What You Missed on the Expo Floor
Key Moves in IAM at Black Hat USA 2025:
- ThreatLocker announced its new marketplace and defense configuration.
- Dispel emphasized moving target defense for enabling secure, auditable remote access.
- CyberArk highlighted that AI agents introduce new machine identities that act like humans.
- Keyfactor showcased post-quantum PKIaaS for machine identity resilience.
- Zero Networks introduced agentless microsegmentation with JIT MFA enforcement.
Identity Access Management (IAM) was a dominant theme at Black Hat USA 2025, with vendors and researchers converging on a shared realization: traditional IAM is no longer sufficient. The perimeter has dissolved, and identity is now the control plane. From human users to non-human identities (NHIs), the complexity of managing access across hybrid environments has reached a tipping point.
Conversation centered on Gartner’s introduction of Identity Visibility and Intelligence Platforms (IVIP), a new category that aggregates and visualizes identity data across fragmented environments. But Black Hat made it clear: Visibility alone isn’t enough. The future lies in platforms that can autonomously understand and act on identity data.
Our team was on the ground throughout the event—attending keynotes, sitting in on panel discussions, and speaking directly with solution providers and CISOs. The conversations revealed a clear mandate: visibility, intelligence, and automation must converge to secure the modern identity landscape. The expo floor was packed with innovations that reflect this shift.
Here are some key themes from the show that stood out:
Zero Trust Emerges As Essential, Not Optional
ThreatLocker unveiled its Defense Against Configuration (DAC) tool for zero trust configuration monitoring and achieved FedRAMP certification, enabling expansion into regulated government sectors and reinforcing its position in practical zero trust security.
Dispel showcased its Zero Trust Remote Access platform, emphasizing moving target defense (MTD) to protect industrial control systems (ICS) and operational technology (OT) environments. Their solution was highlighted for enabling secure, auditable remote access without relying on traditional VPNs or static infrastructure, aligning with the event’s broader focus on AI-driven and identity-based security innovations.
Machine Identity and Post-Quantum Readiness
Keyfactor emphasized the growing importance of machine identities, which now outnumber human users by staggering ratios. Their PKI-as-a-Service platform, Keyfactor Command, helps organizations manage digital certificates at scale, ensuring cryptographic trust across devices, applications, and services.
The looming threat of quantum computing was a hot topic. Keyfactor’s session, provocatively titled “Is 2029 the year certificates break the internet?”, warned that without crypto-agility, enterprises will struggle to transition to post-quantum standards. Their message: Inventory your keys now, or risk being blindsided later.
AI-Driven Authorization: Context Is King
Delinea launched Iris AI, a native engine built into its cloud platform that evaluates not just who is accessing a resource, but why, when, and how. This context-aware approach enables real-time enforcement of least privilege, even in dynamic hybrid environments.
This shift from static rules to probabilistic decision-making is a direct response to AI-powered threats. Deepfakes, automated phishing, and impersonation attacks are now capable of bypassing traditional IAM controls.
Microsegmentation and Just-In-Time Access
Zero Networks introduced a disruptive approach to enforcing least privilege at the network layer. Their platform automates microsegmentation by managing host-based firewalls remotely—no agents required. This agentless architecture solves the complexity of traditional segmentation projects and extends MFA to legacy protocols.
The convergence of IAM, networking, and security reflects a broader trend: Organizations are moving away from siloed tools toward unified platforms that deliver visibility, control, and automation across the stack.
What We Heard in the Hallways
“Machine identities are exploding. If you don’t know what’s out there, you can’t secure it.”
—Ted Shorter, CTO & Co-founder, Keyfactor
“We’ve reached the point where IAM isn’t a tool. It’s the strategy.”
—Rebecca Rivera, Senior Manager Advisory Services, Xalient
Why It Matters
IAM is now the backbone of enterprise security. The innovations at Black Hat USA 2025 reflect a shift from reactive controls to proactive intelligence. Whether it’s AI-driven authorization, post-quantum machine identity, or agentless segmentation, the tools are evolving to meet the complexity of today’s environments.
The takeaway for BDMs and TDMs: Securing identity isn’t just about who gets access. It’s about understanding every identity, human and machine, and enforcing trust at every layer. The future of IAM is intelligent, adaptive, and deeply integrated. And it’s already here.
Without strong identity, every defense eventually fails. Discover our vetted list of IAM solution leaders.
