RSAC 2026: AI Leads Security Shift Across Vendors & MSPs

At this year’s RSA Conference 2026, cybersecurity companies across the board took the opportunity to announce new partnerships and capabilities.

Unsurprisingly, AI was a central theme across vendors. Whether focused on AI-powered defense, addressing shadow AI, or embedding AI into security operations, the technology is now more than ever a cornerstone of how cybersecurity companies are shaping the near future.

Cork Cyber launches automated asset analysis

Cork Cyber, a provider of cyber risk intelligence, remediation, and financial resilience platforms, has announced the launch of Automated Asset Analysis (A3), a new AI engine made to eliminate the visibility gaps created by modern “tool sprawl.”

The company framed the engine as an evolution from risk visibility to operational security infrastructure — helping reduce missed coverage, wasted spend, and risks that only show up when something breaks.

Asset Analysis serves as a central “source of truth,” particularly as IT service partners (MSPs) struggle to manage an increasingly complex stack of security tools.

By aggregating telemetry across a partner’s entire environment into a single platform, Cork Cyber allows IT providers to maintain full flexibility to use their preferred tools with zero requirement for additional agents or hardware.

“The automation journey at Cork is about moving from simple observation to active remediation,” said Marcus Recck, head of product and engineering at Cork Cyber. 

“Asset Analysis is the brain that identifies the ‘Zombie Assets’ and ‘Whitespace’ that lead to breaches. By delivering instant, automated reconciliation across an entire fleet, we’re eliminating manual effort, improving consistency, and helping partners prevent issues before they turn into incidents, which saves time and reduces risk.”

Commvault expands Microsoft Security integration

Unified resilience company Commvault has unveiled an expanded integration with Microsoft Security, aimed at better connecting threat detection with trusted recovery.

The integration leverages Microsoft Sentinel, Microsoft Security Copilot, and the Commvault Cloud platform to streamline resilience operations (ResOps) and enable real-time data insights. This allows organizations to move quickly from identifying a threat to validating and restoring clean data faster with greater confidence.

“This isn’t just an integration – it’s a blueprint for the future of agentic ResOps,” said Michelle Graff, senior vice president of global channels and partnerships at Commvault. 

“By uniting and automating critical workflows, Commvault and Microsoft are ushering in a modern approach that can diminish the time between detection and recovery, advance the collaboration between IT and security teams, and keep enterprises running in a state of continuous resiliency.”

The integration enables coordinated workflows between security and recovery teams. Security alerts from Commvault Cloud are ingested into the Microsoft Sentinel data lake, where security operations center (SOC) analysts can enrich these incidents with partner intelligence to access impact and validate scope. 

Cyera rolls out capabilities to secure enterprise AI use  

Cyera, the AI Security Platform, has announced a new set of capabilities designed to close critical security gaps in AI adoption—particularly around what employees share with AI systems and how both users and AI agents interact with enterprise data once access is granted.

Called Browser Shield for AI, Data Lineage for files, and Cyera MCP, the new features are built to secure data flow in real time and address pathways that legacy security tools can no longer see. 

“The question security teams are being asked is no longer ‘Are we using AI?’” said Nir Rozen, vice president of product management at Cyera. 

“It is ‘what data employees shared with AI, what data AI accessed on their behalf, and what changed because of it?’ If you can’t answer that, you don’t have control. Cyera now makes that answer obvious.”

Domo unveils AI orchestration framework to connect data, workflows, and agents

Domo unveiled a new AI orchestration framework at Domopalooza, held during the same March 2026 timeframe as RSAC, to help enterprises operationalize AI across business workflows. 

The offering includes an AI Agent Builder, AI Toolkits, a centralized AI Library, and an MCP Server that connects enterprise data to external AI platforms. 

Together, these tools enable organizations to build, deploy, and manage AI agents integrated with governed data, supporting automation, decision-making, and scalable “AI workforce” use cases.

“Domo is the foundation for how we’re operationalizing AI for business intelligence across our organization,” said Marcus Wilkins, the lead data scientist at InformData, a US-based provider of background screening, continuous monitoring, and identity intelligence services from over 200 countries and territories across the globe. 

