Zenity Named a 2025 Cool Vendor in Gartner’s Agentic AI TRiSM Report

Your security teams are facing an unprecedented challenge. AI agents are spreading across enterprises faster than anyone anticipated, from Microsoft 365 Copilot processing sensitive emails to custom agents built on AWS Bedrock accessing critical databases. Over 80% of Fortune 500 companies are already deploying these autonomous systems, oftentimes without adequate security guardrails. The result is a rapidly expanding attack surface that conventional security tools simply cannot see or secure.

Market Validation: Gartner Recognizes Agentic AI TRiSM as an Enterprise Need

This week, Gartner named Zenity a Cool Vendor in Agentic AI TRiSM (Trust, Risk and Security Management). A recognition that validates what security leaders have been demanding, purpose-built governance for AI agents that behave autonomously, access sensitive data, and invoke tools across enterprise environments.

• “We don't see this as an award for us. We see it as market validation that AI agent security requires a fundamentally different approach than traditional application security or prompt filtering solutions,” Ben Kliger, CEO and Co-Founder, Zenity. “Unlike point solutions that focus solely on prompt analysis or browser-based monitoring tools, enterprises need comprehensive, agent-centric security that governs how AI agents are built, what they can access, and what they actually do in real time.”

The Agent Security Gap: Why Traditional Tools Fall Short

Consider the scope of what your teams are deploying:

• SaaS AI agents like Microsoft 365 Copilot and Salesforce Agentforce with access to business-critical data
• Custom agents built on cloud platforms like AWS Bedrock and Azure AI Foundry
• Developer agents running locally on endpoints like GitHub Copilot, Cursor AI, and Windsurf

Each represents a new category of autonomous systems that can:

• Make independent decisions
• Chain actions across multiple systems
• Access and manipulate sensitive data
• Invoke external tools and APIs
• Potentially be hijacked or manipulated by attackers

Traditional security approaches, whether application security scanners, cloud security posture management tools, or network monitoring solutions, lack the visibility and control mechanisms needed for these dynamic, intent-driven systems.

From Research to Real-World Defense

This recognition also highlights the critical work of Zenity Labs. Our AgentFlayer research published in August demonstrated how zero-click exploit chains can compromise AI agents across multiple vendors, revealing attack vectors that bypass traditional prompt injection defenses.

This research isn't academic. Every vulnerability we uncover translates directly into detection rules and prevention capabilities within the Zenity platform, ensuring our customers can defend against real-world agent attacks before they cause damage.

The Zenity Approach: Agent-Centric Security Across the Lifecycle

Zenity exists to solve a fundamental problem: how do you enable secure AI agent adoption without slowing business innovation?

Our platform delivers what Gartner's recognition validates, full-lifecycle protection:

Observe - Discovers all AI agents across SaaS, cloud, and endpoint environments, providing visibility into what agents exist, who's using them, and what systems they access

Govern - Applies security-by-design policies to agent configurations, permissions, tool access, and memory usage before deployment, aligned to OWASP LLM and MITRE ATLAS standards

Defend - Monitors agent behavior at the step level, analyzing entire execution paths to detect malicious intent even when individual prompts appear benign, with real-time prevention of unsafe actions

What makes this approach unique is our focus on the agent itself, not just the prompts it processes or the applications it runs within. By understanding what an agent is trying to accomplish across its full execution path, we can identify and stop advanced threats that simple pattern matching or prompt filters miss entirely.

The Path Forward: Secure Innovation at Scale

Some of the largest and most complex enterprises in the world already trust Zenity to scale AI responsibly. They understand that security isn't about slowing down AI adoption, it's about enabling teams to move fast with confidence.

As we continue this journey, we're excited to bring together the community advancing agent security. On October 8, we'll gather in San Francisco for the AI Agent Security Summit, where researchers, practitioners, and enterprise leaders will share strategies for securing agents everywhere. I hope you'll join us.

A Recognition That Belongs to Our Community

This Gartner recognition belongs to every security leader who has demanded better visibility into AI agent behavior, every practitioner pushing for agent-specific governance frameworks, and every enterprise customer trusting us to secure their AI transformation.

Thank you for driving this critical conversation forward. Together, we're not just securing AI agents we're ensuring that secure AI becomes a trusted enabler of business innovation.

To learn more about Zenity's agent-centric security platform or to join us at the AI Agent Security Summit, visit zenity.io

About Zenity Zenity is the first unified security and governance platform purpose-built for AI agents. From Microsoft 365 Copilot to custom agents built on AWS Bedrock, Zenity delivers full-lifecycle protection—discovering agents, securing posture, detecting threats, and preventing unsafe behavior in real time. Founded by Microsoft cloud security veterans, Zenity enables enterprises to scale AI adoption safely without compromise.