TL;DR: Legacy classification tools cannot keep pace with cloud and SaaS data sprawl, and Cyera argues that LLMs, clustering, and learned intelligence can move security from pattern matching to contextual understanding, according to Cyera. The deeper shift is that data security now depends on interpreting meaning, business relevance, and exposure, not just finding known strings.
At a glance
What this is: This is Cyera's argument that data classification must move from pattern matching to contextual understanding to keep up with modern cloud, SaaS, and multi-model data environments.
Why it matters: It matters because IAM, NHI, and human identity programmes all depend on knowing what data is exposed, who or what can reach it, and whether controls match actual business context.
By the numbers:
- Cyera has found that about 86% of an organization’s data is unique to its environment.
- 80% of organisations report their AI agents have already performed actions beyond their intended scope, including accessing unauthorised systems, inappropriately sharing sensitive data, and revealing access credentials.
👉 Read Cyera's analysis of LLM-driven data classification in modern environments
Context
Data classification has always failed when the control plane knows the record format but not the record meaning. In cloud, multi-cloud, and SaaS estates, teams are left with partial maps, false positives, and access decisions that do not reflect how data is actually used.
LLM-driven classification changes the problem from string matching to contextual interpretation. That matters for IAM and data governance alike, because the security question is no longer only what the data looks like, but what it means, where it sits, and which identity types can touch it.
Cyera's own argument is that the environment now requires adaptive classification rather than one static taxonomy. That is a typical starting point for modern data security teams, and it reflects a broader programme problem across NHI and human access governance as well.
Key questions
Q: How should security teams classify data in cloud and SaaS environments?
A: Security teams should combine deterministic pattern matching with contextual methods that understand meaning, relationships, and business use. In cloud and SaaS environments, one static taxonomy will miss proprietary data and generate noise. The practical goal is classification that is precise enough to drive access decisions, remediation, and review without overwhelming analysts.
Q: Why do traditional data classification tools fail at scale?
A: Traditional tools fail because they are built to recognise patterns, not interpret context. At scale, cloud sprawl, unique enterprise data, and unstructured content create too many exceptions for rule-only systems to handle. The result is partial visibility, false positives, and weak confidence in downstream governance decisions.
Q: How do teams know if contextual classification is working?
A: It is working when findings become more actionable, false positives drop, and policy decisions match business sensitivity instead of generic labels. Teams should measure precision, triage burden, and the share of findings that lead to a real access, retention, or remediation decision. Coverage without action is not effective classification.
Q: Should classification outputs feed identity and access reviews?
A: Yes. Classification should inform who can access data, what level of privilege is justified, and which records need faster review. Human users, service accounts, and AI agents all depend on the same underlying data truth, so access reviews are stronger when they are tied to context-aware classification rather than broad data labels.
Technical breakdown
Why rule-based data classification breaks at cloud scale
Rule-based classification depends on predictable formats such as regex patterns, keyword lists, and fixed labels. That works when data is structured and repetitive, but it fails when documents, files, and records vary by business unit, environment, and workflow. In cloud and SaaS estates, the same concept may appear under different names, schemas, or languages. The result is a system that detects strings, not meaning, and generates noise faster than teams can triage it.
Practical implication: reduce reliance on static pattern libraries as the primary classification layer and treat them as one signal among several.
How LLM validation improves classification precision
LLM validation uses contextual understanding to decide whether a detected pattern actually represents sensitive data. Instead of accepting every number sequence, identifier, or keyword hit, the model reads surrounding text and usage context to determine whether the item is truly relevant. This is different from simple enrichment because the model is being used as a verifier, not just a scorer. That reduces false positives and helps teams focus on records that carry real governance value.
Practical implication: place verification after initial detection so security teams can suppress noise without losing the ability to spot genuinely sensitive content.
Why semantic distancing matters for unstructured and proprietary data
Semantic distancing compares documents by meaning rather than by surface similarity. Two files can look different, use different field names, and still describe the same business process or sensitive concept. That matters because most enterprise data is not generated from public taxonomies. Learned classification extends this by identifying patterns that emerge from behaviour, relationships, and context inside a specific organisation. Together, these methods are designed to handle the 86% of data that is unique to each enterprise.
Practical implication: use context-aware grouping and learned models to classify proprietary data that traditional taxonomies will never label correctly.
Breaches seen in the wild
- Moltbook AI agent keys breach — Moltbook breach exposed 1.5M AI agent keys.
- AI LLM hijack breach — attackers used stolen AWS access keys to hijack Anthropic LLM models on Bedrock.
Read our 52 NHI Breaches Analysis report for a comprehensive view of breaches impacting Non-Human Identities including AI Agents.
NHI Mgmt Group analysis
Context-aware classification is now a governance requirement, not a tuning exercise. The old model assumed that data risk could be inferred from format, label, or location. That assumption breaks when the same business meaning is distributed across cloud, SaaS, and collaboration systems, and when a large share of enterprise content is unique to the organisation. Practitioners should treat classification quality as a control foundation, not an optimisation problem.
