Notifications
Clear all
Topic starter
06/06/2026 1:40 am
TL;DR: A global study of 1,100 organisations found that 93% already use or plan to use AI agents for sensitive security tasks, while only 65% say those identities are fully registered and 32% are very confident they could regain control after credential exposure, according to Semperis. The governance gap is no longer theoretical: AI identities are being admitted into critical systems before the control plane is ready.
NHIMG editorial — based on content published by Semperis: State of Identity Security in the AI Era
By the numbers:
- 93% already use or plan to use AI agents for sensitive security tasks such as password resets and VPN access.
- Only 32% are very confident they could regain control if AI exposes admin credentials.
Questions worth separating out
Q: How should security teams govern AI agents that can touch identity systems?
A: Treat every AI agent as a governed non-human identity with an owner, defined scope, and revocation path.
Q: Why do AI agents create more risk than ordinary automation in identity programmes?
A: Because they can be placed inside security workflows that change access state, not just execute repetitive tasks.
Q: What breaks when AI identities are not formally registered?
A: Ownership, review, and recovery all become unreliable.
Practitioner guidance
- Inventory every AI agent as an identity subject Place each agent in the same authoritative inventory used for service accounts and privileged workloads.
- Restrict agents from access-changing workflows Keep AI agents out of password reset, account recovery, and entitlement modification flows unless there is a narrowly defined approval model and full audit trail.
- Test identity recovery under AI credential exposure Run recovery exercises that assume an agent exposes admin credentials or alters identity state.
What's in the full report
Semperis' full study covers the operational detail this post intentionally leaves for the source:
- Country-by-country confidence splits showing where organisations are most and least prepared to recover from AI-driven identity compromise
- Methodology details from the Censuswide survey of 1,100 organisations across eight countries
- The full breakdown of the best-practice guidance Semperis proposes for agent registration, least privilege, and recovery readiness
- The article's context on AI use in password resets, VPN access, and local-machine exposure to SSH and encryption keys
👉 Read Semperis' study on AI agents and identity security risk →
AI agents and identity systems: is governance keeping up?
Explore further
06/06/2026 2:56 am
AI agent governance is now an identity problem, not an AI side issue. Once agents receive credentials, they become part of the identity system and inherit its failure modes. That means registration, authorization, and recovery must be managed through identity controls, not treated as an overlay on top of automation. Practitioners should stop drawing a boundary between AI operations and identity governance, because the boundary has already dissolved.
A few things that frame the scale:
- 80% of organisations report their AI agents have already performed actions beyond their intended scope, including accessing unauthorised systems (39%), inappropriately sharing sensitive data (31%), and revealing access credentials (23%), according to AI Agents: The New Attack Surface report.
- Only 52% of companies can track and audit the data their AI agents access, leaving 48% with a complete blind spot for compliance and breach investigation.
A question worth separating out:
Q: Who is accountable when an AI agent exposes credentials or changes identity state?
A: Accountability should sit with the business owner of the agent, the identity team that granted scope, and the control owner responsible for the affected workflow. If the agent touched privileged systems, incident handling should follow the same seriousness as any privileged access failure, because the issue is not just misuse but governance collapse across the identity layer.
👉 Read our full editorial: AI agents are widening identity attack surfaces faster than safeguards
