Real-world feedback from cybersecurity professionals reflects global trends resonating across Asia-Pacific as identity, AI and zero trust reshape modern defenses
Singapore, October 31, 2025 — Keeper Security, the leading cybersecurity provider of zero-trust and zero-knowledge Privileged Access Management (PAM) software protecting passwords and passkeys, privileged accounts and endpoints, as well as secrets and remote connections, today releases a new insights report, “Identity, AI and Zero Trust: Cybersecurity Perspectives from Infosecurity Europe, Black Hat USA and it-sa.” More than 370 cybersecurity practitioners shared candid insights at three of the industry’s most influential conferences — Infosecurity Europe in London, Black Hat USA in Las Vegas and it-sa in Nuremberg — offering a practitioner’s view into how security teams are adapting to an increasingly complex threat landscape. While the report reflects findings from the United States, United Kingdom and Germany, its themes – AI’s dual use in attack and defense, uneven adoption of zero-trust frameworks and the persistence of identity-based threats – are equally relevant to Asia-Pacific organizations advancing digital transformation and strengthening cyber resilience.
Key Insights from Real Professionals: AI, Identity and Zero Trust
Cybersecurity professionals across all regions agreed that Artificial Intelligence (AI) is reshaping the security landscape. Only 12% of respondents in the UK and 16% in the United States said their organizations are fully prepared to handle AI-enhanced attacks. In Germany, confidence was higher at 28%, but most respondents acknowledged that preparedness remains a work in progress.
Zero trust was universally recognized as critical to a modern defense strategy, yet implementation continues to trail intent. At Infosecurity Europe, 18% of respondents reported fully implemented zero-trust frameworks. That figure rose to 27% at Black Hat USA and 44% at it-sa in Germany, reflecting stronger progress but underscoring that adoption remains uneven across regions.
The data also reinforces identity-based attacks as the leading global concern. Half of UK respondents identified phishing as the top identity-based threat, with 42% naming deepfakes. In the United States, 45% cited phishing as their greatest risk, followed by 41% who pointed to deepfakes. Concern peaked in Germany, where 61% of respondents identified deepfakes as the most significant identity-based threat.
Across all regions, privileged access controls were found to be inconsistent. In the UK, 43% said Multi-Factor Authentication (MFA) is not consistently enforced for privileged accounts. In the U.S., 40% reported the same, while in Germany, half of the respondents said their organizations lack a dedicated PAM solution altogether.
These challenges mirror those faced by enterprises across Asia-Pacific, where rapid digitalization, cloud adoption and expanding ecosystems are driving demand for identity-centric security and zero-trust access models.
From Awareness to Action
The results reveal that security leaders are aligned on strategy but struggle with execution. Awareness of zero trust, PAM and AI-driven security principles is high, yet complexity, resource constraints and competing priorities continue to delay deployment.
“Identity has become the control point of cybersecurity,” said Darren Guccione, CEO and Co-founder, Keeper Security. “Our data demonstrates that the disparity between cybersecurity awareness and action is wide, but positive, proactive defense can close this gap. The organizations that lead in zero trust and PAM are not only protecting access but building the foundation for secure, scalable growth in the age of AI.”
“The cybersecurity priorities we’re seeing across Asia-Pacific mirror global trends, with identity, AI and zero trust at the center of modern defense strategies,” said Takanori Nishiyama, Senior Vice President of APAC Sales and Japan Country Manager, Keeper Security. “Enterprises across the region are moving decisively to secure identities and privileged access as they scale digital transformation and build resilience against AI-enhanced attacks.”
The report emphasizes that true resilience now depends on disciplined execution, measurable progress and the responsible use of AI to detect anomalies and manage risk across every access point.
To explore the complete findings, including regional comparisons and practical recommendations, download Keeper’s report.
