- Friday Tech News
- Posts
- Friday Tech News
Friday Tech News
RSAC 2025, Insights, Trends, & Updates in Enterprise Technology | 05.09.2025
Phil Moroni
May 09, 2025
Good morning and welcome to another edition of Friday Tech News! I hope you’ve had a wonderful week.
I know, I know. I’m behind on this - again. It’s insane doing this FYI in case you didn’t know that lol. But I’m glad I waited to drop everything that happened at RSA last week and the fallout after this week until now so you can fully digest. For more reading and comments, feel free to reply to this email.
Needless to say - absolutely monster weeks in Tech with huge amounts of funding, and big innovations and releases from major and pure play providers.
A quick note on RSA themes I saw from the articles I read:
Agentic AI Governance
AI in general
Identity
Rebranding of traditional players to AI “native” players
It’s interesting right? AI is very hyped up. Everyone is rushing to incorporate either an Agentic orchestrated Agent workflow (still need a better term for this than workflow) or have some part of their product do something with AI. Here’s a breakdown of the below and what you’re about to read:
Total # of Announcements Reported On Total AI Related Announcements Total Identity Related Announcements Total Other/Blended | RSAC 2025 31 24 4 3 |
Thoughts I had from what I read:
Where’s my Wiz related announcements, innovations, and cool things to come from them and Google?
Where were Hyperscalers (AWS, GCP, and Azure) in this whole thing?
Funding was explosive - see Mike’s newsletter for more on that
Newer Identity and AppSec players have strong funding and presence with innovations, but everyone is tackling their respective challenges in a different way.
Follow up week we’re just straight back to AI and GenAI talk and announcements.
I appreciate you bearing with me as I got through the work weeks, the AMAZING amount of alerts and news articles I read, and just general chaotic life with a 4.5 year old and 1.5 year old.
Thanks, and stay physically and digitally safe this weekend and always!
Phil
OEM News & Updates 📰 | RSAC 2025
Agent Gateway is an open source data plane optimized for agentic AI connectivity. It provides security, observability, and governance for agent-to-agent and agent-to-tool communication
Agent Mesh integrates Agent Gateway into the AI connectivity plane, enabling seamless security, discovery, and governance across all agent interactions regardless of deployment context.
Supports A2A and MCP to ensure interoperability with various LLMs and agent frameworks.
Semperis | Semperis debuts Ready1 platform
Semperis is launching Ready1, a new enterprise resilience platform designed to streamline cyber crisis management by improving coordination, speed, and structure in response efforts.
It addresses gaps in cyber readiness by providing a centralized command center with secure communications, live dashboards, incident documentation, and role based task tracking even during infra outages. cool stuff.
The platform includes automation and testing features like built-in playbook automation, tabletop testing, and after action reviews.
OneTrust | OneTrust unveils new features and updates
OneTrust unveiled new AI innovations aimed at transforming privacy management, helping orgs use data and AI responsibly.
New AI Agents (of course) automate privacy processes, including breach response and risk assessment, reducing the time required for compliance and governance tasks.
AI-assisted workflows enhance risk analysis using document scanning and inventory analysis to minimize work in assessments.
Aqua Security | Aqua Security Launches Free Runtime Risk Tool for Containers
Free runtime assessment tool from Aqua allows you to detect and manage security threats in containerized environments using real production data.
The CSRA as it’s called provides deep visibility leveraging telemetry data and behavioral detection to prioritize and respond to risks without disrupting development work.
Aimed at addressing growing number of cloud native threats out there.
CrowdStrike | CRWD unveils AI Agents
CrowdStrike introduced Charlotte AI, a new AI-driven cybersecurity platform that autonomously investigates, reasons, and responds to threats within expert-defined guardrails.
Charlotte AI enhances security operations, integrating intelligent automation with human expertise to accelerate detection, investigation, and response across the AI-native SOC.
The AI-native CrowdStrike Falcon platform now features autonomous reasoning, allowing it to draw conclusions and take action without human prompts.
They’re also optimizing their workforce with a 500 person RIF.
NetSkope | NetSkope adds DSPM to their portfolio
NetSkope now has DSPM features to enhance control over AI related data.
The platform addresses risks associated with AI helping orgs prevent data leakage into LLMs.
netSKope One enables policy driven AI governance.
Wallarm | Wallarm debuts Agentic AI
Wallarm introduced Agentic AI Protection, a security solution designed to protect AI agents from emerging threats like prompt injection, jailbreaks, and logic manipulation.
