AI/ML, Identity

Survey: Organizations lack visibility into non-human identities

(Adobe Stock)

A new survey from Permiso Security reveals that while organizations are rapidly deploying AI agents and automated systems with direct access to sensitive data, they lack the visibility needed to secure these non-human identities effectively, Biometric Update reports.

The State of Identity Security 2026 report, based on responses from 512 organizations, found that 82% grant AI agents access to production data, yet most cannot track what permissions these identities hold or how they use data. Co-CEO Paul Nguyen stated companies are "deploying AI systems faster than they can secure them," creating a dangerous perception gap where NHIs are ranked as least risky despite often having hardcoded, excessive permissions.

The report highlights a fragmented identity landscape, with firms using an average of two to three identity providers and cloud service providers, leading to limited threat visibility. Only 43% of organizations can detect identity-based risks before an incident occurs. Co-CEO Jason Martin attributed slow threat response to "fragmented visibility," noting that teams spend hours manually correlating data.

An In-Depth Guide to AI

Get essential knowledge and practical strategies to use AI to better your security program.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds