RSAC 2026 Highlights: From Agentic AI to Active Defense
None
<p><main id="readArticle" class="Page-main" data-module="" data-padding="none" morss_own_score="4.251968503937008" morss_score="12.415553141205855"></main></p><p><a href="https://www.govtech.com/blogs/lohrmann-on-cybersecurity">Lohrmann on Cybersecurity</a></p><h1>RSAC 2026 Highlights: From Agentic AI to Active Defense</h1><h2>How can enterprises scale cyber defenses for the coming agentic workforce? What are the top cyber trends and challenges flowing from our new normal? Let’s explore through an RSAC lens.</h2><div>March 29, 2026 • </div><p><a href="https://www.govtech.com/authors/dan-lohrmann.html"><span>Dan Lohrmann</span></a></p><figure> <p><img decoding="async" src="https://erepublic.brightspotcdn.com/dims4/default/c071517/2147483647/strip/true/crop/5712x2978+0+653/resize/840x438!/quality/90/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2Fe2%2F17%2F787e3f1e4434a363975503788037%2Frsac-2026-front.jpg"></p> <div>Dan Lohrmann</div> </figure><div class="Page-articleBody RichTextBody" morss_own_score="4.583963691376702" morss_score="89.58396369137671"> <p> Another <a href="https://www.rsaconference.com/usa">RSA Conference in San Francisco</a> ended on Thursday, March 26, 2026, and the top themes on the show floor and in keynote and breakout presentations included: securing agentic AI, <a href="https://www.biometricupdate.com/202603/ai-agent-identity-and-next-gen-enterprise-authentication-prominent-at-rsac-2026">identity security</a>, <a href="https://www.govtech.com/blogs/lohrmann-on-cybersecurity/what-is-physical-ai-and-what-does-it-mean-for-government">physical AI</a> and the (seemingly never-ending) <a href="https://therecord.media/uk-cyber-chief-urges-full-court-press-to-counter-risks">rise in cyber threats globally</a>, which is increasing exponentially with AI agents.</p></div><div>The physical security at the Moscone Center in San Francisco was high this past week, with RSAC 2026 attendees and bags being checked in similar ways to airport security checkpoints. Even the lines reminded me of <a href="https://time.com/article/2026/03/24/airport-wait-times-security-lines-tsa-ice-dhs-shutdown/">long airport security waits</a>.</div><div>And while attendees from across the globe came to RSAC to talk and learn about cybersecurity, this year’s conference occurred with the backdrops of the U.S. military fighting battles in the Middle East, <a href="https://www.cybersecuritydive.com/news/cisa-nsa-fbi-rsac-conference-jen-easterly/810482/">U.S. federal agencies pulling out of this year’s RSAC</a> and <a href="https://www.halcyon.ai/ransomware-alerts/iranian-use-of-cybercriminal-tactics-in-destructive-cyber-attacks-2026-updates">cyber attacks occurring in the U.S. impacting critical infrastructure</a> — including the recent <a href="https://www.govtech.com/security/stryker-cyber-attack-raises-concerns-for-state-and-local-govt">cyber attacks against Stryker</a>. </div><div>Some of the top product launches that occurred at RSAC are presented <a href="https://www.helpnetsecurity.com/2026/03/27/rsac-2026-top-product-launches/">in this <i>Help Net Security</i> article</a>.</div><div>I also really like this human-focused article from <i>PC Magazine</i> (based on an RSAC session) <a href="https://www.pcmag.com/news/rsac-2026-the-surprising-reason-phishing-still-works-on-everyone">on the surprising reason why phishing still works in 2026</a>. As we have discussed numerous times in this blog over the years, humans remain your biggest strength and also biggest weakness in cybersecurity. The key to stopping scammers is slowing down. Here’s an excerpt from that article:</div><div>“Perhaps most importantly, he referenced the work of Nobel Prize winner <a href="https://en.wikipedia.org/wiki/Daniel_Kahneman">Daniel Kahneman</a>. Kahneman identified two systems the brain uses to make decisions. ‘System 1 is fast, automatic, emotional, and intuitive,’ noted Rose, ‘while System 2 is slow, effortful, logical and deliberate. We live in System 1 all day, every day.