Contact Us

Governing AI Agents at Scale with Prisma AIRS

AI Business and Market, AI News
01/05/2026 11 minutos de leituraPor Rafael

Share:

Index

AI Agent Governance at Scale: Palo Alto Networks Announces Intent to Acquire Portkey and Integrate AI Gateway into Prisma AIRSWhat changes when an AI Agent enters the picturePrisma AIRS 3.0 and Palo Alto Networks' strategy for the agent eraWhy Portkey is a strategic piece of this visionWhat the Prisma AIRS AI Gateway will deliver in practiceGovernance in three layers: model, infrastructure, and runtimeModel layerInfrastructure layerRuntime layerWhat this move reveals about the future of enterprise AIThe window of opportunity is open right now

AI Agent Governance at Scale: Palo Alto Networks Announces Intent to Acquire Portkey and Integrate AI Gateway into Prisma AIRS

AI Agent governance has moved beyond a technical debate reserved for security teams and become one of the biggest strategic concerns across the global enterprise market.

That is not an overstatement.

According to Gartner data, 81% of companies are already piloting or deploying AI Agents in their production environments. But there is a massive difference between adopting AI agents and actually knowing what they are doing inside your infrastructure.

Unlike a chatbot, which answers questions and wraps up its job right there, an AI Agent is autonomous. It navigates complex workflows, accesses sensitive data, consumes APIs, interacts with MCP servers, and makes decisions in real time — often without a single human watching that operation.

And that is exactly where the core problem lies, one the market still has not truly solved:

How do you operationalize AI Agents at scale without opening up massive security gaps?

To answer that question, Palo Alto Networks announced its intent to acquire Portkey, integrating the company’s AI Gateway technology into its Prisma AIRS ecosystem.

The proposal is ambitious, and it makes a lot of sense once you understand what is at stake. 👇

What changes when an AI Agent enters the picture

When a company puts an AI Agent into production, it is essentially hiring a digital worker that operates 24 hours a day, seven days a week, with no breaks and no constant supervision. That agent can access databases, call external APIs, read and write files, interact with third-party tools, and even trigger other agents in sequence, forming extremely complex automation chains.

The gain in operational efficiency is real and measurable, but the risk vector that comes with it is proportional to the level of autonomy granted.

Receive the best innovation content in your email.

All the news, tips, trends, and resources you're looking for, delivered to your inbox.

By subscribing to the newsletter, you agree to receive communications from Método Viral. We are committed to always protecting and respecting your privacy.

The point many technology teams underestimate is that AI Agents do not fail only because of bugs or logic errors. They fail because they interact with systems that were never designed to receive commands generated by language models, because they consume sensitive data without a control layer between the model and the data source, and because they make decisions based on context that can be manipulated by malicious external actors.

This type of attack, known as prompt injection, is already being actively exploited in corporate environments and represents a concrete threat to any organization running agents without proper controls.

The original article from Palo Alto Networks reinforces exactly this point: AI Agents are creating a new and largely invisible attack surface. The risk is not just in the agents’ independence but in the lack of visibility and accountability. Without a centralized layer of operational and security control, every team that deploys an agent can unintentionally expose the entire company to unauthorized access and elevated risks.

On top of that, AI Agent security is not just a technical matter of firewalls or authentication. It is a matter of governance. Who authorized that agent to access that system? Which language model is it using? Has that model version been audited? Is the data it is processing compliant with internal policies and regulations like CCPA or GDPR?

These questions rarely have clear answers at companies that implemented AI agents at an accelerated pace, and it is exactly this visibility and control vacuum that the market needs to address urgently.

Prisma AIRS 3.0 and Palo Alto Networks’ strategy for the agent era

Palo Alto Networks did not just show up to this conversation. The company had already introduced Prisma AIRS 3.0, described as the industry’s first platform designed to protect the entire lifecycle of AI agents. In other words, this is not a point product that solves an isolated problem but a comprehensive platform that covers the agent from the moment it is developed through execution in production at scale.

With the intent to acquire Portkey, Palo Alto Networks is adding the missing piece to this puzzle: a unified AI Gateway capable of serving as the central control plane for all interactions between agents, language models, MCP servers, and other components of the AI architecture.

The idea is that, once the acquisition is completed, Portkey’s technology will be fully integrated into Prisma AIRS, functioning as the single enforcement point for security and governance policies across all agent traffic within an organization. This is what Palo Alto Networks describes as the shift from chaos to control.

In practice, many enterprise AI initiatives are stalled by security fragmentation and lack of centralized oversight. The AI Gateway solves this problem by providing a unified visibility point where organizations can apply consistent policies across all models and agents, ensuring every interaction is identified, authenticated, and authorized in real time — all within a single governance framework.

Why Portkey is a strategic piece of this vision

Portkey is not just any tool. The company built an AI Gateway that works as an observability and control layer positioned between AI Agents and the language models they consume. In practice, every request an agent makes to an LLM passes through the Portkey gateway before reaching the model, and this creates a unique opportunity to inspect, filter, log, and govern what is happening in that interaction in real time.

According to the original announcement, Portkey stands out for three key reasons:

  • Technology proven at scale: Portkey’s AI Gateway already serves Fortune 500 customers and processes trillions of tokens per month with the low latency required for agent-to-agent communication. This means agent security does not come at the cost of developer speed or application performance.
  • Architectural simplicity: implementation requires just three lines of code, with unified APIs providing secure access to over 3,000 LLMs, MCP servers, and agents, giving enterprises a fast starting point for building and running with AI Agents.
  • Complementary vision: Palo Alto Networks and Portkey share the goal of making Prisma AIRS the most widely adopted platform for AI security, combining Palo Alto’s cybersecurity expertise with Portkey’s gateway infrastructure.

When Palo Alto Networks announces its intent to bring this technology in-house, the move makes it clear that the company understands the corporate security perimeter has shifted. It is no longer enough to protect networks, endpoints, and traditional applications. The new perimeter includes every call an AI agent makes to a language model, every piece of data it reads or writes, every external tool it triggers. And Portkey’s AI Gateway is exactly the technology that puts visibility and control on this new perimeter in a granular and scalable way.

What the Prisma AIRS AI Gateway will deliver in practice

The integration between Portkey and Prisma AIRS promises to deliver something the market does not yet have in a consolidated form: a unified platform capable of automatically discovering all AI Agents operating within an organization, assessing the risk of each one, intercepting and inspecting interactions with language models in real time, and applying governance policies consistently across the entire infrastructure.

The original article from Palo Alto Networks details specific operational capabilities the AI Gateway will offer:

  • Unified API for LLMs: a standardized interface for communicating with any language model, eliminating the complexity of managing multiple integrations.
  • Agent Registry: a centralized inventory of all agents operating in the environment, with information about permissions, consumed models, and expected behavior.
  • Semantic routing and caching: the ability to intelligently route requests and store results to optimize performance and reduce costs.
  • Agent Artifact Scanning: analysis of artifacts generated or consumed by agents to detect malicious content or sensitive data.
  • Automated Red Teaming: proactive security testing that simulates attacks against agents to identify vulnerabilities before they are exploited.
  • Runtime Security: continuous monitoring of agent behavior in production, with the ability to intervene in real time.

One aspect that deserves special attention is the integration with Agent Identity Security via CyberArk. This ensures that every autonomous action executed by an agent is authenticated and governed by least-privilege controls. In other words, the agent will only be able to do what it was explicitly authorized to do, and any attempt to escalate privileges or access resources outside its defined scope will be blocked.

Governance in three layers: model, infrastructure, and runtime

Prisma AIRS was built with an architecture that recognizes the three major risk layers in environments running AI Agents: the model itself, the infrastructure supporting it, and the runtime behavior of the agents.

Model layer

At the model layer, the platform assesses vulnerabilities before deployment, tests resistance to prompt manipulation attacks, and ensures the model does not leak sensitive information that was part of its training context. This is an approach that treats the language model as a software component that must go through rigorous validation processes before going into production.

Infrastructure layer

At the infrastructure layer, Prisma AIRS monitors MCP servers, plugins, and external tools that agents use, identifying insecure configurations, excessive permissions, and integrations that could represent attack vectors. This visibility is especially critical in environments where development teams adopt third-party tools in a decentralized way, without going through a formal security approval process.

With the incorporation of Portkey’s technology, this discovery and monitoring capability extends to the traffic between agents and language models, creating a complete view of everything happening in the organization’s AI ecosystem.

Runtime layer

At runtime, which is where the most critical risks materialize, Prisma AIRS acts as an active protection layer, capable of detecting anomalous behavior, blocking unauthorized actions, and halting execution chains that have deviated from expected patterns. This is especially relevant in multi-agent architectures, where multiple agents collaborate to complete complex tasks, because a compromised agent can contaminate the entire chain.

