Latest news with #ArtGilliland
Forbes
03-07-2025
- Business
- Forbes
Securing Identities For The Agentic AI Landscape
Art Gilliland, CEO at Delinea. The rise of agentic AI systems—autonomous, self-directed entities capable of making decisions and taking actions—marks a significant shift in the digital landscape. These aren't just smarter tools executing pre-scripted tasks; they're intelligent agents capable of reasoning, learning, adapting and operating independently across complex environments. As organizations begin deploying these systems at scale, the implications for identity security are both profound and urgent. From Assistive To Agentic: The AI Evolution We've long worked alongside assistive AI and think about search engines, chatbots and workflow automation. These systems' enhanced capabilities, however, required explicit instructions. Agentic AI changes the game. It doesn't just respond—it initiates. It can proactively launch tasks, coordinate with other agents, secure resources and continuously optimize toward goals, often with little or no human oversight. This shift is unlocking powerful new use cases across industries. In healthcare, agentic systems optimize patient flow by autonomously managing bed assignments, staffing levels and hospital transfers in real time. In financial services, they execute dynamics, reallocate portfolios and manage trading strategies and risk exposures independently. In government, agentic AI is reshaping emergency response—deploying resources, rerouting supply chains and prioritizing services based on live data. Across sectors, AI is no longer just a support tool; it's a decision-maker. This evolution introduces a new identity type: autonomous agents requiring access, permissions and authority within enterprise systems. Traditional models—built for humans and static accounts—can't support this. We need new frameworks built for AI-native environments. New Threats, New Surfaces As agentic AI becomes more capable, threat actors are adapting just as fast. Identity is quickly becoming both the first line of defense and the first target. Malicious actors are already exploiting synthetic identities, with AI entities posing as legitimate agents to infiltrate systems. Some agents, through repeated learning loops, are discovering ways to exploit access gaps or unintentionally escalate privileges. Insider threats are evolving too, with employees deploying unsanctioned AI agents to bypass controls, exfiltrate data or automate prohibited tasks under the radar. Even data inputs are a risk—manipulated datasets and poisoned outputs can deceive agentic systems into making harmful decisions. Agentic AI demands agentic security. Organizations must rethink identity, building adaptive, risk-aware systems that treat every action, whether human or machine-driven, as a decision point that needs to be verified, validated and secured. Rethinking Identity In The Age Of Autonomous Agents To securely enable agentic AI, organizations must treat these entities as privileged employees, contractors or partners. To do that demands significant changes in how identity and access management (IAM) is architected: Lifecycle Management: Like human workers, AI agents must have well-defined onboarding, role assignments, periodic access reviews and offboarding processes. Identity governance must accommodate dynamic, non-human actors whose roles and scopes of responsibility evolve over time. Context-Aware Authorization: Static access policies are inadequate. Agentic AI may pivot across tasks, applications and datasets within seconds. Access decisions must be adaptive, based on real-time context—task type, risk level, location, behavioral history—and capable of adjusting dynamically. Non-Repudiation And Accountability: Every action taken by an AI agent must be traceable to maintain trust, ensure compliance and enable forensic analysis if needed. Robust logging, cryptographic verification, immutable audit trails and transparency are essential. Zero Standing Privilege (ZSP): AI agents should never retain persistent access to sensitive resources. Just-in-time (JIT) privilege elevation—where access is granted only when needed and automatically revoked afterward—is key to minimizing the blast radius of any potential compromise. Building Trust Into Intelligent Autonomy Securing agentic AI requires more than just layering on new security tools—it demands a fundamental shift in our trust models. As machines gain the autonomy to make decisions, we must redefine how authority is established, intent is verified and boundaries are enforced. This evolution calls for proactive, cross-functional collaboration across the organization. At Delinea, we see identity as the core of securing AI. That means identity and security teams must build adaptive access controls and policy-based automation into every phase of the AI lifecycle. AI/ML practitioners must embed least privilege and explainability into models from the start. Governance and compliance leaders must ensure policies scale with machine identities, while legal and risk teams revisit accountability in a world where machines act on behalf of humans. By integrating identity, intent verification and privilege management directly into AI systems, organizations can secure autonomy without sacrificing control. 