Rubrik has raised concerns over a growing imbalance between the rapid adoption of AI agents and the ability of organizations to secure them, according to new research from Rubrik Zero Labs.
The report highlights a critical reality facing enterprises today: innovation is moving faster than security controls. As businesses increasingly deploy autonomous AI systems to streamline operations and decision-making, many are doing so without the governance frameworks needed to manage associated risks.
Based on insights from over 1,600 IT and security leaders, the findings reveal that most organizations expect AI agents to outpace their existing security guardrails within the next year. Even more concerning is the lack of visibility only a small percentage of respondents say they have full awareness of the AI agents operating within their environments. This blind spot makes it difficult to secure identities that are already interacting with sensitive data and executing tasks independently.
A major contributor to this challenge is the rapid rise of non-human identities. These digital identities, tied to AI agents, are expanding faster than organizations can track or control them. Researchers describe this phenomenon as a “shadow workforce,” where autonomous systems operate with persistent access and minimal oversight, creating new opportunities for misuse and lateral movement across networks.
At the same time, the promised efficiency gains of AI agents appear to be falling short. Many organizations report that these systems require more manual oversight than expected, reducing their operational value. Additionally, a significant number of leaders say they lack the ability to roll back actions performed by AI agents without causing system disruption, raising serious concerns about recovery and resilience.
The threat landscape is also evolving alongside adoption. Nearly half of surveyed leaders believe AI-driven systems will soon play a central role in cyberattacks. These systems can accelerate attack timelines, scale operations, and blur the distinction between insider threats and external actors, making detection and response more complex.
Kavitha Mariappan, Chief Transformation Officer at Rubrik, emphasized that organizations must move beyond simply acknowledging AI risks and focus on controlling them. As decision-making increasingly shifts from humans to machines, maintaining operational safety becomes a top priority for business and security leaders alike.
Industry experts also point to identity verification as a foundational requirement for secure AI adoption. Steven Ramirez, Chief Information Security and Technology Officer at Renown Health, noted that without strong verification and visibility, organizations risk losing control over automated systems that are deeply integrated into their infrastructure.
The report ultimately underscores a significant shift in cybersecurity strategy. As AI becomes more autonomous, the focus is no longer just on preventing breaches but on maintaining control, visibility, and recoverability in systems that operate independently of human intervention.
For enterprise leaders and boards, the message is clear: AI strategy can no longer be separated from resilience planning. Organizations that prioritize speed over security may find themselves facing risks they cannot easily detect, contain, or reverse.
Recommended Cyber Technology News :
- WordPress Plugins Weaponized in Delayed Malware Attack
- n8n Webhook Abuse Fuels Phishing Malware Campaigns
- ZeroFox Partners with PolySwarm to Enhance Malware Threat Analysis
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
