The State of AI Risk Management report is here.
Download a copy
Session
PBC Connect – RSAC 2026

Securing AI Agents in the Enterprise: Practitioner Lessons from the PBC AI Center of Excellence

About the session

As enterprises move from experimenting with AI agents to deploying them in real workflows, security teams are facing a new set of questions: What should agents be allowed to do? How do we govern permissions and blast radius? How do we detect shadow agents? Which frameworks are useful, and where are the gaps?

Over the past several months, the PBC AI Center of Excellence | Building Secure AI Agents cohort has been discussing these questions through practitioner-led working sessions. This virtual session will share key lessons, open questions, and real-world approaches from the cohort, including early insights from the upcoming Securing AI Agents in the Enterprise: A Practitioner’s Guide.

This panel covers:

  • Key security considerations for enterprise AI agents
  • How practitioners are thinking about agent tasks, delegation, and permissions
  • The current landscape of AI security frameworks and where they help
  • Cost, governance, and operational trade-offs teams are working through
  • Open questions the community is still exploring around agentic AI security

Hosted By

Members of The Purple Book Community AI Center of Excellence -

  • Anisha - Governing agent usage
  • Bill - Deterministic vs. non-deterministic scanners
  • Sanket - Frameworks section
  • Mohit - Prompt injection by design
  • Cameron - Deployment patterns / tentative
  • Shivageeta - Cost-related section / tentative
  • Vikrant - Agentic identity and authorization / to confirm
  • Nevada - Reviewing and open to contributing
  • Matt Sayar - Enterprise agent visibility / Raj to confirm