AI security is moving from a feature checklist to an architectural problem, and Zscaler is betting that the answer starts with identity and data visibility. The company said on May 21 that it intends to acquire Symmetry Systems, a startup focused on mapping how identities, applications, and data connect across enterprise environments, so it can govern how autonomous software agents communicate at scale.
The deal matters because enterprises are no longer trying to secure only employees, laptops, and static application access. They are starting to deploy copilots, internal AI services, retrieval systems, and autonomous agents that use short-lived identities, inherited permissions, and sprawling chains of tools. In that setting, the old model of assigning user groups to approved applications starts to look too blunt, too slow, and too incomplete.
Zscaler did not disclose financial terms in the announcement. It said the transaction is subject to customary closing conditions and is expected to close in the coming days. Symmetry, which positions itself as a data and AI security company, said earlier this year that its standalone AIGuard product governs external large language models, enterprise copilots, internal AI services, and autonomous agents across regulated environments.
Why AI Security Needs a Different Control Layer
Traditional enterprise security has been built around relatively durable users, devices, and network boundaries. Even when companies embraced cloud software, the operating assumption was that people, roles, and permissions could still be organized into a manageable directory structure.
That assumption weakens once AI agents begin acting across multiple systems on behalf of users, teams, or applications. Agents can call other agents, inherit credentials, reach into data stores, and trigger workflows without leaving the clean, human-readable trail that most access governance models were designed around.
AI Security and Non-Human Identities
Zscaler’s central argument is that AI security breaks the old access playbook because agents behave more like swarms of software identities than like employees with stable roles. In its deal announcement, the company said policies built around users and directories will not scale to millions of autonomous agents communicating with applications, data, and one another.
That diagnosis is not just marketing language. Symmetry’s own product material says its platform is built to connect every data asset to every principal through permissions and operations, including human users, service accounts, third-party vendors, and agentic identities. In other words, it tries to describe the enterprise as a living map of who or what can reach which data, rather than as a fixed list of approved users.
For security teams, that distinction matters because the risk in agentic systems often comes less from a single dramatic breach than from invisible overreach. An AI assistant may have legitimate access to one record, one application, or one cloud bucket, yet still create exposure when it chains those permissions together in ways administrators never modeled clearly in advance.
AI Security and Data Lineage
Zscaler also framed the Symmetry acquisition as a way to follow data movement, not just identity. The company said one of the unlocked capabilities will be tracing any piece of data an AI agent touches, even when that data moves through a chain of sub-agents and tools.
That is significant because enterprise AI projects increasingly mix structured databases, unstructured files, SaaS records, vector stores, and cloud services inside a single workflow. Symmetry says its graph can ingest access logs from SaaS applications, public cloud services, data stores, and AI systems, then correlate them into a model showing which identities are accessing which data and how.
If that works as promised, it gives security and compliance teams a more concrete answer to the question that keeps becoming harder in AI programs: not simply whether a model is useful, but exactly what it touched, why it touched it, and whether it crossed into data or systems it should never have reached.
How Zscaler Plans to Use Symmetry’s Access Graph
The acquisition is not just about adding another point product to Zscaler’s portfolio. The company is presenting Symmetry as a missing layer underneath its Zero Trust Exchange platform, one that can tell the broader enforcement engine what relationships actually exist between identities, applications, and data.
In the company’s telling, visibility comes first and policy follows. Symmetry reveals the communication paths and permission chains across the enterprise, and Zscaler uses those relationships to decide who can communicate with what, under which conditions, and what should happen when behavior looks abnormal or excessive.
AI Security Through Policy and Least Privilege
Zscaler said the combination should let customers build least-privilege policies for AI by mapping both granted permissions and actual-use permissions across human and non-human identities. That matters because many enterprise systems are already over-permissioned before AI arrives, and autonomous tools can magnify the cost of those inherited excesses.
