Subscribe to the Non-Human & AI Identity Journal

Who is accountable when AI-assisted discovery exposes a high-risk legacy system?

Accountability should sit across vulnerability management, asset ownership, and identity governance. If a system remains reachable with privileged access, the failure is not only in patching but also in entitlement lifecycle control, especially where service accounts and admin credentials were never retired.

Why This Matters for Security Teams

When AI-assisted discovery surfaces a high-risk legacy system, the finding is never just a vulnerability ticket. It is a signal that the environment still has reachable assets, active privileged paths, and often unresolved ownership across infrastructure, application, and identity teams. That matters because legacy systems are frequently the place where service accounts, local admin passwords, and emergency access grants outlive the system they were meant to support.

Current guidance suggests treating the discovery as a shared accountability event, not a handoff to one team. Vulnerability management owns exposure tracking, asset owners own business risk and remediation priority, and identity governance owns the retirement or tightening of the access paths that keep the system reachable. NHIMG’s research on the 52 NHI Breaches Analysis shows how often compromise follows weak identity control rather than a single technical flaw, which is why reachability and entitlement lifecycle have to be assessed together. NIST also frames this as a control coordination problem in NIST Cybersecurity Framework 2.0, where ownership, protection, and response are distributed responsibilities.

In practice, many security teams encounter the accountability gap only after AI-assisted discovery has already exposed a system that no one can confidently decommission, patch, or authorize.

How It Works in Practice

The practical answer is to assign accountability by decision type. If the discovery tool finds a server, database, or embedded control system that still accepts privileged access, three owners should be named immediately: the asset owner, the vulnerability or exposure owner, and the identity owner. The asset owner decides whether the system is still needed and whether it can be isolated, upgraded, or retired. The vulnerability owner validates exposure, compensating controls, and remediation timing. The identity owner checks whether any service account, API key, certificate, or administrator credential still grants access and whether that access can be removed or reduced.

This is where identity governance becomes decisive. A system can remain operationally reachable long after patching is blocked by dependency chains, but that does not justify keeping static credentials alive. Best practice is evolving toward just-in-time access, short-lived secrets, and workload identity for non-human access so that a discovered legacy system is not protected by standing privilege alone. The NHI Lifecycle Management Guide is useful here because it frames retirement, rotation, and ownership transfer as lifecycle tasks rather than one-time cleanup. For control mapping, NIST SP 800-53 Rev 5 Security and Privacy Controls supports inventory, access enforcement, and continuous monitoring obligations.

  • Confirm whether the system is business-critical, decommissionable, or isolated pending remediation.
  • Identify every privileged path, including service accounts, shared admin IDs, and machine-to-machine credentials.
  • Set a remediation owner and an identity owner before any ticket moves forward.
  • Require short-lived credentials or compensating network controls if patching is delayed.

Where this guidance breaks down is in brownfield environments with vendor-managed dependencies, shared local admin models, or unsupported platforms that cannot accept modern identity controls without operational interruption.

Common Variations and Edge Cases

Tighter accountability often increases coordination overhead, requiring organisations to balance faster remediation against change-control risk. That tradeoff is real in environments such as OT, healthcare imaging, mainframe estates, or packaged applications where the legacy system cannot be patched quickly and the business owner may not control the underlying host. In those cases, accountability should still be explicit, but the remediation path may shift from removal to containment.

There is no universal standard for this yet, but current guidance suggests using compensating controls when retirement is not immediately possible. That can include network segmentation, privileged session brokering, JIT elevation, and aggressive credential rotation for any account that can reach the system. The key is to avoid an ambiguous state where everyone agrees the system is risky but no one owns the access that keeps it alive. NHIMG’s Top 10 NHI Issues is a useful reminder that lingering secrets and overprivileged service identities are usually the real control failure, not the scan result itself. For broader risk framing, the Anthropic report on AI-orchestrated cyber espionage shows how automated discovery and chaining can turn exposed systems into rapid exploitation paths.

When the legacy system cannot be removed, accountable ownership must extend to the credentials and trust paths that make it reachable, otherwise the discovery only documents the risk without reducing it.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST AI RMF set the governance and control requirements practitioners need to meet.

Framework Control / Reference Relevance
NIST CSF 2.0 GV.OC-1 Defines who owns the risk and decision-making for exposed legacy systems.
OWASP Non-Human Identity Top 10 NHI-01 Covers excessive standing access on non-human identities tied to legacy systems.
NIST AI RMF GOVERN AI-assisted discovery requires clear accountability and oversight for actions taken.

Assign business ownership for the legacy system and record who approves remediation, containment, or retirement.