IT, Telecom & Cyber · Australia (Perth)

Mandate Agent-Level Controls Before Procuring AI Production Platforms

Published May 27, 2026, 6:07 AM AWSTAPACFull category signal
Ask AI
Kore.ai launches Artemis AI platform on Microsoft Azure

In 60 seconds

Top move

Make per-action enforcement and identity integration mandatory acceptance criteria for any agent-capable AI platform procurement

Key takeaways

  • Make per-action enforcement and identity integration mandatory acceptance criteria for any agent-capable AI platform procurement.[2]
  • Budget and contract for architecture work (runtime inspection, identity, central policy) because many organisations have strategy but not enforceable architectures.[3]
  • When vendors route through local distributors, map and contract who owns PoCs, training, first-line support and pricing pass-throughs before relying on channel delivery.[4]
  • Treat vendor certifications (SOC 2, ISO, FedRAMP references) as baseline evidence only; require PoC proof of live logging, attribution and enforcement to make those claims operationally real.[1]
  • New product releases that add action-level controls reduce operational risk but increase integration and ongoing operational cost; capture those scopes in SOWs and SLAs.[2]

What changed since last run

  • Added a production-focused agent platform launch (Kore.ai Artemis) as a concrete supplier capability to evaluate during RFx and PoC planning; this is new since the prior brief.
  • Recorded a vendor release (Versa Release 23) that introduces per-action Zero Trust controls for AI agent actions, creating explicit acceptance-testable behaviour for agent tooling.
  • Included an industry survey (Check Point) quantifying the gap between AI strategy and enforceable architectures, strengthening the need to budget for runtime enforcement work.

Key facts

  • Built on Microsoft Azure with integrations to Entra ID and Microsoft Graph API
  • Introduces an Agent Blueprint Language (ABL) and an agent architect (Arch)
  • Vendor cites SOC 2, ISO 27001, PCI DSS and FedRAMP Moderate among compliance claims
  • Per-action identity checks and RBAC applied before agent actions execute
  • Administrators can require human approval, allow automatic actions, or block actions based on
  • Approved actions are logged with attribution to create an auditable trail

Why it matters

Make per-action enforcement and identity integration mandatory acceptance criteria for any agent-capable AI platform procurement. Budget and contract for architecture work (runtime inspection, identity, central policy) because many organisations have strategy but not enforceable architectures. When vendors route through local distributors, map and contract who owns PoCs, training, first-line support and pricing pass-throughs before relying on channel delivery. Treat vendor certifications (SOC 2, ISO, FedRAMP references) as baseline evidence only; require PoC proof of live logging, attribution and enforcement to make those claims operationally real

Cost / money

  • Expect procurement and integration spend to rise because organisations lacking enforcement architectures will need runtime inspection and identity work to meet acceptance tests.[3]
  • Choosing platforms hosted on hyperscalers shifts cost mix toward cloud consumption and identity-integration professional services rather than licence-only procurement.[1]
  • Channel and distributor involvement can shorten deployment time but may add margin layers and change PS rates; include pass-through pricing checks in TCO workups.[4]

Supplier / commercial

  • Vendors shipping per-action controls gain commercial leverage for production use cases; require contractual SLAs and acceptance tests to avoid premium claims without proof.[2]
  • Distribution expansions change the commercial counterparty for local delivery; procurement must document reseller obligations, escalation contacts and who signs support warranties.[4]

Safety / operations

  • Agentic AI without action-level identity checks or approval workflows increases the risk of unauthorised or cascading changes in production systems.[2]
  • Limited ability to inspect AI traffic and fragmented policies will expand detection blind spots and extend incident response scope for operations teams.[3]

What to watch

  • Do not accept high-level governance or certification statements alone; require PoC test cases that exercise per-action approvals, blocking paths and audit trails.[2]

Top stories

Story 1SecurityBrief Australia

Kore.ai launches Artemis AI platform on Microsoft Azure

Signal strongSource-grounded
Source notes [1]Read source

What happened

Kore.ai launched the Artemis Agent Platform on Microsoft Azure aimed at moving AI agents from pilot to production. The platform emphasises an Agent Blueprint Language, an agent architect called Arch, and integrations with Microsoft identity and security services that make identity-integration a procurement requirement. Watch whether buyers insist on live PoC evidence of logging and enforcement rather than accepting certification claims alone

Buyer takeaway

Treat Artemis as a production-capable offering that requires PoC acceptance tests for identity, logging and governance because the vendor positions it for operational agent rollouts

