Cisco has announced its intent to acquire Astrix Security, a specialized security platform focused on identifying, managing, and securing AI agents and non-human identities (NHIs). The deal, valued at an undisclosed amount, marks the latest move by the networking giant to fortify its security portfolio in the rapidly evolving AI landscape. Astrix's technology will be woven into Cisco's Identity Intelligence, Secure Access, and Duo Identity and Access Management (IAM) solutions, aiming to provide organizations with comprehensive visibility and control over agentic identities.
The Challenge of AI Agent Security
As enterprises race to adopt agentic technologies, security teams face an expanding blind spot: non-human identities. These include API keys, service accounts, OAuth tokens, and credentials used by AI agents to execute tasks autonomously. According to Cisco's AI Readiness Index, only 24% of organizations can properly monitor and control agent actions, and just 31% feel fully capable of securing their agent AI systems. This gap is widening as agents multiply, with NHIs now outnumbering human identities 100 to 1 in many environments.
Astrix Security, founded five years ago by Alon Jackson and Idan Gour, built its platform to address exactly this challenge. The company's solution provides a real-time inventory of all AI agents, Machine-to-Machine (MCP) servers, and NHIs, enriched with context about risk and business usage. It goes beyond simple discovery, offering governance capabilities such as policy enforcement, privilege management, and lifecycle management—from provisioning to decommissioning. Additionally, the platform includes threat detection and response features that identify compromised credentials or out-of-scope agent actions.
Integration with Cisco's Security Ecosystem
Peter Bailey, Senior Vice President and General Manager of Cisco's Security Business, outlined the acquisition strategy in a blog post. He emphasized that Astrix brings deep capability to discover and secure every AI agent and NHI, including those with excessive privileges or exhibiting real-time threats. The technology will be integrated into Cisco Identity Intelligence, strengthening the visibility and context of identity across the entire Cisco Security platform. Furthermore, the capabilities will extend into Cisco's zero-trust access portfolio, encompassing Cisco Secure Access and Duo. Customers will be able to discover, authenticate, and authorize agentic identities, as well as detect and respond to threats when agents attempt to access resources through these solutions. The visibility and intelligence from Astrix will also feed into Splunk or any SIEM, giving security teams a unified view of agent activity with context needed for investigation and response at machine speed.
Key Capabilities from Astrix
Astrix's core offerings include three primary areas: Discovery and Governance for AI Agents – providing a map of an organization's agentic activity, vetting policies to resolve hygiene issues, reducing attack surfaces, and preventing compliance violations. Agentic Access and Lifecycle Management – managing AI agents and their NHIs from provisioning to decommissioning, ensuring proper permissions throughout. Agentic Threat Detection and Response – detecting and responding to threats such as compromised credentials, out-of-scope agent actions, and unusual behavior patterns.
The co-founders of Astrix, Alon Jackson and Idan Gour, noted in a separate blog that agents and other NHIs create the biggest blind spot in the identity perimeter. They believe that joining Cisco provides the scale, reach, and platform to bring agentic and NHI security to organizations worldwide. Astrix had already established itself as the go-to platform for security teams needing to discover, govern, and protect every agentic and non-human identity across their environment.
Broader Context: Cisco's AI Security Strategy
This acquisition is the second AI-management-related purchase by Cisco in recent weeks. In April, Cisco announced plans to acquire Galileo Technologies, an AI observability firm whose platform provides real-time guardrails and monitoring for multi-agent system development. Galileo's technology will strengthen Cisco's Splunk observability portfolio, bringing improved agent monitoring capabilities and protection to the agent development lifecycle. Together, these acquisitions signal Cisco's commitment to building a comprehensive security and observability suite that addresses the unique challenges of AI-driven ecosystems.
The market for AI agent security is rapidly expanding as more organizations deploy autonomous agents for tasks ranging from customer service to network management. Gartner predicts that by 2027, 40% of enterprises will have deployed some form of AI agent technology, up from less than 5% in 2024. This growth brings increased risk, as compromised agents can lead to data breaches, unauthorized access, and compliance violations. Cisco's move to integrate Astrix's capabilities into its existing network and security infrastructure positions the company to capture a significant share of this emerging market.
Industry analysts have praised the acquisition, noting that the combination of Cisco's extensive enterprise reach and Astrix's specialized technology could set a new standard for agent security. Forrester Research pointed out that traditional IAM solutions were not designed to handle the scale, dynamic nature, and autonomy of AI agents. Astrix's approach, which focuses on real-time discovery, continuous monitoring, and automated remediation, addresses these gaps more effectively than many existing tools.
From a technical perspective, Astrix integrates with existing cloud platforms, identity providers, and CI/CD pipelines to maintain a continuous inventory of all agent identities. It uses machine learning to establish baseline behaviors and detect anomalies that may indicate a security incident. The platform can automatically restrict permissions or revoke credentials when suspicious activity is detected, reducing the window of exposure. Moreover, Astrix provides audit trails and compliance reporting that help organizations meet regulatory requirements such as SOC 2, HIPAA, and PCI DSS as they adopt agentic workflows.
The financial terms of the Astrix acquisition were not disclosed, but given the strategic importance of AI security, it is likely a significant investment. Cisco's security business has been a growth driver for the company, and adding AI-specific capabilities is expected to further accelerate momentum. The deal is expected to close in the coming months, subject to regulatory approvals.
In a broader sense, the race to secure AI agents is just beginning. Competitors such as Microsoft, Okta, and various startups are also developing NHI management solutions. However, Cisco's unique position as a provider of both network infrastructure and security software gives it a distinct advantage. By embedding agent security into its existing access control and identity management platforms, Cisco can offer a seamless, integrated experience that reduces complexity for IT teams.
As AI agents become more pervasive, the need for a structured approach to their security will only intensify. The Astrix acquisition is a clear signal that Cisco intends to lead in this space, providing the tools and visibility that organizations need to adopt AI with confidence. With the combination of Astrix's agentic identity security and Galileo's observability intelligence, Cisco is building a formidable suite to address the full lifecycle of AI agent management—from development to deployment to ongoing protection.
Source: Network World News