70% of security/IT professionals say they are overwhelmed by the complexity of their authentication systems

SANTA CLARA, Calif.–(BUSINESS WIRE)–Axiad, a leading organization-wide passwordless orchestration provider, today announced the results of its 2022 Authentication Survey, revealing that leaders have hands to manage the underlying complexity of their authentication practices – a fundamental part of most cybersecurity strategies around the world. world.

The survey was conducted among 252 US security and IT executives (directors and above) in organizations with 2,500 or more employees across a wide variety of industry sectors. Respondents highlighted several internal challenges that prevent them from addressing authentication in a systematic way across the organization, including the variety of identity types to be protected, the many authentication methods used internally, the various operating systems in use and existing investments in identity and access management that are often not interoperable.

According to the survey, 70% of security and IT professionals are overwhelmed by significant authentication complexity, which is supported by these key findings:

  • 70% of respondents use 3 or more IAM ecosystems; 52% have 4 or more

  • 83% said they have both Windows and macOS operating systems in place; nearly half (46%) said they also need to authenticate with Linux

  • 89% use 3 or more authentication methods – the most popular are software one-time passwords (OTPs), passwords and mobile push authentication; 60% use more than 5

  • 79% of respondents said it was essential to keep people safe; 68% said machines are essential

This internal complexity often forces organizations to implement numerous, often disconnected, authentication strategies across the organization, creating gaps and inconsistencies that can be exploited by malicious actors.

Additionally, security and IT professionals face external factors such as regulatory requirements, which impact how an organization must authenticate and vary widely across verticals, standards international and public sector. More than half of organizations surveyed (54%) must comply with four or more regulatory requirements, and 38% must comply with 5 or more. Key regulatory and compliance requirements noted by respondents include ISO/IEC 27002, HIPAA, SOX and GDPR.

According to Bassam Al-Khalidi, co-CEO and co-founder of Axiad, “Today’s organizations struggle with a complex mix of systems and requirements, resulting in a siled approach to authentication. We’re seeing the negative repercussions of these fragmented strategies playing out on the front pages right now, as cyber attackers exploit organizations that aren’t systematic in how they validate that a user (or machine) is who they are. they claim to be. To improve your security posture and maximize protection, you need to tame this internal complexity and take a holistic approach to authentication.

The IAM ecosystem is a typical example of the complexity of authentication. Companies merge, make acquisitions, expand internationally, and typically end up working with at least 3 different IAM vendors, often 5 or more depending on the survey, across the organization. It rarely makes sense to replace all of these disparate systems, but it does put pressure on security/IT professionals to manage the risks caused by interoperability issues and authentication inconsistencies. Magnify this complexity with similar challenges across identity types, authentication methods, operating systems, and compliance regulations, and it’s clear why so many executives are overwhelmed.

The 2022 Authentication Survey was conducted on behalf of Axiad by Censuswide in August 2022. A summary of these results is available here; detailed survey results are available here.

About Axiad

Axiad provides organization-wide passwordless orchestration to secure users, machines, and transactions for organizations that need to optimize their cybersecurity posture while navigating underlying IT complexity. The company’s flagship offering, Axiad Cloud, is a complete, secure and integrated authentication platform that enables customers to transition to a passwordless future without the friction and risk of fragmented solutions. Axiad supports the widest range of credentials including FIDO, mobile MFA, AD CBA, Windows Hello for Business, YubiKeys, smart cards, TPM and biometrics, and is trusted by public sector organizations and Fortune 500 companies in aerospace and defense, financial services, insurance. , health, oil and energy and more.

For more information, visit axiad.com and follow us on Twitter and LinkedIn.

Sharon D. Cole