AI doesn't break security. Complexity does

["Too often, the history of enterprise security has been a history of making things harder to use. A new threat emerges, a new control gets bolted on, and somewhere in the process, people start working around the very systems designed to protect them. Over the course of my career, I've seen firsthand that security adoption rarely fails because people don't care about security.

It fails because the secure path feels harder than the insecure one. In the age of AI, that lesson matters more than ever. AI expands the attack surface and raises the ceiling on what attackers can do, which makes simplifying security even more critical.", "Security controls that require effort or inconvenience eventually get ignored.

People find workarounds. The answer is to make the secure path the easiest path. Security works best when it gets out of the way.

When security is easier to use than to avoid, people adopt it. Years ago, when the industry was rolling out two-factor authentication at scale, the biggest challenge wasn't building the security itself, but the friction that came with using it. People had to stop what they were doing, grab a phone, launch a VPN, enter codes, and interrupt their workflow just to log in.

What ultimately drove adoption wasn't policy, compliance requirements, or security training. It was simplicity. Now that it's as easy as a fingerprint or a face scan, people use it without hesitation.", "The same principle drove browser makers to make security more visible and intuitive for everyday users.

Rather than expecting people to manually inspect URLs, modern browsers prominently flag non-HTTPS sites as insecure, helping guide users toward safer behavior by default. Security became stronger in part because the secure path also became the easier and more obvious one. Where complexity shows up in AI Agent permissions are a good example of where this plays out in AI systems.

Employees accumulate numerous permissions over time through a project here, a system access there, a role that never got cleaned up after a team change. Humans know which access is relevant to a task even if the system doesn't actively enforce it. Agents lack that judgment.", "An agent assigned to a problem will probe every available path.

If it can access 12 systems but the task requires only two, it might still explore the other 10. It's just being thorough, but the result is a potential attack surface far larger than the task required. The temptation is to put a human in the loop by flagging significant actions and asking for approval before proceeding.