The AI governance gap is widening as autonomous agents take on operational roles inside enterprise workflows, expanding the security perimeter faster than organizations can manage.
“The fact that agents can beget agents-it becomes very interesting,” said Greg Kras, chief product officer at KnowBe4. “An agent could spin up another agent or ingest a server that may or may not be what they should be doing.”
KnowBe4 is addressing the issue with two new tools: AIDA Orchestration, which automates personalized security training, and Agent Risk Manager, which provides real-time visibility into AI agents operating across environments-inventorying what they are, who runs them, and what data they can access.
“As a company, you’re going to not do well if you shun AI because your competition is going to eat your lunch,” Kras said. “But same thing applies if you just open the doors without having any governance or control.”