editorially independent. We may make money when you click on links
to our partners.
Learn More
Several U.S. federal cybersecurity agencies have withdrawn from the upcoming RSA Conference, prompting discussion about the impact on public–private collaboration and critical infrastructure defense.
Security Boulevard reports that CISA, the FBI, and the NSA will not participate in this year’s event.
The Role of RSAC in Public–Private Cybersecurity Collaboration
RSAC is regarded as one of the largest cybersecurity conferences globally and has historically served as a key forum for engagement between government agencies, private-sector security teams, vendors, and researchers.
Federal agencies have long used the conference to share threat intelligence, discuss investigation workflows, and encourage collaboration on cyber defense initiatives.
Leadership Change and Agency Withdrawal
The agencies’ withdrawal appears to follow the recent appointment of Jen Easterly as Chief Executive Officer of RSAC.
Easterly previously served as director of CISA and has held leadership roles in both the public and private sectors.
While agencies have not publicly explained their decision, industry commentary on social media has linked the withdrawal to Jen Easterly’s appointment and her prior government roles.
Changes to RSAC Sessions
With the withdrawal, several RSAC sessions have been canceled.
The removed sessions covered joint government–industry operations, nation-state threat activity, and working with law enforcement during incident response.
The absence of these sessions is notable given their focus on operational coordination rather than vendor promotion or product messaging.
Historically, such discussions have been viewed as opportunities for practitioners to better understand how federal agencies investigate cyber incidents and how organizations can prepare for and respond to major breaches.
Agency Discretion and Broader Policy Questions
From a policy perspective, federal agencies are under no obligation to attend or participate in private-sector conferences.
Decisions regarding conference participation fall within agency discretion and can be influenced by resource constraints, policy considerations, or strategic priorities.
However, the situation has raised broader questions within the cybersecurity community about the potential impact of political dynamics on information sharing and collaboration.
The Importance of Government–Industry Engagement
Public–private cooperation is regarded as a cornerstone of U.S. cyber defense strategy, particularly for sectors designated as critical infrastructure.
Agencies such as CISA, the FBI, and the NSA play central roles in threat intelligence dissemination, incident response coordination, and national-level cyber defense planning.
Industry events like RSAC have traditionally provided informal venues for relationship-building and knowledge exchange that complement formal information-sharing programs.
Security professionals have noted that collaboration at conferences often extends beyond scheduled presentations.
Informal conversations at large conferences often build trust and clarify expectations in ways formal channels cannot.
Political Dynamics and Cybersecurity Governance
The withdrawal also highlights a recurring tension in cybersecurity governance: the degree to which political considerations influence technical collaboration.
Cybersecurity operates at the intersection of national security, economic stability, and public safety, making it sensitive to changes in leadership, policy direction, and institutional relationships.
What Comes Next
At the same time, the cybersecurity ecosystem has shown resilience in adapting to changing circumstances.
Industry groups, information sharing and analysis centers (ISACs), and independent research organizations continue to provide alternative venues for collaboration and dialogue.
RSAC organizers have not indicated that the conference itself will scale back its overall programming, and private-sector participation remains strong.
Looking ahead, the situation raises an important question for the broader security community.
How can critical infrastructure cybersecurity efforts remain insulated from political friction while preserving transparency, accountability, and public trust?
As cyber threats continue to evolve, maintaining consistent channels for cooperation — regardless of leadership changes or political context — remains a shared challenge for both government and industry.
Whether federal agencies resume participation in RSAC in future years remains to be seen.
The episode highlights the need to examine how governance decisions affect operational cybersecurity collaboration in a complex threat environment.