Cost / money

Budget for cloud consumption and identity-integration professional services in addition to any licence fees because Azure-hosted platforms shift run costs onto cloud consumption

Supplier / commercial

Expect Microsoft ecosystem partners and system integrators to package implementation services; procurement must map implementation SLAs and ongoing support ownership

Safety / operations

Certifications reduce certification effort but do not prove runtime enforcement; require live evidence of per-action logging and approvals during acceptance

What to watch

Verify that the Azure integrations and claimed authorisations can be demonstrated in a PoC and that evidence includes action-level logging

Key facts

  • Built on Microsoft Azure with integrations to Entra ID and Microsoft Graph API
  • Introduces an Agent Blueprint Language (ABL) and an agent architect (Arch)
  • Vendor cites SOC 2, ISO 27001, PCI DSS and FedRAMP Moderate among compliance claims

Source excerpts

Kore. ai has launched the Artemis edition of its Agent Platform, initially available on Microsoft Azure
It includes six orchestration patterns covering supervisor, delegation, handoff, fan-out, escalation and agent-to-agent federation. Arch is intended to convert business objectives into production-ready ABL, support the full lifecycle of an agent, design its underlying topology and refine agents using production traces
Governance focus Kore. ai is making governance a central part of its case for Artemis
Story 2SecurityBrief Australia

Versa adds Zero Trust controls for AI agent actions

Signal strongSource-grounded
Source notes [2]Read source

What happened

Versa released per-action Zero Trust controls for AI agent actions in its Verbo AI tool (Release 23). The capability applies identity checks, role-based access controls and policy rules to each agent-generated action and logs approved actions with attribution, making per-action approvals a verifiable control. Buyers should include test cases that exercise approve/block paths and audit retention during PoCs

Buyer takeaway

Require vendors to demonstrate action-level enforcement in a PoC because these controls are the operational mechanism that prevents unapproved agent changes

Cost / money

Expect licensing and ongoing operational overhead for approval workflows and potential professional services to integrate with ticketing and identity systems

Supplier / commercial

Vendors offering these controls can claim lower operational risk; procurement should capture that as contractual SLA trade-offs and acceptance criteria

Safety / operations

Action-level approvals and attribution reduce the risk of runaway changes, but logging, retention and approval latency must be contractually defined

What to watch

Confirm compatibility with existing connectors and the Model Context Protocol; require PoCs that exercise block/approve and audit paths

Key facts

  • Per-action identity checks and RBAC applied before agent actions execute
  • Administrators can require human approval, allow automatic actions, or block actions based on
  • Approved actions are logged with attribution to create an auditable trail

Source excerpts

Administrators can allow some actions to run automatically, require human approval for others, or block them entirely, based on factors including user identity, role, system context, action type and risk level. Every approved action is logged with attribution, creating an audit trail for changes made through AI-driven workflows
Operational context For network operations teams, the issue goes beyond cybersecurity
The design applies identity checks, role-based access controls and policy rules to each action generated by an AI agent before execution
Story 3SecurityBrief Australia

AI adoption outpaces cloud security, Check Point warns

Signal strongSource-grounded
Source notes [3]Read source

What happened

Check Point's cloud security report highlights a material gap between organisations updating cloud security strategy for AI and those with architectures that can enforce policies. The survey notes limited AI-traffic inspection, fragmented policies and a high rate of AI-related incidents, making architecture and runtime enforcement a procurement priority. Watch vendor PoCs for real enforcement across hybrid environments rather than roadmap statements

Buyer takeaway

Prioritise suppliers that can demonstrate enforcement in hybrid environments because survey data shows enforcement capability lags strategy across many organisations

Cost / money

Procurement should plan to fund architecture redesign, runtime inspection tools and identity-based controls to close enforcement gaps

Supplier / commercial

Vendors that provide unified policy control and runtime protection will be in higher demand; use RFx criteria to surface proven offerings

Safety / operations

Limited inspection and fragmented policies increase incident detection and response complexity; suppliers must prove runtime protections to reduce operational exposure

What to watch

Ask for specific test cases demonstrating AI traffic inspection and policy enforcement; avoid awards based on strategy-only statements

Key facts

  • Significant gap between organisations updating cloud security strategy for AI and those that
  • Many respondents cannot fully inspect AI traffic or enforce AI-specific access controls
  • High incidence of reported or suspected AI-related security events indicating operational exp