The platform actively monitors and blocks attacks, using behavioral and semantic analysis to detect suspicious patterns in AI interactions before they compromise systems.
Agentic AI Protection integrates with Wallarm’s API Security Platform, providing automated discovery, AI-powered analysis, and real-time defense against adversarial input.
Netwrix expanded its 1Secure SaaS platform, introducing advanced data and identity security solutions with AI-powered risk remediation.
The new Data Security Posture Management (DSPM) solution enhances security for Microsoft 365 environments by identifying and eliminating data exposures.
AI-assisted risk assessments and remediation workflows help organizations quickly detect and resolve security risks across Active Directory, Entra ID, and Microsoft 365.
PANW | PANW Introduces Prisma AIRS
Palo Alto Networks introduced Prisma AIRS, a comprehensive AI security platform designed to protect AI applications, agents, models, and data across enterprises.
Prisma AIRS offers advanced security features, including AI model scanning, posture management, AI red teaming, runtime security, and AI agent protection.
The platform enhances AI security visibility, helping organizations detect vulnerabilities, prevent attacks, and ensure safe AI deployment.
Reach Security | Reach Security Introduces MastermindAI
Reach Security introduced MastermindAI, an AI-powered platform designed to identify and fix hidden security risks by leveraging precise reasoning models and domain-specific language models.
MastermindAI enhances security posture management, helping organizations uncover misconfigurations, prioritize actions, guide remediation, and continuously validate security controls.
The platform also supports AI governance, ensuring safe use of generative AI tools like ChatGPT and Copilot by enforcing security policies without hindering innovation.
Sonrai Security | Sonrai unveils AI Powered Just In Time Access for AWS
Sonrai Security launched AI-powered Just-in-Time (JIT) Access for AWS, eliminating standing privileges while maintaining operational agility through seamless integration with Amazon Bedrock.
JIT Access enables temporary, on-demand permissions, ensuring users gain access only when needed and for as long as necessary, aligned with zero-trust principles.
AI-generated session summaries provide instant clarity, allowing teams to audit privileged user activities without manual log reviews, enhancing security and compliance.
Cisco unveiled new AI-driven security innovations at RSAC 2025, focusing on addressing the growing complexity of AI-related threats and improving enterprise security.
Key advancements include enhanced TD&R with Cisco XDR and Splunk Security integrating AI-powered features like Instant Attack Verification and automated forensics.
Cisco also introduced AI governance tools and supply chain risk management, partnering with ServiceNow and launching open-source security models to strengthen AI security across industries.
SnapLogic launched its next-generation API management (APIM) solution, designed to accelerate enterprises' transition to a composable and agentic architecture.
The new APIM solution enhances security, governance, and scalability, featuring a customizable API marketplace, an innovative Policy Studio, and seamless integration with SnapLogic’s AgentCreator.
SnapLogic’s APIM simplifies API lifecycle management, reducing complexity, improving automation, and enabling enterprises to monetize APIs while maintaining security and compliance.
BeyondTrust launched a free Identity Security Risk Assessment, designed to help organizations uncover hidden identity vulnerabilities and manage security risks more effectively.
The assessment provides rapid insights, connecting to identity landscapes like Active Directory, Entra ID, and cloud platforms within an hour and delivering findings within 24 hours.
AI-powered analysis identifies high-risk identities and privilege escalation paths, enabling organizations to take informed security actions without the costs typically associated with such services.
Sumo Logic | Sumo Logic Unveils New AI Driven Features
Sumo Logic unveiled new AI-driven security capabilities, enhancing threat detection, automation, and intelligence to help organizations proactively defend against modern cyber threats.
Key innovations include multiple threat intelligence feeds, UEBA historical baselining, and AI-driven insight summaries, improving detection accuracy, reducing alert fatigue, and accelerating response times.
Detection-as-Code (this is a new one) integrates security and DevOps workflows, allowing teams to manage detection rules in development environments like GitHub while syncing directly with live security operations.
Oasis Security launched Oasis NHI Provisioning, an automated solution for creating, governing, and securing non-human identities (NHIs) from their inception.
The platform integrates with multi-cloud environments, ensuring NHIs are secure by design, with policy-driven governance, ownership, and least-privilege access.
Oasis NHI Provisioning eliminates manual workflows, reducing security risks while maintaining developer flexibility and improving identity lifecycle management.
IBM launched Autonomous Threat Operations Machine (ATOM), an agentic AI system designed to automate threat triage, investigation, and remediation with minimal human intervention.
ATOM enhances IBM’s managed detection and response services, using AI-driven orchestration to improve threat detection, risk analysis, and security operations.
