• Product

    Product Overview

    Discover, secure and manage AI agents & NHIs

    Learn more

    CAPABILITIES

    Discover

    Maintain real-time inventory of all AI agents, MCP servers, and NHIs, with context to understand risk and business usage.
    Secure

    Identify and remediate AI agents and NHIs with excessive privileges, vulnerable configurations, abnormal activity, and policy violations.
    Deploy — powered by ACP (Agent Control Plane)

    Provision secure-by-design AI agents with short-lived credentials, just-in-time, precisely scoped access, and policy at creation.

    Supported environments

    Astrix logo: five black and white interlocking loops, symbolizing secure non-human identity and NHI Management leadership.
    A vibrant, ribbon-loop logo in blue, green, yellow, orange, and pink. Astrix: the leader in NHI security and service account protection.
    Astrix, the leading NHI Security platform, expertly manages the security of non-human identities. Alt text: Black silhouette of a featureless cat inside a circle, resembling the GitHub logo.
    Astrix, the leading NHI security platform, ensures robust protection and management for non-human identities.
    Astrix is the leading platform in NHI Management and Service Account Security. *Alt Text: A white ship's wheel symbol inside a blue hexagonal shape, representing leadership in non-human identity security.*.
    A geometric logo with interlocking shapes in red, green, blue, and yellow on a transparent background representing Astrix. Astrix: The leading platform for NHI Management and service account security solutions.
    Astrix, the leading NHI security platform, showcases a blue gradient abstract shape akin to a stylized mountain on white background.
    Blue circular icon with antennae, stylized non-human face; Astrix: the leading NHI Management and service account security platform.
    Astrix is the leading NHI Security platform, providing top-tier service account and non-human identity management solutions.
    Astrix: the leading NHI security platform, safeguarding non-human identities and service account integrity.
    Astrix: Leading platform for NHI Management and service account security.
    Astrix: The leading NHI Security platform, ensuring robust service account and non-human identity protection. Alt text: Blue Windows logo with four rectangles forming a window shape on a transparent background.
    more
  • Use Cases

    AI AGENTS

    Discovery and Governance for AI Agents
    Discovery & Governance for AI Agents

    Set policy to resolve hygiene issues, reduce attack surfaces and prevent compliance violations.

     Agentic Threat Detection & Response (ATDR)
    Access & Lifecycle Management for AI Agents

    Manage AI agents and their NHIs from provisioning to decommissioning.

     Agentic Access & Lifecycle Mgmt
    Agentic Threat Detection & Response (ADR™)

    Detect and respond to threats such as compromised credentials and out-of-scope agent actions.

    non-human identities

    NHI Discovery & Governance

    Control and enforce policies across your NHI attack surface.
    NHI Lifecycle Management

    Manage NHIs from provisioning to decommissioning.
    Non-Human ITDR

    Detect and respond to suspicious NHI activity & 3rd party breaches.
    Secret Management

    Centralized secret management across vaults & cloud.
    Third-Party Risk Management

    Discover and assess third-party apps & vendors accessing your environment.
  • Company

    COMPANY

    About Us

    The industry leader in AI Agent and Non-Human Identity security
    Careers

    The latest job opportunities

    Partners

    Explore partnership opportunities
    News

    Company announcements and press
    Contact Us

    Ask us anything
    The NHI Security Conference

    Watch the sessions on-demand

    Customer Stories

    Astrix is the leading NHI Security platform, safeguarding non-human identities in service account environments. Alt text: Astrix logo with a focus on securing non-human identities and service accounts.
    Workday

    HRTech

     A red sphere with white bands, symbolizing secure NHI Management by Astrix, the leader in NHI and service account security.
    Xerox

    Technology

     Orange HubSpot logo on a light background. Astrix is the leading platform for NHI Management and service account security.
    HubSpot

    Tech - CRM

     Astrix: The leading platform for NHI Management, securing non-human identities and service accounts efficiently. Alt Text: A stylized lowercase blue letter "b" with an orange dot above the upper right curve on a transparent background, representing Astrix, the leading NHI Security platform.
    Boomi

    Technology

     Astrix is the leading platform in NHI Management and service account security, safeguarding your non-human identity assets.
    BigID

    Cybersecurity

     Astrix: Leading NHI Security Platform with Advanced Non-Human Identity Management.
    Workato

    Technology

     Astrix is the leading platform for NHI Management and service account security. Alt text: A black Celtic knot design, showcasing a circular pattern with interconnected loops and swirls.
    Mercury

    Digital Banking

     Astrix's logo: A blue-striped triangular play button with overlapping shapes, embodying our leadership in NHI security. Alt text: Blue-striped triangular play button logo with overlapping shapes, symbolizing three-dimensionality and Astrix's NHI security expertise.
    Pagaya

    Fintech

     Astrix's blue geometric house icon symbolizes excellence as the leading NHI Security platform.
    Guesty

