1Password Unveils Agentic AI Security and Enhanced XAM Platform for Modern Enterprise Security Challenges

1Password extends enterprise credential management beyond humans to AI agents

As AI agents start to take over business processes that have typically been the responsibility of humans, many of those agents will have to sign in to multiple systems to complete their tasks securely. To help enterprises scalably manage that challenge to modern credential management best practices, 1Password -- a company widely known for its password management solution -- has announced the addition of agentic AI security capabilities to its Extended Access Management Platform (XAM). During the past year, there's been lots of talk about AI potentially taking over many jobs. Bill Gates recently predicted that only three jobs will survive: biologists, energy experts, and the coders of AI itself (he also told Jimmy Fallon that we won't want to watch computers play baseball). However, given the extent to which most humans have to log in to multiple systems to get their jobs done -- sometimes even for just one task -- who will manage the credentials securely for those AI agents as they start to proliferate? Also: The best VPN services (and how to choose the right one for you) Take software development as an example. As ZDNET's Joe McKendrick recently reported, OpenAI's forthcoming Agentic Software Engineer is not just augmenting the current software engineers in your workforce, but is an agentic software engineer that can take a pull request and build an app for you. The enterprise software development process involves a carefully choreographed workflow that often requires developers to authenticate with multiple solutions across an organization's continuous integration/continuous development (CI/CD) infrastructure. The idea that agentic software engineers could start to take over the role of actual software engineers could be massively disruptive to the underlying security controls. This concern only scratches the surface of the challenge. Given the API-driven composability of many enterprise automation systems, it's also highly likely that AI-agent-directed workflows will need to log in to multiple internal and external services to complete their tasks. Also: Why scaling agentic AI is a marathon, not a sprint "We're standing at the precipice of a massive transformation," 1Password CEO David Faugno told ZDNET. "AI agents have the potential to be a massive accelerator of productivity and innovation. However, these AI agents will need to be able to execute human-like activities, such as logging in to systems, to perform their work. Unfortunately, legacy identity and access management solutions weren't designed to govern or secure non-human, non-machine identities like AI agents." The disruptive promise of AI agents, according to a prepared statement by 1Password co-CEO Jeff Shiner, is that they'll "operate non-stop at machine speed, scaling workflows in ways we've never seen." Shiner noted that older security models designed for humans can only underserve agentic AI's potential for speed and scale. When asked if the new functionality in 1Password's XAM platform will take passkeys into account, a company spokesperson said: "We're always working to improve our offerings, but we don't comment on potential or unannounced products." Also: Will AI replace software engineers? It depends on who you ask With the announcement, 1Password has introduced three new agentic AI capabilities to XAM: partitioned vaults for dealing with AI agent-specific secrets, scoped APIs to enable the programmatic management of vault items into AI workflows, and a software development kit (SDK) to help software engineers with the development and automation of those workflows. The new functionality will be available to developers through SDKs for Javascript, Python, and Go, and the documentation can be found on 1Password's official developer portal. XAM's new agentic AI capabilities are available to customers of 1Password's Enterprise Password Manager business plan at no additional cost.

1Password's next chapter is all about securing everything legacy tools miss - 9to5Mac

