89% of organizations plan to hire professionals within the next 12 months to manage or improve identity management, infrastructure, and security

68% of healthcare executives indicated that identity and access management would be the top priority for increasing investments in the coming fiscal year.

69% of global organizations experienced an identity-related breach in the last three years, marking a 27-percentage-point increase from the previous year.

44% of true-positive security alerts from cloud security tools in Q3 2025 were driven by identity-related weaknesses.

52% of all confirmed identity-based alerts were due to identity-related privilege escalation.

99% of cloud identities were found to be over-privileged, creating significant security risks.

33% of raw CSPM alerts were identity-related, contributing to the operational burden on security teams.

44-49% of dependencies imported by AI coding agents contained known security vulnerabilities in 2025.

50% of cybersecurity professionals in Germany reported that their organizations lack a dedicated Privileged Access Management (PAM) solution in 2025.

30% of German IT & security professionals believe that Mobile Device Management (MDM) does not fully protect their managed devices

25% of Singaporean IT & security professionals believe that Mobile Device Management (MDM) does not fully protect their managed devices

66% of risk leaders stated they have reviewed and updated their IT and cyber risk management strategy in response to major disruptions such as the Crowdstrike outage or MOVEit breach

Only 10% of leaders expressed a lack of confidence in their risk management data in 2025, down from 16% in 2024, reflecting a six-point improvement in trust towards risk data.

In 2025, 40% of companies reported that they mostly or only use spreadsheets to manage risk, a decrease from 53% in 2024, indicating a significant shift towards software use in risk management.

In 2024, 62% of companies were using or planned to use AI for risk management, which is projected to rise to 70% by 2025, reflecting a significant increase in AI adoption.

Thirty-nine percent of companies are not conducting worst-case scenario simulations, highlighting a critical gap in risk management practices that needs to be addressed.

60% of companies globally now have a chief risk officer as of 2024, an increase from 52% over the past two years, indicating a growing recognition of risk management as a priority.

57.28% of IT decision-makers at financial services firms reported that network management and monitoring is currently fully or partially managed by an MSP or MSSP.

26.21% of IT decision-makers at financial services firms reported that patch management and system updates is currently fully or partially managed by an MSP or MSSP.

39% of financial services firms plan to invest or upgrade in multi-factor authentication and identity access management controls in 2026.