AI’s Breakneck Takeover: Inside the RSAC 2026 Cybersecurity Crossroads

It began with a familiar hum of anticipation, but RSAC 2026 quickly became something else: a showcase for how artificial intelligence is not just transforming cybersecurity - it’s upending it. In packed panel rooms and buzzing vendor halls, experts, CISOs, and journalists confronted an industry where the speed of change is now measured in weeks, not years. As one veteran editor quipped, “The AI wave is nothing we’ve seen before.”

AI: The Relentless Engine
At RSAC 2026, one message echoed louder than the vendor pitches: AI is advancing at an unprecedented pace, leaving even seasoned defenders scrambling. Where 2023 saw the promise of AI-augmented security, 2026 is witnessing the arrival of “agentic AI” - systems that not only analyze threats but act, sometimes independently. Vendors now promise AI-driven SOCs and autonomous threat hunting, while CISOs are forced to ask: can human oversight scale at the same rate as machine intelligence?

Vodafone’s global CISO, Emma Smith, set off heated debate by declaring “human in the loop” approaches won’t scale - advocating instead for “human on the loop,” where AI leads and humans intervene only when necessary. This shift is controversial: while defenders need speed, many remain wary of ceding too much control to technology that can still hallucinate or err. Yet, as attackers themselves adopt agentic tools, standing still is not an option.

Threats Old and New
Despite the AI frenzy, some threats remain stubbornly familiar. Authentication is still a mess - passwords persist, and multifactor adoption lags. Software vulnerabilities, once the domain of hobbyist hackers, now fuel industrial-scale supply chain attacks, as seen in recent open-source ecosystem breaches. Meanwhile, ransomware’s business model is shifting: payouts are down as recovery strategies improve, but data theft and stealthy info-stealing malware are rising in their place.

Industry at a Crossroads
The conference’s absence of key US government players underscored a changing landscape - one where public-private cooperation is uncertain, and private sector innovation races ahead. The merger of major cybersecurity news brands highlights the need for a 360-degree perspective: CISOs, SOC managers, and risk professionals all require tailored, actionable intelligence as the ground keeps shifting.

RSAC 2026 leaves the industry with a paradox: never before have defenders had such powerful tools - or faced such relentless, adaptive adversaries. As AI’s influence grows, the challenge is not just keeping up, but questioning who, or what, is really in control. The next chapter in cybersecurity’s evolution is being written in real time - and no one can afford to blink.

WIKICROOK

• Agentic AI: Agentic AI systems can independently make decisions and take actions, operating with limited human oversight and adapting to changing situations.
• Human in the Loop: Human in the loop means people remain involved in AI-driven cybersecurity decisions, ensuring oversight, context, and ethical judgment alongside automated systems.
• Supply Chain Attack: A supply chain attack is a cyberattack that compromises trusted software or hardware providers, spreading malware or vulnerabilities to many organizations at once.
• Ransomware: Ransomware is malicious software that encrypts or locks data, demanding payment from victims to restore access to their files or systems.
• Authentication: Authentication is the process of verifying a user's identity before allowing access to systems or data, using methods like passwords or biometrics.