“By bringing our data and workflows into a single, connected environment, it gives us the control and context we need to build reliably. On top of that, we’re using  GenAI in decision layers within our workflows to determine what data to use and how results move  forward. The result is a system where insights can be trusted, reused, and applied consistently across teams.” 

ESET achieves Intel vPro certified app status

Cybersecurity company ESET also announced that it has received Intel vPro Certified App status for ESET PROTECT cybersecurity solutions. 

The certification validates that ESET PROTECT meets the rigorous efficiency and performance targets set for Intel vPro platforms, including enhanced user experience, extended battery life, preserved CPU usage, and background performance for business customers.

“At ESET, we believe that world class protection must never come at the cost of performance,” said Juraj Malcho, chief technology officer at ESET. 

“Reaching Intel vPro Certified App status reflects our dedication to innovation by engineering highly efficient security solutions. Through our collaboration with Intel, we’ve been able to elevate the performance and energy efficiency of ESET PROTECT by leveraging the advanced features of Intel’s hardware technologies.”

ESET and Intel have collaborated closely since 2022, with the partnership focused on delivering advanced ransomware protection through Intel’s Threat Detection Technology and enabling Intel-powered AI PC users to leverage hybrid processor architecture for enhanced security and performance.

RSA announces strengthened partnership with Microsoft

At the conference, RSA announced expanded support for Microsoft 365 E7, adding passwordless capabilities built to deliver enhanced security and resilient operations as organizations adopt AI-driven productivity.

By integrating RSA ID Plus for Microsoft with Microsoft 365 E7, enterprises can enable trusted authentication for both human users and AI agents, while safeguarding sensitive data and privileged operations across hybrid, cloud, and on-premises environments.

The announcement builds on RSA’s growing collaboration with Microsoft, including its membership in the Microsoft Intelligent Security Association (MISA), the launch of RSA Advisor for Admin Threats in Microsoft Security Copilot, and the deployment of the RSA ID Plus Admin Logs Connector.

“The rise of AI agents in the enterprise means organizations need to rethink how they secure every identity—human and machine alike,” said RSA CEO Greg Nelson. 

“Expanded RSA passwordless capabilities and advanced MFA resilience features, now available in Microsoft E7, allow organizations to eliminate passwords, stop advanced identity threats, and streamline secure access at scale.”

RSA debuts additional passwordless enhancements

At RSAC, RSA also introduced additional passwordless enhancements that can be deployed independently or alongside the Microsoft Entra ID suite, aimed at enabling passwordless authentication across environments.

The updates include a new version of desktop passwordless for macOS and Windows with improved availability options, enhanced mobile passkeys with proximity verification, and expanded datacenter passwordless support, including Linux environments.

Google Cloud unveils AI-driven security updates

Finally, Google Cloud announced a series of updates at the RSA Conference, spanning generative AI and threat intelligence.

First, the company confirmed the completion of its acquisition of Wiz, aimed at building a “comprehensive, AI-ready cybersecurity platform” that can protect organizations across all cloud environments.

Google Cloud also released the M-Trends 2026 special report, offering insights into today’s evolving threat landscape based on more than 500,000 hours of incident investigations conducted by Mandiant in 2025.

Additionally, the company introduced new agentic defense capabilities in Google Security Operations, enabling security teams to augment automated actions with AI-driven agents that combine adaptive AI with deterministic automation.

Lastly, Google also announced that customers will be able to build enterprise-ready security agents using support for the Remote Model Context Protocol (MCP) server, expected to become generally available in early April.

What RSAC 2026 signals for MSPs and partners

Taken together, the announcements at RSAC 2026 signal a maturing security landscape where AI is operational, not experimental. 

Vendors are aligning around integrated platforms, real-time intelligence, and automation that reduces friction between detection, response, and recovery. 

For MSPs and channel partners, the opportunity—and challenge—will be translating these innovations into scalable, secure services that deliver measurable resilience in an AI-driven threat environment.