Key Cybersecurity Takeaways from RSA Conference 2025 

By Trevor Burnside, Solution Engineer – Cybersecurity, Telarus 

Last week, our team had the chance to attend RSAC 2025 🡥 in San Francisco, one of the world’s premier cybersecurity events. After a whirlwind—and eye-opening—week, our message is clear: Buckle up, because AI is reshaping cybersecurity at breakneck speed, and there’s no slowing down. 

As companies race to adopt AI, threat actors are seizing the opportunity to exploit hidden vulnerabilities in platforms and models. For example, new malicious AI tools like WormGPT 🡥 or FraudGPT augmenting an attacker’s capability on finding and exploiting vulnerabilities. Threat actors are also increasingly using AI to launch sophisticated, targeted, and automated attacks at scale—putting all organizations at risk. 

Meanwhile, cybersecurity firms are scrambling to keep pace and using AI to combat evolving threats. The AI arms race is heating up, and transforming nearly every aspect of cybersecurity, from threat intelligence to detection and response. 

For business leaders, keeping up with the rapid pace of AI and cybersecurity can be daunting—especially with the widespread IT talent shortage, and budgetary restraints. This is creating new opportunities for technology advisors to step in and help make informed decisions. 

Three Main Cybersecurity Takeaways from RSA 2025 

Here are some some considerations as we approach the midway point of the year. 

1. AI is officially here 

AI is no longer a future trend in cybersecurity. While still in its infancy, AI is advancing quickly, and today there are a range of services available for companies to begin leveraging. AI assistance is showing up everywhere across the security product landscape. 

There were several AI-related announcements at RSA. 

• Abnormal AI rolled out new autonomous agents 🡥 designed to train employees, streamline risk reporting, and prevent email attacks.  
• Bugcrowd launched a groundbreaking, crowdsourced Red Team-as-a-Service 🡥 offering for scalable, intelligence-led attack simulations.  
• Cisco announced AI-powered threat detection and response 🡥 tools, supply chain security controls, an expanded partnership with ServiceNow, and an open-source Foundation AI program. 
• CrowdStrike unveiled new agentic AI 🡥 innovations for security operations centers.  
• SentinelOne launched Purple AI Athena 🡥, with agentic AI capabilities for autonomous investigation and response. 

What is agentic AI, and how does it relate to cybersecurity? 

Agentic AI refers to a new class of AI tools that interact with users and systems with autonomy, deep reasoning, and an ability to act independently. 

Through a cybersecurity lens, agentic AI can drastically improve response times and accuracy—enabling teams to respond instantly to threats and proactively remediate vulnerabilities.  

Make no mistake about it: Customers that are holding back or going with a “wait and see” approach will be left behind by those that are taking advantage of the latest solutions.  

2. Use AI to fight AI 

With cybercriminals widely taking advantage of AI in their tactics, techniques, and procedures (TTPs), cybersecurity teams need to leverage AI to defend their environments. Without doing so, the criminals will be faster, smarter, and more agile than traditional security measures. 

Companies can now use AI to help with many different tasks, including: 

• Threat detection and response: AI analyzes vast amounts of security data (logs, network traffic, endpoint activity) to identify patterns and anomalies that indicate malicious behavior.
• Endpoint patching and remediation: Large organizations often have hundreds of thousands of endpoints to manage. AI helps identify vulnerable endpoints, prioritize risks, and automate patching efforts.   
• Phishing and email security: Threat actors are increasingly targeting end-users with AI-driven phishing scams. Natural language processing (NLP) and machine learning algorithms can analyze email content, sender behavior, and attachments to detect harmful activity and alert users about incoming threats.  
• User and entity behavior analytics (UEBA): By continuously monitoring user activity, UEBA helps detect compromised accounts and insider threats. AI enhances this process by connecting the dots between disparate events, providing greater visibility into potential risks.  
• Automated incident response: Companies are increasingly integrating AI into security orchestration, automation, and response (SOAR) platforms to automate different stages of the response process.   

3. Trusted advisors have a critical role to play 

When it comes to cybersecurity, many leaders are in over their heads. It’s an increasingly complex threat landscape and hiring/retention challenges continue to soar. Technology advisors have a massive to play in cybersecurity. Simply put, customers are overwhelmed keeping up with all of the latest technological advancements and AI-driven threats. Now more than ever, business leaders are depending on advisors to know how they should be leveraging new tools and which deliver the most value. 

This means advisors need to level-up their subject matter knowledge, and look for ways to help customers build security-first AI strategies. There is a lot of noise going on, and customers will look to advisors to cut out the rhetoric and introduce relevant solutions for their individual business. 

RSA 2025: Many Voices, One Community 

This year’s theme at RSA was “many voices, one community,” which is a nod to all of the thinkers and innovators that play a role in cybersecurity. It’s also a theme that should hit home with technology advisors.  

That’s because advisors today must work with many different business leaders, each with different opinions and objectives around cybersecurity. It can be challenging—and at times frustrating—to engage with leaders and convince them to act in the face of risk. Ultimately, success requires working together and creating a cybersecurity culture built around trust. This can require time and patience.  

With cybersecurity, it’s important to focus on building bridges, fostering communication, and creating alignment with different teams to solve real challenges and create a unified security strategy.  

And with Telarus’ team of cyber experts here to help, there’s no need to be shy even if selling cyber is new to you.  Now is the time to educate customers about the changing risk landscape, and prepare them for the new era of AI-driven threats.  

To learn more about Telarus’ cybersecurity solutions and education opportunities, contact us.