The RSA Conference 2026 is putting a spotlight on one of the biggest shifts in cybersecurity today: the rise of AI in security operations and the growing need to control it.
With more than 30,000 attendees, the annual event continues to serve as a key barometer of emerging cybersecurity threats and trends. This year, discussions are heavily focused on AI-powered security tools, automation in the SOC (security operations center), and the risks tied to rapid adoption.
Live from RSAC, TechRepublic’s cybersecurity expert Ken Underhill highlighted the technologies and concerns shaping conversations across the show floor.
AI in the SOC: Can automation reduce alert fatigue?
AI agents are quickly emerging as a focal point in modern security operations centers, according to Underhill.
“One of the big topics right now is how we can use AI agents in the SOC,” he said. “Can that actually reduce alert fatigue? And how can we trust the agents?”
As security teams face an overwhelming number of alerts, vendors are positioning AI as a solution to improve efficiency and reduce burnout. However, trust in automation remains a key barrier. Emerging approaches aim to address this challenge. Underhill explained that some companies are developing systems where AI tools validate each other’s actions.
“It’s essentially agents checking agents, making sure they’re actually doing what they’re supposed to be doing,” he said.
AI governance becomes a top cybersecurity priority
Beyond automation, AI governance is a central theme at the RSAC… especially regarding how “free” AI is to make decisions on its own. As AI and robotics shift from science fiction to reality, organizations are asking the big questions about control.
“The governance side of AI is huge,” Underhill said. “As we’re pulling in AI, how are we maintaining some kind of human in the loop?”
This focus reflects a broader industry shift toward responsible AI adoption, where human oversight plays a critical role in preventing errors, misuse, or unintended consequences.
The road ahead: Balancing speed, trust, and control
As AI continues to weave itself into the fabric of cybersecurity operations, the conversations at RSAC point to a clear reality: adoption is accelerating faster than the frameworks designed to manage it.
From AI agents assisting in the SOC to systems that validate each other’s actions, innovation is advancing quickly to address long-standing challenges such as alert fatigue and resource constraints. But with that progress comes a new layer of complexity around trust, accountability, and control.
For many organizations, the path forward will hinge on striking the right balance. AI may offer speed and scale, but human oversight remains essential to ensure decisions are accurate, explainable, and aligned with business risk.
If this year’s RSA discussions are any indication, the future of cybersecurity won’t just be defined by how powerful AI becomes but by how effectively organizations can govern it.
Also, check out how a newly revealed iPhone exploit is raising fresh concerns after the Darksword leak and what it means for mobile security.
