SailPoint and Agentic AI: Practical Identity Security for Product Teams
Agentic AI changes how products ship and scale - it also multiplies risk. Each agent is a new identity with permissions, access, and behavior you must govern.
Jaishree Subramania, senior vice president of product marketing at SailPoint, put it plainly: "How do we keep up? And how do we secure all of these agents we're deploying?"
What SailPoint Does
SailPoint is an identity security leader for cloud enterprises. The platform governs humans and machine identities across applications, data, cloud systems, and infrastructure.
In October, the team launched Agent Identity Security (AIS), giving customers a way to roll out AI agents at scale with guardrails. Earlier in the year, they introduced Harbor Pilot, a set of AI agents that automate identity security tasks and workflows.
Why Agent Identity Security Now
AI agents are everywhere, and attackers know it. In September, a large-scale agentic AI campaign attributed to China reportedly hit dozens of financial firms and government agencies with minimal human oversight.
"Machine identities already outnumber humans in most enterprises," Subramania said. "Traditional governance built on static policies can't scale to this complexity."
Inside SailPoint's Approach to Securing Agents
Mitra Mahdavian, senior vice president of corporate strategy and product operations, explained how AIS extends SailPoint's core governance model:
- Onboard AI agents into a single identity fabric
- Track human ownership and accountability
- Govern associated service accounts
- Manage the full lifecycle of agents with consistent policies
As teams adopted Harbor Pilot, SailPoint saw customers deploy thousands of agents with minimal oversight. Subramania noted, "82 percent of organizations already using AI agents are struggling with basics: Who owns this agent? What can it access? How do we enforce least privilege?" AIS is built to answer those questions.
Harbor Pilot: Early Proof
- 50% customer adoption within 30 days of launch
- Workflow creation time dropped from hours to minutes
After Harbor Pilot, SailPoint made a deliberate R&D bet: treat AI agents as a first-class identity type and provide the platform to secure them. "Our most pivotal decision was going all-in on agentic AI as both a tool for customers and as an identity type," Subramania said.
Market Direction and Product Strategy
According to SailPoint research, by 2028, about a third of enterprise apps will include agentic AI - up from about one percent in 2024. The strategy: bring insights and controls for humans, machines, and agents into one platform.
"Through the SailPoint Platform, we enable enterprises to manage humans and non-humans within a single, unified platform," Subramania said. The aim is to move teams from firefighting to proactive risk management.
Engineering: Shipping Into a Field That Changes Weekly
Fuad Rashid, senior vice president of engineering, shared how the org stays current: empower teams to test tools, learn fast, and standardize what works. "The technology is continuing to evolve so quickly that something better is likely to come out within a few weeks," he said.
Some tools are standardized; others are left open for exploration. "The launch of AIS earlier this year was a significant step, and our comprehensive roadmap will further solidify our position as the leader in providing secure and observable AI agent implementations," Rashid said.
What Product Teams Can Do Now
- Define an agent identity model: ownership, purpose, scope, and lifecycle.
- Enforce least privilege with time-bound access and automated reviews.
- Map agent-to-service-account relationships and rotate credentials automatically.
- Instrument agents with telemetry and audit trails for actions and prompts.
- Set kill switches for risky behaviors and require human approval for sensitive actions.
- Adopt a platform that unifies human, machine, and agent governance.
For broader context, see the NIST AI Risk Management Framework and the OWASP Top 10 for LLM Applications.
If your team needs structured upskilling, explore role-based programs at Complete AI Training or the AI Automation Certification.
What It's Like to Work at SailPoint
Teammates get ownership and see the impact. The mission is clear: secure the modern enterprise.
"You'll influence what we build, not just how we sell it," Subramania said. "You'll work with people who value both strategic thinking and flawless execution."
Culture is inclusive, helpful, and focused. "It's a place where you can do meaningful work in identity security while being surrounded by teammates who are inclusive, helpful and passionate about what they do," Mahdavian said.
Product Marketing at SailPoint
In product marketing, you're the bridge between product and market results. Expect to work on:
- Translating complex identity security capabilities into clear value
- Crafting positioning and building sales enablement
- Driving launch strategies from discovery to adoption
SailPoint is Hiring | View 140 Jobs
Frequently Asked Questions
What type of projects will I work on at SailPoint?
You'll build and secure identity products with a focus on AI agents. Projects include integrating security insights, managing human and machine identities, and improving customer workflows through automation.
How does SailPoint support career growth and development?
Ownership is real here. You get room to experiment, collaborate across functions, and influence both product and your path.
What makes SailPoint's culture unique?
Execution with principle. The values - innovation, integrity, impact, and individuals - guide collaboration and decisions every day.
What can I expect in terms of team collaboration?
Cross-functional by default. You'll work closely with product, engineering, marketing, and leadership to keep pace with AI-driven requirements.
What's the work-life balance like?
High tempo with support. Teams get flexibility, budget for experimentation, and a clear focus on outcomes over theater.
Your membership also unlocks:
