Art Poghosyan

Most organizations already have AI governance discussions underway. They have policies, working groups, acceptable-use guidance, and long lists of principles around responsible AI adoption. But as enterprises move deeper into agentic AI, many security teams are discovering that governance alone doesn’t translate into operational control. That gap is becoming increasingly dangerous. AI systems are no longer isolated tools that employees occasionally interact with in a browser tab. They’re being embedded directly into productivity suites, connected to enterprise infrastructure, and deployed as autonomous agents capable of interacting with sensitive systems and executing real workflows. The problem is that many organizations are…

There was a time when the standard for privileged access management (PAM) programs was simple: record everything. The idea was that by capturing all privileged sessions, teams would have a record of all activity, the good, the bad, and the ugly, along with assurances that it would help businesses in regulated industries satisfy all audit requirements.  But sessions today bear little resemblance to those of just a few years ago. Most notably, businesses today operate in cloud-native environments, where privileged access is no longer limited to just humans. It’s been extended to non-human identities (NHIs) and AI agents, and access…

Accelerated AI adoption is ushering in a new security risk that is quietly taking root in enterprise environments. Shadow AI Agents have many similarities to the risks stemming from Bring Your Own Device (BYOD), where unsanctioned devices in the workplace introduce unmanaged risks. Now, instead of mobile devices, AI agents are entering organizations under the radar, often deployed by employees and departments with minimal to no oversight from IT or security. For those skeptical of the impact an autonomous AI agent could have on their business, this is for you. Autonomous AI agents are powerful and capable, and in many…