Source excerpts

That leaves a 51-point gap between strategy and execution as companies deploy generative AI in live environments
Check Point has published its 2026 Cloud Security Report on the gap between enterprise AI adoption and cloud security enforcement
It found that 77% of organisations have updated their cloud security strategy in response to AI, but only 26% have the architecture to enforce those policies. That leaves a 51-point gap between strategy and execution as companies deploy generative AI in live environments
Story 4SecurityBrief Australia

Exabeam taps Chillisoft Australia to widen distribution

Signal strongSource-grounded
Source notes [4]Read source

What happened

Exabeam appointed Chillisoft Australia as a distribution partner to expand local distribution, training, PoC and support capabilities in Australia. The move changes the local route-to-market and shifts some delivery responsibilities to the distributor, making vendor/distributor contractual handoffs operationally important. Procurement should map which party signs support warranties and who delivers PoCs before relying on distributor-led execution

Buyer takeaway

Map which contractual obligations (support SLAs, PoC delivery, training) are owned by the distributor versus the vendor because the procurement counterparty can change after distribution deals

Cost / money

Distributor involvement may reduce time-to-deploy but can add margin layers; require transparent pass-through pricing and PS rates in commercial terms

Supplier / commercial

Expect distributors to negotiate local terms and service bundles; include reseller performance obligations and handover SLAs in sourcing documents

Safety / operations

Local partner support can improve deployment success and speed incident response if SLAs and capabilities are validated up-front

What to watch

Validate local PS capacity, training availability and who owns escalation; require distributor commitments for handover and warranty support

Key facts

  • Chillisoft Australia to distribute Exabeam's security operations platform locally
  • Distributor to support training, pre-sales, PoCs and customer support in Australia
  • Move intended to accelerate deployments and shorten sales cycles through local partner enable

Source excerpts

Exabeam has appointed Chillisoft Australia as a distribution partner in Australia, extending an existing relationship in New Zealand. Under the arrangement, Chillisoft Australia will distribute Exabeam's security operations products in the local market and support partners with training, pre-sales, proof-of-concept projects and customer support
Under the arrangement, Chillisoft Australia will distribute Exabeam's security operations products in the local market and support partners with training, pre-sales, proof-of-concept projects and customer support
" Teh pointed to a recent customer deal in the region as evidence of the partnership's commercial benefits

VP Snapshot

Executive Risk & Action View

Make per-action enforcement and identity integration mandatory acceptance criteria for any agent-capable AI platform procurement.

Overall
66
Cost
79
Supply
25
Schedule
38
Compliance
15

Top signals

30-180dcost

Signal 1: Cost / money

Expect procurement and integration spend to rise because organisations lacking enforcement architectures will need runtime inspection and identity work to meet acceptance tests.

Signal 2: Cost / money

Choosing platforms hosted on hyperscalers shifts cost mix toward cloud consumption and identity-integration professional services rather than licence-only procurement.

Signal 3: Cost / money

Channel and distributor involvement can shorten deployment time but may add margin layers and change PS rates; include pass-through pricing checks in TCO workups.

30-180dcommercial

Signal 4: Supplier / commercial

Vendors shipping per-action controls gain commercial leverage for production use cases; require contractual SLAs and acceptance tests to avoid premium claims without proof.

30-180dschedule

Signal 5: Supplier / commercial

Distribution expansions change the commercial counterparty for local delivery; procurement must document reseller obligations, escalation contacts and who signs support warranties.

30-180dsupplier

Signal 6: Safety / operations

Agentic AI without action-level identity checks or approval workflows increases the risk of unauthorised or cascading changes in production systems.

Recommended actions

ContractsDue 3d

Tag suppliers and live proposals that claim 'agent governance' or per-action controls in the supplier register and flag contracts for addendum review.

Supplier register annotated with agent-governance flags and candidate contract addenda identified for negotiation.

ContractsDue 3d

Identify which shortlisted vendors will be delivered via distributors and collect named pass-through pricing, PS availability and escalation contacts.

Documented distributor pass-through clauses, PS capacity statements and mapped escalation contacts for shortlisted vendors.

CategoryDue 21d

Add PoC requirement templates to RFx that explicitly test per-action approvals, audit logging, and identity-provider integration during evaluation stages.

Comparable PoC responses that validate enforcement controls and integration with identity stacks to inform shortlist decisions.

OpsDue 21d

Run a technical validation with shortlisted integrators to demonstrate agent platform integration with the organisation's identity provider and to exercise log/retention behaviour.

