Trellix has announced new data security enhancements and a comprehensive framework aimed at preventing enterprise data exposure across both sanctioned and shadow AI environments. As businesses rapidly adopt generative AI tools, the need for stronger governance, visibility, and control over sensitive data has become critical.
Rising Risks with AI Adoption in Enterprises
The growing use of AI in enterprise environments is introducing new and often invisible data risks. According to industry insights, nearly 88% of businesses implemented AI in at least one function in 2025, outpacing traditional security controls. This surge has also accelerated the rise of “shadow AI”—unsanctioned AI tools used without IT oversight—leading to increased vulnerabilities and higher data breach costs, which have risen by an average of $670,000.
“The rapid adoption of AI tools across the enterprise is creating new and often invisible data risks. Trellix brings together policy, visibility, and enforcement in
a unified framework to help customers control how data is used across both sanctioned and shadow AI,” said Alex Au Yeung, Chief Product Officer, Trellix.
Even approved AI platforms can pose risks if organizations lack clearly defined policies governing how sensitive data is accessed, processed, and shared.
Trellix’s Three-Part Framework for AI Data Security
To address these challenges, Trellix has introduced a three-part framework designed to help enterprises securely adopt AI technologies while minimizing data exposure risks. The framework focuses on:
- Establishing clear policies for AI usage
- Reinforcing governance through training and compliance measures
- Delivering real-time visibility and control over data interactions with AI tools
This integrated approach ensures that organizations can maintain control over sensitive data while leveraging AI for productivity and innovation.
“The regulatory landscape around data security continues to evolve, making compliance a moving target. As organizations increasingly leverage AI in the workplace, having the right controls and visibility is essential to ensure compliant data-handling practices and prevent potential data leaks. This combination of associate training, data-handling processes, and controls is critical for responsibly integrating new AI tools,” said Kristin Lowery, Field CISO, Optiv.
Trellix’s solution includes upgrades across its core security offerings, enabling enterprises to monitor, manage, and protect data in AI-driven environments:
- Data Loss Prevention (DLP) with AI Risk Dashboard: Provides real-time visibility into both approved and unauthorized AI usage, helping detect and prevent sensitive data leaks across endpoints and networks.
- Database Security with Analytics Hub: Monitors database activity, identifies vulnerabilities, and enables risk scoring to prevent unauthorized access and potential breaches.
- Advanced Data Encryption: Ensures that sensitive data remains inaccessible to unauthorized AI tools while allowing secure access for approved users.
- Professional Services for AI Governance
In addition to technology enhancements, Trellix offers professional services to help organizations build a robust AI data security strategy. These services include comprehensive policy assessment and development to clearly define acceptable AI usage within the organization, ensuring alignment with regulatory and business requirements. They also cover technical implementation and continuous optimization of security tools to effectively detect and prevent data risks, along with employee training and awareness programs designed to minimize policy violations and promote responsible use of AI technologies across the enterprise.
This holistic approach ensures enterprises can align with evolving regulatory requirements while reducing risks associated with shadow AI.
Enabling Secure and Responsible AI Adoption
As AI continues to reshape enterprise operations, organizations must balance innovation with strong data protection measures. Trellix’s latest advancements position it as a key player in enabling secure AI adoption, helping businesses protect critical assets while maintaining compliance and operational efficiency. By combining advanced security technologies with governance frameworks, Trellix empowers enterprises to confidently integrate AI into their workflows—without compromising data integrity or security.
