By NHI Mgmt Group Editorial TeamPublished 2026-07-09Domain: Governance & RiskSource: Delinea

TL;DR: Privilege is shifting from vaulting admin accounts to governing actions taken by service accounts, automation pipelines and AI agents, according to Delinea’s summary of two 2026 analyst reports. Runtime authorisation, not credential storage alone, is now the control point that determines whether privilege is actually constrained.


At a glance

What this is: This analysis says privileged access is moving from account-centric controls to action-centric governance as machine and AI identities spread privilege across runtime decisions.

Why it matters: That matters because PAM, IAM and NHI programmes now need to control what an identity can do at the moment of execution, not just who holds a credential.

By the numbers:

👉 Read Delinea’s analysis of PAM shifting from accounts to actions


Context

Privilege has moved beyond human administrator accounts. In modern environments, service accounts, automation pipelines and AI agents can exercise privileged access continuously, which makes account-centric PAM incomplete when the real governance problem is action-level authorisation.

The operational gap is straightforward. Vaulting and session recording still matter, but neither proves whether a specific action should have been allowed at that moment. That gap becomes more consequential as AI and machine identities outnumber human users and operate at machine speed.

For teams managing PAM, NHI and identity governance together, the question is no longer just who has privileged access. The harder problem is how privilege is approved, constrained and audited when the actor is non-human and the action happens in runtime.


Key questions

Q: How should security teams govern privileged actions for machine identities?

A: Security teams should govern privileged actions at runtime, not just the accounts that carry them. That means binding policy to the action, target and time window, then using just-in-time access and telemetry to confirm the action stayed within scope. This approach matters because machine identities can act faster and more often than human review cycles can keep up.

Q: Why do service accounts and AI agents break traditional PAM models?

A: Traditional PAM assumes privilege is attached to a human account and can be protected by vaulting and session recording. Service accounts and AI agents break that assumption because they can operate continuously, generate actions at machine speed and persist beyond a normal login session. The control problem shifts from credential storage to runtime authorisation.

Q: What do security teams get wrong about zero standing privilege?

A: They sometimes treat zero standing privilege as a secrets problem only. In practice, it is an execution problem as well. If an identity can still perform unrestricted actions during a valid session, the organisation has reduced credential persistence but not necessarily reduced blast radius or abuse potential.

Q: How can organisations tell whether privilege governance is keeping up with non-human identities?

A: Look for three signals: whether privileged actions are defined clearly, whether the same policy layer governs service accounts and AI agents, and whether ephemeral access replaces persistent credentials where possible. If privileged decisions are still made only at onboarding or provisioning time, the programme is behind the operational reality.


Technical breakdown

Why account-centric PAM misses action-level privilege

Traditional PAM assumes privilege is attached to an account and can be managed by controlling the credential around it. That model worked when privileged users were mostly human operators with predictable login windows. It breaks down when privilege is exercised by service accounts, automation pipelines and AI agents that can act continuously. Vaulting protects the secret, but it does not evaluate whether the specific action at that moment was acceptable. Session recording improves visibility after the fact, but it does not prevent overreach at the point of execution.

Practical implication: teams need policy enforcement that evaluates privileged actions at runtime, not just credential custody.

Just-in-time access and zero standing privilege for machine identities

Just-in-time access and zero standing privilege shift privilege from persistent entitlement to ephemeral authorisation. For machine identities, that means an access grant should exist only for the exact task, target and time window required, then disappear before it can be reused. This is especially important for AI agents because their execution pace can be far faster than human review cycles. The security value comes from reducing the window in which a token, credential or session can be abused.

Practical implication: use ephemeral access paths for machine and AI identities wherever persistent credentials are not operationally necessary.

Why discovery and posture analysis must be tied to control

Discovery alone does not solve privileged access risk. If teams can inventory identities but cannot map them to risk, access method and allowed action, they still lack a governance model. The stronger pattern is connected discovery, risk scoring and enforcement in one flow, so the same control layer can decide whether an identity should be governed, constrained or blocked. That becomes essential once privilege is distributed across cloud workloads, APIs and AI-enabled processes rather than concentrated in a few admin accounts.

Practical implication: consolidate identity discovery and enforcement so privileged access decisions happen in the same workflow.



NHI Mgmt Group analysis

Action-level governance is the new boundary for privileged access. Account-centric PAM was designed for a world where privilege could be inferred from who logged in. That assumption fails when service accounts and AI agents execute independently, because the risky unit is no longer the account but the action. The implication is that privileged access governance must be evaluated as runtime decision control, not just credential containment.

Runtime privilege makes stale certification models less meaningful. Access review processes were built for standing entitlements that persist long enough to be attested, remediated and recertified. That assumption weakens when machine identities and AI agents can create, consume and discard privilege inside operational loops. The implication is that identity governance has to reason about ephemeral authorisation states rather than periodic attestation alone.

Identity blast radius is now determined by what an actor can do, not merely what it owns. That is why the category is converging with identity threat detection, secrets management and cloud entitlement control. A credential vault without action constraints can reduce exposure of the secret while leaving the operational damage path intact. Practitioners should treat privileged action scope as the primary control boundary.

