Jan 27, 2026 | STREAMING LIVE
The Rise of
Agentic AI Security
Agentic AI is moving fast – and most orgs are still trying to make sense of it. Let’s bring together the builders and defenders asking the right questions, compare notes, and push the conversation forward.
Limited participants. Reserve your spot early!
Overview
As autonomy becomes embedded in infrastructure, the implications for identity, control, risk — and the way software behaves in general — are as unclear as ever.
The second-annual NHIcon is designed for precisely this moment — when the stakes around agentic AI are rising, but the future feels uncertain and uncomfortable.
Whether you are actively working on your approach or simply trying to understand what tomorrow might bring, NHIcon offers a place to think clearly and act with conviction.
Agentic AI is moving faster than any rulebook can keep up. If you’re not totally sure what it means yet — welcome. Let’s figure it out together and arm you with the knowledge to take action.
Who Should Attend?
NHIcon 2026 will convene the professionals accountable for and advancing the shift to agentic AI , including:
• Security engineers and practitioners
• Platform, DevOps, infrastructure engineers
• Developers and ML builders
• Identity architects
• Policy and governance leaders
• Incident responders and threat analysts
• Compliance, risk, and governance officers
• CISOs, CIOs, and CTOs shaping their organization’s agentic AI strategy
If your title or role doesn’t fit neatly into one of those buckets, that’s fine – if you care, you belong.
We’ll run two tracks: one focused on how agentic software is developed, architected, and deployed (Builders), the other on how to secure it (Guardians).
Expect practical talks, candid discussions, and lessons drawn from real experience.
Agenda
This year’s NHIcon goes deeper than ever into the realities of securing agentic AI – with two parallel tracks designed to meet you where you are.
Welcome to NHIcon 2026: Opening Remarks
Welcome to NHIcon! David will set the stage for a day of exploring the importance of agentic ai security and how it’s essential to protect the workloads that power modern infrastructure and drive enterprise innovation.
David Goldschlag
CEO & Co-Founder, Aembit
To be announced
Join Phil Venables, former CISO of Goldman Sachs and Google Cloud, in an insightful keynote to discuss the future of Agentic Security in the enterprise.
Phil Venables
Partner, Ballistic Ventures | Former CISO at Goldman Sachs and Google Cloud
Rethinking Identity for Agents That Don’t Fit the Model
When AI systems start taking action – not just generating output – they challenge the foundations of identity and access management. Are they users, workloads, or something else entirely? Each perspective carries different consequences for authentication, authorization, and accountability. In this keynote, David Goldschlag will explore what happens when software behaves with intent. Drawing on lessons learned from a career spent shaping digital identity – from anonymizing it with Tor to helping pioneer zero trust access for users to making secure workload access an enterprise imperative – he examines how existing IAM models fall short as software begins to act autonomously. Goldschlag will explore what happens when agents operate on behalf of humans, why attribution and context become central to trust, and how identity itself must evolve when autonomy becomes part of the enterprise.
