Identity is the new hack. Cybersecurity architects, security operations center analysts, and C-suite IT executives are all struggling to maintain security posture and control with the growing use of modern AI tools by bad actors. Fundamentally, enterprise security now starts with identity access management, but it must evolve to stay one step ahead of an escalating threat landscape. With these points in mind, I will dive deeper into the challenges of securing identity and highlight what I find compelling about Cisco Duo’s approach after spending time with its leadership team late last year.
Identity Is The New Hack
Numerous published research reports indicate that the lion’s share of today’s security breaches begin with compromised credentials. Cisco Duo’s 2025 State of Identity Security report also confirms this alarming trend. Phishing, session hijacking, multi-factor authentication fatigue, and credential replay attacks are all on the rise. Attackers are no longer forced to brute-force their way through network or firewall infrastructure. Rather, it can identify softer targets by compromising authentication.
The challenge is further exacerbated by the weaponization of AI tools. Static identity measures are no longer effective since bad actors can now create customized phishing playbooks at scale and mimic executive writing styles with generative AI. To combat this assault, Cisco Duo IAM treats identity as a dynamic signal, continuously validating and verifying trust by analyzing risk, behavior, context, and device health within an identity assurance framework. Once users are authenticated, access decisions continue to be made in real time. Duo evaluates threat intelligence, network features, device posture, and behavior patterns during a given session to strengthen security controls. If risk increases, controls adapt. Access can be restricted, additional verification can be requested, or sessions terminated on the fly.
Furthermore, Duo’s Passport capability also addresses session-based attacks, which have become increasingly common as bad actors bypass passwords altogether. What I really like about Cisco’s architectural approach is that it addresses both credential and session management. Many of these capabilities are a result of Cisco’s acquisition of Oort in late 2023.
Purpose Built For AI Threats
Cisco positions Duo IAM as built for the AI era, and I agree with the company’s framing and positioning. AI-powered attacks move much faster and operate at a massive scale. Consequently, there is a need for identity defense to respond at a similar speed and with similar intelligence.
It is worth noting that Duo IAM integrates with Cisco Identity Intelligence and leverages identity telemetry across every customer’s identity infrastructure. This capability equips the platform with critical awareness of emerging attack patterns and the ability to dynamically adjust policies.
The Importance Of Zero Trust
The importance of zero trust cannot be underscored enough. Cisco Duo IAM grounds zero trust and least-privileged access controls within its underlying architecture, acting as a centralized enforcement layer across applications and environments. Whether users access SaaS platforms, private applications, or hybrid workloads, identity policies remain consistent. Security operations are also made simpler as a result. A disaggregated approach to deploying and managing identity controls can be troublesome for organizations. Cisco Duo IAM solves this challenge by collating and unifying risk-based assessments without the need to rip and replace current IAM investments. In doing so, Cisco Duo IAM meets customers where they are, strengthening identity and access control.
Solving The Security Friction Dilemma
The deployment of identity-based security tools often introduces friction into knowledge worker productivity. Conversely, Cisco Duo positions IAM as a business enabler instead of an obstacle. Enterprises are deploying AI copilots, agentic automation platforms, and agent-based workflows in growing numbers. These systems require controlled access to data and applications. Without strong identity controls, modern AI tools introduce unwanted negative exposure through data leakage, prompt injection, model poisoning, and more. A framework that incorporates telemetry and policies that enable least-privileged access and provide adaptive trust constructs for employees, contractors, partners, and AI agents is needed. By all measures, Cisco Duo IAM delivers.
Final Thoughts
Today, identity security requires intelligence and ease of operational deployment and management. Cisco Duo IAM raises the bar by making identity harder to exploit through continuous verification, AI-informed risk scoring, and integration across a wide swath of risk telemetry and other cybersecurity tools.
Jeetu Patel, Cisco’s President and Chief Product Officer, sums up the challenges with a legacy approach to IAM, stating, “While identity is the foundation of strong security, traditional IAM solutions have failed to prioritize security despite increasingly sophisticated threats. With this massive innovation, Duo is moving beyond multi-factor authentication and restoring trust in identity security with a fundamentally different approach that attackers hate and users love.”
I wholeheartedly agree with his assessment, and more must be done to secure identity in the modern AI era.
