Top must-visit companies at RSAC 2026
RSAC 2026 Conference is taking place at the Moscone Center in San Francisco March 23 – 26. With hundreds of booths, countless product demos, and nonstop buzz, navigating RSAC can be overwhelming. That’s why we’ve done the legwork to highlight the standout companies you won’t want to miss.
Whether you’re looking for cutting-edge innovation, industry veterans with new offerings, or rising stars shaking things up, these exhibitors are bringing something special to the floor this year. Be sure to carve out time in your schedule to stop by, as you might just discover your next big opportunity.
Apiiro
Booth S-3316 | Book a demo
Apiiro is an application security company with offices in New York and Tel Aviv. Its agentic Application Security Posture Management (ASPM) platform helps security and development teams detect, prioritize, and fix risks across the software development lifecycle, from design through code to deployment. Powered by patented Deep Code Analysis technology, the platform provides code-to-runtime context, automated threat modeling, and AI-driven remediation. Apiiro has raised over $135 million in funding from investors including General Catalyst, Kleiner Perkins, and Greylock. Gartner, IDC, and Frost and Sullivan have all recognized Apiiro as a leader in ASPM, and its customers include USAA, BlackRock, Shell, and TIAA.
Cline
Booth ESE-19
Cline is an open-source AI coding agent that runs inside Visual Studio Code, JetBrains IDEs, and the command line. It goes beyond code completion by reading codebases, creating and editing files, executing terminal commands, automating browser interactions, and connecting to external tools via the Model Context Protocol, all with user approval at each step. Developers can bring their own API keys and connect to any major AI provider, including Anthropic, OpenAI, Google Gemini, AWS Bedrock, and local models. Cline has surpassed 5 million installs and nearly 60,000 GitHub stars, and is trusted by developers at companies including Samsung, Microsoft, Salesforce, Amazon, and Visa.
GlobalSign by GMO
Booth N-5181 | Book a strategy session
GlobalSign by GMO is a leading Certificate Authority and digital identity provider founded in Belgium in 1996 and now a subsidiary of Japan’s GMO Internet Group. The company issues SSL/TLS certificates, S/MIME email security certificates, code signing certificates, and document signing solutions to businesses, enterprises, cloud providers, and IoT manufacturers worldwide. Its Atlas platform enables automated certificate lifecycle management at scale. GlobalSign by GMO is a founding member of the CA/Browser Forum and became a Qualified Trust Service Provider under the eIDAS regulation in both the EU and the UK. With over 600 employees across more than a dozen countries, the company serves clients including Microsoft, Cisco, and Johnson and Johnson.
IDEMIA
Booth S-2452
IDEMIA is a global leader in biometrics and cryptography, providing identity and security solutions to governments and enterprises in more than 180 countries. The company operates through two main divisions: IDEMIA Secure Transactions, which delivers payment cards, eSIM connectivity, and cryptographic security including hardware security modules and post-quantum cryptographic libraries; and IDEMIA Public Security, which provides biometric solutions for border control, law enforcement, access control, and travel. IDEMIA is trusted by more than 600 governmental organizations and 2,400 enterprises.
Mimecast
Booth N-5245 | Book a demo
Mimecast is a leading cybersecurity company focused on managing and mitigating human risk for organizations worldwide. Its AI-powered, API-enabled platform is built to protect businesses from a broad spectrum of cyber threats by integrating advanced technology with human-centric security pathways. The platform enhances visibility, delivers strategic insight, and enables decisive action to safeguard critical data and collaborative environments. It also actively engages employees in reducing risk and improving productivity.
MyCISO
Booth ESE-28
MyCISO is a SaaS cybersecurity platform designed to help organizations assess, improve, and manage their security posture without relying on spreadsheets or fragmented tools. Its Security Operating System centralizes assessments, risk management, compliance, supplier security, incident response, security awareness, and board-ready reporting into a single platform supporting over 65 frameworks. AI-powered insights and automated external and internal vulnerability scans help security leaders prioritize risks, track maturity over time, and demonstrate progress to executives.
