GTC –CrowdStrike (NASDAQ:CRWD) today unveiled a Secure-by-Design AI Blueprint built with NVIDIA that integrates protection from the CrowdStrike Falcon® platform directly into NVIDIA OpenShell, an open-source runtime that enforces policy-based guardrails to make autonomous agents safer to deploy.

The architecture integrates security natively into the AI agent stack, enabling organizations to operationalize autonomous systems with governance, visibility, and control from development through runtime, wherever agents run.

As organizations shift from copilots to AI agents that think, reason, and act autonomously at machine speed, security models must evolve. AI agents introduce a fundamentally different security challenge as privileged identities with direct access to data, applications, compute resources, and other agents. Traditional static controls were not designed to govern systems that move at the speed of AI. Securing AI agents requires continuous enforcement across the AI stack, not point in time controls – delivered at machine speed.

By integrating the Falcon platform directly into the NVIDIA OpenShell runtime, the Secure-by-Design AI Blueprint can embed security at the foundation of autonomous systems. Part of the NVIDIA Agent Toolkit, the open-source OpenShell runtime provides isolated sandboxes with private inference and built-in policy enforcement. The Falcon platform extends protection to local agents running on NVIDIA DGX Spark or NVIDIA DGX Station, and can also extend security to agents in the cloud that are built on the open-source NVIDIA AI-Q Blueprint for deep research.

Organizations will gain unified visibility and continuous runtime monitoring and enforcement to constrain unsafe behavior, prevent prompt manipulation, and enforce policy across the full AI lifecycle.

Key capabilities of the Secure-by-Design AI Blueprint include:

  • AI Policy Enforcement Across the Agent Stack: Falcon® AI Detection and Response (AIDR) will integrate with the OpenShell runtime to secure every prompt, response, and agent action in real time.
  • Endpoint Protection for Local AI Agents: Falcon® Endpoint Security will secure local agents on NVIDIA DGX Spark or DGX Station running OpenShell, enforcing host-level controls and continuous behavioral monitoring across system activity and agent execution.
  • Cloud Runtime Protection for AI Agent Deployments: Falcon® Cloud Security will protect agents built based on the NVIDIA AI-Q Blueprint in cloud and data center environments, delivering unified visibility and runtime controls across infrastructure and AI workloads.
  • Identity-Based Governance for Agent Access: Falcon® Next-Gen Identity Security will deliver dynamic identity management for local agents, enforcing access controls across data, APIs, and services so agents operate within defined privilege boundaries.

CrowdStrike and NVIDIA are also advancing intent-aware controls that govern how agents plan and execute tasks, enabling flexible autonomy while limiting the blast radius of unintended or malicious behavior.

"As we enter the agentic era, agents no longer simply assist – they act," said Daniel Bernard, Chief Business Officer, CrowdStrike. "This shift fundamentally changes the security equation, and security must be embedded into the AI stack itself. Together with NVIDIA, we are delivering a Secure-by-Design architecture that enables organizations to operationalize agents with confidence and control."

"Autonomous agents will fundamentally reshape how we work," said Justin Boitano, Vice President, Enterprise Platforms, NVIDIA. "By integrating CrowdStrike's security platform with the NVIDIA Agent Toolkit, we're enabling enterprises to build and scale safer, autonomous AI agents to help transform their operations, empower every employee, and securely generate intelligence at the speed of business."

"AI infrastructure is moving from experimentation to mission-critical production," said James Higgins, Chief Information Security Officer, CoreWeave. "As we scale GPU-accelerated environments, AI agents must be observable, governed, and resilient by design. The collaboration between CrowdStrike and NVIDIA secures AI systems at the foundation – enabling high-performance AI environments without compromising control."

The Secure-by-Design AI Blueprint reinforces CrowdStrike's position as cybersecurity for enterprise AI – embedding security directly into the AI stack, wherever AI lives.