IBM also introduced X-Force Predictive Threat Intelligence (PTI), leveraging industry-specific AI models to generate predictive threat insights and reduce manual threat hunting efforts.
Okta | Okta Launches Auth for GenAI
Okta launched Auth for GenAI, a new identity security solution within the Auth0 Platform, enabling developers to integrate secure authentication into AI applications.
The announcement aligns with growing concerns over AI security, emphasizing Okta’s commitment to enhancing user protection and data privacy.
Okta’s stock surged 11.81% following the news, reflecting investor confidence in its AI-driven security strategy despite broader tech market fluctuations. Interesting to see the confidence in this player.
Aqua Security | Aqua unveils secure AI for protecting workloads from C2C
Aqua Security introduced Secure AI, a full-lifecycle security solution designed to protect AI workloads from development to production, ensuring deep visibility, governance, and real-time threat protection.
The platform addresses emerging AI security risks, including prompt injection, insecure output handling, and unauthorized AI model use, as attacks on AI workloads have surged 400%.
Secure AI integrates runtime detection and governance, offering AI code scanning, cloud service security posture management, and AI-specific threat defense aligned with OWASP Top 10 for LLMs.
Cisco | Cisco Launches OSS AI Model
Cisco launched an open source AI model for cybersecurity, designed to enhance security operations by automating threat investigation, alert validation, and containment recommendations.
The model is optimized for efficiency, running on just one or two NVIDIA A100 GPUs, making it more accessible compared to larger general-purpose AI models.
Cisco aims to foster collaboration in cybersecurity, open sourcing the model via Hugging Face to help security teams collectively defend against increasingly sophisticated cyber threats.
FrontEgg | FrontEgg launches Frontegg.ai - The First Identity Management Platform for AI Agent Builders
Frontegg launched Frontegg.ai, the first identity management platform designed specifically for AI agent builders, enabling secure authentication and authorization.
The platform addresses identity challenges in AI development, providing multi-tenant onboarding, secure integrations, and enterprise-grade security controls for AI agents.
Frontegg.ai streamlines AI agent deployment, allowing developers to scaffold a fully wired identity layer in minutes, reducing complexity and improving scalability.
Akamai | Akamai Launches Firewall for AI
Akamai launched Firewall for AI, a security solution designed to protect AI applications, large language models (LLMs), and generative AI (GenAI) APIs from emerging cyber threats.
The firewall detects and blocks threats in real time, addressing vulnerabilities like model extraction, API abuse, and prompt injection while ensuring safe AI deployment.
Akamai also introduced API LLM Discovery, a feature that automatically detects and classifies GenAI and LLM endpoints, helping enterprises continuously update security policies.
Varonis | Varonis Enhances TD&R with Agentic AI
Varonis introduced agentic AI to enhance its Managed Data Detection and Response (MDDR) offering, enabling autonomous threat triage, investigation, and containment before escalating incidents to human analysts.
The AI agents improve security efficiency, correlating log data, identifying known threat actors, and reducing noise, allowing analysts to focus on complex security challenges.
Varonis MDDR now provides 24x7 AI-assisted data security, leveraging machine learning to continuously refine detection and response capabilities based on historical incidents and analyst feedback.
Is this new AI based 24×7 good enough or do we still need humans on call?
Rapid7 introduced Unified Threat-Informed Remediation, enhancing its Command Platform with AI-powered automation to streamline exposure management and threat response.
The platform integrates vulnerability management across ecosystems, consolidating risk signals from third-party tools and automating remediation workflows for improved efficiency.
New features include Active Remediation with Velociraptor and AI-powered triage, enabling proactive threat containment and reducing manual investigation time for security teams.
BigID launched AI Data Lineage, a solution that provides organizations with visibility into how AI models access, process, and utilize data.
The platform enhances AI governance and compliance, helping enterprises track sensitive data usage, mitigate risks, and align with regulations like GDPR and CCPA.
Key features include AI inventory, data source mapping, and flow visualization, enabling organizations to audit AI interactions and ensure responsible AI deployment.
Salt | Salt releases their MCP
Salt Security launched the Salt Model Context Protocol (MCP) Server, enabling AI agents to discover, understand, and analyze API behavior with contextual awareness and enterprise-grade precision.
The MCP Server enhances API security and usability, offering features like contextual API search, API explainer, posture gap analysis, and AI-driven remediation guidance.
The solution creates a personalized AI experience, allowing security teams to interact with their API infrastructure using natural language while improving security posture.
Torii introduced Torii Eko, an agentic SaaS Management Platform, integrating AI-powered execution to enhance software management efficiency.