    Tech - Real Estate
    More customer stories
  • Learn

    Resources

    AI agent & NHI glossary

    Academy

    Resources

    Blog

    The latest on AI agent & NHI threats, products stories and more
    Events

    Meet Astrix at industry leading events
    Videos

    Watch on-demand sessions and expert insights

    News

    The latest company announcements and press
    Customer Stories

    How our customers secure their NHIs with Astrix
    Whitepapers

    Latest reports and whitepapers about NHI security
    Explore all

    AI agent & NHI glossary

    Agentic AI

    What is Agentic AI and related NHI risks
    Model Context Protocol

    Core concepts, functional components, and technical capabilities
    Service Accounts

    What are they & common vulnerabilities

    Machine Credentials

    How attackers exploit them & how to prevent it

    OAuth Tokens

    The risks they pose & how to secure them
    Non-human identities

    Definition, common use, and why they're important to secure
    Explore all

    Academy

    AI Agent Security Academy

    Become Certified Agentic Security Professional (CASP)

    WHAT’S NEW

    Meet Astrix’s AI Agent Control Plane (ACP)
    Astrix’s Agent Control Plane (ACP): Secure AI Agents from Day One
    NHI Governance for AI Agent Security in the Age of ChatGPT-5
    AI Agent Governance at Scale with NHI Security: Case Study
Book a demo
Results

Securing LLMs, AI Agents, and MCP: Unpacking the New CIS Companion Guides 

Jonathan Sander April 21, 2026

Today the Center for Internet Security (CIS) published three new Companion Guides extending the CIS Critical Security Controls to AI systems: one for LLMs, one for AI agents, and one for MCP environments. The guides are a joint effort between CIS, Astrix Security, Cequence, and other contributors from many different industries. Astrix is the principal author on the LLM and AI Agent guides and a contributor on the MCP guide. Here’s what we want to let you know:

  • What each of the three guides addresses
  • The principle that connects them
  • Where I’d start to ensure secure AI adoption  

What each guide covers

AI is in production across most enterprises and the controls that cover it are inconsistent. You probably already know that. The guides close that gap without adding a new framework. They stay inside the 18 CIS Controls you already run, applied through an AI-aware lens.

The three guides map to the three layers security teams have to reason about separately.

  • AI LLM Companion Guide. The model layer. Covers direct and indirect prompt injection, context handling, sensitive data exposure through embeddings and logs, access controls, and model supply chain risk.
  • AI Agent Companion Guide. The reasoning and action layer. Covers tool allowlisting, privilege boundaries, memory integrity, human-in-the-loop for high-impact actions, identity and access management for AI Agents, and the confused deputy problem, where a higher-privileged agent gets nudged into doing things it was never meant to do.
  • MCP Companion Guide. The protocol layer. Covers secure tool access, NHI management, auditable interactions, and protections against rug-pull behavior in MCP servers, where a trusted tool quietly changes behavior after integration.

Each guide walks through the 18 CIS Controls and specifies how each safeguard applies when the system being secured is not deterministic. The CIS Implementation Group (IG) guidelines are applied throughout, so teams can scope the work to their risk profile and maturity.

The principle behind all three guides

On the surface, the attack classes named across the three guides look different: prompt injection at the model layer, the confused deputy problem at the agent layer, rug pulls at the MCP layer. Structurally, they’re the same failure. A system without deterministic authorization trusts something it shouldn’t, and takes an action it shouldn’t.

Two rules the guides return to across all three layers:

  • System prompts are configuration, not content. They need the same change control you apply to any other configuration artifact. Treating them as editable copy is how silent policy drift starts.
  • Model output is never an authorization signal. An agent cannot write its own rules. Every action against a secured resource has to pass through deterministic authorization.

The second point is what we focus on the most. AI agents act through non-human identities: API keys, service accounts, OAuth tokens, and MCP server credentials. Those NHIs define what an agent can read, write, and execute. That access layer is where agent risk becomes enterprise risk, and where the CIS Controls already apply with full force.

The other through-line across the guides is integration. The discipline the CIS Controls have applied to cloud, containers, and SaaS for years now extends to models, agents, and MCP. No single layer covers the whole picture, which is why the guidance is split three ways. Inputs get sanitized at the model layer. Context and memory get protected across models and agents. Tool calls get validated through MCP. Actions get logged and remain auditable. Security holds when the controls span all three surfaces.

Where I’d start

Open with Controls 1 and 2. You cannot lock down things you don’t know exist. Inventory of models, agents, MCP clients & servers, and the credentials that connect them is the precondition for everything else. Every subsequent control depends on it.

From there, the implementation groups let you tailor. You don’t have to do everything at once. The guides tell you what to do now and what’s next on the list once you’re ready.

Join me, CIS, and Cequence on May 13 for a live walkthrough of the new Guides. Register here.

Learn more

What the Vercel Breach Reveals About Third-Party Integration Risk

Omer Granot
Omer Granot 20 Apr, 2026

AI Agents Have an Exposure Management Problem. Gartner Names Astrix as the Domain Specialist. 

Oleg Mogilevsky
Oleg Mogilevsky 8 Apr, 2026

A New Security Category for AI Agents: Inside SACR’s AIAP Report

Oleg Mogilevsky
Oleg Mogilevsky 2 Apr, 2026

33 Arch Street Boston, MA 02110, USA

© 2026 Astrix Security. All rights reserved.