20 Coolest New Cybersecurity Products At RSAC 2025
At the RSA Conference 2025 this week, vendors are showcasing new tools utilizing AI for powering security operations and protecting networks, email and cloud environments.
Big RSAC Product Announcements
The RSA Conference has continued to reflect—and advance—the use of AI for cybersecurity this year with a wide array of announcements from major vendors targeting new ways of using LLMs and machine learning to protect against cyberattacks. Meanwhile, many top cybersecurity industry players have been debuting products to protect the adoption of AI within organizations, in unveiling new cybersecurity products at RSAC 2025.
[Related: 10 Hot Cybersecurity Tools Announced At RSAC 2025]
RSAC 2025 kicked off Monday with a number of cybersecurity product moves by top companies including Palo Alto Networks, CrowdStrike and Netskope.
Then on Tuesday, major product announcements debuted from vendors including SentinelOne and Akamai Technologies. Meanwhile, numerous vendors such as Cyera, Proofpoint and Orca Security announced major new updates just ahead of RSAC 2025.
CRN is on hand at RSAC 2025 and following the product announcements as they come out, and we’ve collected the details on 20 cybersecurity products at the conference that have grabbed our attention.
Key categories for the RSAC 2025 product announcements so far have included new tools utilizing AI for powering security operations while protecting networks, email and cloud environments. Products featuring new approaches to data security and application security have been other top themes of the announcements
What follows are 20 of the coolest new cybersecurity products being showcased at RSAC 2025.
SentinelOne Purple AI Athena
At RSAC 2025 Tuesday, SentinelOne unveiled enhancements to its AI-powered security capabilities with the debut of its next version of its Purple AI technology. The new release, Purple AI Athena, includes agentic AI functionality that can “mirror the deep security reasoning and sophisticated orchestration of advanced SOC analysts,” the company said in a news release. Key capabilities include the intelligent execution of “full investigations” into suspicious activity spanning multiple sources as well as orchestration of multiple steps in responses and rapid threat remediation, SentinelOne said. Other enhancements include “full-loop remediation and response” using hyperautomation technology and “seamless” integration with third-party data sources, the company said.
Cyera Omni DLP
A top player in the red-hot space of data security posture management (DSPM), Cyera launched its biggest expansion yet into offering data loss prevention (DLP) just ahead of RSAC 2025. Last week, Cyera debuted its Omni DLP offering that provides unified, adaptive data security across all environments and tools. The platform brings together Cyera’s DSPM technology with real-time DLP analysis via its acquisition last year of Trail Security. Key capabilities include significant reduction in false positive alerts, automated detection within an organization’s data, prevention of exfiltration and “deep” AI governance. Crucially, the offering provides a comprehensive view by bringing “all your endpoint, network, email, messaging and cloud DLP risks, alerts and policies in a single view,” the company said in a news release.
Akamai Firewall for AI
Akamai Technologies debuted its latest protections for AI-powered applications Tuesday with the launch of its Firewall for AI, providing “multilayered” defense against attacks and abuse targeting AI apps. The protections can block inputs by adversaries as well as unauthorized queries and data scraping on a large scale, Akamai said. Other key capabilities include real-time detection of AI threats, alignment with compliance requirements and “flexible” deployment options, according to the company.
Proofpoint Prime Threat Protection
Just ahead of RSAC 2025, Proofpoint debuted its new Prime Threat Protection platform unifying a number of formerly separate capabilities for threat defense. Those include multistage attack protection and defense against multichannel attacks using the company’s Nexus AI technology as well as impersonation protection and “risk-based” guidance and education for employees, the company said. The Prime Threat Protection platform is also prepared for the arrival of agents with an architecture that is “ready to support agentic AI,” the company said in a news release.
