By The cybersecurity industry’s most anticipated annual gathering just wrapped up, and RSA Conference 2025 delivered insights that will shape the sector for years to come. With a record-breaking 44,000 attendees and an additional 10,000 participating in surrounding conferences, this year’s event showcased both the industry’s explosive growth and its evolving priorities.
Speaking with Steve Winterfeld, Advisory CISO at Akamai Technologies, the scale of RSA 2025 was immediately apparent. “I’ve seen more and more storefronts being rented in hotels, and increasingly around events,” Winterfeld observed, highlighting how the conference has expanded beyond its traditional boundaries. With over 700 speakers and 600 vendors, the event has become a sprawling ecosystem of cybersecurity innovation and networking.
📹 Going on record for 2026? We're recording the TFiR Prediction Series through mid-February. If you have a bold take on where AI Infrastructure, Cloud Native, or Enterprise IT is heading—we want to hear it. [Reserve your slot
AI Takes Center Stage
Unsurprisingly, artificial intelligence (AI) dominated the conversation at RSA 2025. “By far, the biggest topic was AI,” Winterfeld confirmed, specifically highlighting agentic AI, non-human identities, and AI assistants as key themes. The focus extended beyond just implementing AI tools to addressing the security implications of large language models (LLMs) and their potential for both defensive and offensive cyber operations.
This AI-centric approach reflects the industry’s recognition that AI isn’t just changing how we work—it’s fundamentally transforming the threat landscape itself. Organizations are grappling with securing AI systems while simultaneously leveraging AI for enhanced cybersecurity capabilities.
APIs and Quantum: The Supporting Cast
While AI commanded the spotlight, API security emerged as the second-most discussed topic. This focus underscores the critical role APIs play in modern digital infrastructure and the growing recognition of API vulnerabilities as a primary attack vector.
Quantum computing also maintained its presence in conference discussions, though Winterfeld noted the familiar refrain: “It’s coming, it’s coming—it’s going to have a big impact.” The quantum threat remains on the horizon, but its potential to revolutionize both computing and cryptography keeps it firmly in the cybersecurity community’s consciousness.
Beyond Technology: Community and Leadership Evolution
RSA 2025 wasn’t just about emerging technologies. The conference introduced several community-focused initiatives, including RSA’s push toward a 365-day community model and a new track dedicated to “protect your home and family” cybersecurity. This latter addition particularly resonated with Winterfeld, who noted it as his “most attended security course” when training others.
Perhaps most significantly, the conference reinforced an ongoing shift in cybersecurity leadership philosophy. Winterfeld emphasized the “continued focus on CSOs need to be better business partners and less technical advisors”—a trend that reflects the maturation of cybersecurity from a purely technical discipline to a strategic business function.
The Human Side of a Tech Conference
In a delightfully unexpected twist, RSA 2025 featured goats and puppies at vendor booths for attendee petting sessions—a reminder that even in the serious world of cybersecurity, human connection and stress relief matter.
As the cybersecurity industry continues its rapid evolution, RSA 2025 demonstrated that success requires balancing cutting-edge technology adoption with community building, strategic thinking, and yes, occasionally, some four-legged stress relief.
