AI agents are multiplying across your enterprise.

Most of them have more access than your newest employee and none of the oversight.

Picture a new hire arriving on their first day. Before they touch a single system, they go through onboarding.

They receive credentials. Their access is scoped to their role.

Someone signs off.

There is a record.

There is accountability.

Now picture an AI agent deployed by a product team last quarter.

It reads customer data, queries internal databases, drafts responses, and triggers workflows across three departments.

No one in IT approved it. No one in risk knows it exists.

It has no identity, no access review, no expiry date. And it is not alone.

According to Microsoft, 80 per cent of Fortune 500 companies now have active AI agents running inside their operations.

Their own Cyber Pulse report found that 29 per cent of employees have already turned to unsanctioned agents for work tasks tools that sit entirely outside enterprise visibility.

Separate research suggests that 65 per cent of AI tools in enterprises operate without IT oversight.

This is no longer a conversation about Shadow AI, employees experimenting with ChatGPT on the side.

This is something structurally different.

Autonomous systems are accumulating permissions, accessing sensitive data, and executing decisions at scale, without the identity governance that every human in your organization is required to have.

Why Traditional Security Frameworks Miss This Entirely

The problem is architectural. Most enterprise security was built to govern two things: people and software.

People authenticate. Software follows rules.

AI agents do neither cleanly.

They interpret prompts, cross systems, retrieve data, and act autonomously, behaviours that sit outside the monitoring tools designed for traditional applications and networks.

In any safety-critical environment, the principle is straightforward: if something can act, it must be authorised, traceable, and reviewable.

We apply this to crane operators, permit holders, and control room technicians. We apply it to every contractor who enters a facility.

The moment an entity can make decisions that affect operations, it enters a governance framework.

AI agents are now that entity and, in most organizations, they are operating in a governance vacuum.

NIST recognized this in early 2026 by launching a formal AI Agent Standards Initiative, with public comments due this month.

The initiative targets identity management, access controls, and lifecycle governance for autonomous systems.

OpenAI moved to acquire Promptfoo, a startup that tests AI systems for vulnerabilities before deployment.

Microsoft announced Agent 365, a platform designed to give administrators visibility into which agents exist, who created them, and what they can access.

The infrastructure of agent governance is being built. But for most enterprises, it is being built after the agents have already moved in.

The Question Your Board Should Be Asking

In the Gulf, where e& and IBM unveiled one of the region’s first enterprise-grade agentic AI governance deployments at Davos 2026, the signal is clear:

leading organisations are already treating agent governance as a boardroom priority, not a back-office afterthought.

This is not an IT problem dressed up as a strategy issue.

It is a strategy issue that IT happens to sit at the centre of.

When an AI agent with unmonitored access causes a data breach, the accountability question does not land on the engineer who deployed it.

It lands on the leadership team that had no framework in place to govern it.

The EU AI Act reaches general enforcement in August.

The regulatory expectation is clear: documented governance, not aspirational policy. Organizations that cannot answer three basic questions; how many agents are running, what can they access, and who approved that access — are carrying risk they have not quantified and cannot currently defend.

Every previous wave of operational technology from SCADA systems to cloud migration eventually demanded its own governance layer.

AI agents are no different, except that they are accumulating access faster than any technology before them, and the governance layer has not caught up.

The question worth raising at your next leadership meeting is not whether your organization uses AI agents.

It almost certainly does. The question is whether anyone can tell you how many, where they operate, and what they are authorised to do.

If the answer is silence, that is the governance gap you did not budget for and the one your regulator will ask about first.