LLM-based verification creates a sharper boundary between noise and actual exposure. Pattern matching alone produces volume, but not judgment. The field shift here is that classification increasingly has to answer whether a finding is materially sensitive in context, which affects access reviews, DLP triage, and downstream policy decisions. Teams that still measure success by match count will miss the real question: whether the system can support accurate action.
Data context is the named concept that now separates visibility from governance. Data context means understanding not just what a file contains, but how that content relates to business process, sensitivity, and use. That concept matters because classification without context cannot support reliable authorisation, prioritisation, or remediation. Practitioners should reframe classification programmes around context quality rather than metadata volume.
This approach points to a broader convergence between data security and identity governance. Once data can be understood in context, teams can make better decisions about which human, service, and AI identities should reach it. That does not eliminate IAM complexity, but it does make entitlement decisions more defensible because they are grounded in actual data meaning. Practitioners should align classification, access policy, and recertification around the same data truth.
Continuous classification is becoming the operating model for modern estates. Static taxonomies age quickly in environments where data changes faster than review cycles. Cyera's framing reinforces a wider market reality: security teams need classification that learns, adapts, and stays useful as datasets, workflows, and identity patterns evolve. Practitioners should expect governance processes to depend on living classification rather than annual clean-up cycles.
From our research:
- 1 in 4 organisations are already investing in dedicated NHI security capabilities, with an additional 60% planning to do so within the next twelve months, according to The State of Non-Human Identity Security.
- From our research: Only 1.5 out of 10 organisations are highly confident in their ability to secure NHIs, compared to nearly 1 in 4 for securing human identities, according to The State of Non-Human Identity Security.
- Context-aware data classification becomes more defensible when teams can connect it to Top 10 NHI Issues and then apply those findings to service accounts, tokens, and agent access paths.
What this signals
Data context will increasingly determine how identity programmes prioritise risk. If classification can distinguish meaningful data from noise, access reviews become more selective and remediation becomes more targeted. That is especially relevant where human users, service accounts, and AI agents all touch the same repositories and the same review cycles have to support different actor types.
With 80% of organisations reporting AI agents have already acted beyond intended scope, contextual data controls cannot be separated from agent governance. The governance problem is not just whether a system can find sensitive content, but whether the identity behind the access can be trusted to stay within boundary. Teams should expect classification outputs to inform both data policy and agent authorisation, not one or the other.
For practitioners
- Audit classification failure modes first Map where regex, keyword, and label-based methods generate the most false positives, especially in cloud and SaaS repositories with heterogeneous data.
- Use LLMs as a verification layer Place LLM validation after initial detection so the model confirms whether a match is actually sensitive in context before it enters a remediation queue.
- Create context-based data tiers Classify datasets by business meaning, not only by file type, so access policy and remediation priorities reflect how the organisation actually uses the data.
- Link data classification to identity decisions Feed classification outputs into human, service account, and AI-agent access reviews so recertification reflects the sensitivity of the underlying content.
- Track precision, not just coverage Measure how often classification findings lead to correct policy action, because high match volume without accuracy creates more governance work, not less.
Key takeaways
- Traditional data classification breaks when cloud sprawl, proprietary data, and unstructured content make pattern matching too shallow to support real governance.
- Cyera's LLM-driven approach argues that meaning, relationships, and business context are now the deciding factors in classification accuracy.
- Practitioners should connect classification outputs to access policy, review cycles, and remediation priorities so data context becomes operational, not just descriptive.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST Zero Trust (SP 800-207) set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| NIST CSF 2.0 | PR.DS | Context-aware data classification supports data security outcomes across the environment. |
| NIST Zero Trust (SP 800-207) | PR.AC-4 | Access decisions should reflect data sensitivity, not just static labels. |
| OWASP Non-Human Identity Top 10 | NHI-03 | Classification outputs help identify sensitive data exposed to non-human identities. |
Tie entitlement decisions to classified data sensitivity and re-evaluate risky access paths.
Key terms
- Data Context: Data context is the operational understanding of what information means inside a business process. It goes beyond labels or file types to include relationships, usage, sensitivity, and relevance, which is what makes a classification decision useful for security and governance.
- Semantic Distancing: Semantic distancing is a method for grouping information by meaning rather than by exact wording or structure. It helps security teams recognise that different documents can represent the same business concept, or that similar-looking records may carry very different risk.
- LLM Validation: LLM validation uses a language model to check whether a detected pattern is actually sensitive in context. It is a verification step, not a replacement for detection, and is especially useful when pattern-matching tools produce too many false positives in large, messy environments.
- Learned Classification: Learned classification is a model that identifies proprietary or unusual data by studying relationships, behaviour, and contextual similarity. It is designed for enterprise content that does not match public taxonomies and needs adaptive interpretation rather than fixed rules.
Deepen your knowledge
Data classification in context is a core topic in our NHI Foundation Level course, the industry's only accredited NHI security programme. If you are building a programme that has to govern sensitive data across humans, services, and AI agents, it is worth exploring.
This post draws on content published by Cyera: Understanding Data in Context, an LLM-driven approach to data classification. Read the original.
Published by the NHIMG editorial team on 2025-12-04.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org