The platform includes three intelligent agents—Eko Assist, Eko Insight, and Eko Act, designed to provide real-time guidance, actionable insights, and automated execution for software governance.
Torii Eko tackles software complexity and compliance risks, embedding proactive intelligence to cut costs, minimize risks, and accelerate ROI for enterprises.
Amazon launched Nova Premier, its most capable AI model yet, available through Amazon Bedrock, designed for complex tasks requiring deep contextual understanding and multi-step execution.
Nova Premier features a 1-million-token context length, allowing it to analyze around 750,000 words at once, but it lags behind competitors like Google’s Gemini 2.5 Pro in coding and math benchmarks.
Amazon positions Nova Premier as ideal for AI model distillation, enabling smaller models to inherit its capabilities for specific use cases while maintaining efficiency.
Yurts rebranded as Legion Intelligence, reflecting its evolution from an AI sandbox into a secure agent-orchestration platform for mission-critical work in defense, government, and enterprise sectors.
Legion Intelligence specializes in coordinating AI agents, enabling them to plan, reason, and act alongside human leaders while maintaining security and governance.
The company has secured $58 million in funding, supporting large-scale deployments across the U.S. Department of Defense and Fortune 500 enterprises, with cost savings of up to 60% in defense environments.
Bigeye launched bigAI, a patent-pending AI tool, designed to help enterprise data teams resolve issues faster with real-time, secure, and actionable insights.
bigAI transforms raw incident data into clear summaries, enabling teams to respond quickly, communicate effectively, and build more resilient data pipelines.
The AI-driven solution integrates with Amazon Bedrock, ensuring enterprise-grade security while reducing mean time to resolution (MTTR) and preventing recurring data issues.
Upwind launched CNAPP 2.0, a major upgrade to its Cloud-Native Application Protection Platform, introducing runtime-powered security posture management.
The new platform integrates live production data into posture analysis, allowing security teams to prioritize risks based on real-world exposure rather than theoretical vulnerabilities.
Upwind’s enhancements include AI-driven threat detection and custom posture rules, helping organizations move beyond compliance toward actionable, risk-informed decision-making.
OEM News & Updates 📰 | 05.05.2025
Coralogix | Coralogix Launches Advanced Continuous Profiling
Coralogix launched Continuous Profiling, an advanced capability that provides real-time visibility into application performance without requiring code changes or impacting production.
The solution leverages eBPF and OpenTelemetry, enabling kernel-level monitoring with less than 1% overhead, helping developers pinpoint bottlenecks and optimize performance.
Continuous Profiling integrates with Coralogix’s observability platform, allowing teams to correlate profiling data with logs and metrics for faster issue resolution and cost efficiency.
Hugging Face released Open Computer Agent, a free AI tool capable of autonomously completing web-based tasks using a Linux virtual machine and Mozilla Firefox.
The AI agent is powered by the Qwen2-VL-72B model, enabling it to analyze on-screen elements, interact with websites like Google Maps, and execute multi-step workflows.
While the tool is accessible to everyone, early testers report slow performance and occasional errors, particularly when handling complex prompts or high-demand tasks.
ServiceNow introduced Core Business Suite, an AI-powered solution designed to streamline core business processes across HR, procurement, finance, facilities, and legal.
The suite integrates AI-driven workflows, eliminating manual work and improving efficiency by connecting employees, suppliers, systems, and data in one unified platform.
A new Finance Case Management solution automates case management requests, reducing back-office workload and accelerating business transformation for organizations of all sizes.
ServiceNow launched autonomous AI agents for security and risk management, designed to improve consistency, identify insights, and reduce response times for enterprises.
The AI agents integrate with Microsoft and Cisco technologies, accelerating the shift from reactive cybersecurity defense to autonomous resilience.
ServiceNow’s AI-driven security solutions automate vulnerability responses, helping organizations streamline compliance and incident resolution in real time.
IBM launched new AI tools at its Think 2025 conference, aimed at helping businesses scale AI agents and improve interoperability between AI systems.
The updates include enhancements to IBM’s WatsonX platform, a new Linux system optimized for AI workloads, and an Agent Catalog featuring over 150 pre-built AI agents.
IBM’s CEO emphasized a shift from AI experimentation to business-ready deployments, addressing concerns that only 25% of AI initiatives have met expected ROI due to siloed technologies. IBM is full bore AI now.
