By NHI Mgmt Group Editorial TeamPublished 2026-06-08Domain: AI SecuritySource: JupiterOne

TL;DR: The EU AI Act’s high-risk deadlines were pushed back to December 2027 for standalone systems and August 2028 for product-embedded systems, but the underlying obligations for risk management, data governance, logging, transparency, and human oversight did not change, according to JupiterOne. The delay buys time only for organisations that use it to build live AI inventory and evidence-ready controls, not for those treating compliance as a filing exercise.


At a glance

What this is: This is an analysis of the EU AI Act delay and its central finding that compliance is blocked less by deadlines than by missing AI inventory, asset context, and live evidence.

Why it matters: It matters because IAM, IGA, PAM, and AI governance teams need to know which AI systems exist, which identities can reach them, and which controls can prove oversight before high-risk obligations become audit failures.

By the numbers:

👉 Read JupiterOne's analysis of the EU AI Act delay and AI inventory gaps


Context

The EU AI Act delay does not reduce the governance burden for organisations running high-risk AI systems. The real problem is not the shifted date, but the assumption that teams already know which AI assets exist, where they run, what data they touch, and which identities can reach them.

For security and identity programmes, that makes AI inventory a control dependency rather than a reporting task. If an AI system is missing from the register, the controls that depend on it, including oversight, logging, and access governance, cannot be evidenced reliably.

JupiterOne’s argument is that most enterprises are still managing AI state through scattered tools and spreadsheets rather than a continuously updated control picture. That is typical, not exceptional, and it is exactly why the extension matters only if it is used to close the inventory gap.


Key questions

Q: How should organisations prepare for AI Act high-risk obligations while the deadline is delayed?

A: They should use the extra time to build a live inventory of AI systems, map data flows, and verify which identities can reach each model or pipeline. Compliance will depend on proving that controls operate against current production state, not on producing a late-stage document pack.

Q: Why do AI governance programmes fail when the inventory is incomplete?

A: Because every downstream obligation depends on asset context. If teams cannot see the model, its data, and its access paths, they cannot reliably document risk, prove human oversight, or demonstrate logging coverage. The gap is operational, not just administrative, which makes discovery the first control.

Q: What do security teams get wrong about AI Act compliance evidence?

A: They often treat evidence as a snapshot collected for an audit. High-risk AI governance needs continuous validation against live systems, because models, datasets, and access paths change quickly. Static files can describe intent, but only runtime checks can prove that the control actually exists.

Q: Who should own AI governance when models are reached through cloud identities and service accounts?

A: Ownership should sit across AI, security, and identity teams, with clear accountability for asset registration, access control, and evidence collection. If models are reachable through service accounts or workload identities, then IAM and PAM controls are part of AI governance, not separate from it.


Technical breakdown

Why AI inventory is the real prerequisite for AI Act compliance

High-risk AI obligations assume a live map of assets, dependencies, data sources, and control owners. In practice, AI systems are often introduced through cloud accounts, SaaS features, or API integrations that bypass central governance. Without inventory, organisations cannot prove what needs logging, oversight, or documentation, because they do not have a complete list of systems to govern. The compliance problem is therefore not just policy alignment, but asset discovery and relationship mapping across the AI estate.

Practical implication: build a continuously updated AI asset register that includes models, datasets, workloads, and reachable identities.

Why evidence must come from live controls, not audit snapshots

The article draws a clear distinction between documentation and evidence. A static conformity file may describe intended controls, but high-risk obligations require proof that controls are operating against real production state. That means monitoring the asset as it changes, not capturing a point-in-time screenshot. For identity teams, the key issue is whether access, oversight, and logging controls are validated against the live AI environment, including the identities and workloads that can invoke models or alter datasets.

Practical implication: tie control testing to live AI and identity telemetry rather than relying on periodic audit exports.

How identity governance becomes part of AI governance

The AI Act language may read like a regulatory framework, but the operating reality is identity governance. If teams cannot identify who can reach a model, who can retrain it, or which service accounts connect it to downstream systems, then human oversight and data governance remain theoretical. This is where AI governance intersects with IAM, IGA, and PAM. The important question is not only what the model does, but which identities are allowed to influence its behaviour and outputs.

Practical implication: include human and machine identities in AI governance scope, especially for access, retraining, and monitoring rights.


NHI Mgmt Group analysis

AI Act readiness is an inventory problem before it is a compliance problem. The article is right to frame the deadline extension as a window, not relief. High-risk obligations depend on knowing which AI systems exist, where they operate, and which assets and identities they depend on. Without that foundation, conformity, logging, and oversight become assertions rather than controls, which makes the real governance failure the absence of continuous discovery.

Identity governance is the connective tissue of AI governance. The AI Act talks about documentation, transparency, and human oversight, but those requirements only hold when organisations can trace access from identities to models, datasets, and workflows. That puts IAM, IGA, and PAM into the critical path for AI compliance, especially where service accounts and cloud workload identities can reach production models. Teams that treat AI as separate from identity will miss the enforcement layer.

