Cisco has announced its intent to acquire Astrix Security, marking a strategic move to address the rapidly expanding security risks associated with AI agents and non-human identities (NHIs). The acquisition underscores Cisco’s focus on securing the next generation of enterprise environments driven by agentic AI systems.
The rise of AI agents is transforming the digital enterprise, with organizations increasingly deploying autonomous systems that operate continuously, access sensitive data, and execute decisions at machine speed. While these agents enhance productivity, they also introduce a new and fast-growing attack surface. According to Cisco’s AI Readiness Index, only 24 percent of organizations can effectively control AI agent actions with proper guardrails, while just 31 percent feel fully capable of securing their AI systems.
This growing gap between AI adoption and security readiness has become a critical concern. Threat actors are leveraging advanced AI models to exploit vulnerabilities, forcing enterprises to rethink traditional security frameworks. Cisco has been actively investing in AI security through initiatives such as AI Defense, Zero Trust Access architecture, and enhanced threat detection capabilities integrated across its portfolio.
The planned acquisition of Astrix Security adds specialized capabilities to Cisco’s security platform, particularly in managing and securing non-human identities such as API keys, service accounts, and OAuth tokens. These credentials are increasingly used by AI agents to access systems and perform tasks, making them a prime target for cyber threats, Peter Bailey, SVP/GM, Security, Security Business Group (SBG) at Cisco, said in a blog post.
Astrix Security provides comprehensive solutions for discovering and governing AI agents, managing their lifecycle, and detecting real-time threats. Its platform enables organizations to map agentic activity, reduce excessive privileges, and prevent compliance violations. Additionally, it offers centralized secrets management across cloud environments and security vaults, strengthening enterprise-wide credential protection.
Cisco plans to integrate Astrix Security’s technology into its identity and access management ecosystem, enhancing visibility and control across AI-driven operations. This integration will extend into Cisco’s Zero Trust framework, enabling enterprises to authenticate, authorize, and monitor AI agents more effectively.
Cisco has also expanded its AI observability and security analytics capabilities through its acquisition of Galileo. Galileo strengthens Cisco’s ability to monitor AI models and applications, providing deeper insights into AI behavior, performance, and risks. This complements Cisco’s broader push to bring visibility into AI systems across enterprise environments.
Another major pillar of Cisco’s AI strategy is Splunk, which Cisco acquired to enhance its security operations and data analytics capabilities. Splunk plays a central role in automating security operations centers (SOC) and enabling organizations to detect and respond to threats at machine speed, including those driven by AI systems.
By combining Astrix’s capabilities with Cisco’s extensive visibility across network, application, and infrastructure layers, organizations will gain deeper insights into AI agent behavior. This unified intelligence will also integrate with security analytics platforms such as Splunk, enabling faster detection and response to AI-driven threats.
The acquisition reflects Cisco’s broader strategy to become a key partner for enterprises navigating the shift toward AI-powered operations. As AI agents become integral to business processes, securing their identities and actions will be essential for maintaining trust, compliance, and operational resilience.
RAJANI BABURAJAN