PAM, NHI governance and AI runtime control are converging into one discipline. The market signal here is not that one product category is replacing another, but that the governance problem spans humans, workloads and autonomous software in the same operational fabric. That convergence makes cross-domain visibility more important than siloed tooling. Practitioners should design for shared policy, shared inventory and shared enforcement.

92% of organisations expose NHIs to third parties, which makes delegated privileged access a structural governance problem, not an edge case. Third-party and internal machine identities often share the same runtime control weakness: access exists longer than the business relationship or task requires. The implication is that lifecycle, action scope and revocation must be governed together.

From our research:

  • NHIs outnumber human identities by 25x to 50x in modern enterprises, according to Ultimate Guide to NHIs.
  • Only 5.7% of organisations have full visibility into their service accounts, which is why runtime governance fails when inventory is incomplete.
  • The NHI Lifecycle Management Guide explains how to connect discovery, rotation and offboarding so privileged access does not outlive the identity’s purpose.

What this signals

Action-centric PAM will become the practical test of NHI maturity. Organisations that still rely on vaulting and recertification alone will find that they can protect secrets while failing to control execution. The programme shift is toward runtime policy, shared inventory and action telemetry across human, workload and agent identities.

Privilege scope will need to be measured as blast radius, not just entitlement count. When a service account can take hundreds of actions in the time a human completes one approval cycle, the old governance rhythm is too slow. The planning question is no longer whether PAM exists, but whether it constrains what an identity can do at the moment it does it.

From our research, 97% of NHIs carry excessive privileges, increasing unauthorised access and broadening the attack surface, according to the Ultimate Guide to NHIs. That scale makes action-level governance a board-relevant control issue, not a tooling preference. Teams that want to close the gap should study the NHI Lifecycle Management Guide and align lifecycle, privilege and revocation around the same control model.


For practitioners

  • Move PAM policy from account ownership to action approval Define the privileged actions that matter for each machine identity, then bind policy to those actions rather than to the underlying account alone. This is the only way to stop over-broad permissions from hiding behind a valid credential.
  • Inventory service accounts, automation pipelines and AI agents in one control plane Build a single inventory that maps identity type, privilege scope, owner and runtime dependency. If the same team cannot see the whole chain, it cannot govern privilege consistently across humans and non-humans.
  • Replace standing privileged credentials with ephemeral access paths Use just-in-time access for database, server and API access wherever the task can be time-bound. Remove the assumption that a machine identity needs a reusable secret to do privileged work.
  • Tie certification to live privilege telemetry Use session and action telemetry to validate whether the privilege still matches actual use, then revoke access that no longer has an operational reason to exist. Periodic review alone is too slow for machine-speed privilege.

Key takeaways

  • PAM is moving from account protection to action governance because machine and AI identities now exercise privilege continuously.
  • The evidence points to a visibility and over-privilege problem, with NHIs outnumbering human identities 25x to 50x and most organisations lacking full service account visibility.
  • Practitioners should align discovery, just-in-time access and runtime policy so privileged actions are approved in motion, not merely contained in storage.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0, NIST SP 800-53 Rev 5 and NIST Zero Trust (SP 800-207) set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
OWASP Non-Human Identity Top 10NHI-01The article centers on privileged access control gaps for non-human identities.
NIST CSF 2.0PR.AC-4Least-privilege and access management are central to runtime privilege governance.
NIST SP 800-53 Rev 5AC-6Least privilege is the core control theme behind action-based PAM.
NIST Zero Trust (SP 800-207)Zero Trust thinking fits runtime access decisions for humans and machines.

Treat every privileged action as a fresh authorisation decision rather than a standing grant.


Key terms

  • Action-Level Privilege Governance: A control model that governs what an identity is allowed to do at the moment an action is taken. It shifts the focus from owning a privileged account to approving a specific execution path, which is especially important for service accounts, automation and AI agents.
  • Zero Standing Privilege: A privilege model where no reusable elevated access remains permanently assigned to an identity. Access is issued only when needed and removed after the task, which reduces the chance that a stolen credential or over-broad entitlement can be reused later.
  • Runtime Authorisation: The decision to allow or deny an action while the system is operating, rather than only at login or provisioning time. For non-human identities, runtime authorisation is the point at which policy must decide whether a machine or agent may proceed.
  • Identity Blast Radius: The amount of damage an identity can cause if its privileges are misused, stolen or overextended. It is a practical way to measure privilege risk across human, machine and autonomous identities, because it reflects the scope of permitted actions rather than the account label.

What's in the full article

Delinea's full article covers the analyst-report details this post intentionally leaves for the source:

  • The specific KuppingerCole and Frost criteria used to evaluate PAM platforms in 2026.
  • The platform capabilities Delinea maps to discovery, just-in-time access and zero standing privilege.
  • The analyst language used to describe machine and AI-speed privilege governance.
  • The operational framing behind Delinea Iris AI and how the vendor positions runtime judgment.

👉 The full Delinea article covers the analyst recognition details and runtime privilege framing in more depth.

Deepen your knowledge

NHI governance, agentic AI identity, and machine identity security are core topics in our NHI Foundation Level course, the industry's only accredited NHI security programme. If you are responsible for identity security strategy or NHI governance in your organisation, it is worth exploring.
NHIMG Editorial Note
Published by the NHIMG editorial team on 2026-07-09.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org