Jamf is launching a native AI governance feature for its Jamf Pro platform on June 30, 2025, designed to provide IT departments with visibility and control over generative AI tools running on managed macOS devices. The tool addresses the security challenges posed by background AI processes that often bypass traditional network-based security solutions.
Why AI Governance is becoming an IT priority
The rapid integration of generative AI into daily workflows has outpaced traditional enterprise security policies. According to Gartner research, spending on AI governance is projected to reach $492 million this year and is expected to exceed $1 billion by 2030. This shift marks a transition from viewing AI oversight as a future-looking project to an immediate operational necessity.
Many modern AI tools run as native background processes on Apple Silicon, making them invisible to legacy network proxies and cross-platform endpoint management tools. Without visibility at the operating system level, enterprise IT teams often lack the ability to track data flow or enforce security compliance for tools running on corporate-issued Macs.
How the Jamf governance tool functions
The new Jamf Pro capability aims to bridge the gap between employee adoption of AI and organizational security requirements by providing a native control plane on macOS. The feature set includes:
- Deep Tool Discovery: IT teams can identify which AI applications, local models, and developer tools are active across their Mac fleet.
- Granular Policy Controls: Administrators can enforce specific rules regarding model access, network permissions, file system interactions, and Model Context Protocol (MCP) server restrictions.
- Vendor Control Tracking: A dedicated engine monitors supported AI platforms for updates, allowing corporate policies to adjust automatically when vendor configurations change.
- Audit-Ready Reporting: The system generates logs and reports intended to help security and compliance teams demonstrate adherence to internal security standards.
Supported platforms and deployment
At its launch, Jamf’s AI governance technology will provide native support for several popular developer and productivity tools, including Claude Code, Claude Desktop, and OpenAI Codex.
By integrating these controls directly into the device management workflow, Jamf allows organizations to avoid blanket blocks on AI software. Instead, IT managers can implement sandboxing and monitoring, which enables staff to use next-generation tools while maintaining oversight of data leaving the device.
Key Takeaways
| Feature | Capability |
|---|---|
| Visibility | Identifies local models and background AI processes on macOS. |
| Enforcement | Applies rules to network access and file system usage. |
| Automation | Updates policies automatically as AI vendor controls evolve. |
| Availability | Generally available on June 30, 2025, for Jamf Pro users. |
This move aligns with broader industry trends toward endpoint-centric security. While traditional firewalls focus on perimeter defense, the rise of "on-device" AI models necessitates a shift toward the operating system level to ensure that enterprise data remains secure despite the proliferation of local AI agents.