The Center for Internet Security (CIS), Astrix Security, and Cequence Security are teaming up. Their goal is to create specific cybersecurity guidance. This guidance will focus on the unique risks from artificial intelligence (AI) and agentic systems. They aim to expand the existing CIS Critical Security Controls to cover modern AI environments. These environments bring new challenges, like autonomous agents, API access, and automated threats. The collaboration will create two companion guides. One will focus on securing the AI agent lifecycle. The other will cover Model Context Protocol (MCP) environments. These environments risk issues like credential exposure, ungoverned execution, unapproved third-party connections, and uncontrolled data flows. Overall, the guides will provide practical safeguards for enterprises in dynamic AI ecosystems.
Also Read: Legit Security Unveils VibeGuard to Secure AI-Generated Code in Real Time
“AI presents both tremendous opportunities and significant risks,” said Curtis Dukes, Executive Vice President and General Manager of Security Best Practices at CIS. “By partnering with Astrix and Cequence, we are ensuring that organizations have the tools they need to adopt AI responsibly and securely.” Astrix will concentrate on securing AI agents, MCP servers, and Non-Human Identities such as API keys and service accounts that connect to crucial systems, with Jonathan Sander, Field CTO of Astrix, stating, “AI agents and the non-human identities that power them bring great potential but also new risks… we’re providing clear, practical guidance to keep AI ecosystems safe so organizations can innovate with confidence.” Cequence contributes its deep expertise in application and API security, with CEO Ameya Talwalkar noting, “As organizations embrace agentic AI, trust hinges on visibility, governance, and control… Security is strongest through collaboration, and this partnership gives organizations clear guidance to adopt AI safely and securely.” The guidance is expected to launch in early 2026 and will be supported by workshops, webinars, and other resources designed to help organizations implement these best practices and foster a unified framework for securing AI environments.