Live evidence will replace policy documents as the primary audit artifact. The article correctly separates control design from proof. In the AI Act era, the organisation that can continuously demonstrate access scope, logging coverage, and data lineage will outperform the organisation that simply writes the right policy. This is a broader shift in governance maturity, and practitioners should expect evidence quality to matter as much as policy completeness.

AI governance debt is accumulating faster than regulatory calendars. The delay may reduce short-term pressure, but it also extends the period in which unmanaged AI assets can spread across business units. That creates a bigger evidence gap later, not a smaller one. Practitioners should use the additional runway to retire spreadsheet governance and build continuous control monitoring before the backlog becomes a compliance blocker.

What this signals

AI governance debt will show up first as an identity problem. Once AI systems are deployed through cloud accounts, SaaS features, and service accounts, the hardest control question becomes who can reach them and change them. That is why identity governance and AI governance are converging, and why programmes that keep identity, workload access, and AI oversight in separate boxes will struggle to evidence compliance.

The relevant operating model is continuous control monitoring, not annual attestation. The organisations that can connect AI assets to identities, data sources, and live controls will be able to show evidence faster, reduce audit churn, and absorb future regulatory changes with less rework. For practitioners, the key signal is whether AI risk management is becoming an always-on control, not a project.

Verification trust gap: the longer organisations rely on spreadsheets to track AI systems, the larger the gap becomes between policy intent and operational reality. That gap is especially dangerous where machine identities can invoke models or move data across environments. Teams should align AI governance with NIST AI RMF GOVERN and MEASURE, while using identity control evidence to support both oversight and accountability.


For practitioners

  • Create a continuous AI asset inventory Track models, datasets, APIs, cloud services, and business-unit deployments as a single governed inventory so that every high-risk obligation has a visible asset to attach to. Include ownership, data source, runtime location, and control status in the same record.
  • Map AI systems to identity reachability Identify the human users, service accounts, workload identities, and third-party integrations that can invoke, retrain, or modify each AI system. This is the bridge between AI governance and access governance, and it should be reviewed alongside privilege assignments.
  • Shift from point-in-time evidence to continuous control checks Use automated tests to verify logging, documentation, and oversight against live production state instead of relying on weekly or pre-audit exports. Evidence should reflect the current environment, not the environment as it looked last month.
  • Treat AI systems as part of the attack surface Bring AI workloads into the same risk model used for crown-jewel systems, including access review, change management, and incident response. If a model processes sensitive data or informs business decisions, it needs the same governance discipline as other critical assets.

Key takeaways

  • The article’s core point is that the AI Act delay does not remove the need for AI inventory, access tracing, and live evidence.
  • The governance failure most organisations face is not policy absence but incomplete visibility into which AI systems exist and which identities can reach them.
  • Practitioners should use the extra runway to connect AI governance, IAM, and continuous control monitoring before the high-risk deadlines return.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

NIST AI RMF, NIST CSF 2.0 and NIST SP 800-53 Rev 5 set the technical controls, while ISO/IEC 27001:2022 define the regulatory obligations.

FrameworkControl / ReferenceRelevance
NIST AI RMFGOVERNThe article centres on governance, accountability, and AI inventory readiness.
NIST CSF 2.0ID.AM-1AI inventory and asset context are the article’s core readiness gap.
NIST SP 800-53 Rev 5AC-6The article links AI governance to who can reach models and modify data flows.
ISO/IEC 27001:2022A.5.9Inventorying information and associated assets is central to the readiness gap described.

Apply least-privilege review to model access, retraining rights, and supporting service accounts.


Key terms

  • AI Asset Inventory: A continuously maintained register of models, datasets, APIs, and supporting services used to run AI systems. It is the minimum control foundation for governance because compliance, risk, and oversight all depend on knowing what exists and where it lives.
  • Continuous Controls Monitoring: An approach that validates control operation against live production state rather than relying on periodic snapshots. In AI governance, it helps prove that logging, documentation, and oversight are working on the systems currently in use.
  • Identity Reachability: The set of human and machine identities that can access, invoke, retrain, or modify a system. For AI governance, this matters because access paths determine who can influence outputs, data quality, and system behaviour.

What's in the full article

JupiterOne's full blog post covers the operational detail this post intentionally leaves for the source:

  • The control mapping between EU AI Act articles and live Continuous Controls Monitoring checks across AI environments.
  • The specific J1QL tests used to validate model documentation, logging, and guardrail coverage in production.
  • The AI-SPM versus governance-platform distinction with examples of where each category fits in the readiness stack.
  • The way JupiterOne maps asset relationships across AWS Bedrock, SageMaker, and Azure OpenAI environments.

👉 JupiterOne's full post explains the control mapping, live evidence model, and AI platform coverage in more detail.

Deepen your knowledge

The NHI Foundation Level course, the industry's only accredited NHI security programme, covers NHI governance, machine identity security, and identity lifecycle control. It helps practitioners connect access governance to the systems and identities that modern programmes depend on.
NHIMG Editorial Note
Published by the NHIMG editorial team on 2026-06-08.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org