RSA Conference 2025 (RSAC) is one of the premier events in the cybersecurity industry, offering an inside look at the latest trends and innovations shaping the future of cybersecurity. As cyber threats grow in complexity, the importance of threat intelligence has never been clearer. Having the right intelligence is key to staying ahead.
At RSAC 2025, experts will showcase how threat intelligence can empower defenders to detect, and respond to threats more effectively. Here are five must-attend sessions that will sharpen your CTI skills and provide essential insights into threat intelligence.
1. Is Threat Intel Answering the Right Questions? – [BOF2-R02]
When: May 1 9:40–10:30 AM PDT | Where:Moscone West 2012
Are Indicators of Compromise (IOCs) enough on their own? Is attribution being given too much weight? Are defensive techniques receiving enough attention? In this engaging discussion, attendees will examine whether current threat intelligence practices are truly meeting the needs of defenders and share ideas on how to better address the evolving threat landscape.
Presented by Carlos Gonçalves, CTI Leader at Banco do Brasil, this session will feature insights from a seasoned cybersecurity expert with over a decade of experience. Carlos leads the Cyber Threat Intelligence team at a Fortune 500 company, with a career spanning red team operations, threat intelligence, and incident response.
🔗 Add to your RSAC 2025 schedule
2. Incident Response Dilemmas: Sharing Intel Across Sectors in Critical Times – [CIT-T02]
When: April 29 9:40 AM – 10:30 AM PDT | Where: Moscone West 2005
What happens when an incident isn’t just a localized event but one that threatens critical infrastructure with the potential for sector-wide impact? How can organizations effectively share information while adhering to regulatory standards during such high-stakes times? This session will explore the efforts of financial services, government agencies, and cloud service providers to improve incident response (IR) capabilities and navigate the challenges of cross-sector collaboration in moments of crisis.
This panel consists of extraordinary personnels like Todd Conklin, Chief AI Officer & Deputy Assistant Secretary at the U.S. Treasury, who leads the Treasury’s cyber portfolio under Deputy Secretary Adeyemo, along with Heather Hogsett, Senior Vice President and Deputy Head of BITS at the Bank Policy Institute, Ann Johnson, CVP & Deputy CISO of Microsoft’s Customer Security Management Office, and Erez Liebermann, Partner at Debevoise & Plimpton LLP, this session offers invaluable insights from top professionals in the field.
🔗 Add to your RSAC 2025 schedule
3.Transforming Security Oversight with Forward-Looking Intelligence – [PART3-T01]
When: Apr 298:30 AM – 9:20 AM PDT | Where: Moscone South Esplanade 155
Traditional board oversight of cybersecurity often relies on outdated metrics and maturity models, leaving critical blind spots that impede strategic planning and risk management in modern threat environment. In this session, you’ll discover how predictive intelligence and global threat insights can transform security reporting, enabling the use of actionable metrics that foster more strategic, forward-thinking security discussions at the board level.
Presented by Grant Bourzikas, Senior Vice President and Chief Security Officer at Cloudflare, who oversees the company’s threat intelligence services, and Fred Kneip, Head of Platform at Diligent, this session offers expert perspectives on how to modernize board-level security oversight with actionable, predictive intelligence.
🔗 Add to your RSAC 2025 schedule
4.Typhoons? Bears? Ransomware Gangs? Threats That Keep Defenders Up at Night – [PART1-R02]
When: May 19:40 AM – 10:30 AM PDT | Where: Moscone South Esplanade 153
Cyber threat actors are constantly innovating to bypass security products. From China’s Salt Typhoon targeting telecoms and Taiwan, to Russian threat actors ramping up operations in Ukraine and beyond, to Sandworm and Gamaredon relentlessly targeting Signal, these groups are always innovative.
Add to that malware and ransomware gangs bypassing EDR defenses, and the landscape becomes even more challenging for defenders. This session will explore the common tactics across these groups, how they innovate, and what defenders need to watch for.
Presented by Robert Lipovsky, Principal Threat Intelligence Researcher at ESET, with over 15 years of experience in cybersecurity. Robert has extensive expertise in targeted APTs and a regular speaker at major conferences like RSA Conference, Black Hat USA, and Virus Bulletin.
🔗 Add to your RSAC 2025 schedule
5. Thank You For Being a Friend: The Power of Ad Hoc Intel Sharing Groups – [ANI-R01]
When: Thursday, May 18:30 AM – 9:20 AM PDT | Where: Moscone West 3018
In cybersecurity, everyone needs help at some point, and everyone has something valuable to contribute—often through ad hoc intelligence sharing. From Signal and WhatsApp to Slack and Discord, there are hundreds of groups dedicated to this very purpose. In this session, a panel of respected security researchers will discuss the benefits of ad hoc intel sharing, how to engage with these groups responsibly, and how this collaborative approach can help keep everyone more secure.
This session will be led by a panel of respected experts, including Brett Callow, Managing Director at FTI Consulting; Jon DiMaggio, Chief Security Strategist at Analyst1; Azim Khodjibaev, Researcher at Cisco Talos; and Allan Liska, Ransomware Sommelier at Recorded Future. These professionals bring a wealth of experience to the discussion, sharing their insights into the power of ad hoc intelligence sharing in the cybersecurity community.
🔗 Add to your RSAC 2025 schedule
Mark your calendar, plan your RSAC 2025 schedule, and be ready to level up your threat intelligence skills.
See you at RSAC 2025!
Follow cybersecurity88 on X and LinkedIn for the latest cybersecurity news
