Cisco Live acquires Astrix Security

Cisco has announced its intention to acquire Astrix Security, a specialist in cybersecurity focused on AI agent and non-human identity security. This move aims to bolster Cisco’s security offerings as enterprises increasingly integrate AI agents and automated systems into their operations. While the financial terms remain undisclosed, sources indicate the acquisition is valued at $350 million.

Astrix Security, established five years ago, specializes in securing non-human identities such as API keys, service accounts, OAuth tokens, and AI agent credentials. Cisco plans to incorporate Astrix’s technologies into its Identity Intelligence suite and expand compatibility with its existing Cisco Secure Access and Duo Identity and Access Management products. Astrix’s solutions allow for AI agent discovery, governance, threat detection, and secrets management, which are essential as AI systems become more entrenched in business operations.

Cisco's strategy with this acquisition is to address a growing vulnerability in the digital enterprise landscape: the rapidly expanding attack surface presented by AI agents. According to Cisco's AI Readiness Index, just 24% of organizations have sufficient controls in place for AI agents, with a mere 31% confident in their ability to secure these autonomous systems. By integrating Astrix Security’s capabilities, Cisco aims to enhance protection against potential threats associated with AI agents, which are increasingly capable of autonomous decision-making and actions.

In the broader market context, this acquisition underscores the intensifying competition in cybersecurity, as companies seek to secure their systems against evolving digital threats. The deal aligns with Cisco’s overarching AI security strategy, which encompasses initiatives like AI Defense and Zero Trust Access, alongside the integration with Splunk’s security automation and infrastructure-level AI observability.

Looking forward, the integration of Astrix Security’s technology will be critical for Cisco as it seeks to provide robust defense mechanisms against the vulnerabilities associated with automation and AI in enterprise settings. This acquisition could necessitate regulatory review, and successful integration will be pivotal in maintaining Cisco’s leadership in the cybersecurity sector.