Validated integration steps, identified gaps and an SOW-ready list of integration tasks for contract negotiation.

ContractsDue 60d

Revise RFx and contract templates to mandate runtime action-control acceptance tests, approval workflows, logging retention and related SLA clauses before approvals to proceed t...

RFx templates and contracts that require demonstrable runtime controls and acceptance tests as part of procurement scoring and award conditions.

Risk register

RiskTriggerMitigation
Do not accept high-level governance or certification statements alone; require PoC test cases that exercise per-action approvals, blocking paths and audit trails.Do not accept high-level governance or certification statements alone; require PoC test cases that exercise per-action approvals, blocking paths and audit trails.Confirm exposure with category, contracts, and operations before the next supplier commitment.

CM Snapshot

Category Manager Decision Detail

Today's priorities

Tag suppliers and live proposals that claim 'agent governance' or per-action controls in the supplier register and flag contracts for addendum review.

because Versa and Kore.ai now market per-action governance as a procurement differentiator and these capabilities must be contractually testable before awards.

Due 3d

high

CM move

Use this as the immediate supplier or contract action to move before the next sourcing gate.

Identify which shortlisted vendors will be delivered via distributors and collect named pass-through pricing, PS availability and escalation contacts.

because distribution deals (for example Exabeam via Chillisoft) change who provides PoCs, training and first-line support and that alters contractual responsibilities.

Due 3d

high

CM move

Use this as the immediate supplier or contract action to move before the next sourcing gate.

Add PoC requirement templates to RFx that explicitly test per-action approvals, audit logging, and identity-provider integration during evaluation stages.

because Check Point data shows a strategy-to-execution gap in enforceable architectures and procurement needs PoC evidence rather than strategy statements.

Due 21d

high

CM move

Use this as the immediate supplier or contract action to move before the next sourcing gate.

Run a technical validation with shortlisted integrators to demonstrate agent platform integration with the organisation's identity provider and to exercise log/retention behaviour.

because Kore.ai positions Artemis on Azure with Microsoft identity integrations and buyers must prove those integrations operate under local policies.

Due 21d

high

CM move

Use this as the immediate supplier or contract action to move before the next sourcing gate.

Supplier radar

SecurityBrief Australia

high

Observed supplier signal

Vendors shipping per-action controls gain commercial leverage for production use cases; require contractual SLAs and acceptance tests to avoid premium claims without proof.

Commercial implication

Vendors shipping per-action controls gain commercial leverage for production use cases; require contractual SLAs and acceptance tests to avoid premium claims without proof.

Next step: Validate the source-backed signal with incumbents and alternates before the next award or pricing decision.

SecurityBrief Australia

high

Observed supplier signal

Distribution expansions change the commercial counterparty for local delivery; procurement must document reseller obligations, escalation contacts and who signs support warranties.

Commercial implication

Distribution expansions change the commercial counterparty for local delivery; procurement must document reseller obligations, escalation contacts and who signs support warranties.

Next step: Validate the source-backed signal with incumbents and alternates before the next award or pricing decision.

Negotiation levers

Tag suppliers and live proposals that claim 'agent governance' or per-action controls in the supplier register and flag contracts for addendum review.

When to use: because Versa and Kore.ai now market per-action governance as a procurement differentiator and these capabilities must be contractually testable before awards.

Expected outcome: Supplier register annotated with agent-governance flags and candidate contract addenda identified for negotiation.

Commercial mechanism to carry into the next supplier conversation

Identify which shortlisted vendors will be delivered via distributors and collect named pass-through pricing, PS availability and escalation contacts.

When to use: because distribution deals (for example Exabeam via Chillisoft) change who provides PoCs, training and first-line support and that alters contractual responsibilities.

Expected outcome: Documented distributor pass-through clauses, PS capacity statements and mapped escalation contacts for shortlisted vendors.

Commercial mechanism to carry into the next supplier conversation

Add PoC requirement templates to RFx that explicitly test per-action approvals, audit logging, and identity-provider integration during evaluation stages.

When to use: because Check Point data shows a strategy-to-execution gap in enforceable architectures and procurement needs PoC evidence rather than strategy statements.

Expected outcome: Comparable PoC responses that validate enforcement controls and integration with identity stacks to inform shortlist decisions.

Commercial mechanism to carry into the next supplier conversation

Run a technical validation with shortlisted integrators to demonstrate agent platform integration with the organisation's identity provider and to exercise log/retention behaviour.

