Cisco has released its 2025 State of Identity Security report, revealing how organizations are tackling AI-driven threats with a security-first approach. Based on insights from 650 executives worldwide, the study finds that 85% of organizations are prioritizing identity security to counter modern cyber risks.

In the UAE, this focus aligns with the country’s digital transformation goals. Initiatives such as the National Cybersecurity Strategy support advanced technology adoption while safeguarding identities, systems, and data in a digital-first economy.

Fady Younes, Managing Director for Cybersecurity at Cisco Middle East, Africa, Türkiye, Romania and CIS, stated, “Identity has become the new frontline of cybersecurity. AI-powered threats are accelerating, and organizations can no longer rely on fragmented tools. A security-first identity strategy, including zero trust, passwordless authentication, and identity threat detection, is essential to protect data and enable innovation.”

The report highlighted gaps in identity management despite its recognized importance. Only 33% of executives are confident their current identity provider can prevent attacks, while 94% say infrastructure complexity undermines security. Over half of organizations have faced financial losses due to breaches, prompting 82% of financial decision-makers to increase investments in identity security for 2025.

AI is both a threat and a catalyst for modernization. Phishing remains a top concern for 44% of leaders, alongside insider threats and supply chain attacks. Meanwhile, 85% of companies are adopting security-first practices to leverage AI in defending against vulnerabilities.

The report also revealed persistent gaps in multi-factor authentication (MFA). Although 87% of leaders consider phishing-resistant MFA critical, only 30% have high confidence in their defenses. Weak or absent MFA, coverage gaps, and one-time passcode failures remain key drivers of identity breaches.

Organizations are increasingly exploring zero trust strategies and vendor consolidation to enhance visibility. Only 52% have fully integrated identity and device telemetry, leaving real-time security insights limited. Contractor and third-party access controls remain weak, with 86% of organizations acknowledging gaps. Deployment of Identity Security Posture Management (ISPM) solutions is still low at 32%, underscoring the need for stronger identity security practices.

The 2025 State of Identity Security report emphasizes the urgent need for robust, security-first identity strategies. By adopting zero trust frameworks and addressing gaps in confidence, execution, and infrastructure, businesses can better protect against AI-driven threats and foster trust in an increasingly digital world.

Key Points:

• 85% of organizations are prioritizing security-first identity strategies.
• Zero trust, MFA, and identity threat detection are critical for 2025.
• UAE’s digital transformation drives adoption of advanced cybersecurity measures.

Related post

View all