5 Steps Companies Should Take To Manage Agentic AI To secure the evolving agentic AI landscape, organizations should follow a structured approach: 1. Discover And Classify AI Identities: Use automated tools to inventory AI agents—scripts, bots and autonomous models, across hybrid and multi-cloud environments. Classify by sensitivity, privileges and business impact to align with intelligent privilege management. 2. Define Roles And Guardrails: Set clear operational boundaries for each AI identity. Use policy-based access to tie privileges to specific tasks, keeping actions aligned with business intent and risk tolerance. 3. Enforce Least Privilege, Just-In-Time Access: Replace standing privileges with just-in-time access. Grant AI agents only what's needed when it's needed—then revoke it automatically to reduce risk. 4. Authenticate And Authorize By Intent: Require strong, verifiable identities for AI-to-system and AI-to-AI interactions. Go beyond identity to validate intent, ensuring actions match approved use cases. 5. Monitor, Detect And Continuously Improve: Continuously monitor AI behavior to detect anomalies and misuse. Log actions with cryptographic integrity, enforce encryption and regularly test workflows to harden identity and access controls. The Path Forward: Building Trust In Agentic AI The agentic AI era isn't approaching; it is already here. From code co-pilots that autonomously write and deploy software to intelligent orchestrators managing entire workflows, AI agents are rapidly embedding themselves in critical systems. Organizations that embed identity-first principles into their AI strategies will be best positioned to innovate securely, maintain stakeholder trust and mitigate emerging cyber risks. Those who delay risk falling behind, not only technologically, but in defending against adversaries moving as fast as the machines themselves. Let's make sure the future is secure. Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
Associated Press
28-05-2025
- Business
- Associated Press
69% of Organizations Breached by Ransomware Over Past Year, Delinea Report Finds
SAN FRANCISCO, May 28, 2025 (GLOBE NEWSWIRE) -- Delinea, a pioneering provider of solutions for securing human and machine identities through centralized authorization, has unveiled new research highlighting how ransomware attacks have continued to surge over the past year, despite fewer victims paying. Over two-thirds (69%) of organizations globally have fallen victim to ransomware, with 27% being hit more than once. Meanwhile, attackers are harnessing AI to automate, scale, and sharpen their operations. Based on insights from over 1,000 IT and security leaders worldwide, the 2025 State of Ransomware Report reveals an increasingly volatile threat landscape driven by AI-powered attacks, stolen credentials, and Ransomware-as-a-Service (Raas). While only 57% of organizations paid ransoms, down from 76% in 2024, the frequency and impact of attacks continued to grow as threat actors turned to other tactics like extortion, with 85% of ransomware victims threatened with exposure. 'Ransomware has evolved into a shape-shifting, AI-enabled threat that no business can afford to underestimate,' said Art Gilliland, CEO at Delinea. 'In order to combat the sophistication of today's attacks, organizations must fight AI with AI and embrace proactive, identity security strategies like zero trust architecture, Privileged Access Management, and continuous credential monitoring to stay ahead.' AI: The Double-Edged Sword The report highlights the growing role of AI on both sides of the ransomware equation. Threat actors are using AI to automate phishing, impersonate trusted individuals via deepfakes, and accelerate attacks. At the same time, defenders are increasingly relying on AI to detect and respond to threats faster, with 90% of organizations now using AI in their ransomware defense strategies – primarily within Security Operations Centers (64%), for analyzing Indicators of Compromise (62%), and to prevent phishing (51%). Despite 90% of executives expressing concern over ransomware threats, many organizations continue to fall short in essential security practices, with only 34% enforcing least privilege access controls and just 57% implementing application control measures. Most victims reported extended recovery times, with 75% taking up to two weeks to recover. To learn more about the latest ransomware trends and ways organizations can better protect against attacks, download a copy of the report here: About Delinea Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea's leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle – across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities – including workforce, IT administrator, developers, and machines – assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, the Delinea Platform delivers robust security and operational efficiency without complexity. Learn more about Delinea on LinkedIn, X, and YouTube. A photo accompanying this announcement is available at Media contact Justin Ordman Corporate Communications Director [email protected]