David Goldschlag
CEO & Co-Founder, Aembit
Reimagining IAM for Agentic AI: Building Secure, Accountable Non-Human Identity Ecosystems
Ken Huang
AI Security Researcher, Author, and Adjunct Professor, University of San Francisco at University of San Francisco
Engineering Robustness: Challenges in Quality Assurance and Performance Evaluation for Production LLMs
Misam Abbas
Staff AI Engineer and Technical Lead for Generative AI Safety at LinkedIn
Session with John Yeoh, Chief Scientific Officer of the Cloud Security Alliance
John Yeoh
Chief Scientific Officer at Cloud Security Alliance at Cloud Security Alliance
3 Bad Habits of MCP Adoption in Enterprise
Christian Posta
VP, Global Field CTO at Solo.io
Agentic AI & Network Security
Dan Graves
Chief Product Officer at WitnessAI
Secure the Agentic AI Revolution: Discover Your Secrets. Control Your NH(A)Is
Itzik Alvas
Co-Founder and CEO at Entro Security
The Power Shift: Building Security Guardrails in the Age of Agentic AI
Larry Whiteside
CISO and President of the CISO Society at CISO Society
Lightning Talk Lunch
Pavan Kota
IEEE Senior Member and Architect
Architecting AI Agents Identity: Getting the Security & Permissioning Right Across AWS, Azure, and GCP
Larry Whiteside
CISO and President of the CISO Society at CISO Society
How Agentic AI Helps You Leak Secrets And What To Do About It
Pavan Kota
IEEE Senior Member and Architect
Press Start: Securing Your AI Agents in 2026
Brenton House
Principal AI and API Security Adviser at IBM webMethods
How AI Will Shape the Shift-Left in AppSec
Anitha Dakamarri
Lead Application Security Engineer at Donnelley Financial Solutions
To be announced
When AI systems start taking action – not just generating output – they challenge the foundations of identity and access management. Are they users, workloads, or something else entirely? Each perspective carries different consequences for authentication, authorization, and accountability. In this keynote, David Goldschlag will explore what happens when software behaves with intent. Drawing on lessons learned from a career spent shaping digital identity – from anonymizing it with Tor to helping pioneer zero trust access for users to making secure workload access an enterprise imperative – he examines how existing IAM models fall short as software begins to act autonomously. Goldschlag will explore what happens when agents operate on behalf of humans, why attribution and context become central to trust, and how identity itself must evolve when autonomy becomes part of the enterprise.
David Goldschlag
CEO & Co-Founder, Aembit
Speakers
Ken Huang
AI Security Researcher, Author, and Adjunct Professor, University of San Francisco
Agenda
This year’s NHIcon goes deeper than ever into the realities of securing agentic AI – with two parallel tracks designed to meet you where you are.
Both tracks will feature keynotes, panels, and lightning sessions from the minds shaping the next generation of identity and security.
The full agenda drops in December – stay tuned!
The Builders Track
For practitioners, researchers, and engineers working hands-on with AI agents, APIs, and identity systems. Expect deep technical dives, live demos, and frameworks for securing agentic architectures in real-world environments.
The Guardians Track
For CISOs, security leaders, and strategists navigating the organizational and risk implications of agentic AI. Explore governance, policy design, and cross-team alignment needed to protect enterprises as AI becomes autonomous.
Sponsors
Aembit is the non-human identity and access management platform that secures access between workloads across clouds, SaaS, and data centers. With Aembit’s identity control plane, DevSecOps can fully automate secretless, policy-based, and zero trust workload access with MFA-strength capabilities.
Entro is a revolutionary cyber holistic security platform that offers end-to-end protection for non-human identities and programmatic access to cloud services and data. With Entro, CISOs and cyber security professionals enjoy comprehensive oversight, ensuring uncompromised protection for their organizations.
GitGuardian leads the way in Non-Human Identity security, offering end-to-end solutions from secrets detection in code, productivity tools and environments to strong remediation, governance and proactive prevention of leaks.
Silverfort secures every dimension of identity. Silverfort breaks down the silos of identity infrastructure and point solutions to eliminate security gaps and blind spots once and for all. The result? Identity security without limits—that doesn’t slow down the business.
WitnessAI is the confidence layer for enterprise AI, a unified platform built for the modern enterprise. Our network-level visibility and intent-based controls govern your entire human and AI agent workforce, while our AI Firewall provides runtime defense for models, enabling confident innovation with an enterprise-first, single-tenant architecture.
Partners
The Identity Defined Security Alliance (IDSA) is a group of identity and security vendors, solution providers and practitioners that acts as an independent source of thought leadership, expertise and practical guidance on identity-centric approaches to security for technology professionals. The IDSA is a nonprofit that facilitates community collaboration to help organizations reduce risk by providing education, best practices and
resources.
The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products.
NHIcon 2025 Moments
1,100+
Registrants
“It’s great to hobnob with other folks and share ideas!”
Register Now
Sign up like a human. Show up for the nonhuman.
Attendance is limited to foster deeper discussions and real-time engagement. Don’t wait to register.
