Quick Takeaways
- Enterprises are deploying AI agents with human-like privileges but lack proper management and visibility, creating security gaps.
- Cisco’s acquisitions of Astrix and WideField Security aim to turn identity into the primary control plane, integrating NHI management with existing security tools.
- Managing non-human identities (NHIs), including API keys and OAuth tokens, is critical for securing AI-driven enterprise environments.
- Industry experts see these moves as essential to closing gaps in identity security, supporting scalable, secure AI automation within a comprehensive security ecosystem.
Cisco Focuses on Identity as the Hub for AI Security
As AI agents are increasingly used by companies, a new challenge arises. These agents, including API keys and service accounts, hold privileges similar to humans. However, they are often not managed or monitored properly. This creates a security gap because these non-human identities sit outside traditional security systems. A recent survey shows that 25% of businesses already use AI agents, and this number could reach 74% in the next two years. Without proper management, these agents and their access remain hidden, posing risks. To address this, Cisco is making strategic moves. The company plans to acquire startups that specialize in discovering and managing non-human identities. These acquisitions aim to turn identity into the main control point for security, ensuring that who or what makes a request is verified before granting access. By integrating new tools into existing platforms like Splunk, Cisco wants to improve visibility over AI agents, making it easier for security teams to understand their actions and potential threats.
Building a Human-Centered Control Plane for AI Agents
Cisco’s new approach involves making identity verification the foundation of cybersecurity decisions. This shift means that instead of relying solely on where a request originates, companies will focus on who or what is making that request. To do this effectively, Cisco is integrating advanced technology into its security platforms. One of these tools is from Astrix Security, a startup that Cisco is acquiring for approximately $400 million. Astrix’s platform helps identify every non-human agent in a network and understand their behavior. It also manages access privileges and detects suspicious activity early. The goal is to create a unified system that tracks both human and AI identities continuously, helping security teams quickly respond to potential threats. This development signals a move toward a more proactive and comprehensive security system, where the control plane is centered on identity, making enterprise defenses more adaptable to the growing presence of AI in the digital landscape.
Discover More Technology Insights
Learn how the Internet of Things (IoT) is transforming everyday life.
Access comprehensive resources on technology by visiting Wikipedia.
CyberRisk-V1
