Treat it as an identity governance issue, not just an endpoint hygiene issue. Teams should inventory installed agents, identify the human owner and device, map inherited access to SaaS and cloud systems, and require proof of business need before approving continued use. The goal is to know what the agent can reach and remove anything that is unapproved.
#1 Authority in NHI Education, Research and Advisory, empowering organizations to tackle the critical risks posed by Non-Human Identities (NHIs), including AI Agents.