‘ Rose explained that System 2 thinking literally uses more of your body’s energy, and that having evolved through periods of scarcity, we’re inclined to avoid expending that energy.” <h3>TOP RSAC 2026 SESSIONS</h3> </div><div>Many of the top main stage sessions from RSAC 2026 are <a href="https://www.youtube.com/playlist?list=PLeUGLKUYzh_gVdsnw6tRhS-gbhn2BE3TU">available for free at their YouTube channel</a>, and I urge you to take the time to watch a few of these fascinating presentations of interest. There are many great sessions on securing AI through various means.</div><div>Some of the top RSAC keynotes included: <p><b>Reimagining Security for the Agentic Workforce </b>by Jeetu Patel, president and chief product officer, Cisco </p> </div><div>Key quotes: <ul> <li>“We should NOT think of these agents as tools. They are more like digital co-workers.”</li> <li>“With chatbots, you worry about getting the wrong answer. With agents, you worry about taking the wrong action.”</li> <li>“Beware of the ‘oops phase.’” (Watch the video to see what that means.)</li> </ul> <p><b>Activate Industry!: Moving Beyond Defense to Disruption and Active Defense </b>by</p> </div><div>Key quotes: <ul> <li>“We found that the time between initial access [from threat actors] to the hand-off has collapsed from eight hours in 2022 to 22 seconds in 2025.”</li> <li>“Threats in the AI era include speed, scale and sophistication.”</li> <li>“We must move to active defense, but not hacking back.”</li> </ul> <p><b>AI vs. AI: How to Reshape Defense Faster Than Attackers Reshape Offense </b>by Nadir Izrael, CTO and co-founder, Armis</p> <p><b>CNBC live from RSAC show floor </b>– Databricks CEO: AI will kill the security, information and event management systems –</p></div><div>Key quote: “AI will kill the SIEM in 2026.” <h3>WHAT CAUGHT MY EYE AT RSAC 2026</h3> </div><div>As I walked the RSAC show floor, the pictures below show some of the excitement, surprising numbers and activity that is still alive at one of the world’s largest annual cyber events. <figure> <p><img decoding="async" src="https://erepublic.brightspotcdn.com/dims4/default/04b3ceb/2147483647/strip/true/crop/5712x4284+0+0/resize/840x630!/quality/90/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2F17%2Fd5%2F759f784942549084bf55399fb4ae%2Frsac-show-floor.jpg"></p> </figure> <figure> <p><img decoding="async" src="https://erepublic.brightspotcdn.com/dims4/default/ddb5429/2147483647/strip/true/crop/5712x4284+0+0/resize/840x630!/quality/90/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2Fe3%2F00%2F7ecfa353481ab084c19a68829fb1%2Fcommvault-2026-ring.jpg"></p> <div>Dan Lohrmann</div> </figure> <figure> <p><img decoding="async" src="https://erepublic.brightspotcdn.com/dims4/default/7a4b767/2147483647/strip/true/crop/5712x4284+0+0/resize/840x630!/quality/90/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2F92%2F01%2Fd94f97594bd2aff11e8a7b0c96c9%2Fakamai-ai-bots.jpg"></p> </figure> <figure> <p><img decoding="async" src="https://erepublic.brightspotcdn.com/dims4/default/ab251dc/2147483647/strip/true/crop/4284x5712+0+0/resize/840x1120!/quality/90/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2Fe4%2Fdb%2F897518be4b169b9b6ca48dcf9e60%2Fcoffee-for-humans.jpg"></p> <div>Dan Lohrmann</div> </figure> <h3>FINAL THOUGHT</h3> </div><div>I also had the chance to describe what I was seeing to several media outlets, and here is <a href="https://expertinsights.com/industry-perspectives/sac-2026-dan-lohrmann-presidio">one of those interviews I did with Expert Insights</a> covering my views on trends for governments in cybersecurity.