Keeper Security Extends Agentic AI Governance to Endpoint Privilege Manager
For the first time, AI agents on employee workstations and endpoints can be discovered and governed with access policies and elevation controls
Gartner predicts that by 2028, an average global Fortune 500 enterprise will have more than 150,000 AI agents in use, up from fewer than 15 in 2025. Yet according to IBM's 2025 Cost of a Data Breach report, 63% of organizations lack AI governance policies entirely, and among those that experienced an AI-related breach, 97% lacked proper AI access controls. The governance infrastructure has not kept pace with adoption.
The reason is architectural. Other AI agent governance solutions operate at the MCP layer, governing only the tool calls an agent routes through an MCP server. Keeper instead enforces governance from the same installed endpoint agent that already mediates human privilege requests, observing the AI agent where it actually executes: on the machine itself. Keeper can govern what actions an agent is taking on the local device including: spawning child processes, writing directly to the filesystem, invoking a local shell, elevating privileges through the OS or accessing sensitive files.
Because Keeper's solution operates at the operating system level, it evaluates every action an AI agent attempts against the same policy engine – with the same identity, approval and audit framework that governs human users. The result is full attribution, enforcement and a single unified audit trail across both human and non-human principals on every endpoint.
"AI agents are not assistants; they are principals," said
Detecting What Is Already Running
Keeper Endpoint Privilege Manager identifies both known and unknown AI agents on managed endpoints. Known agents, including GitHub Copilot, Cursor,
Agents outside the known catalog are caught by Keeper Endpoint Privilege Manager's proprietary AI detection algorithm. Every application on a managed endpoint receives a zero-to-100 score, and any application that crosses the configurable threshold falls under agentic AI policies the moment it runs, with no signature update or manual classification required. Administrators tune the threshold per policy and can pin known agents to defined groups for targeted control.
Governance Policies Built on Familiar Controls
Agentic AI governance in Keeper Endpoint Privilege Manager is built on three new policy types, using the existing controls available to Endpoint Privilege Manager policies plus a new approval control that routes agentic actions to end users for review:
- Agentic AI Policy controls who can run agents on an endpoint.
- Agentic Access Policy controls what those agents may do on a user's behalf, including access to sensitive files, executables and commands.
- Agentic Privilege Elevation Policy controls how agents request administrative elevation.
"AI agents operate with an alarming level of autonomy, creating an urgent security gap that organizations are scrambling to close," said
A monitor-first lifecycle lets organizations observe agent behavior before enabling enforcement, and any action requiring human review is held at an approval gate until a designated approver reviews and approves.
A unified audit trail captures agent actions, policy decisions and approval outcomes, giving security and compliance teams a direct line from individual agent behavior to regulatory obligation. Keeper Endpoint Privilege Manager's policy controls and audit trail provide the controls organizations need to operationalize National Institute of Standards and Technology (NIST) AI Risk Management Framework requirements directly at the endpoint.
This product release also includes a dashboard with AI agent visibility, a new workload view, dedicated agentic AI groupings and automatic agent updates with version control.
Availability
Agentic AI governance is available with Keeper Endpoint Privilege Manager, either standalone or as part of the KeeperPAM® platform. Current customers can contact their Keeper customer success team to enable the feature. New customers can request a demo at keepersecurity.com.
About Keeper Security
Keeper Security is the leading zero-trust and zero-knowledge identity security solution, trusted by millions of people and thousands of organizations globally. KeeperPAM® is Keeper's privileged access management platform that unifies password and passkey management, secrets management, privileged session management and endpoint privilege management in a single cloud-native platform, protected with quantum-resistant encryption. KeeperAI delivers real-time, AI-native threat detection across every privileged session. As AI agents proliferate and identity becomes the defining attack surface, Keeper governs access for humans, machines, non-human identities and AI agents, serving as the unified control plane for access, compliance and visibility across the enterprise. For more information, visit keepersecurity.com.
Learn more: KeeperSecurity.com
Follow Keeper: Facebook Instagram LinkedIn X YouTube TikTok
Media Contact
Katherine Benfield
ICR for Keeper Security
[email protected]
View original content to download multimedia:https://www.prnewswire.com/news-releases/keeper-security-extends-agentic-ai-governance-to-endpoint-privilege-manager-302819881.html
SOURCE Keeper Security
Serious News for Serious Traders! Try StreetInsider.com Premium Free!
You May Also Be Interested In
- J&T Express Average Daily Parcel Volume Exceeds 100 Million in the Second Quarter of 2026
- 68% of Americans Want to ‘Earn’ Their Way Out of Phone Bill, Survey Finds
- Chambers USA Recognizes Furia Rubel for Litigation Support and Crisis Management
Create E-mail Alert Related Categories
PRNewswire, Press ReleasesSign up for StreetInsider Free!
Receive full access to all new and archived articles, unlimited portfolio tracking, e-mail alerts, custom newswires and RSS feeds - and more!



Tweet
Share