When programmes assume systems stay uniform, anomaly detection, access review, and configuration governance all lose accuracy as customisation increases. AI can create environments that look different enough that baseline-driven controls miss drift or overfit to outdated patterns. The failure is not just technical detection, but the loss of a stable governance reference point.
Why This Matters for Security Teams
When programmes assume systems stay uniform, they usually also assume that detection rules, access reviews, and configuration baselines will remain valid long enough to govern them. That assumption breaks as soon as AI-driven customisation, ephemeral workloads, or fast-changing integrations start producing unique system states. Baseline-driven controls can then miss drift, misclassify normal change as suspicious, or overfit to yesterday’s architecture.
This is especially damaging in non-human identity environments because the identity surface is already larger and more dynamic than human IAM. NHI Management Group notes in the Ultimate Guide to NHIs that 97% of NHIs carry excessive privileges and 71% are not rotated within recommended time frames, which makes a stable reference point hard to maintain. For governance teams, that means the control problem is not just visibility, but keeping policy aligned to a moving target. Current guidance in ISO/IEC 27002:2022 Information Security Controls still matters, but it must be applied against runtime reality rather than a static asset picture. In practice, many security teams discover the mismatch only after drift has already altered access paths and broken their review cycle.
How It Works in Practice
The practical failure mode is simple: controls that depend on sameness stop working when the environment becomes continuously variable. If every workload, token, policy, or agent session can look different at runtime, then a single hardened baseline no longer describes actual behaviour. Security teams need to shift from static assumptions to identity-aware, context-aware governance.
For NHIs, that means treating workload identity as the anchor and tying access to what the workload is doing right now, not what it was approved to do months ago. In a mature model, secret scope is narrow, tokens are short-lived, and privilege is issued just in time for a specific task. The State of Non-Human Identity Security research is useful here because it shows how often organisations still lack visibility into third-party OAuth connections and over-privileged accounts, both of which undermine any assumption of uniformity.
- Use workload identity as the primary control plane, not static host or app labels.
- Evaluate policy at request time with current context, rather than relying only on pre-approved role mappings.
- Issue JIT credentials with short TTLs so access expires with the task, not the quarter.
- Continuously compare actual behaviour against intended behaviour, including tool use, API chaining, and lateral movement.
- Rebuild access reviews around runtime evidence, because a “clean” entitlement list can hide dangerous behavioural drift.
This is where standards such as ISO/IEC 27002:2022 Information Security Controls need operational translation into telemetry, policy-as-code, and identity lifecycle automation. These controls tend to break down when rapidly customised environments, especially AI-assisted build pipelines and multi-tenant automation, change faster than governance records can be updated.
Common Variations and Edge Cases
Tighter governance often increases operational overhead, requiring organisations to balance detection precision against engineering speed. That tradeoff is real, especially where release cycles are short and environment-specific exceptions are common. Best practice is evolving, and there is no universal standard for exactly how much variability a baseline can absorb before it becomes misleading.
Some environments can still use partial baselines effectively, but only for limited purposes such as asset inventory or coarse anomaly detection. They should not be treated as the primary source of truth for authorisation in systems where agents, pipelines, or integrations mutate frequently. For example, multi-agent workflows may share tools but not behaviour, while one agent may hold a narrow scope for retrieval and another may need temporary write access. If both inherit the same role because they appear “similar,” the programme will miss the actual risk.
That is why current guidance suggests combining static configuration standards with runtime controls such as policy evaluation, secret rotation, and continuous attestation. The Ultimate Guide to NHIs is a useful reference for the lifecycle side of that problem, while ISO/IEC 27002:2022 Information Security Controls remains relevant for control discipline. The edge case to watch is highly customised, AI-generated, or customer-specific deployments, where drift is expected and uniformity is the exception rather than the baseline.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10, OWASP Agentic AI Top 10 and CSA MAESTRO address the attack and risk surface, while NIST AI RMF and NIST CSF 2.0 set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| OWASP Non-Human Identity Top 10 | NHI-01 | Static baselines fail when NHI state drifts beyond assumed identity patterns. |
| OWASP Agentic AI Top 10 | A1 | Autonomous systems change behavior dynamically, defeating uniform-control assumptions. |
| CSA MAESTRO | GOV-2 | Governance must adapt to variable agent and workload states. |
| NIST AI RMF | AI RMF addresses drift, unpredictability, and governance alignment. | |
| NIST CSF 2.0 | PR.AC-4 | Access control weakens when uniform entitlements no longer reflect reality. |
Use AI RMF GOVERN and MAP functions to keep controls aligned with changing behaviour.
Related resources from NHI Mgmt Group
Deepen Your Knowledge
Reviewed and updated by the NHIMG editorial team on July 9, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org