RSA Conference 2025 Recap: Agentic AI Hype, MCP Risks & Cybersecurity's Future
AI Security Podcast9 Touko 2025

RSA Conference 2025 Recap: Agentic AI Hype, MCP Risks & Cybersecurity's Future

Caleb and Ashish cut through the Agentic AI hype, expose real MCP (Multi-Cloud Platform) risks, and discuss the future of AI in cybersecurity. If you're trying to understand what really happened at RSA and what it means for the industry, you would want to hear this.

In this episode, Caleb Sima and Ashish Rajan dissect the biggest themes from RSA, including:

  • Agentic AI Unpacked: What is Agentic AI really, beyond the marketing buzz?
  • MCP & A2A Deployment Dangers: MCPs are exploding, but how do you deploy them safely across an enterprise without slowing down business?
  • AI & Identity/Access Management: The complexities AI introduces to identity, authenticity, and authorization.
  • RSA Innovation Sandbox Insights
  • Getting Noticed at RSA: What marketing strategies actually work to capture attention from CISOs and executives at a massive conference like RSA?
  • The Current State of AI Security Knowledge


Questions asked:

(00:00) Introduction

(02:44) RSA's Big Theme: The Rise of Agentic AI

(09:07) Defining Agentic AI: Beyond Basic Automation

(12:56) AI Agents vs. API Calls: Clarifying the Confusion

(17:54) AI Terms Explained: Inference vs. User Inference

(21:18) MCP Deployment Dangers: Identifying Real Enterprise Risks

(25:59) Managing MCP Risk: Practical Steps for CISOs

(29:13) MCP Architecture: Understanding Server vs. Client Risks

(32:18) AI's Impact on Browser Security: The New OS?

(36:03) AI & Access Management: The Identity & Authorization Challenge

(47:48) RSA Innovation Sandbox 2025: Top Startups & Winner Insights

(51:40) Marketing That Cuts Through: How to REALLY Get Noticed at RSA

Jaksot(51)

The Zero-Click AI Hack: How to Contain the Blast Radius of Autonomous Agents

The Zero-Click AI Hack: How to Contain the Blast Radius of Autonomous Agents

Is an AI agent's identity a workload or an action? Ashish spoke to Elie Bursztein, Distinguished Research Scientist and co-author of Google SAIF (Secure AI Framework) about how it is neither and that ...

29 Huhti 47min

Buy vs. Build AI Security: Why [Box.com](http://Box.com) CISO is Creating their Own Agentic SOC

Buy vs. Build AI Security: Why [Box.com](http://Box.com) CISO is Creating their Own Agentic SOC

If your AI solution is just helping humans process the same amount of alerts a little faster, you haven't transformed anything, you've just created a faster hamster wheel.In this episode, Ashish and C...

22 Huhti 46min

Anthropic's Project Mythos: Why the "Zero-Day Machine" is Terrifying the Security Industry

Anthropic's Project Mythos: Why the "Zero-Day Machine" is Terrifying the Security Industry

In this episode, Ashish and Caleb discuss the internet-breaking preview of Project Mythos, an unreleased AI model from Anthropic that has shown an unprecedented, terrifying ability to reason through c...

18 Huhti 1h 3min

Are AI Security Startups Faking It? How to Separate Signal from Noise

Are AI Security Startups Faking It? How to Separate Signal from Noise

With over 70 startups claiming to have built the perfect "AI SOC Analyst" or "AI Threat Hunter," how do you separate the real products from the vaporware? Recorded live at Decibel RSAC Founder Festiva...

15 Huhti 47min

How Lovable Manages 100+ Daily Changes, Vibe Coding & Shadow AI

How Lovable Manages 100+ Daily Changes, Vibe Coding & Shadow AI

What does it actually look like to run security inside one of Europe's fastest-growing AI companies? In this episode, recorded live at the Munich Cybersecurity Conference (MCSC), Ashish Rajan sat down...

2 Huhti 57min

Questions Every CISO Must Ask AI Security Vendors

Questions Every CISO Must Ask AI Security Vendors

RSA Conference 2026 is here and the AI agent hype machine is louder than ever. In this episode, Ashish and Caleb cut through the noise and arm CISOs, practitioners, and security teams with a clear-eye...

18 Maalis 50min

Will Foundation Models Kill Security Startups?

Will Foundation Models Kill Security Startups?

Did Anthropic just kill the AppSec industry? Following the announcement of Claude Code Security, a tool that finds, reasons about, and fixes code vulnerabilities, major security stocks dropped by 8% ....

5 Maalis 59min

How to Build Your Own AI Chief of Staff with Claude Code

How to Build Your Own AI Chief of Staff with Claude Code

What if you could automate your entire work life with a personal AI Chief of Staff? In this episode, Caleb Sima reveals "Pepper," his custom-built AI agent to Ashish that manages emails, schedules mee...

11 Helmi 47min