An Asset Management Firm

Background

A global asset-management firm with more than 800 developers deployed Codenotary AgentMon to secure the rapidly growing use of agentic development platforms across its quantitative engineering and trading infrastructure teams.

The firm’s developers relied heavily on Linux-based development environments and AI-assisted coding systems to accelerate model development, automate infrastructure tasks, and improve delivery speed for internal trading and analytics platforms. Agentic development tools were increasingly integrated into IDEs, CI/CD workflows, and operational automation pipelines, often interacting with proprietary portfolio algorithms, trading logic, internal APIs, and sensitive market-data systems.

Security leadership identified a critical governance challenge: while agentic tools improved developer productivity, they also created new pathways for intellectual property leakage and unauthorized disclosure of secrets, credentials, and proprietary source code. Existing SIEM infrastructure, including Splunk, could detect infrastructure anomalies, but lacked visibility into the real-time behavior of AI-driven development agents.

AgentMon was deployed across developer workstations, Linux build systems, and engineering automation pipelines to continuously monitor prompts, tool invocations, repository access, token usage, and external model interactions in real time. The platform correlated agentic behavior with Linux access controls, authentication systems, Git activity, and Splunk telemetry to identify anomalous workflows and policy violations.

Within the first weeks of deployment, AgentMon detected several attempts by autonomous coding agents to expose sensitive internal algorithms and API secrets during external AI-assisted debugging sessions. Because every agent interaction was fully attributable and replayable, security teams rapidly contained the incidents and strengthened governance controls without slowing developer productivity.