Palo Alto Networks Cortex XSIAM 3.0
Palo Alto Networks said Monday that it’s debuting the next version of its XSIAM (extended security intelligence and automation management) platform, which aims to offer an AI-powered alternative to traditional SIEM. Major updates in Cortex XSIAM 3.0 include the introduction of “advanced” email security, with capabilities for detecting sophisticated phishing and other email-based threats—including those enhanced using LLMs. The email security capabilities also provide automated removal of malicious emails and disabling of compromised accounts, Palo Alto Networks said. Other key introductions for XSIAM 3.0 include Cortex Exposure Management, which can “cut vulnerability noise by up to 99 percent” using prioritization along with automated remediation, the company said.
Blackpoint Cyber CompassOne
Blackpoint Cyber unveiled what it’s calling a “unified security posture and response” offering Monday at RSAC with the launch of its new CompassOne platform. In an interview with CRN, Blackpoint Cyber founder and CEO Jon Murchison said the platform builds on the company’s MSP-focused managed detection and response (MDR) offering, with new features for security posture rating and cloud posture along with revamped capabilities for existing tools. One net-new capability that Blackpoint Cyber will introduce with CompassOne is its security posture rating system, Murchison said. The letter-grade rating system will assess an organization using key cybersecurity frameworks and will demonstrate the organization’s progress over time on achieving security maturity and compliance, according to Blackpoint.
Netskope DSPM Expansion
Netskope said Monday that it has enhanced its data security posture management (DSPM) offering with several new capabilities, including functionality that can enable safe training of LLMs. The new Support Safe Training capability prevents data that is sensitive or regulated from being unintentionally fed into LLMs, while other updates include improved assessment for the risk connected to various activities related to AI, according to the company. Other DSPM enhancements on the Netskope One platform include improved AI governance through automation for policy detection and enforcement—with a focus on determining which data is eligible to be leveraged by AI based upon source, classification or usage context, the company said.
CrowdStrike Agentic AI Tools
In connection with RSAC 2025 Monday, CrowdStrike introduced two new agentic AI tools for its Charlotte AI platform, with the launch of Charlotte AI Agentic Response and Charlotte AI Agentic Workflows. Charlotte AI Agentic Response can boost security operations productivity through providing automated answers to questions that an analyst often would pose during an investigation—leading to faster analysis of root causes, mapping of lateral movement and guidance for the analyst’s next actions, CrowdStrike said. Meanwhile, Charlotte AI Agentic Workflows provides drag-and-drop workflows—leveraging LLMs—that provide analysts with a way to easily embed AI reasoning within automated playbooks in Falcon Fusion SOAR, according to the company.
Huntress ITDR Enhancements
Huntress debuted an enhanced version of its Managed Identity Threat Detection and Response (ITDR) offering that features updates such as its new “rogue apps” capability. The feature provides proactive protection against threats to OAuth applications that are installed in Microsoft 365 environments, the company said. Other new capabilities in Huntress’ Managed ITDR include “unwanted access” that detects and shuts down compromised identities, as well as “shadow workflows” that monitors inbox and email forwarding rules to detect malicious rules, according to the vendor.
Orca Security Reachability Analysis
Just before RSAC, Orca Security debuted what it’s calling the “industry’s first” agentless static reachability analysis for workloads in production. The “patent-pending” technology enables developers and security professionals to “identify exploitable vulnerabilities that are reachable by attackers,” the company said in a news release. The analysis can pinpoint components that are vulnerable in third-party software libraries—as well as in custom code—that are “potentially reachable,” Orca said.
Silverfort Non-Human Identity Expansion
Identity security firm Silverfort announced at RSAC that it has expanded the capabilities of its non-human identity (NHI) security offering to incorporate cloud-based identities. This includes NHIs in cloud identity providers, cloud infrastructure and SaaS, and leverages Silverfort’s acquisition in November of Rezonate. The expansion provides “unified coverage for human identities and NHIs” as well as capabilities for “complete” discovery and classification of NHIs, the company said in a news release.
Axonius Exposures
Just ahead of RSAC 2025, cyber asset management vendor Axonius announced the debut of its new Exposures offering, targeted at unifying security findings with asset intelligence as well as business context. Key capabilities in Exposures include risk analysis and automation as well as remediation, the company said in a news release. The ultimate result of this combination makes Exposures capable of “eliminating risk silos and enabling teams to prioritize, remediate and track vulnerabilities with precision and automation,” Axonius said.