Yahoo
28-05-2025
- Business
- Yahoo
69% of Organizations Breached by Ransomware Over Past Year, Delinea Report Finds
AI accelerates both attacks and defenses, but critical security gaps persist Report 2025 State of Ransomware Report SAN FRANCISCO, May 28, 2025 (GLOBE NEWSWIRE) -- Delinea, a pioneering provider of solutions for securing human and machine identities through centralized authorization, has unveiled new research highlighting how ransomware attacks have continued to surge over the past year, despite fewer victims paying. Over two-thirds (69%) of organizations globally have fallen victim to ransomware, with 27% being hit more than once. Meanwhile, attackers are harnessing AI to automate, scale, and sharpen their operations. Based on insights from over 1,000 IT and security leaders worldwide, the 2025 State of Ransomware Report reveals an increasingly volatile threat landscape driven by AI-powered attacks, stolen credentials, and Ransomware-as-a-Service (Raas). While only 57% of organizations paid ransoms, down from 76% in 2024, the frequency and impact of attacks continued to grow as threat actors turned to other tactics like extortion, with 85% of ransomware victims threatened with exposure. 'Ransomware has evolved into a shape-shifting, AI-enabled threat that no business can afford to underestimate,' said Art Gilliland, CEO at Delinea. 'In order to combat the sophistication of today's attacks, organizations must fight AI with AI and embrace proactive, identity security strategies like zero trust architecture, Privileged Access Management, and continuous credential monitoring to stay ahead.' AI: The Double-Edged Sword The report highlights the growing role of AI on both sides of the ransomware equation. Threat actors are using AI to automate phishing, impersonate trusted individuals via deepfakes, and accelerate attacks. At the same time, defenders are increasingly relying on AI to detect and respond to threats faster, with 90% of organizations now using AI in their ransomware defense strategies – primarily within Security Operations Centers (64%), for analyzing Indicators of Compromise (62%), and to prevent phishing (51%). Despite 90% of executives expressing concern over ransomware threats, many organizations continue to fall short in essential security practices, with only 34% enforcing least privilege access controls and just 57% implementing application control measures. Most victims reported extended recovery times, with 75% taking up to two weeks to recover. To learn more about the latest ransomware trends and ways organizations can better protect against attacks, download a copy of the report here: About Delinea Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea's leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle – across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities – including workforce, IT administrator, developers, and machines – assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, the Delinea Platform delivers robust security and operational efficiency without complexity. Learn more about Delinea on LinkedIn, X, and YouTube. A photo accompanying this announcement is available at CONTACT: Media contact Justin Ordman Corporate Communications Director in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
13-05-2025
- Business
- Yahoo
Delinea Begins FedRAMP High Authorization Process for Secret Server
Industry-leading, enterprise-grade Privileged Access Management solution to bring the highest identity security standards to U.S. federal government in partnership with UberEther SAN FRANCISCO, May 13, 2025 (GLOBE NEWSWIRE) -- Delinea, a pioneering provider of solutions for securing human and machine identities through centralized authorization, has initiated the FedRAMP High authorization process for Secret Server, an industry-leading Privileged Access Management (PAM) solution. Delivered in partnership with UberEther, Secret Server's pending designation will enable Delinea to further its commitment to securing the public sector through modern, enterprise-grade PAM capabilities. FedRAMP High is reserved for best-in-class solutions that safeguard the U.S. government's most sensitive, unclassified data in any cloud environment. Achieving this certification will ensure Delinea's Secret Server meets the most stringent security and risk management standards required by U.S. federal agencies. 'We're thrilled to partner with Delinea to deliver a FedRAMP High Authorized PAM solution tailored to the U.S. federal government,' said Matt Topper, CEO at UberEther. 