Human vs AI: Debates Shape RSAC 2026 Cybersecurity Trends

The 2026 RSA Conference highlighted a watershed moment for artificial intelligence in cybersecurity. Vendors are no longer offering AI as a peripheral add‑on; they are positioning agentic AI platforms as potential replacements for entire security‑operations centers. This shift reflects a broader industry belief that AI can process massive data streams faster than human analysts, promising quicker detection and response. However, the hype is tempered by skepticism from senior security leaders who question whether these systems can operate reliably at scale without human oversight.

A central theme of the conference was the debate over the "human‑in‑the‑loop" versus "human‑on‑the‑loop" models. Vodafone’s global CISO Emma Smith argued that as threat actors adopt increasingly sophisticated AI tools, organizations must let AI take the lead, reserving human intervention for critical decisions. Proponents of this approach cite efficiency gains and the ability to counter rapid, automated attacks. Critics warn that over‑reliance on AI could introduce blind spots, especially when models encounter novel threats or biased data, underscoring the need for a balanced governance framework.

Beyond AI, the threat landscape is evolving. Attackers are intensifying supply‑chain assaults on open‑source platforms like npm, embedding stealthy info‑stealers that compromise both developers and downstream users. Meanwhile, ransomware groups are shifting focus from encryption extortion to data exfiltration, as improved backups and incident response reduce the profitability of ransom payments. These trends signal that while AI promises powerful defenses, organizations must also reinforce traditional security hygiene and supply‑chain vetting to mitigate emerging risks.