Securing the Future of Enterprise AI with Governed Model Context Protocol (MCP)

Snowflake announced its acquisition of US-based startup Natoma, marking a strategic move to bolster governance, security, and connectivity across heterogeneous enterprise environments as organizations increasingly adopt agentic AI workflows.

The Growing Need for Agent Governance

As AI agents become more integrated into business operations through standards like Model Context Protocol (MCP), CIOs face new challenges. While MCP provides the technical framework for secure connections between AI systems and enterprise applications, it lacks built-in governance controls. Without proper oversight, these connections can create security risks and compliance concerns.

“MCP is becoming the connective tissue for enterprise agents, but without identity, policy, and auditability, it can quickly become a shadow AI risk,” explains Phil Fersht, CEO of HFS Research. “CIOs now need to govern not just who can access data, but also what actions AI agents are authorized to take.”

Natoma’s Solution: A Governance Fabric for AI Agents

Natoma’s platform provides a centralized control plane that extends beyond basic connectivity. It offers:

  • Identity-aware authorization
  • Policy enforcement
  • Audit trails
  • Gateway controls

This approach ensures that only authorized agents can access specific resources and perform approved actions, while maintaining full visibility into all activity.

Why This Matters for Enterprises

With the rise of real-time autonomous workloads spanning multiple systems, a robust governance framework is essential. Snowflake’s acquisition enables enterprises to:

  • Securely connect AI platforms with existing applications and infrastructure
  • Enforce consistent policies across diverse environments
  • Maintain compliance with industry regulations
  • Prevent unauthorized access and data leakage

“The value isn’t just saying ‘we support MCP,’ but in providing governed MCP with verified servers, identity controls, and auditability,” Fersht emphasizes.

While most enterprises aren’t yet fully prepared for large-scale agent adoption, this acquisition positions Snowflake as a leader in the emerging AI governance space. By addressing critical security and compliance concerns, Snowflake aims to help organizations confidently operationalize their AI investments.