Free PDF · Pattern

Agent Security Review Checklist

A pre-flight checklist for shipping AI agents into regulated environments. Run it against any agent system that touches production data, customer information, or financial records — before InfoSec runs it against you.

Format PDF · 8 pages Version v1.0 · April 2026 Audience Architects, security leads

Why this exists

This is the same checklist I run during the first phase of a Discovery engagement, distilled to a self-serve format. Five layers — identity, credential broker, scoped tools, policy gating, audit — with yes/no items per layer and a decision tree for what to fix first when you're short on time. No fluff, no marketing pages padding the page count.

What's inside

How to use it — a 4-sentence read on scoring and where to start.
Layer 1 · Identity — 6 checks. Workload identity, OBO delegation, ownership, rotation.
Layer 2 · Credential broker — 7 checks. Where secrets live, how tokens are minted, what's logged.
Layer 3 · Scoped tool access — 7 checks. Domain-shaped tools, read/write separation, blast-radius bounds.
Layer 4 · Policy + approval gating — 7 checks. Auto vs. queue, approval as a workflow object, revocation paths.
Layer 5 · Audit — 7 checks. Structured events, retention, what compliance actually queries.
Decision tree — when you're missing a whole layer, what's the minimum fix and how long does it take.
What good looks like — the patterns production-grade systems add on top of the five-layer minimum.

Each layer also includes the questions InfoSec will actually ask in review, and the common gaps that show up in the wild. The intent is that you can read each section and immediately know whether your system would pass or fail.

Get the checklist

Enter your email below. The PDF link lands in your inbox immediately. You'll also get a short series of follow-up notes — practical, no pitch — over the next few weeks.

Pairs with the methodology essay

This checklist pairs with the essay Making agent deployments pass security review — the longer piece walks through why each layer exists and how they map to enterprise compliance controls. The checklist is the operational version: skip the prose, score yourself, and find the layer that needs work.