AI Security

Your AI Agents Outnumber Your Staff

Machine identities now outnumber employees by as much as 80 to 1, and most are ungoverned. Why your AI agents are your fastest-growing security risk.

By Leon Soliman · 2026-06-26 · 2 min read

You hired a workforce no one is managing

Every AI agent you deploy is a worker with a key to your systems. It signs in, reads data, calls other services, and acts without a person watching. The difference is that no one in the company treats it as a member of staff, so no one applies the controls they would apply to one.

The numbers are now hard to ignore. KPMG reports that non-human identities, the service accounts, API keys, automation credentials, and AI agents running inside the business, outnumber human users by as much as 80 to 1 in large organizations. Industry research finds 47 percent of these identities are more than a year old with no credential rotation, and the great majority hold far more access than they ever need.

The agent supply chain is now an attack surface

Modern agents do not work alone. They pull in skills, plugins, and connectors from shared marketplaces, each one a package with access to your data and your systems. That convenience is also a doorway. When you install a skill, you inherit whatever its author placed inside it.

This is no longer theoretical. In one widely used agent skill marketplace, security researchers found that roughly one in five published skills had been weaponized, and more than a third carried at least one security flaw, from prompt injection to exposed secrets. Autonomous agents already account for about one in eight reported AI security incidents, and most companies say they have had at least one agent incident in the past year.

Govern the agents as you govern people

The answer is not to slow adoption, and it is not another detection product bolted on after the fact. It is to treat non-human identities with the discipline you already apply to employees: a complete inventory of which agents exist, what credentials they hold, and what they are allowed to touch.

That means least privilege by default, scheduled credential rotation, monitoring of what each agent actually does, and a real offboarding process so that a retired agent loses its access the day it stops being used. Companies that get this right keep the speed of agents without inheriting an ungoverned attack surface. Those that do not will learn that their largest workforce was the one they never onboarded.

Frequently asked questions

What is a non-human identity?

A non-human identity is any credential that belongs to software rather than a person: service accounts, API keys, OAuth tokens, automation bots, and AI agents. Each can authenticate and act inside your systems, which is why they need the same governance as human accounts.

How do we start governing AI agents?

Begin with an inventory: list every agent and non-human identity, the credentials it holds, and the access it has. From there, apply least privilege, rotate credentials on a schedule, monitor activity, and define an offboarding step that removes access the moment an agent is retired.

Your AI agents are already your largest workforce. Governing them is no longer optional.

AI Agents Non-Human Identity AI Security Governance Supply Chain