Cisco President Jeetu Patel revealed that 85% of enterprises are running AI agent pilots while only 5% have reached production — an 80-point gap driven by identity governance challenges rather than technical limitations. According to VentureBeat’s RSAC 2026 coverage, the bottleneck isn’t model capability or compute power, but enterprises’ inability to inventory, scope, or revoke agent identities at machine speed.
Medical transcription agents updating electronic health records and computer vision agents running factory quality control represent a new class of non-human identities that existing enterprise identity and access management (IAM) systems weren’t designed to handle. IANS Research found that most businesses still lack role-based access control mature enough for human identities, making agent governance significantly more complex.
The Four-Surface Security Challenge
AI agents expose a fundamentally different attack surface than traditional large language models. According to Gravitee’s 2026 State of AI Agent Security report, 88% of organizations reported confirmed or suspected AI agent security incidents in the past year, while only 14.4% of agentic systems went live with full security and IT approval.
The security model shifts from a single prompt interface to four distinct attack vectors:
- The Prompt Surface: How agents process external inputs and instructions
- The Tool Surface: Backend actions agents can execute across enterprise systems
- The Memory Surface: Information agents store and recall across sessions
- The Orchestration Surface: How multiple agents coordinate on complex tasks
This expanded attack surface creates new vulnerabilities. The 2026 IBM X-Force Threat Intelligence Index reported a 44% increase in attacks exploiting public-facing applications, driven by missing authentication controls and AI-enabled vulnerability discovery.
Anthropic Advances Agent Learning Capabilities
Anthropic on Tuesday introduced “dreaming” for its Claude Managed Agents platform, allowing AI agents to learn from past sessions and self-correct over time. The feature, announced at Anthropic’s Code with Claude developer conference, addresses enterprise demands for self-improving AI systems before trusting agents with production workloads.
Early results show significant performance gains. Legal AI company Harvey saw task completion rates increase roughly 6x after implementing dreaming, while medical document review company Wisedocs cut review time by 50% using Anthropic’s outcomes feature. Netflix is processing logs from hundreds of builds simultaneously using multi-agent orchestration.
CEO Dario Amodei disclosed that Anthropic’s growth has outpaced internal projections, with the company moving two previously experimental features — outcomes and multi-agent orchestration — from research preview to public beta.
Three Core Enterprise Challenges
Anthropic’s updates target what the company identifies as the hardest problems in scaling AI agents:
- Accuracy maintenance: Ensuring agents perform reliably across diverse tasks
- Continuous learning: Enabling agents to improve from experience without human intervention
- Workflow bottlenecks: Preventing agents from becoming constraints on complex, multi-step processes
Automation Driving Job Market Changes
Automation has become the leading cause of corporate layoffs for the second consecutive month. Challenger, Gray and Christmas reported that U.S. employers eliminated 83,387 jobs in April 2026, up 38% from March, with automation cited as the primary driver.
“Technology companies continue to announce large-scale cuts and are often citing AI spend and innovation,” said Andy Challenger, chief revenue officer at the outplacement firm. “Regardless of whether individual jobs are being replaced by AI, the money for those roles is.”
The shift reflects a broader enterprise transformation beyond simple bot deployment. Forbes analysis suggests organizations are moving from bot-centric automation to what experts call “agentic enterprises” — architectures where AI agents are intelligently orchestrated across business functions rather than deployed as isolated tools.
Enterprise Architecture Evolution
The evolution from robotic process automation to agentic systems represents a fundamental shift in enterprise architecture. Early automation success was measured in bot deployments and cost reduction, but this approach often created “automation sprawl” — multiple platforms performing similar functions with fragmented governance and visibility.
Sanjoy Sarkar, SVP at First Citizens Bank, argues that the next phase of enterprise transformation will be defined not by deploying more bots, but by how intelligently automation is architected and governed across organizations. This requires:
- Centralized governance: Unified policies for agent behavior and access controls
- Credential management: Secure, scalable identity systems for non-human entities
- Monitoring and observability: Real-time visibility into agent actions and decisions
- Risk management: Frameworks for containing agent errors and unauthorized actions
What This Means
The 80-point gap between AI agent pilots and production deployments reveals a critical infrastructure challenge that extends far beyond technical capabilities. While companies like Anthropic are advancing agent intelligence and learning capabilities, the fundamental barrier remains enterprise security and governance systems designed for human users.
This creates a significant market opportunity for identity and access management vendors that can solve agent governance at scale. The companies that successfully bridge this gap will likely capture disproportionate value as enterprises move from experimentation to production deployment.
The job market data suggests this transition is accelerating despite security concerns, with automation spending displacing traditional roles even when direct job replacement isn’t occurring. Organizations appear willing to accept security risks to capture competitive advantages from agentic automation.
FAQ
Why are so few AI agent projects reaching production?
The primary barrier is identity governance — enterprises can’t effectively manage, monitor, or revoke access for non-human agent identities at scale. Existing IAM systems weren’t designed for autonomous agents that need dynamic access to multiple systems.
What makes AI agents more dangerous than traditional automation?
AI agents expose four attack surfaces instead of one: prompts, tools, memory, and orchestration. They can execute backend actions, store information across sessions, and coordinate with other agents, creating complex security challenges that traditional bots don’t present.
How are companies measuring success with AI agents?
Early adopters report dramatic improvements: Harvey saw 6x higher task completion rates, Wisedocs cut document review time by 50%, and Netflix processes hundreds of build logs simultaneously. Success metrics focus on task completion rates and processing speed rather than simple cost reduction.
Related news
Sources
- Designing The Agentic Enterprise: Why Intelligent Automation Must Evolve Beyond Bots – Forbes Tech
- AI agents are running hospital records and factory inspections. Enterprise IAM was never built for them. – VentureBeat
- The AI Agent Security Surface: What Gets Exposed When You Add Tools and Memory – Towards Data Science
- Anthropic introduces “dreaming,” a system that lets AI agents learn from their own mistakes – VentureBeat
- More Automation Leads Job Numbers For May – Forbes Tech