1Password is an app I've been using since 2008, but it's not longer just an app. It is building a platform for how work actually happens today. That includes personal devices, AI agents, and apps that never went through the IT team. With new updates to its Extended Access Management platform and a partnership with Drata, 1Password is moving beyond vaults to help companies stay secure without slowing anyone down. Modern work is messy from an IT perspective. Employees use their own devices. Teams add new tools without waiting for approval because it only takes a credit card. We're in the early days, but AI agents are starting to automate real work like logging into systems, pulling data, and kicking off workflows. Most legacy tools were built for a world of managed devices, corporate networks, and apps only behind the single sign-on. That world is gone, and it's not coming back The updates to 1Password's Extended Access Manager adds quite a bit, but at the center of it is visibility. The platform gives IT and security teams a way to see what apps people are using, what devices they are using, and how secure those devices really are. Here is a quick look at what is new: "The way people work has fundamentally changed, and security needs to catch up quickly," said David Faugno, Co-CEO at 1Password. "The explosion of SaaS has increased access management and governance complexity, and now, agentic AI is compounding that challenge. Organizations need a new approach, one that not only secures managed devices and applications but also the unmanaged tools that employees and AI agents actually use to get work done. That's exactly what 1Password Extended Access Management is built for. We're not just solving today's problems; we're shaping the future of identity and access management security - one that empowers productivity without compromising protection." 1Password also makes a clear bet on AI and AI agents. This is not just in terms of assistant-style bots, but real autonomous agents that make data decisions and execute tasks. The growth we've seen in GenAI in the last 24 months has been insane, and it's not likely to slow down. "We're standing at the precipice of a massive transformation," said David Faugno, Co-CEO at 1Password. "AI agents have the potential to be a massive accelerator of productivity and innovation, but only if we can secure and govern their access to enterprise data and systems. Agentic AI doesn't just analyze data. It acts. It takes initiative, interfaces with sensitive systems, and carries out workflows independently. And since existing enterprise applications were designed for human usability, the AI agents will need to be able to execute human-like activities such as logging into systems to perform work. Legacy identity and access management solutions were not designed to govern or secure non-human, non-machine identities like AI agents. That means we need to evolve how we think about trust, access, and control. With Agentic AI Security, 1Password is giving enterprises the tools to embrace this next era of automation with confidence, so they can move fast, stay secure, and grow without constraints." The Agentic AI capabilities are designed to treat AI agents like first-class corporate agents. Companies can now manage what these agents can access, how long that access lasts, and what they do with it. This functionality means no more hardcoded secrets or shared credentials in the agent code. It also gives teams audit logs and visibility into AI behavior, which will matter more as these tools scale. Achieving compliance is hard, and staying compliant is even harder, than many people think the project is "done". Most teams juggle a barrage of security questionnaires, outdated spreadsheets and docs, and constant back-and-forth with auditors. At the same time, employees are using apps that IT did not approve and logging in from devices that IT doesn't manage. The more flexible work becomes, the harder it is to prove you are staying within the lines. That is where the new Drata and 1Password integration comes in. Drata automates monitoring and evidence collection, while 1Password locks down access across identities, devices, and apps. Together, they give security and compliance teams a real-time view of who has access, what devices they use, and whether it meets frameworks like SOC 2 and ISO 27001. "Security and compliance are inseparable, especially as SaaS sprawl and AI adoption introduce new layers of complexity and risk," said David Faugno, Co-CEO of 1Password. "Organizations can't achieve lasting compliance without securing how people, devices, applications, and AI agents access their critical business data, and you can't secure access without continuously verifying compliance. This partnership with Drata helps unify these efforts, giving companies the ability to enforce strong security policies across all identities, applications, and devices, both managed and unmanaged, while staying continuously audit-ready. It's a step toward a more modern, automated, and resilient approach to trust at scale." As RSA week nears, 1Password is coming out of the gates firing on all cylinders with a bet on the future of IT and security. 1Password is not trying to replace your single sign-on tool or your device management system. It is filling in the gaps that those tools and systems were never built to cover: unmanaged apps, personal devices, AI agents, and compliance at scale.

