Keyfactor

85% of cybersecurity professionals in North America and Europe at companies with at least 1,000 employees expect digital identities for AI agents to be as common as human and machine identities within five years (2026).

50% of cybersecurity professionals in North America and Europe at companies with at least 1,000 employees have implemented governance frameworks to address AI-based vulnerabilities (2026).

55% of security leaders in North America and Europe at companies with at least 1,000 employees say their C-suite is not taking agentic AI risks seriously enough (2026).

68% of organizations in North America and Europe at companies with at least 1,000 employees lack full visibility or governance over AI-generated code contributions (2026).

28% of cybersecurity professionals in North America and Europe at companies with at least 1,000 employees believe they can prevent a rogue AI agent from causing damage (2026).

69% of cybersecurity professionals in North America and Europe at companies with at least 1,000 employees believe that vulnerabilities in AI agents and autonomous systems pose a greater threat to their company's security and identity systems than human misuse of AI (2026).

86% of cybersecurity professionals in North America and Europe at companies with at least 1,000 employees agree that AI agents and autonomous systems cannot be fully trusted without unique, dynamic digital identities (2026).

56% of mid-sized organizations say they are not ready for quantum computing challenges.

42% of organizations are actively addressing quantum risk now.

Companies that view PQC as a significant undertaking are more than twice as likely to be taking steps now (49%) compared to those that consider the risks minor or overstated (24%).

48% of respondents cited a competitive edge as a key business driver for PQC readiness.

The C-suite (33%) and board members (22%) champion PQC preparedness

50% of respondents cited enhanced customer trust as a key business driver for PQC readiness.

49% of respondents cited reduced cyber insurance premiums as a key business driver for PQC readiness.

54% of respondents cited stronger cybersecurity as a key business driver for PQC readiness.

At nearly half of companies (46%), cybersecurity teams are championing PQC preparedness.

Risk perception varies by role: 53% of VPs and directors believe their organizations are unprepared for quantum risks, compared to 35% of C-suite executives.

24% of organizations are waiting to see what actions other companies take regarding quantum risks.

33% of organizations plan to respond to quantum risks when they are more immediate.

Nearly half of organizations (48%) are not prepared to confront the urgent challenges posed by quantum computing.

2% of organizations have no plans to address quantum risks at all.

Top challenges for progress in addressing quantum risks include lack of skilled personnel (40%), limited time and competing priorities (40%), and unclear industry standards (39%).