Runtime security, combined with the ability to log and audit every decision made by agents, is what transforms Prisma AIRS into a true governance tool — not just another passive monitoring product.

Tools we use daily

Translation

Text Inspection & Clipping

Social Media

Search & Research

Recruitment

Programming

Productivity & Organization

Operations

Marketing & Sales

Finance & Investment

Education

Design & Media

Data & Analytics

Content & Writing

Automation

What this move reveals about the future of enterprise AI

Palo Alto Networks’ acquisition of Portkey is a clear signal that the AI Agent security market is maturing rapidly and that major enterprise cybersecurity platforms are betting heavily on this segment.

For a long time, the conversation around AI governance was limited to discussions about algorithmic bias and ethics — important topics, but ones that do not capture the operational and security dimension that companies with AI Agents in production need to solve today. What is happening now is a convergence between the traditional cybersecurity world and the AI world, and whoever understands this convergence first will come out ahead.

Palo Alto Networks itself highlights in its announcement that the vision for the Prisma AIRS AI Gateway is to serve as the industry blueprint for companies in the agent era. By making security a fundamental component of the operational cycle, the company is positioning itself to lead the definition of standards the entire market will follow.

For organizations already running AI Agents or planning to scale their use, the message this move sends is pretty straightforward: the speed of adoption needs to be matched by equivalent investment in visibility and control. Not because regulators are demanding it — although that is also becoming a reality across multiple jurisdictions — but because the risk surface an autonomous agent creates is qualitatively different from anything the security team was used to managing.

A misconfigured agent, operating without proper oversight, can exfiltrate data, consume resources without limits, generate irreversible actions in critical systems, or be manipulated to act against the interests of the very organization that created it.

The window of opportunity is open right now

What makes the current moment particularly interesting is that we are in the window where governance practices are still being defined. Companies that build solid control and visibility frameworks for their AI Agents now will establish a real competitive advantage, because they will be able to scale agent usage with the confidence and speed that competitors without these controls simply will not have.

As Palo Alto Networks itself stated, the goal is to remove the trade-off between agent autonomy and organizational authority. Companies should not have to choose between speed of innovation and security. With Portkey’s technology integrated into Prisma AIRS, the promise is that the security architecture will not only keep pace with agent adoption but will set the pace.

Platforms like Prisma AIRS, especially with the incorporation of Portkey’s AI Gateway, are positioning themselves to be exactly the infrastructure that makes this scale possible with the level of security the enterprise environment demands. 🚀

It is worth noting that the acquisition still depends on the fulfillment of customary closing conditions, and Palo Alto Networks has included forward-looking statements that involve risks and uncertainties inherent to any transaction of this size. But the strategic direction is unmistakable: the era of enterprise AI Agents has arrived, and the governance and security of these agents will be one of the most relevant markets of the next decade.

Picture of Rafael

Rafael

Operations

I transform internal processes into delivery machines — ensuring that every Viral Method client receives premium service and real results.

CONTACT
US

Fill out the form and our team will contact you within 24 hours.

Related publications

see all

Amazon's stock could rise following OpenAI partnership.

AI Business and Market
Amazon and OpenAI partnership could boost AI revenue and stock value, says Citi; strategic impact on AWS and infrastructure race.
ler mais

Moratorium on AI Data Centers: Energy in Debate

AI Business and Market
Sanders and AOC propose moratorium on AI datacenter construction in the US to assess environmental and energy impacts.
ler mais

Blockchain and AI Agents Are Changing Crypto Payments

AI Business and Market
AI agents power crypto payments with blockchain, stablecoins and x402, enabling autonomous transactions, micropayments and machine-to-machine economy
ler mais

Receba o melhor conteúdo de inovação em seu e-mail

Todas as notícias, dicas, tendências e recursos que você procura entregues na sua caixa de entrada.

Ao assinar a newsletter, você concorda em receber comunicações da Método Viral. A gente se compromete a sempre proteger e respeitar sua privacidade.

Rafael

Online

Atendimento

Website Pricing Calculator

Find out how much the ideal website for your business costs

Website Pages

How many pages do you need?

Drag to select from 1 to 20 pages

In just 2 minutes, automatically find out how much a custom website for your business costs

More than 0+ companies have already calculated their quote

Fale com um consultor

Preencha o formulário e nossa equipe entrará em contato.