EPISODE #44

Yogita Parulekar

Yogita Parulekar is the Founder and CEO of InviGrid, where she is helping enterprises secure AI, cloud infrastructure, and autonomous systems through governance-first architecture. A recognized cybersecurity executive with nearly three decades of experience, she has held leadership roles at Oracle, EY, and Suki, building expertise across cloud security, governance, risk management, compliance, and enterprise technology transformation. Today, Yogita is a leading voice on AI governance, secure-by-design engineering, and responsible adoption of agentic AI, helping organizations innovate faster while strengthening resilience, trust, and operational security.

Your AI Agent Is Not the Risk. Its Authority Is.

Episode Summary

Autonomous agents are transforming enterprise operations, but who governs their decisions? Yogita Parulekar explains why AI governance must move beyond models and focus on delegated authority, identity, permissions, and secure-by-design architectures. Learn how leading enterprises are preparing for agentic AI before today's governance practices become tomorrow's weakest link.

Resources


Full Transcript

Governing AI Agents at Scale: Delegated Authority, Identity, and Blast Radius Host Christina Elwood interviews Yogita Paryulakar, founder and CEO of Invagrid, about shifting enterprise AI governance from models to agents’ delegated authority—the space between model output and real-world action. They discuss how agents inherit the probabilistic nature of LLMs, can interact with other agents and tools, and can create cascading effects, making context and risk tolerance central to governance. Examples include an agent recommending fluids for a dialysis patient and an autonomous agent deleting production and backup databases, underscoring the need for guardrails, blast-radius containment, kill switches, and effective human-in-the-loop oversight with real authority, time, and expertise. The conversation covers identity governance for agents as non-human identities with potentially excessive permissions, secure-by-design architecture across model/agent/data/tools in multi-cloud, a board-focused goals-strategy-risks-oversight framework, and operational needs for hyperautomation and embedded controls to govern agents at machine speed.

00:00 Welcome and Guest Intro

01:47 Why Govern Agents

02:19 What Makes Agents Different

06:03 Context and Risk Tolerance

08:51 Guardrails and Policy Controls

09:56 Human in the Loop Reality

10:56 Accountability and Risk Layers

23:09 Agent Identity Governance

25:53 Designing Blast Radius

29:57 Board Level Governance Model

35:27 Starter Checklist for Production

39:03 Resources and Leadership Takeaways

42:58 Final Message and Wrap Up