1Password unveils new security and Agentic AI capabilities for XAM platform

Users will benefit from compliance and governance features 1Password, a leader in Extended Access Management (XAM) and creator of one of the best password managers, has unveiled a swathe of new security and Agentic AI capabilities in its XAM platform. Among the new updates are enhanced governance and compliance capabilities, and one-click app access, alongside new Agentic AI features including a 1Password SDK, service accounts, and the ability to store AI Agent secrets in the 1Password Enterprise password manager. 1Password have also announced a new partnership with Drata to further boost 1Password's compliance offerings. From June 2025, the platform will also offer extended device compliance to allow IT teams additional visibility into the devices employees are using to access web and AI applications, whether they are work-provided or personal devices. A one-click app launcher will also be made available in June, providing employees with a single access point to all the managed and unmanaged applications they need. In fall 2025, the platform will additionally offer access governance for SaaS applications, allowing IT teams to fully monitor and automate access and discover unauthorized shadow IT. IT admins will be able to access an XAM console that will provide visibility on user lifecycle, surface insights, policies across users, their devices, and the applications they access. "The way people work has fundamentally changed, and security needs to catch up quickly," said David Faugno, Co-CEO at 1Password. "The explosion of SaaS has increased access management and governance complexity, and now, agentic AI is compounding that challenge." "Organizations need a new approach, one that not only secures managed devices and applications but also the unmanaged tools that employees and AI agents actually use to get work done. That's exactly what 1Password Extended Access Management is built for. We're not just solving today's problems; we're shaping the future of identity and access management security - one that empowers productivity without compromising protection," Faugno added. From today, 1Password has made an SDK for Agentic AI available to help developers build secure AI workflows through programmatic management of vault items. What's more, developers and IT admins will be able to create scoped API keys to allow AI agents to access vaults without exposing credentials, and allow AI agents to perform efficiently without exposing businesses to additional risk. The 1Password enterprise password manager now also offers secure vaults for AI agents, where they can retrieve information needed to access service providers, while also providing audit logs. "AI agents will rapidly become the hardest-working members of today's workforce," said Jeff Shiner, Co-CEO at 1Password. "They operate non-stop at machine speed, scaling workflows in ways we've never seen -- but they don't fit neatly into old security models. That's why we created Agentic AI Security: to help businesses move fast and stay secure, giving developers the tools to innovate confidently while providing security teams the visibility they need." 1Password has also announced that it has partnered with Drata to offer enhanced compliance through continuous monitoring, secure access enforcement, and real-time insights across the edge, AI-driven tools, and employee-owned devices. "Security and compliance are inseparable, especially as SaaS sprawl and AI adoption introduce new layers of complexity and risk," said David Faugno, Co-CEO of 1Password. "Organizations can't achieve lasting compliance without securing how people, devices, applications, and AI agents access their critical business data, and you can't secure access without continuously verifying compliance." "This partnership with Drata helps unify these efforts, giving companies the ability to enforce strong security policies across all identities, applications, and devices -- both managed and unmanaged -- while staying continuously audit-ready. It's a step toward a more modern, automated, and resilient approach to trust at scale," Faugno concluded.

1Password launches Agentic AI Security and extends XAM platform capabilities - SiliconANGLE

1Password launches Agentic AI Security and extends XAM platform capabilities Cybersecurity and password service provider 1Password LLC today announced significant advancements in its security offerings with the introduction of new agentic artificial intelligence capabilities and enhanced features to its Extended Access Management platform. The new releases are aimed at securing and governing both human and nonhuman access and, in doing so, ensuring protection as AI agents and unmanaged devices play an increasingly prominent role in today's distributed work environments. Leading the list of announcements is 1Password's launch of "Agentic AI Security" capabilities that are designed to secure AI agents that increasingly handle tasks traditionally executed by humans. 1Password argues that as AI agents are poised to manage critical workflows, such as decisions, task execution and system interactions, businesses now face new security challenges. These nonhuman agents require unique management of their identities and access credentials, something legacy identity management solutions weren't built to address. The new Agentic AI Security offering has been built for agentic AI at machine scale, enabling enterprises to manage the growing complexity of autonomous agents. Using the solution, businesses can secure AI agents' access to sensitive systems and data, apply access policies dynamically and monitor AI activities for compliance. 1Password's platform eliminates the need for hardcoded secrets and enforces least privilege access, ensuring that AI agents can perform tasks securely without exposing confidential information. The new offering also includes the 1Password SDK for Agentic AI, a software development kit tool that allows developers to securely build and manage AI workflows, allowing them to securely read, write and rotate secrets at runtime. Alongside the launch of Agentic AI Security, 1Password also announced enhancements to its XAM platform to tackle modern security challenges. The enhancements seek to help organizations that must manage not only their information technology systems but also the increasing use of unmanaged devices and apps, including those accessed by AI agents. The newly announced capabilities help companies streamline device compliance, app governance and access control to ensure secure enterprise operations across all devices and applications, managed or not. Key enhancements to 1Password's XAM platform include Extended Device Compliance, a feature that ensures that both personal and managed devices meet security requirements before granting access to web and AI apps. Doing so addresses the increasing risks associated with unmanaged devices, helping organizations safeguard their systems from potential vulnerabilities. The platform also introduces Access Governance Tools, which provide IT teams with complete visibility into software-as-a-service apps, automate access reviews and identify shadow IT. The tools help improve control and compliance across the organization, making it easier to manage app access and mitigate risks. Finally, a new App Launcher simplifies secure, one-click access to both managed and unmanaged business applications, reducing friction for end-users while maintaining high-security standards. The App Launcher is complemented with XAM Console, a unified administrator hub that allows security teams to manage the user lifecycle, monitor risks and enforce policies across users, devices and applications, thereby enhancing security visibility and control.