📊 Key Data
  • New Gartner Category: 'Unmanaged Device Access' introduced in 2026 Hype Cycle™ for Workspace Security.
  • Vendor Spotlight: New York-based Venn named as a Sample Vendor in the new category.
  • Security Shift: Client-side isolation technologies aim to secure corporate data on unmanaged devices without full device management.
🎯 Expert Consensus

Experts agree that traditional endpoint security models are outdated, and Gartner's recognition of 'Unmanaged Device Access' signals a necessary evolution toward flexible, workforce-centric security solutions.

3 days ago
Gartner Signals a New Era for Workspace Security Beyond the Device

Gartner Signals a New Era for Workspace Security Beyond the Device

NEW YORK, NY – July 16, 2026 – For years, the holy grail of enterprise IT was control. The corporate-issued laptop, locked down and managed, was the secure gateway to the digital kingdom. But that kingdom’s borders have dissolved. Today, the fortress is a fiction, replaced by a sprawling, borderless ecosystem of personal devices, contract workers, and now, AI agents. This new reality has left a gaping hole in traditional security, and the industry is finally acknowledging it.

A clear signal of this change arrived last month when research firm Gartner published its 2026 Hype Cycle™ for Workspace Security. Buried within its analysis of emerging trends is a new category, one that may fundamentally alter how organizations protect their data: “Unmanaged Device Access.” The inclusion of this category, with New York-based Venn named as a Sample Vendor, is more than just industry jargon; it’s an admission that the digital backbone supporting our work life requires a new blueprint.

The End of the Owned Endpoint Era

The central challenge for IT has shifted from managing devices to securing a workforce. This isn't just semantics. The workforce itself has been redefined. It is a fluid mix of full-time employees on company hardware, remote staff on personal laptops (BYOD), international contractors using their own equipment, and increasingly, AI agents accessing corporate data to perform tasks. In this environment, the idea that an IT team can fully own, manage, and control every endpoint is an expensive and increasingly futile fantasy.

Unmanaged devices are the new normal, and they represent a significant blind spot. Lacking enforced security policies, visibility, and timely software updates, these endpoints are fertile ground for data leakage and cyberattacks. Traditional solutions have proven to be blunt instruments for this delicate problem. Forcing full Mobile Device Management (MDM) on a personal laptop creates immense friction and privacy concerns for the employee. Alternatively, relying on Virtual Desktop Infrastructure (VDI) or Desktop as a Service (DaaS) keeps data off the endpoint, but often at a high cost in terms of infrastructure, licensing, and a user experience plagued by latency. These solutions were built for a different era, one where the primary goal was to replicate an office desktop, not enable a flexible, global, and partially automated workforce.

'Unmanaged Device Access': A New Category for a New Reality

Gartner’s new “Unmanaged Device Access” category carves out a distinct space for a more nuanced approach. The firm defines it as client-side technologies that grant secure access to corporate data on unmanaged devices while isolating that activity from the local endpoint. This is the critical distinction. Instead of avoiding the local device entirely like VDI, this model embraces it, but builds a digital fence around corporate activity directly on the machine.

This approach, often called client-side isolation or creating a secure enclave, is a significant departure. It acknowledges that the user’s device can be utilized for its processing power and convenience, while mitigating the risk of data cross-contamination. Think of it as a secure, company-controlled container living on a personal computer. Inside the container, the company sets the rules. Outside, the user maintains their freedom and privacy. For Gartner to recognize this as a unique category, and to feature a vendor like Venn, signals that the technology has moved from a niche concept to a trend with significant market momentum, triggered by the permanent shift to hybrid work.

The Blue Border: A Practical Look at Client-Side Isolation

Venn’s technology, called Blue Border™, provides a concrete example of this new paradigm in action. Installing the software on a Mac or PC creates the secure enclave, and any application running within it is visually marked with a distinct blue line around its window. This simple visual cue reinforces the separation: work happens inside the blue border, personal life stays outside. The company’s policy engine ensures that data created within the enclave—be it a financial model in Excel or code in an IDE—cannot be copied and pasted, saved, or exfiltrated to the personal side of the machine. The principle, as the company states, is simple: “what happens in Blue Border stays in Blue Border.”

This directly addresses the shortcomings of older models. It provides the security of isolation without the cost and complexity of VDI. It enables BYOD and contractor workforces without the intrusive friction of fully managing a personal device. It’s a solution born from the recognition that flexibility and security are no longer mutually exclusive.

"The future of work is device-agnostic – AI made that inevitable," said David Matalon, CEO of Venn, in the company’s announcement. "Organizations are under more pressure than ever to onboard and enable anyone, anywhere, on any device – while IT stays fully accountable for security and compliance. We believe this report underscores that the market needs a simpler way to secure remote work."

Securing the Human-AI Workforce

The implications of this technological shift extend beyond just enabling remote human workers. The rapid integration of AI into daily workflows presents the next frontier of security challenges. When an employee uses a third-party AI assistant on their personal laptop to summarize a confidential company document, where does that data go? How is its usage governed? How do you prevent sensitive intellectual property from becoming part of a public model’s training data?

This is where client-side isolation becomes a critical piece of the intelligent network. By ensuring that AI tools can only be accessed and used within the secure enclave, organizations can begin to enforce governance. They can control which data AI agents can access and ensure that the outputs remain within the company's protected digital perimeter, even when the work is happening on an unmanaged device. According to one industry analyst, the focus is rapidly shifting from device-centric protection to a more holistic “workforce-centric” security model that must inherently include AI agents as part of that workforce.

As companies like Fidelity, Guardian, and the IMF—all noted as Venn customers—navigate this complex landscape, their adoption of such technologies is a bellwether for the broader market. They are demonstrating that in a world defined by distributed networks and intelligent systems, security can no longer be a rigid wall. It must become a flexible, intelligent, and adaptable border that travels with the work itself, no matter whose device it’s on.

Topics & Related

Sector:
Cybersecurity
Theme:
Zero Trust
Remote & Hybrid Work

📝 This article is still being updated

Are you a relevant expert who could contribute your opinion or insights to this article? We'd love to hear from you. We will give you full credit for your contribution.

Contribute Your Expertise →
UAID: 43233