By NHI Mgmt Group Editorial TeamPublished 2026-03-23Domain: Governance & RiskSource: Lumos

TL;DR: Identity attacks account for over 80% of breaches, and Lumos argues that visibility alone cannot keep pace with growing permission sprawl, delegated access, and AI agents that operate at machine speed. The harder problem is not seeing access, but deciding what matters and acting on it before over-privilege expands the blast radius.


At a glance

What this is: Lumos argues that identity visibility is only the first step, and that identity intelligence plus AI agents are needed to turn sprawling access data into enforceable least-privilege decisions.

Why it matters: IAM, NHI, and autonomous identity programmes all struggle when teams can see access but cannot interpret, prioritise, and remediate it at enterprise scale.

By the numbers:

👉 Read Lumos's analysis of why identity needs intelligence, not just visibility


Context

Identity intelligence is the difference between seeing permissions and understanding which ones actually create risk. In practical IAM and NHI terms, visibility tells you what exists, but it does not tell you which identities are over-privileged, stale, or dangerous in the context of how the business really works.

That gap matters because access now spans humans, contractors, service accounts, bots, and AI agents. As environments scale, the governance problem shifts from inventory to judgement, and from review backlog to continuous action.

For autonomous and non-human identities, the stakes rise further because delegated access can be exercised at machine speed. Least privilege is no longer a static provisioning decision alone. It becomes an ongoing control problem across identity lifecycle, entitlement quality, and runtime behaviour.


Key questions

Q: How should security teams turn identity visibility into usable governance?

A: Security teams should use visibility as an input, not an endpoint. The next step is to rank permissions by risk, role fit, usage, and ownership so reviewers can focus on the small set that matters. Without that decision layer, access inventories become reporting artefacts rather than enforceable governance controls.

Q: Why do AI agents make least-privilege access harder to enforce?

A: AI agents can exercise delegated permissions at machine speed, so a single entitlement can create faster and wider impact than the same access used by a human. That means least privilege must be evaluated as an execution boundary, not only as an entitlement list. The key issue is blast radius, not just access presence.

Q: What do IAM teams get wrong about access review programs?

A: Teams often assume that review means control, but review only works when reviewers have enough context to make a real decision. In large environments, stale entitlements, role drift, and vague permission names make generic approvals almost inevitable. Effective review depends on pre-analysis, not just better forms or more frequent meetings.

Q: Who should own identity intelligence in an enterprise?

A: Identity intelligence should sit with the team that governs identity lifecycle and access risk, not as a side project for a data science group. The owner needs authority to connect discovery, prioritisation, and remediation across humans, NHI, and delegated agent access, because that is where the operational decisions happen.


Technical breakdown

Why identity visibility stops short of control

Identity visibility inventories who has access to what, but it does not determine whether that access is normal, necessary, or risky. In large environments, the raw state can include thousands of permissions, role combinations, and stale entitlements, which makes manual review too slow to be useful. Identity intelligence adds context by linking permissions to role patterns, usage history, peer baselines, and organisational change. That is what turns data into decisions. Without that reasoning layer, teams can only observe drift after it has already accumulated.

Practical implication: Treat visibility as a prerequisite and require an intelligence layer that can rank risk, not just report access.

How AI agents change least privilege for NHI and autonomous identities

When permissions are delegated to AI agents, the same entitlement can create a larger blast radius because the agent can execute at machine speed and repeat actions continuously. That changes the governance question from who can access a resource to what the delegated identity can do before a human notices. The important distinction is not AI branding, but runtime behaviour. If the system can independently choose actions, tools, and timing, then privilege is no longer just an assignment. It is a live execution boundary that can expand impact faster than human-operated workflows.

Practical implication: Review delegated access as an execution boundary, not just an entitlement record, whenever autonomous behaviour is present.

Context engineering for identity decisions

Context engineering means structuring identity data so an AI system can reason over it in the way an experienced reviewer would. That includes relationships between users, permissions, apps, usage patterns, governance policies, and organisational norms. A graph-based context model is more useful than disconnected rows because it preserves meaning across systems. The value is not just classification. It is compounding memory, where prior approvals, dismissals, and revocations improve future decisions. The result is a control loop that can move from generic analysis to organisation-specific judgement.

Practical implication: Build identity data models that preserve relationships and feedback, or AI features will remain shallow and hard to operationalise.



NHI Mgmt Group analysis

Visibility without decisioning is not identity governance. The article correctly separates inventory from action, and that is the right line to draw for modern identity programmes. Teams already know they have too many permissions, too much drift, and too little time to review it manually. The field-level problem is not discovery anymore. It is that discovery has outgrown human review capacity, so governance stops at observation unless the system can prioritise and act. Practitioners should treat intelligence as the operational layer that makes identity controls enforceable.

AI agents turn delegated access into a different class of governance problem. A delegated entitlement exercised by an autonomous actor is not equivalent to the same entitlement used by a human reviewer with pause points and limited throughput. The control assumption that access can be reviewed before meaningful impact occurs becomes unstable when execution is continuous and machine-paced. That means IAM and NHI teams need to evaluate the execution model behind the identity, not just the identity object itself. Practitioners should assume that blast radius, not just permission count, is the governing risk variable.

