Enterprises Should Prioritize Governance Amid Agentic AI Boom
As we move into 2026, businesses are increasingly adopting AI agents as formal digital identities. However, concerns have arisen regarding the security and governance risks associated with this emerging technology. A recent discussion among experts highlighted that while 91% of organizations currently employ AI agents, only 10% have an effective governance strategy in place.
The Growing Use of AI Agents
According to research from Accenture, 90% of organizations lack a clear strategy for managing AI-related threats. The rapid integration of autonomous systems into business workflows has led to tasks being performed by AI agents, ranging from writing documents and scheduling meetings to more complex functions like software development.
As Greg Callegari, managing director of identity security at Accenture, notes, “In 2026, you’re going to have tens, if not hundreds, of AI agents acting on your behalf.” This raises critical questions about identity and access control for these agents, as they require access to company systems to function effectively.
Understanding Agentic Identity
Modern AI agents differ from traditional chatbots in that they can interact with and control enterprise systems directly. This capability necessitates a focus on transparency and accountability in monitoring their actions. Callegari argues for treating AI agents as individual entities, akin to human employees, to facilitate better management of authentication, authorization, and access control.
“If you strip away all of the noise, it’s really an open authorization problem,” Callegari emphasizes. The challenge lies in determining who grants access to these agents and establishing the duration for which this access is valid.
The Need for Governance Structures
The rapid development of AI technology often leads engineers to prioritize speed over governance, resulting in unmanaged non-human identities proliferating within corporate environments. Callegari stresses that agents must be onboarded, governed, and monitored similarly to human employees, with clear identities and lifecycle management.
“Agents need their own identity,” he asserts. “Once you accept that, everything else flows — access control, governance, auditing, and compliance.”
Future Considerations
Establishing better-defined standards and governance models is crucial for organizations looking to adopt agentic AI. The speakers at the webinar emphasized that having these frameworks in place before widespread deployment is essential for long-term viability.
Moreover, regulatory considerations are on the horizon, with compliance regimes being planned in the U.S. and EU that will demand greater transparency and accountability for AI agents.
Conclusion
While the future of agentic AI presents numerous opportunities, security leaders warn that without proper governance and identity structures, the advantages could quickly turn into significant risks. Balancing innovation with governance will be critical as businesses embrace this transformative technology.
