RSA Conference (commonly called RSAC) is the world’s largest annual cybersecurity event, bringing together tens of thousands of security professionals for keynotes, technical sessions, an expo floor, and networking. Held each spring at the Moscone Center in San Francisco, the conference has been running for 35 years and serves as the industry’s central gathering point for new research, product launches, and career development.
Who Attends and Why It Matters
In 2025, roughly 44,000 cybersecurity professionals attended RSAC. The crowd spans a wide range of roles: entry-level analysts, security engineers, CISOs, government officials, startup founders, and venture capitalists looking for the next big security company. Sessions range from cybersecurity fundamentals to high-level strategy discussions aimed at C-suite executives.
For many attendees, the conference functions as a combination of continuing education, product discovery, and professional networking. RSAC partners with organizations like ISC2, ISACA, and IAPP to offer Continuing Professional Education (CPE) credits, which are the ongoing learning hours many cybersecurity certifications require you to maintain. If you hold a CISSP, CISM, or similar credential, attending sessions can count toward your annual credit requirements.
What Happens at the Conference
The event is built around several pillars. Track sessions are the educational backbone: multi-day talks organized by topic, covering everything from cloud security and threat intelligence to privacy law and zero-trust architecture. Keynotes feature prominent figures from government, industry, and academia addressing the biggest issues facing cybersecurity that year.
The Expo is a massive vendor floor where hundreds of cybersecurity companies demo their products. This is where established firms announce new tools and startups try to get noticed. For security teams evaluating new software or services, walking the Expo floor offers a compressed way to compare dozens of vendors in a few hours.
Beyond the formal programming, RSAC includes dedicated spaces for informal interaction. The RSAC Sandbox area hosts interactive challenges and hands-on networking activities. Common areas throughout the Moscone Center are available for impromptu meetings, and loyalty program members get access to a private lounge.
The Innovation Sandbox Competition
One of the conference’s highest-profile events is the Innovation Sandbox, a startup pitch competition that has become a reliable signal for emerging cybersecurity companies. A panel of industry experts selects 10 finalists, each of whom gets three minutes on stage to pitch their product to judges and the audience.
To qualify, a company must be privately held with less than $5 million in annual revenue, and the product must have launched within the prior year. It also needs at least one paying customer. These constraints keep the competition focused on genuinely early-stage companies solving real problems rather than vaporware or well-funded later-stage firms.
The track record speaks for itself: since the contest began, the top 10 finalists have collectively attracted over $50.1 billion in investment and more than 100 acquisitions. Winning or even just making the finals often puts a startup on the radar of enterprise buyers and investors overnight.
RSAC 2026 Dates and Location
The 2026 conference runs March 23 through 26 at the Moscone Center in San Francisco. The event has been held at this venue for years, and the surrounding South of Market neighborhood fills with unofficial side events, vendor dinners, and meetups during conference week.
Pass Types and Pricing
RSAC uses a tiered pricing structure where passes get more expensive the closer you register to the event. Here’s what the 2026 options look like:
- All Access Pass: Covers all track sessions, keynotes, the Expo, and networking events. Ranges from $2,195 at the early bird rate to $2,995 if you register on-site.
- LoyaltyPlus Pass: A discounted tier for returning attendees who are part of the loyalty program. Ranges from $1,895 to $2,695.
- Government Pass: Priced the same as LoyaltyPlus ($1,895 to $2,695), designed for public-sector professionals.
- 1-Day Pass: Gives you a single day of access. Ranges from $1,250 to $1,705.
- Student/Faculty Pass: The most affordable full option, ranging from $725 to $950.
- Expo Pass: A flat $495 regardless of when you register. This only gets you onto the vendor floor, not into sessions or keynotes.
Early bird pricing for 2026 opened in October 2025 and closed in early December. The biggest jump happens between the discount window and the standard rate, so registering before late February saves several hundred dollars on most pass types. Many attendees have their employer cover the cost as a professional development expense.
Programs for Students and Newcomers
RSAC College Day is a free program that gives college students a chance to explore cybersecurity career paths, hear from established professionals, and network with leading companies. If you’re a student considering a career in security, this is one of the more accessible entry points to the industry’s biggest event. The student/faculty pass also makes the full conference more approachable for those still in school or teaching.
How RSAC Fits Into the Cybersecurity Industry
While other cybersecurity conferences exist (Black Hat and DEF CON focus more on technical research and hacking, for example), RSAC occupies a unique space as the industry’s business and strategy hub. It’s where vendors announce products, where enterprises scout solutions, where policy discussions happen alongside technical deep dives, and where hiring conversations start over coffee in the hallway. For cybersecurity professionals looking to stay current on both the technical and business sides of the field, it serves as an annual reset on where the industry is headed.