Semperis Ready1
Identity security vendor Semperis unveiled its newest offering, Ready1, at RSAC in a bid to assist organizations with a better-coordinated approach to incident response. The platform brings together “stakeholders, coordinators and technical teams under one secure platform”—ensuring “seamless crisis response,” the company said in a news release. Key functionality includes a secure command center featuring live dashboards and automated playbooks; enablement of real-time coordination between teams as well as external partners; and integrated communications, task-tracking and documentation tools, according to Semperis.
1Password Extended Access Management Expansion
Just ahead of RSAC, 1Password unveiled an expansion of its capabilities for Extended Access Management including with the launch of 1Password Access Governance for gaining “full visibility and control over SaaS apps,” the company said in a news release. Other new capabilities include extended device compliance, “one-click access” to business applications—including managed and unmanaged apps—and a new unified administration hub, the vendor said.
Apiiro Software Graph Visualization
Application security vendor Apiiro debuted its newest offering Monday at RSAC, Software Graph Visualization, that serves as an interactive map for visualizing an organization’s software architectures. The map can provide visualization of architectures spanning all components and vulnerabilities as well as “toxic combinations, blast radius, data exposure and material changes in real time,” the company said in a news release. The Software Graph Visualization offering replaces static and manual reports to enable easier comprehension of rapidly changing software architectures for security teams, according to Apiiro.
Snyk API & Web
Just ahead of RSAC, developer security platform provider Snyk unveiled its next-generation offering in dynamic application security testing (DAST) with the debut of Snyk API & Web. The offering—which utilizes technology from the company’s Probely acquisition in November—offers new features including AI-driven API testing, using both GenAI and traditional AI/ML to “expand Snyk's coverage of critical aspects in OWASP’s Top 10 API Security Risks,” the company said in a news release. Other key capabilities include correlation of dynamic and static analysis for “code-informed” dynamic testing, Snyk said.
Rubrik Identity Resilience
Rubrik debuted its newest product, Identity Resilience, just before RSAC 2025 as the company looks to move into providing identity security to complement its core data security offerings. Identity Resilience provides defense against attacks targeting both human and non-human identities (NHIs), the company said. Key capabilities include hybrid protection for Microsoft’s Active Directory and Entra ID systems and “comprehensive” risk analysis for human identities and NHIs, as well as comprehensive context across identities and data, Rubrik said.
Endor Labs: Agentic AI for AppSec
Just ahead of RSAC, Endor Labs unveiled an expansion of its application security platform with the debut of capabilities leveraging agentic AI. The new functionality includes AI security code review—utilizing multiple AI agents to review “every pull request for architectural changes that impact your security posture,” the startup said in a news release. Other updates include the launch of AI code security in real time with the addition of MCP Plugin for Cursor, which can scan code while it’s being written and flag risks to developers, Endor Labs said.
Rapid7 MDR for Enterprise
Rapid7 debuted its newest offering, Managed Detection and Response (MDR) for Enterprise, just ahead of RSAC 2025 as the company looks to expand its work with large enterprises. The fully managed and customizable MDR service combines Rapid7’s “deep” visibility across devices and environments with “custom coverage that is specially tailored to each enterprise’s unique environment,” the company said in a news release. Other key capabilities include custom integration of event sources and customized detections as well as tailored threat monitoring, Rapid7 said.
Illumio Insights
This month, Illumio debuted its cloud detection and response offering, Illumio Insights, which is “powered entirely by an AI security graph,” the company said in a news release. The offering provides the ability to protect all workloads and resources across multi-cloud and hybrid environments, while providing AI-driven observability into traffic and connections, Illumio said. The result is that Illumio Insights can provide accelerated deployment—thanks to its agentless approach—as well as significant reductions in detection times and rapid containment, the company said.
