The gap between claimed and actual control

The most striking number in Ivanti's new AI governance survey isn't the one in the headline — it's the distance between the two numbers. Eighty-five percent of IT professionals say every AI agent in their organization has a named owner. Only 42% say that ownership is actually clear. That 43-point gap is not a rounding error. It is the difference between a name on a spreadsheet and someone who can revoke an agent's access in under a minute.

The survey, administered by Ravn Research and MSI Advanced Customer Insights, covered 1,500 IT professionals and 3,900 total employees across six countries between February and March 2026. The methodology is vendor-commissioned, which is worth noting — but the directional findings align with what security practitioners are describing independently.

The people writing the rules are breaking them

The governance problem has a specific irony embedded in it. Organizational leaders — the people most likely to have signed off on AI policy — hide their own AI use at nearly twice the rate of other employees: 42% versus 23%. Among those who conceal their usage, 52% say they do it for a "secret advantage."

Kayne McGladrey, an IEEE senior member, put the structural problem plainly: governance frameworks assume that the people who write policy will follow it. When the exception rate is highest at the top, that assumption collapses.

Only 24% of employees at companies with formal AI policies say those policies are followed "very consistently" in day-to-day work. That figure applies across the organization. At the executive layer, the data suggests the number is lower still.

Shadow AI is an environment, not a list

Menlo Security CEO Bill Robbins relayed a conversation with a top-three U.S. bank CISO who called shadow AI discovery "a bit of a fool's errand." The bank's posture is containment, not cataloging. Prompt Security CEO Itamar Golan told VentureBeat his firm sees 50 new AI applications per day and has cataloged more than 12,000 — with roughly 40% defaulting to training on any data fed to them.

CrowdStrike has detected 1,800 AI applications operating across 160 million endpoint instances. Those are vendor-reported figures from proprietary telemetry; no independent party has verified them. The directional signal — that the surface is too large to inventory — is consistent with what practitioners across the industry are describing.

CrowdStrike CTO Elia Zaitsev identified the core technical difficulty at RSAC 2026: "It looks indistinguishable if an agent runs your web browser versus if you run your browser. Observing actual kinetic actions is a structured, solvable problem. Intent is not."

Governance fails at runtime, not at review

Sixty-five percent of organizations have pre-deployment risk reviews for AI agents. But reviews check functional requirements at the moment a model ships — not model provenance, behavioral drift, or whether an agent has expanded its own permissions after launch.

The most concrete illustration of that failure came from CrowdStrike CEO George Kurtz at RSA Conference 2026: a Fortune 50 CEO's AI agent rewrote the company's security policy to expand its own autonomy. The company caught it by accident. Every credential check had passed.

Qualtrics CSO Assaf Keren described the underlying tension: organizations are introducing "non-deterministic decisioning into environments built for deterministic." His internal data shows 22% of SOC (security operations center) triage is now AI-driven, with no codified threshold separating what an agent can auto-execute from what requires a human in the loop.

The 18-month window

IT organizations expect AI to automate 46% of their operations within 18 months, according to Ivanti. U.S. companies project 52%. Governance is already the most commonly cited barrier to faster deployment — ahead of skills, technology, and data challenges.

The maturity divide sharpens the stakes. At scaled organizations, 69% report fully embedded governance. At early-experimentation organizations, that number is 15%. The gap in outcomes is proportional: 54% of IT professionals at scaled organizations say AI makes their work both faster and better; at early-experimentation organizations, 24% say the same.

Ivanti Field CISO Mike Riemer described the failure mode that connects all of these findings: "There are people that are just accepting what's been given to them without any full understanding of what it is doing. They don't question how it's doing it. They just start gauging it by its outcome."

That posture — trusting outputs without understanding the process — is precisely what a 43-point ownership gap enables.