4
0RSAC 2026 Live: When the World's Biggest Security Conference Became an AI Conference
Over 40,000 people descended on San Francisco for RSAC 2026, and more than 600 exhibitors were talking about almost nothing but AI Agents. Fresh off the show floor, Wickey sits down with Jimmy Park of Forge Point Capital to debrief on the biggest signals from the year's most important security event
This is a ground-level walkthrough of the entire expo floor, no hype, just signal.
About the Host & Guest
Host: Wickey Wang Co-host of Innovator Coffee and co-founder of SafenAI, Wickey focuses on ecosystem insights on AI and cybersecurity. She is also an IT Security & Compliance Leader, Growth fund VC advisor and Angel Investor with cybersecurity and AI focus
Guest: Jimmy Park Investor at Forge Point Capital, where he focuses on early-stage cybersecurity and AI, typically leading Series A rounds. His career has taken him through three very different worlds:Korean Army Intelligence, Bank of America, and private equity
Time Topic Content
Wickey opens with the RSAC 2026 theme; Jimmy introduces himself: Korean Army Intelligence → Bank of America → Private Equity → Forge Point Capital cybersecurity-focused investor, just back from RSA
03:31 – 08:25 The Big Shift: RSA Feels Like an AI Conference 600+ exhibitors with nearly every booth talking AI Agents; Jimmy's method: head straight to the Early Stage Expo to count companies and read taglines; last year it was LLM security, this year the same companies have pivoted to Agent security
08:26 – 11:20 The Non-Human Identity Explosion
The conversation has evolved from "how many non-human identities do we have" to active remediation and governance of Agent Identity; major platforms like Okta and Microsoft entering the space; startups focusing on Key Rotation, Just-in-Time Access, and other proactive fix capabilities
11:21 – 14:57 AI SOC: 60+ Companies Chasing the Same LabelLevel 1/2 alert triage is the core use case; AI addresses the SOC's long-standing pain points — manually reviewing 10,000 alerts is impossible, and getting paged at 2am for a false positive is exhausting; large enterprises are moving from demos to real deployments this year
14:58 – 20:24 MCP and the Expanding Attack Surface
MCP is emerging as the primary vector for AI agents, big AI labs building code security are doing it to sell more Claude, not to take over the cybersecurity market, the real story behind SaaS-Pocalypse
20:25 – 36:10 Five New Faces on the Show Floor
AI Hacker (adaptive red-teaming for LLM applications); AI DevOps Engineer (shift-left all the way to code generation); Vibe Coding Security (AI-generated code has its own vulnerability patterns); ServiceNow acquires Veza (IT platforms going on offense in identity security); IBM quantum hardware on display (CISOs say it's not yet a top-five priority)
36:11 – 43:22 When Will the $10B AI Security Company Arrive?Being valued at $10B and being acquired for $10B are two very different things; private markets tend to overheat; the real test is IPO pricing and actual acquisition multiples.
International cybersecurity rising (Italy and Korea debut their own national pavilions); the junior talent pipeline is breaking.
Wickey's Linkedin www.linkedin.com
Special thanks to Hannah Wang who did the wonderful job to assist to complete this podcast. / hannah-wang-9302421b3
