The landscape of enterprise cyber risk is undergoing a significant transformation due to innovations in artificial intelligence. According to Jitin Shabadu, an analyst at Forrester, it is imperative for Chief Information Security Officers (CISOs) to enhance visibility of AI agents while strengthening identity governance and maintaining human oversight. As cybercriminals become increasingly adept at leveraging AI technologies, Shabadu emphasizes that gaining a comprehensive understanding of these tools is essential for safeguarding enterprises from emerging threats.

In his co-authored report titled Top Cybersecurity Threats in 2026, Shabadu outlines the expanding attack surfaces that AI agents contribute to, as well as the new challenges they create for machine identities, software supply chains, and detection mechanisms. He underscores the importance of clarity regarding AI deployment within organizational structures before CISOs commit to any new security controls, noting that current defensive AI capabilities lack the maturity found in offensive applications of AI.

Shabadu articulates a critical perspective on the complexities involved in managing AI. “Every agent is fundamentally an identity issue,” he states. “Governance of AI agents cannot be approached simply as another human identity; their operational dynamics differ significantly from those of humans.” This unique characteristic necessitates a fresh approach to identity governance that addresses the distinct functionalities and vulnerabilities of AI systems.

During his recent interview with ISMG, Shabadu outlined critical areas for security teams to focus on, stating that visibility should be prioritized as AI adoption grows. He asserts that security personnel must implement appropriate guardrails and controls to effectively navigate the evolving landscape of cyber threats.

Key discussion points from the video interview included:

• How the acceleration of AI technologies is influencing nation-state cyber operations and the emergence of autonomous attacks;
• The urgent need for enhanced AI agent visibility and identity governance as primary concerns for CISOs;
• Strategies for security leaders to mitigate risks associated with AI software supply chains while simultaneously reinforcing overall cyber resilience.

Shabadu’s expertise is deeply rooted in supporting security and risk professionals, with a focus on essential areas such as zero trust frameworks, threat intelligence, network analysis, and automation. He works closely with Forrester clients, aiming to bolster their security postures through the implementation of zero trust principles and advanced strategies for counteracting cyber threats. His extensive knowledge spans a variety of industries, including energy, finance, aviation, education, and government, allowing him to craft highly customized solutions tailored to the unique security challenges faced by different sectors.

In conclusion, as AI technologies continue to evolve, so do the cybersecurity challenges associated with them. The insights provided by analysts like Jitin Shabadu serve as critical guidelines for security leaders seeking to navigate this complex landscape. By understanding the implications of AI on enterprise security, CISOs can implement effective strategies that not only safeguard their organizations from immediate threats but also prepare them for future challenges in the ever-shifting world of cybersecurity.