David Lee is Mr NHI's Human Identity In The Hot Seat

AI agents are scaling inside organisations faster than security teams can properly govern them — and attackers are already taking advantage of the gap. David Lee, Field CTO at Saviynt, takes on 10 rapid-fire questions around the identity risks enterprises can no longer ignore. From the growing exposure created by unmanaged NHIs to the debate over whether AI agents should be treated more like employees or software, this conversation goes straight to the governance failures security leaders are now facing. Should AI agents undergo the same scrutiny as human users before receiving access? Are organisations sacrificing security controls in the race to deploy agentic AI? And when an AI-driven identity is compromised, who actually owns the fallout? 🔑 Key Takeaways: • AI agents are rapidly becoming unmanaged identities that existing IAM and PAM strategies weren’t built to secure • How organisations classify AI agents directly impacts governance, lifecycle management, auditing, and access revocation • Pressure to accelerate AI deployment is causing security oversight to slip — increasing enterprise risk exposure In this short clip, David Lee shares sharp insights on non-human identities, AI governance, and why enterprises are repeating many of the same mistakes previously seen with machine identity sprawl. #CyberSecurity #IAM #AIAgents #ZeroTrust #IdentitySecurity #NonHumanIdentity #PrivilegedAccess #AI