</div><div>Meanwhile, outside the Moscone Center, I was also shocked by the gas prices in California, which are a solid $3-plus higher per gallon than in Michigan — and a reminder of the impact of current global events. <figure> <p><img decoding="async" src="https://erepublic.brightspotcdn.com/dims4/default/1bd241e/2147483647/strip/true/crop/4284x5712+0+0/resize/840x1120!/quality/90/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2F8c%2F3b%2F58f0518a42d3996f7d3a9ac2fc96%2Fchevron-gas-price.jpg"></p> </figure> </div><p><a href="https://www.govtech.com/tag/cybersecurity">Cybersecurity</a><a href="https://www.govtech.com/tag/rsa-conference">RSA Conference</a></p><p><a href="https://www.govtech.com/authors/dan-lohrmann.html"></a></p><p><img decoding="async" src="https://erepublic.brightspotcdn.com/dims4/default/7be6234/2147483647/strip/true/crop/343x343+77+0/resize/100x100!/quality/90/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2Faa%2Fbe%2F66bbbc539526800857dd96f3c9d5%2Flohrman.jpg"></p><p></p><p><a href="https://www.govtech.com/authors/dan-lohrmann.html">Dan Lohrmann</a></p><div> Daniel J. Lohrmann is an internationally recognized cybersecurity leader, technologist, keynote speaker and author. </div><p><a href="https://www.govtech.com/authors/dan-lohrmann.html">See More Stories by Dan Lohrmann</a></p><p></p><div class="spu-placeholder" style="display:none"></div><div class="addtoany_share_save_container addtoany_content addtoany_content_bottom"><div class="a2a_kit a2a_kit_size_20 addtoany_list" data-a2a-url="https://securityboulevard.com/2026/03/rsac-2026-highlights-from-agentic-ai-to-active-defense/" data-a2a-title="RSAC 2026 Highlights: From Agentic AI to Active Defense"><a class="a2a_button_twitter" href="https://www.addtoany.com/add_to/twitter?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2026%2F03%2Frsac-2026-highlights-from-agentic-ai-to-active-defense%2F&linkname=RSAC%202026%20Highlights%3A%20From%20Agentic%20AI%20to%20Active%20Defense" title="Twitter" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_linkedin" href="https://www.addtoany.com/add_to/linkedin?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2026%2F03%2Frsac-2026-highlights-from-agentic-ai-to-active-defense%2F&linkname=RSAC%202026%20Highlights%3A%20From%20Agentic%20AI%20to%20Active%20Defense" title="LinkedIn" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_facebook" href="https://www.addtoany.com/add_to/facebook?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2026%2F03%2Frsac-2026-highlights-from-agentic-ai-to-active-defense%2F&linkname=RSAC%202026%20Highlights%3A%20From%20Agentic%20AI%20to%20Active%20Defense" title="Facebook" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_reddit" href="https://www.addtoany.com/add_to/reddit?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2026%2F03%2Frsac-2026-highlights-from-agentic-ai-to-active-defense%2F&linkname=RSAC%202026%20Highlights%3A%20From%20Agentic%20AI%20to%20Active%20Defense" title="Reddit" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_email" href="https://www.addtoany.com/add_to/email?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2026%2F03%2Frsac-2026-highlights-from-agentic-ai-to-active-defense%2F&linkname=RSAC%202026%20Highlights%3A%20From%20Agentic%20AI%20to%20Active%20Defense" title="Email" rel="nofollow noopener" target="_blank"></a><a class="a2a_dd addtoany_share_save addtoany_share" href="https://www.addtoany.com/share"></a></div></div><p class="syndicated-attribution">*** This is a Security Bloggers Network syndicated blog from <a href="">Lohrmann on Cybersecurity</a> authored by <a href="https://securityboulevard.com/author/0/" title="Read other posts by Lohrmann on Cybersecurity">Lohrmann on Cybersecurity</a>. Read the original post at: <a href="https://www.govtech.com/blogs/lohrmann-on-cybersecurity/rsac-2026-highlights-from-agentic-ai-to-active-defense">https://www.govtech.com/blogs/lohrmann-on-cybersecurity/rsac-2026-highlights-from-agentic-ai-to-active-defense</a> </p>