When to use: because Kore.ai positions Artemis on Azure with Microsoft identity integrations and buyers must prove those integrations operate under local policies.

Expected outcome: Validated integration steps, identified gaps and an SOW-ready list of integration tasks for contract negotiation.

Commercial mechanism to carry into the next supplier conversation

Talking points

Make per-action enforcement and identity integration mandatory acceptance criteria for any agent-capable AI platform procurement.
Budget and contract for architecture work (runtime inspection, identity, central policy) because many organisations have strategy but not enforceable architectures.
When vendors route through local distributors, map and contract who owns PoCs, training, first-line support and pricing pass-throughs before relying on channel delivery.
Treat vendor certifications (SOC 2, ISO, FedRAMP references) as baseline evidence only; require PoC proof of live logging, attribution and enforcement to make those claims operationally real.

Supplier radar

SupplierSignalImplicationNext stepConfidence
SecurityBrief AustraliaVendors shipping per-action controls gain commercial leverage for production use cases; require contractual SLAs and acceptance tests to avoid premium claims without proof.Vendors shipping per-action controls gain commercial leverage for production use cases; require contractual SLAs and acceptance tests to avoid premium claims without proof.Validate the source-backed signal with incumbents and alternates before the next award or pricing decision.high
SecurityBrief AustraliaDistribution expansions change the commercial counterparty for local delivery; procurement must document reseller obligations, escalation contacts and who signs support warranties.Distribution expansions change the commercial counterparty for local delivery; procurement must document reseller obligations, escalation contacts and who signs support warranties.Validate the source-backed signal with incumbents and alternates before the next award or pricing decision.high

Negotiation levers

  • Tag suppliers and live proposals that claim 'agent governance' or per-action controls in the supplier register and flag contracts for addendum review.because Versa and Kore.ai now market per-action governance as a procurement differentiator and these capabilities must be contractually testable before awards.Supplier register annotated with agent-governance flags and candidate contract addenda identified for negotiation.

    high confidence

  • Identify which shortlisted vendors will be delivered via distributors and collect named pass-through pricing, PS availability and escalation contacts.because distribution deals (for example Exabeam via Chillisoft) change who provides PoCs, training and first-line support and that alters contractual responsibilities.Documented distributor pass-through clauses, PS capacity statements and mapped escalation contacts for shortlisted vendors.

    high confidence

  • Add PoC requirement templates to RFx that explicitly test per-action approvals, audit logging, and identity-provider integration during evaluation stages.because Check Point data shows a strategy-to-execution gap in enforceable architectures and procurement needs PoC evidence rather than strategy statements.Comparable PoC responses that validate enforcement controls and integration with identity stacks to inform shortlist decisions.

    high confidence

  • Run a technical validation with shortlisted integrators to demonstrate agent platform integration with the organisation's identity provider and to exercise log/retention behaviour.because Kore.ai positions Artemis on Azure with Microsoft identity integrations and buyers must prove those integrations operate under local policies.Validated integration steps, identified gaps and an SOW-ready list of integration tasks for contract negotiation.

    high confidence

What to do / What to watch

What to do now

  • Tag suppliers and live proposals that claim 'agent governance' or per-action controls in the supplier register and flag contracts for addendum review.

    Why: because Versa and Kore.ai now market per-action governance as a procurement differentiator and these capabilities must be contractually testable before awards.

    Owner: Contracts

    Expected outcome: Supplier register annotated with agent-governance flags and candidate contract addenda identified for negotiation.

    [2]
  • Identify which shortlisted vendors will be delivered via distributors and collect named pass-through pricing, PS availability and escalation contacts.

    Why: because distribution deals (for example Exabeam via Chillisoft) change who provides PoCs, training and first-line support and that alters contractual responsibilities.

    Owner: Contracts

    Expected outcome: Documented distributor pass-through clauses, PS capacity statements and mapped escalation contacts for shortlisted vendors.

    [4]

Next few weeks

  • Add PoC requirement templates to RFx that explicitly test per-action approvals, audit logging, and identity-provider integration during evaluation stages.

    Why: because Check Point data shows a strategy-to-execution gap in enforceable architectures and procurement needs PoC evidence rather than strategy statements.

    Owner: Category

    Expected outcome: Comparable PoC responses that validate enforcement controls and integration with identity stacks to inform shortlist decisions.

    [3]
  • Run a technical validation with shortlisted integrators to demonstrate agent platform integration with the organisation's identity provider and to exercise log/retention behaviour.

