*]:flex-1 [&>div>div]:flex [&>div>div]:flex-col md:[&>div>div]:flex-row [&>div_figure]:m-0 [&>div_figure]:max-w-fit first:[&>div_p]:mt-0 last:[&>div_p]:mb-0 max-md:[&>div_p]:text-body-3 [&>p]:mb-0 [&>p]:text-body-2 wysiwyg-table:w-auto wysiwyg-table:max-w-full wysiwyg-table:inline-block wysiwyg-a:text-navy wysiwyg-table:overflow-x-auto wysiwyg-th:bg-navy wysiwyg-th:!text-white th-p:!text-white wysiwyg-th:border-r wysiwyg-th:border-white wysiwyg-th:text-h4 wysiwyg-th:p-5 wysiwyg-th:content-center wysiwyg-td:border-1 wysiwyg-td:border-solid wysiwyg-td:border-brumosa wysiwyg-td:p-sm wysiwyg-td:text-h4 wysiwyg-td:px-5 wysiwyg-td:py-10 wysiwyg-td:content-center wysiwyg-h6:text-h6 wysiwyg-strong:text-grey"> Ido Shlomo, co-founder and CTO of Token Security, makes a blunt case: an AI agent is not a person. It is a workload that impersonates one, chasing whatever goal it is handed without judgment, memory, or common sense. Treat it like an employee and hand it the keys, and enterprise security quietly starts to break down.
Shlomo explains why agents inherit the same credentials and keys that service accounts have always used, why over-permissioning backfires on the business itself, and how identity teams can align an agent's access to its real intent. He also argues, against his own instincts, for more regulation of how agents connect to business systems and makes the case that reducing the blast radius matters more than trusting any single model.
For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/resources/podcast/securing-ai-agents-non-human-identity