Novee
Booth S-0262 | Book a demo
Novee is an AI-powered penetration testing platform that continuously simulates real-world cyberattacks to help organizations find and fix vulnerabilities before hackers do. Unlike traditional annual pentests or generic scanners, Novee deploys a hive-mind of AI agents trained on offensive security tradecraft to map environments, uncover exploit chains, and identify business logic flaws. It can begin with zero knowledge, mirroring how real attackers operate, then expand into deeper coverage. For every issue discovered, Novee validates the finding and delivers personalized, step-by-step remediation guidance.
Teleport
Booth S-3111 | Book a demo
Teleport is an infrastructure identity company that provides a unified platform for securing access across classic and AI infrastructure. Its platform consolidates identity for humans, machines, workloads, and AI agents using cryptographic identity and short-lived certificates, eliminating static credentials and standing privileges. Key capabilities include zero trust access, identity governance, privileged access management, machine and workload identity, and security for agentic AI and Model Context Protocol tooling. Teleport has raised over $169 million in funding, and is valued at $1.1 billion. Customers include Nasdaq, DoorDash, Accenture, Discord, and GitLab.
Unbound
Booth ESE-09
Unbound AI is a cybersecurity company that created the Agent Access Security Broker (AASB) category, a governance layer purpose-built for AI coding agents. Its platform helps enterprises discover every AI coding agent in use across their organization, including tools such as Cursor, Claude Code, GitHub Copilot, and Cline, assess their risk, and enforce granular policies over terminal commands, MCP server connections, and sensitive data flows. The platform processes over one million agent tool calls per month and deploys via MDM with no code changes required. Customers include THG Ingenuity, WeWork, Siemens, and Exterro.
12Port
Booth ESE-11
12Port is a cybersecurity company providing an agentless Privileged Access Management (PAM) platform for enterprises and managed service providers. Its platform secures, monitors, and audits privileged sessions across physical, virtual, and cloud environments without requiring software agents on target endpoints. Core capabilities include a credential vault with FIPS 140-3 validated encryption, automated credential rotation, just-in-time access controls, session recording, MFA enforcement, and AI-powered session intelligence that detects policy violations and anomalies in real time. The platform supports hybrid, multi-cloud, and air-gapped environments, integrating with Active Directory, Entra ID, SSO, SIEM tools, and cloud platforms.
Facts Only
RSAC 2026 will take place at the Moscone Center in San Francisco from March 23–26.
Apiiro is an application security company with offices in New York and Tel Aviv, offering an ASPM platform powered by Deep Code Analysis technology.
Apiiro has raised over $135 million in funding and serves clients like USAA, BlackRock, Shell, and TIAA.
Cline is an open-source AI coding agent with over 5 million installs and 60,000 GitHub stars, used by companies including Samsung, Microsoft, and Amazon.
GlobalSign by GMO, founded in 1996, is a Certificate Authority issuing SSL/TLS, S/MIME, and code signing certificates.
GlobalSign by GMO serves clients like Microsoft, Cisco, and Johnson & Johnson.
IDEMIA operates in over 180 countries, providing biometric and cryptographic solutions to governments and enterprises.
Mimecast focuses on managing human risk in cybersecurity with an AI-powered platform.
MyCISO offers a SaaS cybersecurity platform supporting over 65 frameworks for security posture management.
Novee provides AI-powered penetration testing with continuous simulation of cyberattacks.
Teleport is an infrastructure identity company valued at $1.1 billion, securing access for clients like Nasdaq and GitLab.
Unbound AI created the Agent Access Security Broker (AASB) category for governing AI coding agents.
12Port offers an agentless Privileged Access Management (PAM) platform with FIPS 140-3 validated encryption.