    Why: because Kore.ai positions Artemis on Azure with Microsoft identity integrations and buyers must prove those integrations operate under local policies.

    Owner: Ops

    Expected outcome: Validated integration steps, identified gaps and an SOW-ready list of integration tasks for contract negotiation.

    [1]

Longer view

  • Revise RFx and contract templates to mandate runtime action-control acceptance tests, approval workflows, logging retention and related SLA clauses before approvals to proceed t...

    Why: because vendors are delivering per-action controls and shifting operational risk into contracts reduces downstream incident and remediation exposure.

    Owner: Contracts

    Expected outcome: RFx templates and contracts that require demonstrable runtime controls and acceptance tests as part of procurement scoring and award conditions.

    [2]

What to watch

  • Do not accept high-level governance or certification statements alone; require PoC test cases that exercise per-action approvals, blocking paths and audit trails
  • Do not accept high-level governance or certification statements alone; require PoC test cases that exercise per-action approvals, blocking paths and audit trails.: Do not accept high-level governance or certification statements alone; require PoC test cases that exercise per-action approvals, blocking paths and audit trails
  • Make per-action enforcement and identity integration mandatory acceptance criteria for any agent-capable AI platform procurement
  • Budget and contract for architecture work (runtime inspection, identity, central policy) because many organisations have strategy but not enforceable architectures
  • When vendors route through local distributors, map and contract who owns PoCs, training, first-line support and pricing pass-throughs before relying on channel delivery
  • Treat vendor certifications (SOC 2, ISO, FedRAMP references) as baseline evidence only; require PoC proof of live logging, attribution and enforcement to make those claims operationally real

Market pulse

IndexLatestChangeAs of
Palo Alto (PANW)320 +0.00 (+0.00%)May 26, 2026, 10:10 PM
CrowdStrike (CRWD)285 +0.00 (+0.00%)May 26, 2026, 10:10 PM
Zscaler (ZS)195 +0.00 (+0.00%)May 26, 2026, 10:10 PM
Fortinet (FTNT)72 +0.00 (+0.00%)May 26, 2026, 10:10 PM
  • Palo Alto: Proxy for demand in unified policy and runtime enforcement tooling; useful to watch as a vendor-interest indicator
  • CrowdStrike: Proxy for endpoint+identity security demand, reinforcing the need for identity-integrated agent controls

Sources

Inline citations jump here. Expand a source to read the excerpt, the AI interpretation, and the original link.

[1] Kore.ai launches Artemis AI platform on Microsoft Azure

securitybrief.com.au · n.d.

Expand

AI reading

Kore.ai launched the Artemis Agent Platform on Microsoft Azure aimed at moving AI agents from pilot to production. The platform emphasises an Agent Blueprint Language, an agent architect called Arch, and integrations with Microsoft identity and security services that make identity-integration a procurement requirement. Watch whether buyers insist on live PoC evidence of logging and enforcement rather than accepting certification claims alone

Buyer takeaway

Treat Artemis as a production-capable offering that requires PoC acceptance tests for identity, logging and governance because the vendor positions it for operational agent rollouts

Cost / money

Budget for cloud consumption and identity-integration professional services in addition to any licence fees because Azure-hosted platforms shift run costs onto cloud consumption

Supplier / commercial

Expect Microsoft ecosystem partners and system integrators to package implementation services; procurement must map implementation SLAs and ongoing support ownership

Safety / operations

Certifications reduce certification effort but do not prove runtime enforcement; require live evidence of per-action logging and approvals during acceptance

What to watch

Verify that the Azure integrations and claimed authorisations can be demonstrated in a PoC and that evidence includes action-level logging

Key facts

  • Built on Microsoft Azure with integrations to Entra ID and Microsoft Graph API
  • Introduces an Agent Blueprint Language (ABL) and an agent architect (Arch)
  • Vendor cites SOC 2, ISO 27001, PCI DSS and FedRAMP Moderate among compliance claims

Source excerpts

Kore. ai has launched the Artemis edition of its Agent Platform, initially available on Microsoft Azure
It includes six orchestration patterns covering supervisor, delegation, handoff, fan-out, escalation and agent-to-agent federation. Arch is intended to convert business objectives into production-ready ABL, support the full lifecycle of an agent, design its underlying topology and refine agents using production traces
Governance focus Kore. ai is making governance a central part of its case for Artemis

