Discovery is the foundational layer. Beyond inline traffic inspection — which catches AI application usage flowing through the Netskope platform — the launch adds two mechanisms. Endpoint AI discovery extends scanning to installed applications, running processes, and listening ports on managed endpoints, surfacing AI agents, local models, and browser extensions that never generate network traffic visible to a cloud security platform. Server AI discovery uses a lightweight eBPF agent to intercept TLS-encrypted AI traffic at the kernel level on corporate VMs and Kubernetes nodes, extending visibility to core AI infrastructure inside the enterprise perimeter.

That three-layer architecture  inline traffic, endpoint processes, kernel-level server interception — directly addresses how AI is actually deployed in enterprise environments in 2026. Shadow AI isn’t just employees using ChatGPT from a browser. It is developer-deployed local models, AI agents in containerised workloads, and browser extensions with model access that never appear in approved application inventories.

Once discovered, the platform maps AI assets to the identities, data stores, and tools they connect to, then correlates that map against Netskope’s existing data sensitivity classifications, user risk profiles, and application trustworthiness ratings. The intent is to surface not just what AI exists, but where hidden attack paths run between AI assets, sensitive data repositories, and external services.

The Agentic Response Layer

The second significant launch element is AgentSkope, an AI Risk AISecOps agent positioned as an autonomous intelligence layer for triage, investigation, and response. The framing from Netskope CEO Sanjay Beri is direct: the gap between knowing about an AI risk and acting on it has been the primary operational failure mode for security teams managing AI governance manually. AgentSkope is designed to close that gap by reasoning across full incident context and driving response without analyst intervention at every step.

The agentic security operations category is contested and variably defined. Every major platform vendor is building some version of autonomous investigation and response, and differentiation frequently comes down to the quality of underlying data rather than the sophistication of the reasoning layer. Netskope’s potential advantage is breadth of context: it sees traffic, identity, data classification, and AI asset inventory simultaneously — giving an agentic layer more signal than a point solution operating on a narrower data set. Whether AgentSkope delivers on that at enterprise scale will be validated in production over the next several quarters, not in launch announcements.

The CISO’s Actual Problem Statement

Enterprise AI adoption has followed the same pattern as cloud adoption a decade ago: business units and development teams moved faster than security organisations could instrument, govern, or inventory. The result is environments where AI systems — some approved, many not — access sensitive data stores, operate under service account identities with broad permissions, and make external API calls, often without security teams having visibility into the full chain.

The risk profile is concrete. An AI agent with access to a customer data repository and a misconfigured outbound connection policy is a data exfiltration path that existing DLP controls weren’t designed to detect. A shadow AI tool processing confidential documents is a data residency and compliance exposure that conventional CASB policies address imperfectly. These are the scenarios AI Command Center is designed to map and close.

What makes the Netskope approach architecturally interesting is building the risk correlation layer on top of asset discovery rather than treating them as separate products. Knowing an AI agent exists has limited intelligence value. Knowing it exists, what data it can access, which identity it runs under, and how its risk profile compares to similar assets is substantially more useful. That correlation model is the product thesis.

Market Positioning and Competitive Context

The AI security governance space is filling up rapidly. Established CASB and SSE vendors are extending coverage to AI application traffic. Dedicated AI security startups are building point solutions for specific elements — application discovery, LLM security testing, prompt injection detection. Data security platforms are extending into AI data access governance.

Netskope’s position is that the right answer is a unified platform spanning the full lifecycle: discover, assess, correlate, respond. The risk with that positioning is the perennial platform challenge: breadth of coverage versus depth of capability. Security leaders with existing point solutions for specific AI risk vectors will evaluate AI Command Center against what those solutions do well, not against a blank slate.

General availability today — with endpoint discovery, server discovery, asset mapping, risk correlation, and AgentSkope moving from private preview to GA through Q3 2026 — gives Netskope a credible first-mover claim in integrated AI security operations. The competitive window will narrow as the broader SSE and CASB market catches up.

Immediate Relevance for Enterprise Security Programs

For CISOs managing AI governance through informal controls, partial CASB coverage, and policy documents that outpace technical enforcement, AI Command Center is a concrete reference point for what mature AI security operations looks like as a target architecture.

The three-layer discovery model — inline, endpoint, kernel-level server — represents the coverage standard any enterprise AI governance program should work toward, regardless of vendor. Correlating AI asset inventory with identity, data sensitivity, and application risk profiles is the analytical model that makes discovery operationally useful rather than a compliance checkbox.

The 94% visibility gap Netskope’s data surfaces is the number worth taking to the board. Not as a vendor statistic, but as a benchmark against which to measure an organisation’s own AI security posture.

Research and Intelligence Sources: Netskope

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com