Articles I Liked The Last 2 Weeks 💡
A third of global CIOs believe their boards have unrealistic expectations about AI’s impact on business performance. While 87% of business leaders see AI as critical for fulfilling priorities in the next year, many organizations struggle with poor infrastructure and geopolitical “things” that are happening.
This disconnect between expectations and operational readiness highlights the need for strategic investments in IT infrastructure to support AI at scale and ensure long-term, secure success.
Adweek | OpenAi Rolls out AI powered Shopping
Total Telecom | Exabeam Research Uncovers AI Disconnect Between Security Leaders and Security Practitioners
AI adoption in cybersecurity is creating a disconnect between executives and frontline analysts. While 71% of executives believe AI has significantly improved productivity, only 22% of analysts agree. This gap highlights operational challenges such as false positives, alert fatigue, and the ongoing need for human oversight. Organizations must bridge this divide by aligning AI capabilities with real-world security needs, ensuring AI enhances efficiency rather than adding complexity.
Vibe coding is redefining software development by shifting the focus from manual coding to AI-assisted creativity. Instead of writing every line of code, developers now guide AI agents through prompts, allowing for rapid iteration and experimentation. This approach democratizes coding, enabling non-technical users to build applications while experienced developers accelerate workflows. However, as AI-generated code becomes more prevalent, maintaining security, quality, and governance will be critical challenges for enterprises adopting this method.
TechCrunch | Amazon is working on an AI code gen tool
See? AI Assisted coding is highly impactful and here to stay IMO. Will we see a movement of companies who label their SBOM’s with “Only 5% of this code is generated by AI”?
Mark my words: Vibe coding is the new “organic food label” if you will for software - just like food packaging tells you if it’s farm-raised, grass-fed, or GMO-free, soon devs and security practitioners will demand: ‘Was this code human-crafted or AI-grown?’
Daily Record | Microsoft Discontinuing Password Storage confuses users
Microsoft is discontinuing the password storage feature in its Authenticator app by August 2025, frustrating many users who relied on it for secure password management. Instead, Microsoft is shifting users to Edge browser’s password manager, ensuring continued access to saved credentials. While the Authenticator app will still support passkeys and two-factor authentication, critics argue that removing the password storage feature limits user choice and complicates security workflows
Tech Funding & M&A 💸
Reducto | Reducto lands $24.5M Series A
Lightrun | Lightrun raises $70M Series B
LayerX | LayerX raises $11M Series A
PANW | PANW buys ProtectAI
NetFoundry | NetFoundry raises $12M
Veza | Veza raises $108M Series D
Upwind | Upwind buys Nyx
Cast AI | Cast raises $108M Series C
Persona | Persona raises $200M Series D
Manifest | Manifest raises $15M Series A
Doppel | Doppel raises $35M Series B
StackOne | StackOne raises $20M Series A
AnySphere | Cursor makers nab $900M Equity Round
OpenAI | OpenAI to buy Windsurf for $3B
more vibe coding
How are they going to support other LLM makers? Will they play nice?
Statsig | Statsig raises $100M Series C
Requestly | BrowserStack buys Requestly
Sentry | Sentry acquires Emerge Tools
Data.World | ServiceNow acquires Data.World
Memes and Pics of the week 🤣
Recommendations 👉🏻
|
|
Thank you so much for making this a part of your Friday morning coffee time. I'm Phil Moroni, and I'm an Account Executive in the Information Technology industry here with another edition of Friday Tech News!
What is this? This is a newsletter that provides updates and insights on the latest trends and developments in the technology industry. I am a professional who specializes in supporting IT leaders in evaluating, investing, and managing people, processes, and technology tools that support their businesses.
Each week, I summarize relevant industry updates from popular Original Equipment Manufacturers (OEM's), software publishers, and managed providers. The goal of my research and newsletter is to keep you informed about current trends and events that may impact your business from a trusted and reputable source. It's just information I'm sharing, and I follow and work with hundreds of partners in the industry, keeping track of their growth, changes, and evolution so that you don't have to.
Bottom Line: As you focus on improving your business through digital initiatives, my commitment is to keep you informed of the fast-paced changes and trends taking place so that you can plan ahead and stay ahead of the game.
Key areas of focus for me are:
Cloud Computing, Security, Trends
Developer & Security Tools
Networking & Infrastructure Tools
End User Tools & Workspace Tech
Emerging Technologies and Future Concepts
If you have any questions, would like information about any specific vendors I follow, or would like to have a conversation about any topic that is challenging you, I invite you to engage with me! I value feedback immensely and would love to know what you find valuable about this newsletter so feel free to reach out!
Thank you for reading and stay digitally and physically safe!
Phil
Reply