Google Unveils New AI Agent Security Features in Gemini Enterprise Platform
Google has taken a significant step forward in enterprise AI security with the launch of its Gemini Enterprise Agent Platform. This new hub, announced at the Google Cloud Next 26 conference in Las Vegas, aims to give every AI agent a unique cryptographic identity — a move designed to bring zero-trust principles into the world of agentic AI.
As businesses increasingly rely on autonomous AI agents to handle complex tasks, the need for robust identity and access management has never been greater. The Gemini Enterprise Agent Platform addresses this by assigning each agent a traceable ID that links back to defined authorization policies. According to Thomas Kurian, CEO of Google Cloud, this enables “zero trust verification at every orchestration step.”
What Is the Gemini Enterprise Agent Platform?
The platform serves as a central hub for managing both Google-built and third-party AI agents. It builds on the existing Gemini Enterprise suite, which was launched a few months earlier. The Agent Platform includes several key components: the Agent Registry, a library that indexes all internal agents, tools, and skills; and the Agent Gateway, a single dashboard for enforcing policies across agent-to-agent and agent-to-tool interactions.
These features support multiple agentic AI protocols, including the Model Context Protocol (MCP) and Agent2Agent (A2A). Google Cloud says the Gateway provides “secure, unified connectivity between agents and tools across any environment,” while enforcing consistent security policies and Model Armor protections against prompt injection and data leakage.
How AI Agent Identities Transform Security
Traditional non-human identities (NHIs) — such as API keys and service accounts — are deterministic and static. AI agents, by contrast, are autonomous and goal-oriented. They can understand high-level objectives, break them down into steps, and execute actions across multiple applications independently. This introduces a new class of dynamic digital entities that act on behalf of humans and make operational decisions.
To manage this complexity, the Gemini Enterprise Agent Platform assigns each agent a unique cryptographic ID. Every action an agent takes is linked to this ID, making it possible to audit and trace behavior. Francis deSouza, COO of Google Cloud, emphasized that security teams need to identify both authorized and unauthorized agents used across their workforce. “When you roll out authorized agents, you want to manage their access control, what they should have access to, and that may change over time in a way that’s more dynamic than human identities,” he added.
Agent Anomaly Detection and Security Dashboard
Google Cloud also introduced Agent Anomaly Detection at Cloud Next 26. This feature uses statistical models and a large language model (LLM) as a judge to identify unusual behavior in real time. It flags potential threats like suspicious reasoning patterns. Anomaly Detection works alongside the existing Agent Threat Detection, which monitors malicious activities such as reverse shells and connections to known bad IP addresses.
Another addition is the Agent Security dashboard, powered by Google Cloud’s Security Command Center (SCC). This dashboard unifies threat detection and risk analysis within Google Cloud Platform (GCP) environments. It helps security teams map relationships between AI agents and models, automate asset discovery, and scan for vulnerabilities in operating systems and language packages.
New Cybersecurity Agents for Threat Hunting
Google also released three new AI agents specifically for cybersecurity professionals. The Threat Hunting agent helps teams proactively search for novel attack patterns and stealthy adversary behaviors that bypass traditional defenses. The Detection Engineering agent identifies coverage gaps and creates new detections for threat scenarios, transforming detection creation from a manual craft into an automated science. Both are available in preview.
Coming soon to preview, the Third-Party Context agent enriches security workflows with contextual data from external sources. When fully available, these three agents will integrate into Google Security Operations, the company’s security analytics, threat detection, and incident response platform.
Google claims its earlier Triage and Investigation agent, introduced in April 2025, processed over five million alerts in the past year, reducing “a typical 30-minute manual analysis to 60 seconds.”
Broader Ecosystem: Wiz, Dark Web Intelligence, and TPU Chips
The Gemini Enterprise Agent Platform launch was part of a broader set of announcements at Cloud Next 26. Israeli cloud security firm Wiz, acquired by Google in 2025, expanded its AI-Application Protection Platform (AI-APP) to embed security directly into developer workflows. The updates include real-time vulnerability scanning, AI-generated code security, a dynamic AI bill-of-materials (AIBOM), and automated remediation.
Google also released a new dark web intelligence feature in Google Threat Intelligence, now available in preview. Internal tests show it can analyze millions of daily external events with 98% accuracy to elevate the most critical threats.
On the hardware side, Google launched two new AI-focused processing chips: the Tensor Processing Unit 8t (TPU 8t) for AI training and the Tensor Processing Unit 8i for AI inference.
Finally, Google committed $750 million to a new agentic AI partner fund for global consulting firms, systems integrators, software partners, and channel partners. The fund aims to support AI value identification, agentic AI prototyping, agent building, deployment, and upskilling.
For more on securing AI workflows, read our guide on how security leaders can safeguard against vibe coding risks.
CyberSecurity4 months ago
CyberSecurity4 months ago
CyberSecurity3 months ago
Social Media3 months ago
Infosecurity3 months ago
CyberSecurity4 months ago
CyberSecurity4 months ago
How To2 months ago