RSAC Conference | San Francisco, CA | March 23-26, 2026 | Theme: Power of Community

RSAC 2026 Conference in San Francisco drew nearly 44,000 cybersecurity leaders and practitioners, making it the ideal venue for OASIS Open and the Coalition for Secure AI (CoSAI) to connect with companies shaping security standards and engage prospective sponsors and members. Our team led sessions on AI security governance, MCP threat mitigation, and enterprise AI risk, and hosted exclusive CoSAI events with sponsors EY and Anthropic to advance conversations around the future of secure AI.

The OASIS team, Holly Petersen and Kelly Cullinane, at the RSAC booth.

OASIS Booth

The OASIS booth was a dynamic gathering place throughout the week, bringing members together in person and creating opportunities to connect with the broader community. The customized LEGO minifigures added a memorable, interactive element that drew attendees in and gave our team the opportunity to engage face-to-face. These interactions led to meaningful discussions about global open standards and the impact of OASIS members' work, resulting in 400+ follow-up contacts and new connections across the community.

Information on OASIS Open Projects and Technical Committees

Our CoSAI LEGO Minifigs were a hit!

Visitors stopped by to discuss our initiatives.

OASIS and CoSAI Speaker Sessions
Select Recordings are available via RSAC On demand (Requires pass)

Inside AI Governance: Early Patterns from Security, Risk, and IT Leaders

Pablo Breuer, OASIS Board of Directors

Pablo Breuer, PhD, delivered one of the conference's standout sessions to a packed room: AI's productivity promise is real, but premature deployment without proper safeguards generates setbacks, not results. Security isn't a barrier to AI success — it's the foundation of it.

Securing MCP: Mitigating New Threats in Agentic AI Deployments

Sarah Novotny, Kelver.co, and Jason Clinton, Anthropic

Sarah Novotny and Jason Clinton's CoSAI Model Context Protocol (MCP) security talk drew a packed room and a waitlist, as they made complex security concepts accessible through real-world examples and memorable analogies. Audience engagement was exceptionally high, with a Q&A that ran well over time — a strong signal of continued interest in CoSAI's work in this space.

Want to go deeper? CoSAI's MCP white paper covers all 12 threat categories, recommended mitigations, and deployment-specific guidance for teams building or integrating MCP servers today. The slide deck from this session is available here.

OASIS CoSAI: Addressing What's Next in Securing Enterprise AI

J.R. Rao, IBM, and Akila Srinivasan, Anthropic

Led by Akila Srinivasan, Anthropic, and J.R. Rao, IBM, the session struck a strong balance between broad appeal and practical depth, anchored by three real-world case studies demonstrating how CoSAI's guidance can strengthen security posture and provide actionable takeaways. The session's impressive attendance and engagement positioned CoSAI prominently, highlighting the coalition's leadership and influence.

CoSAI Events

CoSAI Breakfast Panel Hosted by Anthropic | Tuesday, March 25, 2026
Collaboration in AI Security: Two Years of CoSAI in Action

Anthropic graciously hosted this breakfast panel, which brought together practitioners and leaders across the AI security landscape. Using the "Future of Agentic Security" paper as a launchpad, the panel built its conversation around a two-year CoSAI retrospective and a forward look at the field's most pressing challenges. The event drew 70+ attendees, notably 37.5% of which came from outside CoSAI sponsoring organizations, a meaningful sign of growing interest and awareness across the broader AI security community.

Moderated by Morgan Bjerke (Thomson Reuters), the discussion featured panelists Nidhi Aggarwal (HackerOne), Jason Clinton (Anthropic), Matt Saner (AWS), and Omar Santos (Cisco).

The panel also discussed:

Risk management in hybrid human/non-human agent environments
Limits of traditional identity controls (least privilege, RBAC, separation of duties) when applied to AI
Evolving data protection and DLP needs in an AI context
Governance of AI-operated functions at scale — illustrated with an agent "swarming" scenario

The panel closed with a candid look at open challenges still facing the industry and how CoSAI is positioning to address them. A huge thank you to Anthropic for generously hosting, to our panelists for delivering such a rich and substantive conversation, and to everyone who joined us — your engagement and turnout made this event truly special!

CoSAI Luncheon Hosted by EY | Wednesday, March 26, 2026
Signed. Verified. Trusted. Rethinking Trust for AI Systems at Runtime

Thank you to EY, a Premier Sponsor of CoSAI, for hosting, and to Sarah Liang, EY's CoSAI PGB representative, for convening such a thoughtful gathering. The intimate group of AI security leaders had a candid, experience-based conversation on the state of AI security and the road ahead.

The discussion explored where AI security practices stand today and where they need to go — grounded in a core theme that as trust is established for individual AI components, it must extend across the full runtime ecosystem where behavior is shaped dynamically.

CoSAI's recommendations provided a practical framework for that conversation, and reflected the kind of cross-industry dialogue CoSAI was built to foster — bringing diverse perspectives to the table as AI security challenges continue to evolve.

CoSAI Members Only: View More Photos [here]

Social Media Highlights

OASIS Open and CoSAI maintained an active presence on LinkedIn throughout RSAC, sharing real-time updates, session highlights, and key takeaways that kept the broader community engaged well beyond the room. The conversation extended across our partner ecosystem, with member organizations adding their own perspectives which were amplified through our channels.

Want to stay in the conversation? Follow OASIS and CoSAI on LinkedIn for the latest news and updates.

The OASIS team at Booth N-5157, connecting with the security community.

Pablo Breuer, Ph.D., sharing highlights from the CoSAI panel at Anthropic.

HackerOne shared highlights from the CoSAI breakfast at Anthropic, where their Chief Product Officer, Nidhi Aggarwal, joined fellow security leaders as a panelist to discuss secure AI.

Matt Saner, AWS, at the CoSAI panelist breakfast at Anthropic, reflecting on the growing momentum of the AI security community.

Sarah Liang, EY, OASIS Board Member, CoSAI PGB, hosting the CoSAI luncheon at the EY office, bringing together leaders working to shape the future of AI security.

Missed us at RSAC?
Contact us for more information [join@oasis-open.org]

Stay connected

Page updated

Report abuse

OASIS Booth

OASIS and CoSAI Speaker SessionsSelect Recordings are available via RSAC On demand (Requires pass)