Ep #11 - Securing AI Agents In Runtime

Neil McGlennon is Mr NHI's Human Identity In The Hot Seat

AI agents are evolving into powerful enterprise identities — yet most organisations still lack the governance frameworks needed to control them securely.Neil McGlennon, Global Field CTO at SailPoint, responds to 10 rapid-fire questions focused on AI identity governance, non-human identities, and the growing security risks tied to autonomous systems.As AI agents gain access to sensitive environments, the questions become harder to ignore: should they be governed like human employees or managed like software? Are businesses prioritising innovation speed over identity controls? And when an AI identity is breached, who is accountable for the consequences?🔑 Key Takeaways:• AI agents are creating a new class of identities that challenge traditional governance models• The way organisations classify AI agents impacts access control, auditing, and lifecycle governance• Many enterprises are accelerating AI adoption without fully addressing identity security risksIn this clip, Neil McGlennon explores the intersection of AI, identity governance, and enterprise security — and why organisations need to rethink how trust is established in the era of autonomous systems.#CyberSecurity #SailPoint #IdentityGovernance #AIAgents #ZeroTrust #IAM #NonHumanIdentity #IdentitySecurity

Michael Trites is Mr NHI's Human Identity In The Hot Seat

Enterprises are deploying AI agents at machine speed — but governance and identity security aren’t keeping pace.Michael Trites, Senior VP of Global Sales at Aembit, tackles 10 fast-paced questions on the rise of AI-driven identities, the expanding NHI threat landscape, and why organisations are repeating familiar security mistakes as autonomous systems scale.Should AI agents be governed like employees with assigned accountability, or treated purely as software identities? Are security teams giving AI systems privileged access too quickly? And when an AI agent is compromised, does anyone truly own the incident response?🔑 Key Takeaways:• AI agents are becoming highly privileged non-human identities with limited oversight• Existing IAM and PAM frameworks were not designed for autonomous AI access patterns• The rush to operationalise AI is creating governance gaps that attackers are beginning to exploitIn this short-form discussion, Michael Trites shares perspectives on identity-first security, machine access governance, and why AI agents are rapidly becoming one of the biggest emerging challenges in cybersecurity.#CyberSecurity #Aembit #IdentitySecurity #NHI #AIAgents #MachineIdentity #ZeroTrust #IAM

Stanislas Crépin is Mr NHI's Human Identity In The Hot Seat

AI agents are quickly becoming one of the largest unmanaged attack surfaces in enterprise environments — and most organisations still lack the controls to secure them effectively.Stanislas Crepin, Senior Global Director Sales Engineering at GitGuardian, answers 10 rapid-fire questions on the growing identity and secrets management risks surrounding AI agents and NHIs. From access governance to accountability, this discussion highlights where organisations are falling behind as agentic AI adoption accelerates.Do AI agents require the same trust validation as employees? Are companies unknowingly exposing sensitive systems in the rush to innovate? And as machine identities multiply, are security teams losing visibility over who — or what — has privileged access?🔑 Key Takeaways:• AI agents are introducing a new wave of non-human identities that traditional security models struggle to manage• Treating AI identities like software alone creates dangerous governance blind spots• Speed-to-deployment pressures are weakening security processes across agentic AI initiativesIn this clip, Stanislas Crepin breaks down the growing overlap between AI governance, identity security, and secrets exposure — and why organisations must rethink how they secure autonomous systems.#CyberSecurity #GitGuardian #NonHumanIdentity #SecretsManagement #AIAgents #IdentitySecurity #ZeroTrust #IAM

David Lee is Mr NHI's Human Identity In The Hot Seat

AI agents are scaling inside organisations faster than security teams can properly govern them — and attackers are already taking advantage of the gap.David Lee, Field CTO at Saviynt, takes on 10 rapid-fire questions around the identity risks enterprises can no longer ignore. From the growing exposure created by unmanaged NHIs to the debate over whether AI agents should be treated more like employees or software, this conversation goes straight to the governance failures security leaders are now facing.Should AI agents undergo the same scrutiny as human users before receiving access? Are organisations sacrificing security controls in the race to deploy agentic AI? And when an AI-driven identity is compromised, who actually owns the fallout?🔑 Key Takeaways:• AI agents are rapidly becoming unmanaged identities that existing IAM and PAM strategies weren’t built to secure• How organisations classify AI agents directly impacts governance, lifecycle management, auditing, and access revocation• Pressure to accelerate AI deployment is causing security oversight to slip — increasing enterprise risk exposureIn this short clip, David Lee shares sharp insights on non-human identities, AI governance, and why enterprises are repeating many of the same mistakes previously seen with machine identity sprawl.#CyberSecurity #IAM #AIAgents #ZeroTrust #IdentitySecurity #NonHumanIdentity #PrivilegedAccess #AI

Oded Hareven is Mr NHI's Human Identity In The Hot Seat

Treating AI agent identities the same as standard non-human identities isn't just lazy thinking — it may be the most dangerous assumption in security right now.Oded Hareven, Co-Founder and CEO of Akeyless, faces 10 rapid-fire questions on whether the industry is sleepwalking into the same governance failures it made with NHIs, only this time with autonomous agents operating at scale. Are CISOs truly ready to manage fleets of autonomous digital employees? Can zero trust even work for agents that make decisions independently? And if agentic AI identities need to be governed separately, is anyone actually building for that yet?From background checks for AI agents, to whether PAM needs a fundamental rebuild, to the question no one wants to answer — can you truly govern and control agentic AI at all — this clip covers the ground most security conversations are still avoiding.🔑 Key Takeaways:Agentic AI identities operate with a different threat profile to standard NHIs — conflating them is a governance blind spot most organisations haven't caught yetZero trust principles face a genuine stress test with autonomous agents that act, authenticate, and escalate privileges without human approval loopsThe industry is repeating the same under-governance mistakes made with machine identities — but the blast radius this time is significantly largerIn this clip, Oded Hareven, Co-Founder and CEO at Akeyless, delivers machine-speed answers on agentic identity governance, secrets management, and why the window to get this right is closing faster than most CISOs realise.From The Non-Human & AI Identity Podcast 🎙️#CyberSecurity #NonHumanIdentity #IAM #ZeroTrust #AIAgents #SecretsManagement #IdentitySecurity #shorts