AI infrastructure and GPU identity: what IAM teams need to know

TL;DR: Modal’s interview argues that AI applications need infrastructure abstractions built for bursty GPU workloads, rapid container startup, and global scale, because traditional Kubernetes and cloud patterns make inference harder than necessary, according to WorkOS. The identity lesson is that compute elasticity changes control boundaries, so governance must follow workload behaviour rather than static infrastructure assumptions.

NHIMG editorial — based on content published by WorkOS: Modal is building AI infrastructure that doesn't get in the way

Questions worth separating out

Q: How should security teams govern bursty AI workloads in cloud environments?

A: Security teams should govern bursty AI workloads by tying access, logging, and revocation to the job lifecycle rather than to the underlying host or cluster.

Q: Why do AI infrastructure platforms create new identity governance risks?

A: AI infrastructure platforms create new identity governance risks because they hide orchestration complexity while concentrating trust in the layer that schedules work and attaches permissions.

Q: What breaks when workload identity is managed like a static server identity?

A: When workload identity is managed like a static server identity, access reviews, approval cycles, and rotation assumptions all lag behind actual execution.

Practitioner guidance

• Map workload identity to job lifecycle events Tie permissions, logging, and revocation to container start, model load, and job termination so access does not persist beyond the compute session.
• Review orchestration-layer trust boundaries Identify which identity decisions now happen in the platform abstraction, including scheduling, placement, and permission attachment, and document the controls around each step.
• Limit effective privilege for bursty AI workloads Scope cloud roles and service credentials to the smallest possible job purpose, then verify that fast scale-out does not silently widen access.

What's in the full article

WorkOS's full interview covers the operational detail this post intentionally leaves for the source:

• Eric Bernhardsson's explanation of why compute-intensive AI needs new infrastructure abstractions for GPUs and inference.
• The discussion of how Modal uses gVisor for workload isolation and why that matters for platform trust boundaries.
• The practical trade-offs of replacing Kubernetes and Docker with a higher-level orchestration layer for AI workloads.
• The interview's view of which AI customer segments are driving revenue now and how that changes infrastructure demand.

👉 Read WorkOS's interview on Modal's compute-native AI infrastructure thesis →

AI infrastructure and GPU identity: what IAM teams need to know?

Explore further

View Full Forum →  |  NHI Foundation Course →