Governance

Introduction Every few years, something comes along that forces identity and access management professionals to rethink the fundamentals. Federated identity changed how we think about trust boundaries. Zero Trust changed how we think about networks. Zero Standing Privilege changed how we think about admin access. Now agents are changing how we think about who is taking actions in our systems. I don’t mean chatbots. I mean autonomous systems that read context, make decisions, and execute real-world actions—send emails, merge code, modify configurations, publish content, interact with APIs—on behalf of a human....

Introduction In the first part of this series, we examined the mounting risks that come with using AI in financial documentation and identity workflows. From deepfake-enabled fraud to AI-generated receipts that are indistinguishable from real ones, it’s clear that relying too heavily on automation can undermine trust, integrity, and security. In this second post, we shift our focus to solutions. We’ll explore how to establish safeguards, maintain accountability, and implement the Zero Trust Human philosophy to ensure AI enhances rather than harms our digital ecosystems....