Forrester: AI Agents Bring New CISO Cybersecurity Risks

AI agents are creating new cybersecurity risks for Chief Information Security Officers. Forrester analyst Jitin Shabadu says that artificial intelligence innovation is changing enterprise cyber risk. Here's the thing: CISOs need to improve agent visibility and strengthen identity governance. They also need to keep human oversight as cyberattackers get better at using AI. Shabadu, who co-authored Forrester's "Top Cybersecurity Threats in 2026" report, points out that AI agents are making attack surfaces larger. This also creates new challenges for machine identities, software supply chains, and detection. What's interesting is that Shabadu says security leaders should first understand where AI is deployed before adding new controls. He notes that defensive AI isn't as mature as offensive AI yet. The bottom line: Visibility must be the top priority for security teams as AI becomes more common, to ensure the right guardrails are in place. This matters because it directly impacts how businesses protect themselves from evolving cyber threats.