'With identity-based attacks on the rise, this collaboration allows us to tackle the evolving security challenges of the public sector head-on. Together, we're redefining identity security with innovative, flexible solutions designed to protect mission-critical cloud environments.' Delinea has teamed up with UberEther as a strategic deployment partner, combining seamless PAM capabilities with secure infrastructure expertise. Secret Server is designed to help organizations protect critical access and eliminate identity-based threats by enabling IT administrators to: Store privileged credentials in a centralized, encrypted vault; Uncover all service, application, administrator, and root accounts; Automate provisioning, enforce password complexity, and rotate credentials; Delegate access through RBAC, workflows, and approvals for third parties; and Implement session launching, proxies, monitoring, and recording. 'Identity has become one of the primary attack vectors in the age of AI. As federal agencies modernize their environments to meet Zero Trust principles and government mandates, they need security partners they can trust to support the mission,' said Art Gilliland, CEO at Delinea. 'UberEther has been a fantastic partner and shares our unwavering commitment to operating and developing solutions with the highest levels of security. Together, we'll deliver innovative identity security solutions that meet FedRAMP High standards, demonstrating our dedication to the U.S. government.' Delinea has been named a leader in the top five leading analyst reports for PAM, including Gartner, Forrester, KuppingerCole, EMA, and Frost & Sullivan. To learn more about Delinea's Secret Server solution and sign up for a demo, visit: About Delinea Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea's leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle – across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities – including workforce, IT administrator, developers, and machines – assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, the Delinea Platform delivers robust security and operational efficiency without compromise. Learn more about Delinea on LinkedIn, Twitter, and YouTube. CONTACT: Media Contact Justin Ordman Corporate Communications Director in to access your portfolio
Yahoo
24-03-2025
- Business
- Yahoo
TPG to Consider Public Offering for Software Firm Delinea
(Bloomberg) -- Delinea Inc., a cybersecurity company controlled by TPG Inc., is exploring an initial public offering, according to people with knowledge of the matter. They Built a Secret Apartment in a Mall. Now the Mall Is Dying. Chicago Transit Faces 'Doomsday Scenario,' Regional Agency Says LA Faces $1 Billion Budget Hole, Warns of Thousands of Layoffs New York Subway Ditches MetroCard After 32 Years for Tap-And-Go Libraries Warn They Could Be 'Cut off at the Knees' by DOGE The San Francisco-based company hired Goldman Sachs Group Inc. and Morgan Stanley ahead of a potential listing, said one of the people, all of whom asked not to be identified discussing confidential information. Deliberations are ongoing and details of any offering could change, the people said. Representatives for TPG and Goldman declined to comment. A spokesperson for Delinea said the firm is 'unable to speculate on future plans at this time.' Morgan Stanley didn't immediately respond to a request for comment. An IPO could build on momentum for first-time share sales in the US. New listings have raised $10.5 billion so far in 2025, though tech companies have mostly been absent from debuts over the past few years, data compiled by Bloomberg show. That's expected to change in the coming months, with cloud-computing firm CoreWeave Inc. marketing its IPO to investors and digital-payments firm Klarna Group Plc and ticket-selling platform StubHub Holdings Inc. filing for listings. The handful of tech IPOs in the past few years has mostly rewarded investors as they flocked to firms seen as benefiting from the artificial-intelligence boom. Just 17 tech firms have raised more than $100 million in US IPOs since the end of 2021, data compiled by Bloomberg show. Not all of those firms have done well, with shares of Thoma Bravo-backed SailPoint Inc. slumping 11% since it raised $1.38 billion in February. TPG formed Delinea in 2021 through the merger of Thycotic and Centrify, creating a provider of privileged-access management solutions for seamless security, according to a company statement. Delinea, led by Chief Executive Officer Art Gilliland, helps organizations secure critical data, devices, code and cloud infrastructure to help reduce risk, ensure compliance and simplify security. Delinea's annual recurring revenue is approaching $400 million, with such revenue now comprising 95% of total revenue under generally accepted accounting principles, the company said last week. (Updates with Goldman declining to comment in third paragraph.) A New 'China Shock' Is Destroying Jobs Around the World How TD Became America's Most Convenient Bank for Money Launderers The Richest Americans Kept the Economy Booming. What Happens When They Stop Spending? Tesla's Gamble on MAGA Customers Won't Work One Man's Crypto Windfall Is Funding a $1 Billion Space Station Dream ©2025 Bloomberg L.P. Sign in to access your portfolio
