...

Jamf AI Governance Debuts Native AI Control Plane for Mac Security

Jamf launches AI Governance, a first-of-its-kind native AI control plane for Mac

Jamf has introduced Jamf AI Governance, a new capability that gives enterprises native AI governance for Mac devices. The solution helps IT and security teams discover AI tools, enforce security policies, and generate audit-ready reports. As a result, Jamf became the first company to deliver an OS-level AI control plane designed specifically for Mac environments. Many organizations struggle to monitor AI tool usage across managed devices. They also find it difficult to identify unauthorized applications and maintain compliance. Therefore, Jamf AI Governance gives administrators complete visibility into approved and unapproved AI applications running across their Mac fleets. Furthermore, the platform provides detailed endpoint insights that network-based monitoring tools cannot capture alone. These insights help security teams identify risks, strengthen compliance efforts, and make informed governance decisions. 

The latest capability launches with support for Claude Code, Claude Desktop, and OpenAI Codex. In addition, it delivers extensive governance controls for model access, tenancy, network permissions, file system settings, MCP server restrictions, and vendor-specific AI configurations. Moreover, Jamf includes a vendor control tracking engine that continuously monitors supported AI platforms for new or updated controls. Consequently, organizations can keep governance policies current as AI technologies continue to evolve. The platform also applies every policy before users access an AI agent. As a result, organizations establish a secure and tamper-resistant policy baseline from day one, even while devices remain offline. 

Native AI Governance for Enterprise Mac Devices

Modern AI tools operate directly on Apple Silicon. Therefore, they often bypass traditional network proxies and cloud security solutions. Existing management platforms cannot consistently provide complete visibility into these native AI processes. However, the Jamf AI Governance solution tackles this problem by integrating platform-native device management with robust AI policies. In addition, it converts governance rules into vendor-based configurations for macOS within a single management process. The solution enables organizations to identify Shadow AI activity while deploying AI governance policies within minutes. In addition, administrators manage these policies through the same endpoint management platform they already use to secure Apple devices. Jamf delivers three core capabilities that strengthen enterprise AI governance. 

Visibility

The platform discovers AI applications, AI agents, and LLM runtime activity across enterprise Mac devices. It also identifies command-line developer tools and background AI agents.  Jamf relies on its existing telemetry agent that uses native macOS frameworks. Therefore, organizations do not need to install another monitoring agent. 

Control

IT teams can define approved AI applications and enforce organization-wide access policies. Furthermore, administrators can assign different security policies to separate departments while automatically deploying vendor-specific configurations at scale.

Governance

Jamf AI Governance also helps organizations strengthen enterprise governance through detailed reporting and compliance support. The platform generates executive AI posture reports that provide CIOs and CISOs with a clear snapshot of AI usage across managed Mac devices. In addition, the solution supports Security Information and Event Management (SIEM) platforms. Therefore, organizations can simplify compliance reporting while aligning AI governance with existing security frameworks.

“AI adoption across the enterprise is moving faster than existing technology policies can keep up,” said Beth Tschida, CEO at Jamf. “Organizations need governance that matches the way AI tools actually operate on Mac. This means visibility into what’s running, policy controls enforced directly on the endpoint, and reporting that helps security teams demonstrate compliance. Our AI Governance capability delivers that natively from the same platform customers already trust to manage and secure Apple devices.”

“Like many organizations, we want to enable teams to use AI tools productively while maintaining appropriate governance and oversight,” said Sam Lalli, Security Engineering & SOC Manager at Eventbrite. “What impressed us about Jamf’s AI Governance was how quickly we could apply policy across our Mac fleet without adding another point solution or creating friction for developers. Having this critical capability built into the same device management platform we already use, really simplifies AI governance for our team.”

Jamf Expands AI Governance Through Partner Integrations

Beyond endpoint visibility and policy enforcement, Jamf AI Governance helps organizations deploy and govern partner AI solutions more effectively. IT and security teams can discover AI tools running across macOS devices and register those AI agents directly with Okta for AI Agents. As a result, every AI agent receives a managed identity and gains access only to approved enterprise resources. Jamf controls which MCP servers operate on managed devices. Meanwhile, Okta governs which cloud resources those MCP servers can access. Together, both platforms replace long-lived credentials with short-lived vaulted credentials that improve enterprise security. Additionally, every AI action is authenticated, authorized, and logged from the endpoint to the cloud. The integration also deploys directly through the Jamf console. Therefore, administrators avoid manual API configuration and certificate management.

Organizations can also configure their preferred AI agent development platform, including Amazon Bedrock AgentCore. Consequently, AI traffic remains on approved cloud infrastructure while supporting enterprise governance requirements. With Jamf providing endpoint visibility and policy enforcement, and Okta managing identity and access controls, enterprises gain complete visibility into AI agent activity. They can determine which agents operated on specific endpoints, what resources those agents accessed, and every action completed between the macOS device and SaaS applications.

“While some enterprise AI agents run locally, they access data across a vast cloud ecosystem, requiring coordinated security between the endpoint and identity layers,” said Harish Peri, SVP & GM of AI Security, Okta. “By anchoring Okta for AI Agents to Jamf’s endpoint enforcement, every agentic connection on a managed Mac is authenticated, authorized, and fully visible from the device to the data. Together, we’re helping organizations become secure agentic enterprises by giving them more control over what AI agents can access and on whose behalf.”

AI Governance Becomes a Business Priority

Enterprise adoption of AI continues to accelerate across daily workflows. Therefore, organizations need stronger governance frameworks to reduce risk and maintain compliance. Recent data from the Jamf AI Governance Survey reveal how significant AI governance is becoming in enterprises today. According to the survey results, those companies whose AI has become deeply embedded into their systems experience 40% higher rates of incidents compared to those companies that still evaluate AI tools. Thus, AI governance is becoming a matter of current operations rather than something that will be implemented in the future. Enterprises need increased visibility, enforcement, and compliance to govern their AI securely on enterprise devices. With the Jamf AI Governance tool, enterprises get a native Mac solution for managing AI visibility, policy, and compliance all within one endpoint management system. 

Explore IT Tech News for the latest advancements in Information Technology & insightful updates from industry experts!

News Source: Businesswire.com