Identity intelligence is really about collapsing the gap between what exists and what matters. The article identifies the right failure mode: organisations can list access, but they cannot interpret it fast enough to keep pace with change. Identity review backlog: this is the practical governance debt created when teams can observe access but cannot convert it into action at the same rate the environment changes. The implication is that governance models built around periodic review will continue to lag unless reasoning and remediation are coupled.

Least privilege is no longer definable only at provisioning time. That assumption was designed for relatively stable roles and predictable access paths. It fails when entitlements are influenced by role drift, delegated use, and autonomous execution that changes the practical risk of the same permission set. The implication is not simply that more controls are needed. It is that the old model of fixed access meaning fixed risk no longer holds across humans, NHI, and agentic systems.

Context engineering is becoming the real differentiator in identity security tooling. Models are only as useful as the policy, usage, and relationship context they can reason over. That aligns with the direction of identity governance frameworks that require continuous evaluation rather than static approval. For IAM and NHI teams, the lesson is clear: better outputs will come from better identity context, not from adding another isolated AI feature.

From our research:

  • The average organisation believes more than 1 in 5 of their non-human identities are insufficiently secured, according to The 2024 ESG Report: Managing Non-Human Identities.
  • Enterprises that have experienced a compromised NHI averaged 2.7 separate incidents in the past 12 months.
  • For related lifecycle governance context, see Ultimate Guide to NHIs and extend the control model into access review and offboarding.

What this signals

Identity review backlog: programmes that can see access but cannot prioritise it will keep falling behind, especially as delegated access expands across humans, service accounts, and AI-enabled workflows. The practical signal is simple: if reviewers still need to inspect every entitlement manually, the operating model has already exceeded its governance capacity.

The next stage of maturity is not more dashboards. It is a control loop that ties identity context, policy, and remediation together so that the team can act on the highest-risk access first. That is the difference between identity intelligence as a report and identity intelligence as a programme capability.

With more than 1 in 5 non-human identities already believed to be insufficiently secured, per The 2024 ESG Report: Managing Non-Human Identities, many programmes are starting from a weak baseline before AI agents even enter the picture. The governance response should be to make identity context actionable across NHI and IAM, not to treat visibility as a finish line.


For practitioners

  • Map where visibility ends and decisioning begins Inventory the points in your identity programme where teams can see access but still cannot decide whether it should remain. Prioritise high-churn areas such as role changes, contractor access, service account ownership, and delegated access to AI-enabled workflows.
  • Evaluate delegated access by execution model Separate human-operated access from access exercised by AI agents or other non-human actors. Review how machine-speed execution changes blast radius, alerting requirements, and the usefulness of periodic access reviews.
  • Build context-rich identity data models Connect identity, entitlement, usage, and policy data so automation can reason over relationships rather than isolated records. If the system cannot explain why an entitlement exists, it will struggle to recommend whether it should stay.
  • Reduce review backlog with targeted prioritisation Use risk-based ranking to focus reviewers on permissions that are unusual, unowned, unused, or newly expanded after role change. That approach is more workable than asking humans to inspect every permission equally.

Key takeaways

  • Identity visibility is necessary, but it cannot enforce least privilege until teams can interpret which access actually matters.
  • AI agents increase the blast radius of delegated access because machine-speed execution changes the risk profile of the same entitlement.
  • Identity programmes should connect discovery, prioritisation, and remediation so governance keeps pace with the growth of permissions and roles.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST Zero Trust (SP 800-207) set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
OWASP Non-Human Identity Top 10NHI-03Access sprawl and delegated NHI risk map to lifecycle and privilege controls.
NIST CSF 2.0PR.AC-4Least-privilege access management is central to the article's governance argument.
NIST Zero Trust (SP 800-207)AC-3Continuous verification aligns with the need to control delegated and dynamic access.

Apply zero-trust access checks to delegated identities and re-evaluate access continuously.


Key terms

  • Identity intelligence: Identity intelligence is the ability to turn access data into risk-aware decisions. It goes beyond visibility by linking permissions, usage, role context, ownership, and policy so teams can decide what matters and what can be removed or tightened.
  • Identity visibility: Identity visibility is the ability to inventory who or what has access across applications and systems. It is useful for discovery, but by itself it does not explain whether access is appropriate, stale, or dangerous in the current business context.
  • Delegated access: Delegated access is permission granted to one identity so it can act on behalf of another identity or role. In NHI and agentic environments, delegated access can widen blast radius quickly because the acting identity may execute faster and more repeatedly than a human would.

What's in the full article

Lumos's full article covers the operational detail this post intentionally leaves for the source:

  • How the vendor defines identity visibility and intelligence as separate layers in its product model
  • Examples of AI agents for role mining, entitlement analysis, and access review prioritisation
  • The context engineering model used to make identity recommendations more specific to the environment
  • How the vendor positions continuous feedback loops between findings, approvals, and remediation

👉 Lumos's full post explains the role of AI agents, context engineering, and access prioritisation in more implementation detail.

Deepen your knowledge

NHI governance, agentic AI identity, and machine identity security are core topics in our NHI Foundation Level course, the industry's only accredited NHI security programme. If you are responsible for identity security strategy or identity governance in your organisation, it is worth exploring.
NHIMG Editorial Note
Published by the NHIMG editorial team on 2026-03-23.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org