RSA Conference 2026 produced hundreds of announcements from San Francisco’s Moscone Center this week. We curated the ones that matter for Canadian IT channel partners into three themes: agentic AI as the new attack surface, identity and hardware resilience, and partner economics.
The big theme: agentic AI is the new attack surface
The dominant message from RSA 2026 was clear — AI agents are a brand new attack surface, and the security industry arrived with its first wave of answers.
- Cisco extended its Zero Trust framework to treat AI agents as a new identity type, with visibility, access controls, and real-time monitoring for autonomous agents operating on the network.
- CrowdStrike launched Next-Gen SIEM support for Microsoft Defender for Endpoint with no Falcon sensor required, plus Shadow AI Discovery and AI Runtime Protection for finding unauthorized AI tools across client environments, and Agentic MDR for managed detection and response at machine speed.
- Proofpoint unveiled its AI Security platform and Agent Integrity Framework, defining a new standard for governing autonomous AI agents in the enterprise, alongside email and data security updates for the agentic workspace.
- Black Duck brought Signal to general availability, an agentic application security platform designed to secure AI-generated code in autonomous development workflows.
- Other notable RSA announcements along the agentic AI theme included Arctic Wolf’s Aurora Agentic SOC, Darktrace’s managed email security offering for MSSPs, and Huntress expanding ITDR coverage to Google Workspace while surpassing 10 million Microsoft 365 identities protected.
Identity and resilience
- RSA launched ID Plus Sovereign Deployment, fully air-gapped, on-premises identity security for environments where cloud isn’t an option — directly relevant for Canadian organizations navigating data sovereignty requirements.
- RSA also announced an expanded partnership with Microsoft around M365 E7 and passwordless authentication, going deep on cloud integration at the same time as the sovereign deployment — both directions simultaneously.
- Dell Technologies expanded cybersecurity and resilience for the AI era and emerging quantum risks, including quantum-ready commercial PCs with post-quantum cryptography at the firmware level, AI-powered ransomware recovery for PowerProtect, and MDR extended to AI data platforms.
- HP launched TPM Guard from their Imagine event in New York, a hardware-enforced security feature protecting TPM-to-CPU communications from physical attacks — a similar hardware-level security play announced the same week.
And here’s what you can sell
- Barracuda advanced the BarracudaONE cybersecurity platform alongside updates to the Partner Success Program, investing in both platform and partner program at the same time.
- Sectigo introduced an industry-first multi-tenant partner platform for certificate lifecycle management as a managed service, designed to help MSPs turn the shift to shorter certificate lifespans — now 200 days and eventually shrinking to 47 days by 2029 — into a scalable, recurring revenue stream.
Further reading
- SecurityWeek’s RSAC 2026 Day 1 announcements summary
- SecurityWeek’s RSAC 2026 Day 2 announcements summary
- CRN: 10 hot new cybersecurity tools announced at RSAC 2026
Podcast: Play in new window | Download
Subscribe: Apple Podcasts | Spotify | Amazon Music | Android | iHeartRadio | Youtube Music | RSS
Read Full Transcript
Hello and welcome to a special midweek edition of In Case You Missed It from ChannelBuzz.ca. I’m Robert Dutt, and this week, RSA Conference 2026 took over San Francisco’s Moscone Center. Hundreds of announcements, dozens of press releases, and a whole lot of noise. So we went through the pile and pulled out what we think actually matters for Canadian IT channel partners. Let’s get into it.
If there was one defining message from RSA this year, it’s this: the AI agents your clients are starting to deploy? They’re not just productivity tools. They’re a brand new attack surface, and the security industry just showed up with the first wave of answers.
Cisco made the biggest splash, extending their Zero Trust framework to treat AI agents as a new identity type. Their pitch: if an AI agent can browse, query, and act on behalf of a user, it needs the same visibility, access controls, and real-time monitoring as any human on the network.
CrowdStrike came in heavy across multiple days. Their Next-Gen SIEM now ingests Microsoft Defender for Endpoint telemetry with no Falcon sensor required — which is a big deal for MSPs managing mixed Microsoft environments. They also launched Shadow AI Discovery, which finds unauthorized AI applications running across client environments. If you’ve ever had to track down rogue SaaS subscriptions, imagine that problem, but with AI tools that can actually take actions on behalf of employees. CrowdStrike also introduced Agentic MDR — managed detection and response that operates at machine speed against AI-driven threats.
Proofpoint went after the same problem from the email and collaboration side, launching their AI Security platform and Agent Integrity Framework. Their angle: securing the “agentic workspace” where humans and AI agents are operating side by side across email, cloud, and collaboration tools like Teams and Slack.
And Black Duck brought their Signal platform to general availability — agentic application security designed specifically for AI-generated code. When your developers are using AI to write code, who’s checking the AI’s work? That’s the gap Signal is designed to close.
They weren’t alone. Arctic Wolf launched what they’re calling the world’s largest commercial agentic SOC. Darktrace rolled out a managed email security offering for MSSPs. Huntress expanded their identity threat detection to Google Workspace. The message from the industry was unanimous: agentic AI security is not a future problem. It’s a right-now problem.
If you’re advising clients on AI adoption, the security conversation just got significantly more complex. And that complexity is an opportunity — because your clients are going to need help navigating it.
RSA — the company, at their own conference — made two announcements that pulled in opposite directions, and that was the point. They launched ID Plus Sovereign Deployment — fully air-gapped, on-premises identity security for environments where cloud is not an option. Think regulated industries, government, anyone with serious data sovereignty requirements. For Canadian partners dealing with OSFI E-21 or federal procurement, that’s directly relevant.
At the same time, they announced an expanded Microsoft partnership around M365 E7 and passwordless authentication. So RSA is going both directions: as sovereign as you need on one end, as deeply cloud-integrated as you need on the other.
On the hardware side, Dell announced quantum-ready commercial PCs with post-quantum cryptography built into the firmware, AI-powered ransomware recovery for their PowerProtect line, and an extension of their managed detection and response service to cover AI data platforms like PowerScale. HP made a similar hardware security move from their own event in New York this week, launching TPM Guard to protect TPM-to-CPU communications from physical attacks. The common thread: the security conversation is moving below the operating system and into the silicon.
Two announcements that translate directly to partner economics.
Barracuda — a hundred percent channel company — advanced their BarracudaONE cybersecurity platform alongside updates to their Partner Success Program. Platform investment and partner investment at the same time. That’s the kind of announcement that tells you a vendor is serious about the relationship, not just the product.
And Sectigo launched a new partner platform built around the reality that SSL certificate lifespans that are already shrinking and headed to 47 days. When certificates need to be renewed every 47 days instead of every year, that’s either a massive headache or a recurring revenue opportunity. Sectigo is betting that partners who automate the process will turn a compliance burden into a managed service.
That’s RSA Conference 2026 through the Canadian channel lens. Agentic AI security dominated the conversation. Identity and hardware resilience matured. And a couple of vendors made moves that directly affect your bottom line. Links and details for everything we covered are in the show notes. We’ll be back on Monday with the regular edition of ICYMI. Until then, I’m Robert Dutt for ChannelBuzz.ca, and I’ll see you in the channel.
