The Non-Human & AI Identity Podcast

Heiko Karl is Mr NHI's Human Identity In The Hot Seat

Most organisations are deploying AI agents faster than they can govern them — and the identity security gap that creates is already being exploited.Heiko Karl, CEO of Nexis, faces 10 rapid-fire questions on the blind spots organisations can no longer afford to ignore. From whether NHI threats are being systematically underestimated, to whether IAM for AI is now more critical than AI for IAM itself — this clip cuts straight to where security strategy is falling short.Do AI agents behave more like employees or software? Should they require background checks before deployment? Is time-to-market pressure quietly stripping security controls from agentic rollouts? And when a machine identity is breached — who in your organisation actually owns that problem?🔑 Key Takeaways:AI agents are proliferating as ungoverned identities — most PAM and IAM frameworks have no answer for them yetThe employee-vs-software question for agents isn't philosophical — it determines how you govern, audit, and revoke accessOrganisations are consistently prioritising speed to market over security controls for agentic deployments, and the blast radius is growingIn this clip, Heiko Karl, CEO at Nexis, delivers machine-speed answers on NHI security, agentic AI governance, and why the same mistakes made with machine identities are being repeated with AI agents right now.#CyberSecurity #NonHumanIdentity #IAM #ZeroTrust #AIAgents #PrivilegedAccess #IdentitySecurity #shorts

Eleanor Meritt is Mr NHI's Human Identity In The Hot Seat

Most organisations are still treating machine identities like a footnote in their security strategy — and AI agents are about to make that a catastrophic mistake.Eleanor Merrit, President of Arcon, faces 10 rapid-fire questions on the blind spots organisations can no longer afford to ignore. From whether NHI threats are being systematically underestimated, to whether IAM for AI is now more critical than AI for IAM itself — this clip covers the questions most security leaders are still avoiding.Are AI agents more like employees or software? Do they need background checks? Is time-to-market pressure quietly gutting security controls for agentic deployments? And when a machine identity is breached — who actually owns it?🔑 Key Takeaways:Most IAM frameworks were never designed for non-human identities — AI agents are exposing that gap in real timePAM is facing a fundamental rethink as autonomous agents operate with privileged access outside traditional governance modelsOwnership of breached machine identities remains undefined in most organisations, creating accountability voids that attackers are already exploitingIn this clip, Eleanor Merrit, President at Arcon, delivers machine-speed answers on NHI security, agentic AI governance, and why the window to get this right is closing fast.#CyberSecurity #NonHumanIdentity #IAM #ZeroTrust #AIAgents #PrivilegedAccess #IdentitySecurity #shorts

Ep #11 - Securing AI Agents In Runtime

AI Agents Don't Have Identity — They Have Access. That's the Problem. Most security teams are still applying human and machine identity frameworks to AI agents. It won't hold. Agents with memory, tool access, and the ability to spawn sub-agents operate in a fundamentally different threat space — and the credentials sitting in that memory are a live vulnerability right now. In this episode, Oded Hareven, CEO and Co-Founder of Akeyless, breaks down why static entitlements and session tokens can't govern non-deterministic behaviour — and what a runtime authority model actually looks like in practice. What's covered: - Why credentials in agent memory aren't just a bad practice — they're game over (the Pocket OS breach shows exactly how) - The architectural shift from identity to per-action, intent-aware authorisation - How an AI gateway proxy gives you traceability, choke-point control, and ephemeral credential issuance — and why nothing else does - Agent-to-agent delegation: how OAuth-style context passing should work, how it's being done dangerously wrong, and what accountability collapse looks like - Why current IAM frameworks aren't mature enough for complex agentic architectures Essential listening for CISOs, IAM architects, platform engineers, and anyone building or governing agentic AI in production. Key Moments: Mr NHI's Human Identity In The Hot Seat 1:40 – 12:38: What makes AI agents fundamentally different from machines and humans? 13:00 – 17:00 Why credentials in agent memory are a critical security failure 17:00 – 20:00 The shift from identity to "runtime authority" — a new security paradigm 21:20 – 24:40. The AI gateway proxy — how it works as a policy engine and kill switch 24:40 – 31:30 Agent-to-agent delegation: the governance time bomb 31:40 – 37:20 Are current frameworks mature enough for complex agentic architectures? 37:20 – 39:40 Akeyless's agentic runtime authority vision and what's coming 39:40 – 42:00 Key takeaways and where to start securing AI agents today 42:00 – 45:00 Closing thoughts and Identiverse 2025 preview 45:00 – 47:00 📚 NHI Knowledge Centre: nhimg.org 🔗 Learn more about Akeyless: akeyless.io 🎟️ Non-Human & AI Identity Summit at Identiverse — June 15 Subscribe below and Follow Us On: LinkedIn - https://www.linkedin.com/company/non-human-identity-management-group Tiktok -https://www.tiktok.com/@mr_non_human_identity #cybersecurity #ai #artificialintelligence #nonhumanidentity #iam #aiagents #zerotrust #airisks #runtime #akeyless

Adil Khan is Mr NHI's Human Identity In The Hot Seat

What happens when a top identity security expert gets grilled by Mr NHI on cybersecurity and identity governance? 🔥Adil Khan, CEO of SafePaaS, faces 10 rapid-fire machine-speed questions on Non-Human Identity (NHI) security, Identity and Access Management (IAM), cybersecurity governance, and the blind spots organisations can no longer afford to ignore. 👉 Are organisations truly taking NHI security risks seriously? 👉 Is your IAM strategy built for a world of AI agents, automation, and machine identities? 👉 Who is responsible when a Non-Human Identity is breached? #NonHumanIdentity #NHI #IdentitySecurity #IAM #CyberSecurity #MachineIdentity #AIAgents #AgenticAI #IDSA #IdentityGovernance #ZeroTrust #PAM #CloudSecurity #DevSecOps #WorkloadIdentity

David Goldschlag is Mr NHI's Human Identity In The Hot Seat

David Goldschlag, CEO and co-founder of Aembit, faces 10 rapid-fire machine-speed questions on Non-Human Identity (NHI) security, Identity and Access Management (IAM), cybersecurity governance, and the blind spots organisations can no longer afford to ignore. ⚡ Are organisations underestimating NHI threats? ⚡ Is your IAM built for AI agents and machine identities? ⚡ If a machine identity is breached… who owns it? Security is evolving fast—and it’s no longer just about humans. #CyberSecurity #IAM #ZeroTrust #AI #MachineIdentity #CloudSecurity #DevSecOps