outcomes, and whether traditional IGA platforms have any chance of keeping up with autonomous agents operating at scale. Can agentic AI truly be governed — or is control an illusion we're comfortable believing? Will AI agents eventually need to be fired? And is the industry drawing a sharp enough line between agentic AI security and NHI security, or collapsing two distinct problems into one? From market dynamics to vibe coding, this clip covers the ground most security conversations are still circling. 🔑 Key Takeaways: - NHI risk isn't being taken seriously — organisations are accepting breaches and moving on rather than making changes - Traditional IGA is compliance-first, not security-first — it won't adapt effectively to a world of autonomous agents - CISOs are aware the threat is coming but we've never handled service accounts, OAuth, or permissions at scale — what makes anyone think agents will be different In this clip, Alexis Moyse, from Clarity Security, delivers sharp, unfiltered answers on NHI governance, identity market consolidation, and why the assumption that CISOs are ready for autonomous agent fleets deserves serious scrutiny. From The Non-Human & AI Identity Podcast 🎙️ 00:00 Introduction 00:16 Are Organizations Taking NHI Risk Seriously Enough?01:16 Identity Market Consolidation & New Vendors 02:41 IAM for AI vs AI for IAM03:41 Can Agentic AI Really Be Governed? 05:01 Will AI Agents Need to Be Fired?06:31 Can Traditional IGA Adapt to AI Agents? 08:11 Is Agentic AI Security the Same as NHI Security? 09:36 Will Agentic AI Cause Mass Unemployment? 11:21 Are Agents Being Deployed Without Security Guardrails? 12:26 Are CISOs Ready for Autonomous Agents? 13:51 Vibe Coding: Opportunity or Risk? #CyberSecurity #NonHumanIdentity #IAM #AIAgents #IdentitySecurity #IGA #AgenticAI #shorts

8 de jun de 202615 min
Portada del episodio Ep # 12 - When AI Agents Inherit Risk: The NHI Problem Expands

Ep # 12 - When AI Agents Inherit Risk: The NHI Problem Expands

Most security teams are still retrofitting human identity frameworks onto AI agents. It won't hold. Agents that spawn sub-agents, inherit domain admin permissions through accidental OAuth consent, and operate non-deterministically aren't just a new identity type — they're a governance collapse waiting to happen, and the misconfiguration that triggers it is probably already in your environment. In this episode, Alexis Moyes, CEO of @ClaritySecurity, breaks down why static entitlements and upfront permission grants can't govern autonomous agent behaviour — and what real-time, intent-based authorisation actually requires in practice. What's covered: - Why organisations are repeating every mistake they made with machine identities — only faster and at scale - How agents inherit super-privileged access through a single accidental admin OAuth consent - The shift from posture management to real-time risk: why governance needs to operate alongside data flows, not after the fact - Agent lifecycle management: why "firing" an agent is a real security requirement and almost no one is doing it - Why IAM for AI is more urgent than AI for IAM — and what that distinction means for your security architecture - What Clarity Aperture 2.0 does differently: non-deterministic misconfiguration detection, attack path visibility, and one-click remediation. Essential listening for CISOs, IAM architects, and anyone building or governing agentic AI in production. Key MomentsIntroduction & Meet Alexis Moyse [00:00–01:00] Mr NHI's Human Identity in the Hot Seat [01:00–16:35] How AI Agents Inherit and Amplify Existing NHI Risks [16:35–20:20] Securing Autonomous Agents: Least Privilege, Segregation of Duties & Just-in-Time Access [20:20–25:35] The Future of Agent Identity: Real-Time Authorisation and Intent-Based Security [25:35–30:10] Governing AI Agents: Practical Strategies Organisations Can Implement Today [30:10–34:15] Clarity Security's Vision for Continuous Identity Governance [34:15–37:20] Risk Assessment, Attack Paths & Securing Humans, NHIs and Agents [37:20–39:50] Advice for CISOs: Preparing for Agentic AI and NHI Security Challenges [39:50–42:50] Identiverse, Industry Trends & Final Thoughts [42:50–45:25] 📚 NHI Knowledge Centre: nhimg.org 🔗 Learn more about Clarity Security: claritysecurity.com 📧 Contact: teamclarity@claritysecurity.com 🎟️ Non-Human & AI Identity Summit at Identiverse — June 15 Subscribe below and Follow Us On : LinkedIn – https://www.linkedin.com/company/non-human-identity-management-group TikTok – https://www.tiktok.com/@mr_non_human_identity #cybersecurity #ai #artificialintelligence #nonhumanidentity #iam #aiagents #zerotrust #airisks #agenticsecurity #claritysecurity

8 de jun de 202645 min
Portada del episodio Neil McGlennon is Mr NHI's Human Identity In The Hot Seat

Neil McGlennon is Mr NHI's Human Identity In The Hot Seat

AI agents are evolving into powerful enterprise identities — yet most organisations still lack the governance frameworks needed to control them securely.Neil McGlennon, Global Field CTO at SailPoint, responds to 10 rapid-fire questions focused on AI identity governance, non-human identities, and the growing security risks tied to autonomous systems.As AI agents gain access to sensitive environments, the questions become harder to ignore: should they be governed like human employees or managed like software? Are businesses prioritising innovation speed over identity controls? And when an AI identity is breached, who is accountable for the consequences?🔑 Key Takeaways:• AI agents are creating a new class of identities that challenge traditional governance models• The way organisations classify AI agents impacts access control, auditing, and lifecycle governance• Many enterprises are accelerating AI adoption without fully addressing identity security risksIn this clip, Neil McGlennon explores the intersection of AI, identity governance, and enterprise security — and why organisations need to rethink how trust is established in the era of autonomous systems.#CyberSecurity #SailPoint #IdentityGovernance #AIAgents #ZeroTrust #IAM #NonHumanIdentity #IdentitySecurity

4 de jun de 202611 min