CISO
CIO
Enterprise Architect
Compliance Officer
Industry relevance
Financial Services
Healthcare
Government
Manufacturing
MARCH 11, 2026
Microsoft is making its AI agent control plane generally available May 1 at $15 per user — the clock has started on enterprise governance readiness.
Microsoft announced on March 9, 2026 via its Security Blog that Agent 365 will be generally available on May 1, 2026, priced at $15 per user per month. Agent 365 is the unified control plane for managing AI agents across the enterprise, providing IT and security teams with visibility and tools to observe, secure, and govern agents at scale. It is bundled with Microsoft 365 E7: The Frontier Suite - a new licensing tier priced at $99 per user per month that combines Microsoft 365 Copilot, Agent 365, Microsoft Entra Suite, and Microsoft 365 E5 with advanced Defender, Entra, Intune, and Purview capabilities. Vasu Jakkal, CVP of Microsoft Security, authored the announcement and positioned Agent 365 as the enterprise response to the agent governance gap.
GOVERNANCE IMPLICATION
Agent 365 becoming generally available on May 1, 2026 creates a clear accountability line that did not exist before: from that date forward, any regulated organization running Microsoft agents without deploying Agent 365 has made a documented governance decision by omission. The $15 per user per month price point removes cost as an objection for most enterprise procurement teams. The more consequential issue is the agent backlog — the agents already running in Copilot Studio, built by business users over the prior 18 months, that never went through a formal governance process. Agent 365 gives organizations the tool. The gap it cannot close is the policy question of who is responsible for auditing and registering what was already deployed.
SCENARIO
A healthcare system's CISO learns in an April board meeting that Agent 365 goes GA May 1. She assumes her IT team will deploy it as part of their existing Microsoft 365 E5 renewal. What she does not learn until a June audit is that the system already has 47 active agents running in Copilot Studio, built by clinical workflow teams over the prior year. None were in the procurement pipeline. None have an assigned owner. Agent 365 is now live and governing 12 newly created agents. The other 47 are still ungoverned because no one assigned responsibility for finding and registering them.
THE GOVERNANCE QUESTION
When Agent 365 becomes the designated control plane for enterprise AI agents, what is the accountability structure for agents that were deployed before May 1 outside any centralized registry?
CONTROL GAP
Agent 365 provides the governance infrastructure but does not automatically discover or register agents created before deployment. Pre-existing agents require a manual audit process that most organizations have not scoped or resourced.
REGULATORY RELEVANCE
OCC
FINRA
NIST Ai RMF
SEC Cyber
HIPAA
PRIMARY SOURCE
Secure agentic AI for your Frontier Transformation
Vasu Jakkal
March 9, 2026
Read the primary source →(opens in new tab)CONTINUE READING
FEBRUARY 12, 2026
AgentsMicrosoft Security Insider published findings from first-party telemetry showing that more than 80% of Fortune 500 companies are deploying active agents built with low-code or no-code tools, based on the last 28 days of November 2025. A separate survey of 1,725 data security professionals found that 29% of employees are already using unsanctioned AI agents for work tasks, while only 47% of organizations have implemented specific GenAI security controls. The report introduces Agent 365 as Microsoft's unified control plane for managing AI agents enterprise-wide. Vasu Jakkal, CVP of Microsoft Security, is quoted on applying Zero Trust principles to AI agents. The report identifies the observability gap as the foundational risk: organizations cannot govern what they cannot see.
APRIL 18, 2026
AccountabilityMicrosoft published an AI observability checklist for enterprise steering committees on April 16, 2026 via the Microsoft Cloud Blog, authored by Alym Rayani, VP of Marketing for Microsoft Security. The post frames observability as the foundational prerequisite for scaling enterprise AI in 2026 and introduces a refreshed version of Microsoft's governance guide, adding observability as a new pillar. The checklist identifies four questions every steering committee must be able to answer: what agents currently exist across the environment, who owns them, what data and systems they touch, and how they behave. Accenture is cited as a case study, having deployed over 75 AI use cases across industries with 16 in production after implementing centralized observability, reducing AI application build time by 50%.
APRIL 4, 2026
AgentsMicrosoft published the Agent Governance Toolkit on April 2, 2026 via the Microsoft Open Source Blog, releasing it under the MIT license through the Microsoft GitHub organization. Created by Imran Siddique, Principal Group Engineering Manager at Microsoft, the toolkit is described as the first runtime security governance framework to address all 10 OWASP Top 10 for Agentic Applications risks with deterministic, sub-millisecond policy enforcement. It is built around four components: Agent Kernel (YAML, OPA Rego, and Cedar policy enforcement), Agent Mesh (cryptographic identity using decentralized identifiers with Ed25519, Inter-Agent Trust Protocol, dynamic trust scoring on a 0-to-1000 scale with five behavioral tiers), Agent Runtime (dynamic execution rings, saga orchestration, emergency kill switch), and Agent SRE (SLOs, error budgets, circuit breakers, chaos engineering). The toolkit is designed to work with LangChain, AutoGen, CrewAI, Microsoft Agent Framework, and Azure AI Foundry Agent Service.