SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia
Secure cloud of locks over servers unified identity for humans ai
#
Digital Transformation
#
Hyperscale
#
Cloud Security

SailPoint, AWS forge identity governance pact for AI

Tue, 17th Mar 2026
Author image
By Joseph Gabriel Lagonsin, News Editor

SailPoint and Amazon Web Services have signed a multi-year strategic collaboration agreement, positioning SailPoint as a preferred identity governance option for agentic AI built on AWS.

The deal extends the companies' existing relationship. Together, they plan to develop a unified identity governance layer for both human and non-human identities interacting with AWS services.

Agentic AI systems are starting to act on behalf of users, applications and other systems. That shift introduces large numbers of non-human identities-such as AI agents and machine identities-into corporate environments. Security teams must monitor more access paths and manage more permissions as autonomous workloads scale across cloud platforms.

SailPoint and AWS plan to develop governance that spans access policy enforcement and oversight across AWS environments, aiming to maintain control as agentic workloads expand.

"The proliferation of AI agents is creating a new class of non-human identities, and each one represents a new attack surface," said Mark McClain, CEO and founder of SailPoint.

McClain added: "For AI to be a true business accelerant, it must be built on a foundation of security. Our collaboration with AWS is about providing that foundation. By building a unified identity plane, we believe we will give our joint customers the visibility and control they need to manage the complexity of an AI-driven ecosystem, allowing them to innovate boldly and securely."

Governance focus

The collaboration reflects deeper technical and commercial alignment. Its scope includes consistent governance of access across identities, applications, data, machines and AI agents within AWS portfolios as customers adopt more autonomous architectures.

One area of work is identity lifecycle governance. The planned framework covers ownership, certification and decommissioning for identities interacting with AWS systems, including human users, machine identities and agent identities.

Another element is least-privilege access governance based on usage signals. The companies plan to use AWS CloudTrail activity data to analyse real-time usage patterns, supporting continuous access adjustments so identities retain only the permissions needed for current activity.

The roadmap also includes a unified identity graph-an authoritative view of access relationships across workloads, federated identities, services and data. Customers could use it to improve visibility into access relationships and apply governance controls.

Automation is also central to the plan, including automated policy enforcement and security guardrails that can revoke access when risk, role or behaviour changes. These workflows are intended to run continuously.

AgentCore integration

SailPoint said it integrates with AWS AgentCore (also referred to as Bedrock AgentCore) by discovering AI agents and governing them as identities in SailPoint. The integration is intended to let customers manage human and agentic identities through a single console. SailPoint also listed human-agent attribution, lifecycle governance, access reviews, permission right-sizing and policy enforcement as supported functions.

Additional features are planned, including provisioning accounts for AgentCore agents and handling requests for new access alongside grant workflows.

Commercial expansion

The agreement includes go-to-market efforts intended to broaden adoption of the combined approach. SailPoint said its products, including SailPoint Machine Identity Security and SailPoint Agent Identity Security, are now available through AWS Marketplace.

PACCAR cited its use of SailPoint's cloud service on AWS for identity automation and compliance processes.

"By leveraging the power of AI through SailPoint's Identity Security Cloud, hosted on the robust infrastructure on AWS, PACCAR has transformed identity into a seamless, automated process," said Michele Anne Schroeder, IAM Manager at PACCAR. "This integration facilitates compliance while empowering us to scale securely and efficiently in an increasingly complex digital landscape."

AWS said agentic AI is pushing more customers to seek security and governance structures that cover new types of identities.

"Agentic AI is unlocking opportunities for growth and innovation across all industries," said Keshav Narsipur, VP, AWS Identity and Access Management, Cloud Governance and Infrastructure as Code at AWS. "As customers build transformative new experiences, they need a trusted framework for security and governance. This collaboration brings together SailPoint's leadership in identity with the power of AWS, enabling our customers to confidently deploy and scale their AI agents."

Related stories
CIQ launches Linux compliance platform ahead of deadlines
Emerson & OPSWAT strike global reseller deal for OT patching
IWF & Cyacomb launch workplace abuse material scans
Cork Cyber adds automated mapping to Vantage platform
How Atomgate uses education and partnership to drive successful SonicWall upgrades

Top stories

Team Cymru launches Total Insights Feeds for threat data
FIRST conference highlights AI & CVE disclosure push
Protegrity launches AI Team Edition for secure inferencing
OpenAI launches Trusted Access for Cyber with major names
Anthropic launches Claude Opus 4.7 with stronger coding