Symmetry’s own platform language points in the same direction. It says customers can govern every AI agent, copilot, large language model, and internal model in their environment, understand what data those systems can reach, and enforce data access boundaries before exposure occurs. That is a more ambitious posture than simply blocking suspicious prompts at the edge.
The broader strategic point is that AI security is becoming a policy problem as much as a monitoring problem. It is no longer enough to know that employees are using generative tools. Enterprises increasingly need a way to define what an agent is allowed to retrieve, which systems it may call, and how far that permission should travel downstream when the agent invokes another tool.
Real-Time Response and Blast Radius
Zscaler said Symmetry’s anomaly detection and access graph will also help customers detect unexpected agent behavior in real time and calculate blast radius quickly if an identity or agent is compromised. The company described this as a foundation for automated Zero Trust responses rather than as a manual investigation layer.
That pitch lines up with the wider urgency inside the cyber market. In a recent interview with CRN, Zscaler Chief Executive Jay Chaudhry argued that AI-driven vulnerability discovery is sharply increasing pressure on defenders and that containing attack surface through zero-trust controls is becoming more important, not less. His argument was that organizations cannot assume patching alone will keep up if discovery and exploitation accelerate.
The Symmetry deal extends that logic from users and applications to agent-to-agent and agent-to-data relationships. If AI creates more software entities, more machine-speed actions, and more opaque internal traffic, then the value of a security platform may increasingly depend on how quickly it can show what is connected, what changed, and what to isolate first.
What the Deal Signals for the Enterprise Security Market
This acquisition also says something about how cybersecurity vendors want to position themselves in the AI era. The battle is moving beyond old perimeter language toward control of the identity, data, and workflow layers that determine whether AI systems can operate safely inside real businesses.
That shift helps explain why the story is larger than one startup exit. Symmetry traces its roots to DARPA-funded research at the University of Texas at Austin and says it built its platform to secure data and AI across cloud, SaaS, on-premises, and even air-gapped environments. Zscaler, for its part, says its platform runs across more than 160 data centers globally and already processes billions of threats and policy violations each day.
AI Security Is Becoming a Platform Contest
Vendors across cloud security, identity, data governance, and application protection all want to be the system that enterprises trust when AI starts acting independently inside core operations. That raises the stakes for ownership of the control plane, because the winning platform is likely to be the one that can combine visibility, policy, runtime enforcement, and auditability without forcing customers to bolt together too many separate tools.
Zscaler’s bid for Symmetry suggests it does not want AI security to remain a narrow prompt-filtering category. It wants the conversation to move toward information flow, least privilege, and the governance of machine identities across the full enterprise stack. That is a bigger and potentially more durable market if customers conclude the real problem is not using AI safely at the browser, but letting AI operate safely inside business systems.
It also gives Zscaler a clearer story against rivals that are trying to secure AI from adjacent starting points such as cloud posture, identity governance, or developer tooling. By adding an access graph centered on data and identities, Zscaler is arguing that AI-era security belongs closer to the relationships between systems than to any single endpoint or application boundary.
Execution Risks Still Matter
None of that guarantees success. Zscaler still has to integrate Symmetry’s technology into its existing platform, prove that customers can operationalize the combined policies without overwhelming administrators, and show that a graph-based model can stay understandable as enterprise agent populations expand.
There is also a familiar market risk in cybersecurity acquisitions: the narrative can be clearer than the deployment path. Customers may agree with the diagnosis that AI agents create blind spots around identity, access, and data lineage while still taking time to redesign production workflows, approval structures, and incident response around those new controls.
Even so, the transaction looks like a meaningful signal of where enterprise budgets and product roadmaps are heading. If autonomous software becomes a routine part of work, AI security will be judged less by catchy guardrails and more by whether companies can see, govern, and contain how machine identities move through their most sensitive systems. Keep reading related coverage at Berrit Media for more on the business and technology shifts shaping the AI infrastructure stack.
Discover more from Berrit Media
Subscribe to get the latest posts sent to your email.
