Copilot Work IQ APIs Now Offer Pay-As-You-Go Consumption

🚨 The Signal: Microsoft Copilot Work IQ APIs now offer pay-as-you-go access, allowing developers to invoke agents and capabilities without pre-assigned licenses. Usage is billed based on invoked agents and models per request.

The Impact

Developers can now deploy AI agents without license constraints, increasing the risk of unmanaged AI and shadow IT for IT security teams.

• Developers: Can invoke Work IQ agents and capabilities without pre-assigned licenses, potentially bypassing existing controls.
• IT Security Teams: Increased risk of shadow IT and unmanaged AI agent deployment due to consumption-based billing.
• Organisations: Potential for unbudgeted costs and data exposure from unmonitored AI agent usage.

The Action

1. Review and update existing policies regarding the use and deployment of AI agents and capabilities.
2. Implement monitoring for Work IQ API consumption to identify unmanaged or unsanctioned usage.
3. Communicate updated AI usage policies to development teams and stakeholders.

Domain: Agentic-AI · Impact: high · Workload: Other · Essential Eight: Application Control, Restrict Administrative Privileges