The Rise of AI Agents as Enterprise Workers
Not long ago, the idea of an artificial intelligence system independently browsing the web, writing code, filing invoices, and communicating with other software systems on behalf of a company sounded like science fiction. Today, it is simply Tuesday morning at a growing number of enterprises worldwide. AI agents — autonomous software programs capable of perceiving their environment, making decisions, and taking actions with minimal human oversight — are being deployed at scale, and they are doing real work. They are scheduling, analyzing, executing, and collaborating alongside human employees as if they were members of the workforce themselves.
This shift from AI as a tool to AI as a worker raises a question that enterprises are only beginning to grapple with: if an AI agent is doing the work of an employee, does it also need the identity infrastructure of one? A startup called NewCore believes the answer is an emphatic yes — and it just raised $66 million to prove it.
What Is NewCore and Why Does It Matter?
NewCore is an enterprise security company purpose-built to address what it sees as the next major challenge in organizational security: the ungoverned proliferation of AI agents operating inside corporate environments. While most of the conversation around enterprise AI has focused on productivity gains and automation workflows, NewCore is focused on what happens when things go wrong — when an AI agent acts with permissions it should not have, accesses data outside its intended scope, or simply cannot be audited because no one thought to give it a traceable identity in the first place.
The company's core argument is straightforward but profound: AI agents are becoming de facto employees, and they deserve — and require — the same kind of identity management infrastructure that human workers have relied on for decades. Just as a new hire receives credentials, access permissions, an audit trail, and an offboarding process, AI agents need equivalent governance mechanisms to operate safely and compliantly in enterprise settings.
With $66 million in fresh funding, NewCore is now positioned to build out that infrastructure at scale, targeting organizations that are deploying AI agents across finance, operations, legal, HR, and customer service functions.
The Hidden Security Crisis Inside AI Deployments
To understand why NewCore's pitch is resonating with investors, it helps to understand the scope of the problem it is solving. Enterprise security teams have spent years building out identity and access management (IAM) systems designed to govern human users. These systems track who has access to what, enforce the principle of least privilege, log activity for compliance purposes, and provide a mechanism for revoking access when an employee leaves the company.
None of these systems were designed with AI agents in mind. An AI agent operating inside an enterprise today may have access to dozens of APIs, internal databases, communication platforms, and third-party services — and in many cases, security teams have little visibility into what that agent is actually doing or what data it is touching. There is no standard for AI agent credentials, no universal offboarding process, and no clear framework for auditing an agent's actions after the fact.
This creates a governance vacuum that bad actors can exploit and that well-meaning organizations can stumble into accidentally. An AI agent with overly broad permissions could inadvertently expose sensitive data. A decommissioned agent whose access was never revoked could become a dormant attack vector. A misconfigured agent could take actions that violate regulatory requirements without any human ever knowing until the audit arrives.
Non-Human Identity: The New Perimeter
NewCore is part of a broader movement in enterprise security toward what industry analysts are calling non-human identity (NHI) management. As organizations deploy not just AI agents but also service accounts, bots, scripts, and other automated processes, the ratio of non-human identities to human identities inside enterprise environments is growing rapidly. Some estimates suggest that for every human user in a large enterprise, there are dozens of non-human identities operating in the background.
Managing these identities with the rigor applied to human users is increasingly seen as a critical security imperative. The challenge is that legacy IAM platforms were architected around human behavioral patterns — login events, session timeouts, password policies — that do not translate cleanly to autonomous software agents that operate continuously, interact with many systems simultaneously, and are updated or replaced on cadences that bear no resemblance to human employment cycles.
NewCore's platform is designed from the ground up to accommodate the unique lifecycle of AI agents, treating each agent as a first-class identity with its own credentials, permission boundaries, behavioral baselines, and audit records.
Why Investors Are Betting Big on AI Agent Security
The $66 million raise reflects growing investor conviction that the security layer for agentic AI is one of the most important infrastructure problems of the current technology cycle. As enterprises accelerate their adoption of AI agents from vendors like OpenAI, Anthropic, Google, and a rapidly expanding ecosystem of specialized providers, the need for a neutral governance layer that sits above any individual agent or platform becomes increasingly apparent.
NewCore's vendor-agnostic positioning — focused on the identity and governance plane rather than on any particular AI model or framework — makes it a natural fit for enterprises that are deploying agents from multiple providers and need a single pane of glass for visibility and control.
What Comes Next for Enterprise AI Governance
The emergence of NewCore and its $66 million funding round is a signal that the enterprise AI market is maturing. The first wave of enterprise AI adoption was about capability: could AI do useful things? The second wave is about governance: can organizations manage AI safely, compliantly, and at scale?
- Identity provisioning for AI agents will become a standard step in enterprise AI deployment workflows, much as onboarding processes exist for human employees today.
- Regulatory pressure around AI accountability and auditability is increasing globally, making governance infrastructure not just a best practice but a legal necessity in many jurisdictions.
- Security teams will need new skills and new tools to manage the non-human identities that are rapidly becoming a dominant feature of the enterprise technology landscape.
- Vendor ecosystems around AI agent governance, monitoring, and compliance are likely to expand significantly over the next two to three years as enterprise deployments mature.
NewCore is betting that it can be the foundational identity layer for this new world of work — the Okta or Active Directory of the agentic enterprise. Given the scale of the problem it is addressing and the momentum behind enterprise AI adoption, that bet looks increasingly well-placed. As AI agents continue their march from experimental novelty to mission-critical workforce component, the question of who they are — and what they are allowed to do — may become the defining security challenge of the decade.