Used in this brief

  • Next 2-4 weeks — Run a technical validation with shortlisted integrators to demonstrate agent platform integration with the organisation's identity provider and to exercise log/retention behaviour.. Rationale: because Kore.ai positions Artemis on Azure with Microsoft identity integrations and buyers must prove those integrations operate under local policies.. Owner: Ops. KPI: Validated integration steps, identified gaps and an SOW-ready list of integration tasks for contract negotiation
  • Added a production-focused agent platform launch (Kore.ai Artemis) as a concrete supplier capability to evaluate during RFx and PoC planning; this is new since the prior brief
  • Kore.ai launched the Artemis Agent Platform on Microsoft Azure aimed at moving AI agents from pilot to production. The platform emphasises an Agent Blueprint Language, an agent architect called Arch, and integrations with Microsoft identity and security services that make identity-integration a procurement requirement. Watch whether buyers insist on live PoC evidence of logging and enforcement rather than accepting certification claims alone
Open original source

[2] Versa adds Zero Trust controls for AI agent actions

securitybrief.com.au · n.d.

Expand

AI reading

Versa released per-action Zero Trust controls for AI agent actions in its Verbo AI tool (Release 23). The capability applies identity checks, role-based access controls and policy rules to each agent-generated action and logs approved actions with attribution, making per-action approvals a verifiable control. Buyers should include test cases that exercise approve/block paths and audit retention during PoCs

Buyer takeaway

Require vendors to demonstrate action-level enforcement in a PoC because these controls are the operational mechanism that prevents unapproved agent changes

Cost / money

Expect licensing and ongoing operational overhead for approval workflows and potential professional services to integrate with ticketing and identity systems

Supplier / commercial

Vendors offering these controls can claim lower operational risk; procurement should capture that as contractual SLA trade-offs and acceptance criteria

Safety / operations

Action-level approvals and attribution reduce the risk of runaway changes, but logging, retention and approval latency must be contractually defined

What to watch

Confirm compatibility with existing connectors and the Model Context Protocol; require PoCs that exercise block/approve and audit paths

Key facts

  • Per-action identity checks and RBAC applied before agent actions execute
  • Administrators can require human approval, allow automatic actions, or block actions based on
  • Approved actions are logged with attribution to create an auditable trail

Source excerpts

Administrators can allow some actions to run automatically, require human approval for others, or block them entirely, based on factors including user identity, role, system context, action type and risk level. Every approved action is logged with attribution, creating an audit trail for changes made through AI-driven workflows
Operational context For network operations teams, the issue goes beyond cybersecurity
The design applies identity checks, role-based access controls and policy rules to each action generated by an AI agent before execution

Used in this brief

  • Safety / operations: Agentic AI without action-level identity checks or approval workflows increases the risk of unauthorised or cascading changes in production systems
  • Safety / operations: Limited ability to inspect AI traffic and fragmented policies will expand detection blind spots and extend incident response scope for operations teams
  • Next 72 hours — Tag suppliers and live proposals that claim 'agent governance' or per-action controls in the supplier register and flag contracts for addendum review.. Rationale: because Versa and Kore.ai now market per-action governance as a procurement differentiator and these capabilities must be contractually testable before awards.. Owner: Contracts. KPI: Supplier register annotated with agent-governance flags and candidate contract addenda identified for negotiation
Open original source

[3] AI adoption outpaces cloud security, Check Point warns

securitybrief.com.au · n.d.

Expand

AI reading

Check Point's cloud security report highlights a material gap between organisations updating cloud security strategy for AI and those with architectures that can enforce policies. The survey notes limited AI-traffic inspection, fragmented policies and a high rate of AI-related incidents, making architecture and runtime enforcement a procurement priority. Watch vendor PoCs for real enforcement across hybrid environments rather than roadmap statements

Buyer takeaway

Prioritise suppliers that can demonstrate enforcement in hybrid environments because survey data shows enforcement capability lags strategy across many organisations

Cost / money

Procurement should plan to fund architecture redesign, runtime inspection tools and identity-based controls to close enforcement gaps

Supplier / commercial

Vendors that provide unified policy control and runtime protection will be in higher demand; use RFx criteria to surface proven offerings

Safety / operations

Limited inspection and fragmented policies increase incident detection and response complexity; suppliers must prove runtime protections to reduce operational exposure

What to watch

Ask for specific test cases demonstrating AI traffic inspection and policy enforcement; avoid awards based on strategy-only statements

Key facts

  • Significant gap between organisations updating cloud security strategy for AI and those that
  • Many respondents cannot fully inspect AI traffic or enforce AI-specific access controls
  • High incidence of reported or suspected AI-related security events indicating operational exp