Executive Summary
The RSAC 2026 Conference, held at the Moscone Center in San Francisco from March 23–26, will feature hundreds of exhibitors showcasing cybersecurity innovations. Standout companies include Apiiro, which offers an AI-driven Application Security Posture Management (ASPM) platform recognized by Gartner and used by major enterprises like USAA and BlackRock. Cline, an open-source AI coding agent with over 5 million installs, integrates with major IDEs and AI providers, while GlobalSign by GMO provides digital identity solutions, including SSL/TLS certificates, to clients like Microsoft and Cisco. IDEMIA specializes in biometrics and cryptography for governments and enterprises, and Mimecast focuses on mitigating human risk in cybersecurity. MyCISO offers a unified SaaS platform for security posture management, and Novee provides AI-powered penetration testing. Teleport, valued at $1.1 billion, secures access across infrastructure, while Unbound AI governs AI coding agents. 12Port delivers agentless Privileged Access Management (PAM) solutions. These companies represent a mix of established leaders and emerging innovators addressing critical cybersecurity challenges.
The conference highlights a trend toward AI integration in security tools, with platforms like Cline, Novee, and Unbound AI leveraging AI for coding, penetration testing, and governance. Traditional security domains, such as identity management and privileged access, are also evolving with solutions like Teleport and 12Port. The diversity of exhibitors underscores the expanding scope of cybersecurity, from application security to human risk management and AI-driven automation.
Full Take
The strongest version of this narrative is that RSAC 2026 showcases a dynamic cybersecurity landscape where AI-driven innovation is reshaping traditional security paradigms. Companies like Apiiro, Cline, and Novee demonstrate how AI is being integrated into application security, coding, and penetration testing, while established players like IDEMIA and GlobalSign by GMO continue to provide foundational identity and certificate solutions. The inclusion of governance tools like Unbound AI and Teleport reflects a growing need to manage AI agents and infrastructure access securely. This narrative credits the industry for rapid adaptation to emerging threats and technologies, positioning RSAC as a hub for both cutting-edge and proven solutions.
Pattern scan: The article avoids overt manipulation but leans into authority games (ARC-0012) by highlighting investor backing, client rosters, and industry recognition (e.g., Gartner, IDC) to bolster credibility. There’s no emotional exploitation or distortion, but the framing subtly elevates AI-driven tools as the future of cybersecurity, which could reflect a broader industry push toward AI adoption. The absence of critical perspectives on AI risks or limitations in these tools is notable.
Root cause: The narrative assumes that technological innovation, particularly AI, is the primary driver of cybersecurity progress. This echoes the historical pattern of tech-driven solutionism, where new tools are positioned as silver bullets for complex problems. The focus on AI coding agents and penetration testing implies a paradigm shift toward automation, but it sidesteps questions about the reliability, bias, or unintended consequences of these systems.
Implications: For human agency, the rise of AI in cybersecurity could empower developers and security teams with faster, more scalable solutions—but it also risks centralizing control in the hands of those who design these tools. The beneficiaries are likely enterprises with resources to adopt these platforms, while smaller organizations may struggle with complexity or cost. Second-order consequences include potential over-reliance on AI, which could introduce new vulnerabilities or obscure accountability.
Bridge questions: What are the trade-offs between AI-driven automation and human oversight in cybersecurity? How might the emphasis on AI tools at RSAC reflect broader industry biases or market pressures? What perspectives from skeptics or critics of AI in security are missing here?
Counterstrike scan: If this were part of an influence campaign, the playbook would emphasize AI as an unstoppable force in cybersecurity, using investor validation and high-profile clients to create FOMO (fear of missing out) among potential adopters. The actual content aligns with this pattern but doesn’t cross into manipulation—it’s a straightforward industry showcase. No red flags detected.
Sentinel — Human
The article shows strong signs of human authorship, with natural variability in style, specific attributions, and no red flags for synthetic generation.