Securing Banking Enterprises as Non-Human Identities Grow

CISOs Grapple With AI Blind Spots, Excessive Permissions and Governance Issues Suparna Goswami (gsuparna) • January 22, 2026

Machine identities continue to multiply as organizations push automation, cloud services and artificial intelligence-driven initiatives deeper into core operations. This rapid growth creates new vulnerabilities, especially when non-human identities carry excessive permissions, lack clear ownership or are completely invisible to security teams.

See Also: On-Demand | NYDFS MFA Compliance: Real-World Solutions for Financial Institutions

"I think it is definitely a challenge with organizations because we are all focused on automation, maybe cloud adoption, AI initiatives, and so when that happens, the number of machine identities is just going to grow exponentially," said Erin Rogers, senior vice president and director of cyber security risk and compliance at BOK Financial.

Security organizations should invest in adaptive, risk-based identity and access management tools, Rogers said.

"Continuous session evaluation and real-time authentication decisions help limit lateral movement by ...