Source excerpts

That leaves a 51-point gap between strategy and execution as companies deploy generative AI in live environments
Check Point has published its 2026 Cloud Security Report on the gap between enterprise AI adoption and cloud security enforcement
It found that 77% of organisations have updated their cloud security strategy in response to AI, but only 26% have the architecture to enforce those policies. That leaves a 51-point gap between strategy and execution as companies deploy generative AI in live environments

Used in this brief

  • Next 2-4 weeks — Add PoC requirement templates to RFx that explicitly test per-action approvals, audit logging, and identity-provider integration during evaluation stages.. Rationale: because Check Point data shows a strategy-to-execution gap in enforceable architectures and procurement needs PoC evidence rather than strategy statements.. Owner: Category. KPI: Comparable PoC responses that validate enforcement controls and integration with identity stacks to inform shortlist decisions
  • Included an industry survey (Check Point) quantifying the gap between AI strategy and enforceable architectures, strengthening the need to budget for runtime enforcement work
  • Check Point's cloud security report highlights a material gap between organisations updating cloud security strategy for AI and those with architectures that can enforce policies. The survey notes limited AI-traffic inspection, fragmented policies and a high rate of AI-related incidents, making architecture and runtime enforcement a procurement priority. Watch vendor PoCs for real enforcement across hybrid environments rather than roadmap statements
Open original source

[4] Exabeam taps Chillisoft Australia to widen distribution

securitybrief.com.au · n.d.

Expand

AI reading

Exabeam appointed Chillisoft Australia as a distribution partner to expand local distribution, training, PoC and support capabilities in Australia. The move changes the local route-to-market and shifts some delivery responsibilities to the distributor, making vendor/distributor contractual handoffs operationally important. Procurement should map which party signs support warranties and who delivers PoCs before relying on distributor-led execution

Buyer takeaway

Map which contractual obligations (support SLAs, PoC delivery, training) are owned by the distributor versus the vendor because the procurement counterparty can change after distribution deals

Cost / money

Distributor involvement may reduce time-to-deploy but can add margin layers; require transparent pass-through pricing and PS rates in commercial terms

Supplier / commercial

Expect distributors to negotiate local terms and service bundles; include reseller performance obligations and handover SLAs in sourcing documents

Safety / operations

Local partner support can improve deployment success and speed incident response if SLAs and capabilities are validated up-front

What to watch

Validate local PS capacity, training availability and who owns escalation; require distributor commitments for handover and warranty support

Key facts

  • Chillisoft Australia to distribute Exabeam's security operations platform locally
  • Distributor to support training, pre-sales, PoCs and customer support in Australia
  • Move intended to accelerate deployments and shorten sales cycles through local partner enable

Source excerpts

Exabeam has appointed Chillisoft Australia as a distribution partner in Australia, extending an existing relationship in New Zealand. Under the arrangement, Chillisoft Australia will distribute Exabeam's security operations products in the local market and support partners with training, pre-sales, proof-of-concept projects and customer support
Under the arrangement, Chillisoft Australia will distribute Exabeam's security operations products in the local market and support partners with training, pre-sales, proof-of-concept projects and customer support
" Teh pointed to a recent customer deal in the region as evidence of the partnership's commercial benefits

Used in this brief

  • Next 72 hours — Identify which shortlisted vendors will be delivered via distributors and collect named pass-through pricing, PS availability and escalation contacts.. Rationale: because distribution deals (for example Exabeam via Chillisoft) change who provides PoCs, training and first-line support and that alters contractual responsibilities.. Owner: Contracts. KPI: Documented distributor pass-through clauses, PS capacity statements and mapped escalation contacts for shortlisted vendors
  • Exabeam appointed Chillisoft Australia as a distribution partner to expand local distribution, training, PoC and support capabilities in Australia. The move changes the local route-to-market and shifts some delivery responsibilities to the distributor, making vendor/distributor contractual handoffs operationally important. Procurement should map which party signs support warranties and who delivers PoCs before relying on distributor-led execution
  • Buyer bottom line: distribution changes alter who delivers PoCs, training and first-line support—procurement must verify channel SLAs and price pass-throughs before awarding distributor-mediated implementations
Open original source

[5] Palo Alto

finance.yahoo.com · n.d.

Expand
Open original source

[6] CrowdStrike

finance.yahoo.com · n.d.

Expand
Open original source
More from IT, Telecom & CyberBack to Executive View