Zero-Trust for Agentic AI – Identity, Policy and Control for Non-Human Actors

Agentic AI systems are useless without provable identity, least-privilege authorization, and strong supervision for non-human actors. This session builds directly on board use cases calling for Zero-Trust identity frameworks for agentic AI in Tier-1/Tier-2 operations, extending those concepts into a full enterprise security model.
Key Questions: – How do you assign and manage identity, credentials, and posture for agents that can provision, patch, and reconfigure networks, applications, and data pipelines? – What does capability-scoped, time-boxed authorization look like in practice for AI tools and agents? – How do we create signed, auditable action trails that satisfy internal audit and regulators for “who/what acted, when, and with what policy”? – How do you integrate agent identity into existing Zero-Trust and privileged access strategies?
Takeaways: – A practical pattern for a Zero-Trust identity framework for agentic AI across network, cloud, and ITSM stacks. – Controls and dashboards that make agent actions observable, provable, and reversible.