Subscribe to the Non-Human & AI Identity Journal
Home FAQ Governance, Ownership & Risk Why do IAM programmes struggle when Zero Trust…
Governance, Ownership & Risk

Why do IAM programmes struggle when Zero Trust is applied only at the perimeter?

← Back to all FAQ
By NHI Mgmt Group Editorial Team Updated July 11, 2026 Domain: Governance, Ownership & Risk

Because the main risk often appears after initial access, not before it. Perimeter-only thinking leaves east-west traffic, privileged paths, and workload-to-workload communication outside governance. That creates a gap where compromised identities can move laterally without being re-authorised.

Why This Matters for Security Teams

zero trust is often misunderstood as a perimeter replacement, but it only works when trust is re-evaluated where access is actually used. If IAM programmes stop at the edge, they leave east-west movement, service accounts, API keys, and privileged workflows outside effective control. NIST SP 800-207 Zero Trust Architecture makes clear that access decisions should be continuously evaluated, not assumed once the session begins.

That gap matters because non-human identities usually have broader, longer-lived, and less visible access than human users. NHIMG’s Ultimate Guide to NHIs notes that 97% of NHIs carry excessive privileges, which turns a single compromised workload into a pathway for lateral movement and escalation. Perimeter-only controls also miss the operational reality that machine-to-machine trust is now the dominant path for many critical systems. In practice, many security teams encounter the failure only after an API key, service account, or automation token has already been used to move deeper into the environment.

How It Works in Practice

When Zero Trust is applied correctly, the policy boundary follows the request, not the network edge. That means each workload, agent, service account, or API call is authenticated and authorised based on context such as identity, device posture, workload attestation, data sensitivity, and transaction purpose. The NIST guidance is clear that trust should be granted as narrowly as possible and reassessed continuously, while NIST SP 800-53 Rev. 5 helps translate that into access control, monitoring, and least-privilege enforcement.

For non-human identities, the practical shift is from static credentials to workload identity and short-lived trust. A service should prove what it is through cryptographic identity, then receive only the access needed for a specific action. That is why patterns such as SPIFFE and SPIRE are increasingly used to issue workload identities, while short-lived tokens reduce the blast radius when compromise occurs. NHIMG’s Guide to SPIFFE and SPIRE is useful here because it frames identity for workloads as an operational control, not just a directory object.

  • Re-authorise at the request layer, not only at the gateway or VPN.
  • Use JIT, ephemeral credentials instead of standing secrets with broad TTLs.
  • Bind access to workload identity and runtime context, not just IP or subnet.
  • Log east-west calls so lateral movement can be detected and contained quickly.

This approach is supported by the NIST model in principle, but current guidance suggests implementation maturity varies widely across cloud, hybrid, and legacy systems. It tends to break down in environments that still depend on shared service accounts, embedded secrets in CI/CD pipelines, or flat internal networks because those conditions prevent meaningful per-request authorisation.

Common Variations and Edge Cases

Tighter request-time authorisation often increases operational overhead, so organisations must balance security gain against deployment complexity and service reliability. That tradeoff is especially visible in legacy applications, high-throughput pipelines, and third-party integrations where per-call checks may be difficult to retrofit.

One common exception is where a perimeter control still has value as a coarse guardrail, but it should never be the only control. For example, network segmentation can reduce exposure, yet it does not stop a compromised workload from abusing an already trusted internal token. Current guidance suggests layering Zero Trust with identity-aware policy enforcement, secrets hygiene, and continuous verification rather than treating the boundary as the control plane.

Another edge case is multi-cloud and hybrid estates, where policy models diverge and identity sprawl becomes harder to manage. NHIMG’s Ultimate Guide to NHIs — Standards emphasises that many organisations still lack full visibility into service accounts, which makes perimeter-centric IAM look simpler than it really is. In practice, perimeter-only Zero Trust breaks down fastest when internal workloads can talk freely, secrets are long-lived, and authorisation is never revisited after the first login or token exchange.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

OWASP Agentic AI Top 10, CSA MAESTRO and OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST AI RMF and NIST Zero Trust (SP 800-207) set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
OWASP Agentic AI Top 10A2Perimeter-only trust fails when autonomous or machine identities act beyond initial auth.
CSA MAESTROGOV-02MAESTRO addresses governance for dynamic agent and workload trust decisions.
NIST AI RMFGOVERNAI RMF governance fits continuous risk review for dynamic access paths.
NIST Zero Trust (SP 800-207)3.1Zero Trust requires continuous verification, not perimeter-only trust.
OWASP Non-Human Identity Top 10NHI-01Non-human identities need least privilege and short-lived credentials beyond the perimeter.

Enforce runtime authorization for every agent action instead of trusting first access.

NHIMG Editorial Note
Reviewed and updated by the NHIMG editorial team on July 11, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org