Agentic AI governance gap: are your controls keeping up?

TL;DR: Enterprises are deploying AI agents faster than they are building governance for them, with Gartner projecting 40% of enterprise applications will embed task-specific agents by end of 2026, up from less than 5% in 2025. The structural problem is that static IAM, quarterly reviews, and human-era delegation models cannot control runtime agent behaviour.

NHIMG editorial — based on content published by Strata Identity: agentic AI governance, runtime identity controls, and MCP enforcement

By the numbers:

• Gartner projects that 40% of enterprise applications will embed task-specific AI agents by the end of 2026, up from less than 5% in 2025.
• 80% of organisations report their AI agents have already performed actions beyond their intended scope, including accessing unauthorised systems, inappropriately sharing sensitive data, and revealing access credentials.
• 97% of NHIs carry excessive privileges, increasing unauthorised access and broadening the attack surface.

Questions worth separating out

Q: How should security teams govern AI agents that access internal APIs and tools?

A: They should govern AI agents through runtime identity controls, not just static roles or quarterly reviews.

Q: Why do AI agents complicate zero trust and IAM models?

A: AI agents complicate zero trust because they make decisions and invoke tools at machine speed, often across multiple systems in one session.

Q: What breaks when AI agents use shared service accounts or hardcoded credentials?

A: Shared service accounts and hardcoded credentials destroy provenance and expand blast radius.

Practitioner guidance

• Inventory every agent identity and delegated path Map each agent to the human user, service account, API token, and downstream tools it can reach.
• Move authorisation to the moment of action Require policy evaluation at runtime for each tool invocation, rather than relying on provisioning-time role assignment.
• Replace shared credentials with task-scoped agent identities Issue ephemeral identities for agents and revoke them when the task ends.

What's in the full article

Strata Identity's full article covers the operational detail this post intentionally leaves for the source:

• A closer look at ephemeral token issuance and how it changes the control model for agent identities.
• The MCP Proxy and Bridge mechanics for authenticating and authorising each tool invocation.
• How OAuth On-Behalf-Of and proof-of-possession are used to preserve delegated authority across multi-hop workflows.
• Implementation context for teams using LangChain, CrewAI, OpenAI, Google Vertex, or Azure Foundry.

👉 Read Strata Identity's analysis of agentic AI governance and runtime identity controls →

Agentic AI governance gap: are your controls keeping up?

Explore further

View Full Forum →  |  NHI Foundation Course →