HIMSS26: Imprivata Introduces Agentic Identity Management to Secure and Govern AI Agents

The healthcare sector is rapidly adopting agentic AI to automate routine tasks such as clinical documentation and prior authorizations. While these bots promise efficiency gains, they also introduce unprecedented security challenges. Prompt‑injection attacks can manipulate AI inputs, leading to corrupted records or massive PHI exposure. As hospitals integrate AI deeper into care pathways, safeguarding these autonomous agents becomes a strategic priority for CIOs and compliance officers.

Identity management, traditionally focused on human users, is evolving to encompass software agents. Imprivata’s Agentic Identity Management repurposes its proven credential‑less framework, issuing short‑lived tokens that expire after each transaction. This eliminates static passwords, reduces the attack surface, and enforces least‑privilege policies so each AI can only access the data required for its specific function. Crucially, the platform can broker secure connections across both cloud‑native APIs and legacy on‑premise EHR systems, a capability many AI‑security startups lack.

For healthcare organizations, the solution translates into tangible risk reduction and regulatory alignment. Continuous activity monitoring and an instant kill switch provide real‑time containment of rogue agents, helping meet HIPAA and emerging AI‑specific guidelines. As AI adoption accelerates, vendors that embed robust identity governance will differentiate themselves, and Imprivata’s approach positions it as a key enabler for safe, scalable AI integration in hospitals.