Trusted forum for confidential collaboration since 2003
Overview
For over 20 years, the RSAC™ Executive Security Action Forum (ESAF) has been a trusted forum for Fortune 1000 security executives. Led by a program committee, the community shares information at confidential sessions throughout the year and at the annual meeting at RSAC™ Conference, enabling security leaders at some of the world’s largest enterprises to collaborate and find actionable solutions to common challenges.
Membership
ESAF members are a select group of information security and risk executives from the world’s largest enterprises. Membership is by referral or nomination.
Qualifications:
- VP or C-level executive such as Chief Information Security Officer, Chief Security Officer, Chief Trust Officer
- Global or Fortune 1000 organization (or equivalent)
Sessions
RSAC™ ESAF information sharing sessions are invitation-only and closed-door, enabling candid discussion among peers. The selection of topics and speakers is entirely member driven.
Research
We are sharing some hard-earned wisdom with the broader cybersecurity community through the “CISO Perspectives” series of reports and blogs. The aim is to help all organizations improve the management of cyber risks.
Research Reports
How Top CISOs Are Transforming Third-Party Risk Management
Traditional third-party risk management in information security is ineffective. What are leading CISOs doing instead? This report covers pioneering initiatives at six Fortune 1000 companies in a range of industries.
What Top CISOs Include in Updates for the Board
CISOs from the ESAF community consider reporting to the board as one of the most important aspects of their job. This report takes a deep-dive view, analyzing the content of actual board presentations contributed by ESAF members.
How Top CISOs Are Navigating the Risks and Opportunities of GenAI
Recently, GenAI has been one of the most intensely-discussed topics in the RSAC ESAF community. In this report, we share anonymized highlights of those conversations and insights from RSAC’s Fortune 1000 GenAI survey.
Straight From the Source: What People Are Saying About the Program
“Quality of presentations in terms of relevance to audience, actionable takeaways, opportunity to interact and depth of discussion was the best I've come across at a CISO gathering. I look forward to using the polling insights as I go back to my organization. This was very much a great value for the time / money invested to travel here.”
“My first time -- this was outstanding. Best security 'conference' I have attended. Really great discussions and valuable insights.”
"Hands down the best forum/event I have attended in years. The dialogue, attendees, opportunities for networking, and overall structure was spot on. I can't wait for next year!”
RSAC ESAF Program Committee 2026
Tim Callahan
Senior Vice President, Chief Information Officer and Global Chief Information Security Officer
Aflac
RSAC ESAF 2026 Sponsors
Accenture is a leading solutions and global professional services company that helps the world’s leading enterprises reinvent by building their digital core and unleashing the power of AI to create value at speed across the enterprise, bringing together the talent of our approximately 779,000 people, our proprietary assets and platforms, and deep ecosystem relationships. Our strategy is to be the reinvention partner of choice for our clients and to be the most AI-enabled, client-focused, great place to work in the world. Through our Reinvention Services we bring together our capabilities across strategy, consulting, technology, operations, Song and Industry X with our deep industry expertise to create and deliver solutions and services for our clients. Our purpose is to deliver on the promise of technology and human ingenuity, and we measure our success by the 360° value we create for all our stakeholders.
Darktrace is a global leader in AI for cybersecurity that keeps organizations ahead of the changing threat landscape every day. Founded in 2013 in Cambridge, UK, Darktrace provides the essential cybersecurity platform to protect organizations from unknown threats using AI that learns from each business in real-time. Darktrace’s platform and services are supported by 2,300 employees who protect nearly 10,000 customers globally.
ExtraHop is the cybersecurity partner enterprises trust to reveal cyber risk and build business resilience. The ExtraHop Reveal(x) platform is the only network detection and response solution that instantly delivers the unparalleled visibility and decryption capabilities needed to expose the hidden cyber risks and network performance issues that other tools can’t see. When organizations have full network transparency with ExtraHop, they can investigate smarter, stop threats faster, and move at the speed of risk.
Proofpoint, Inc. is a global leader in human- and agent-centric cybersecurity, protecting how people, data, and AI connect across email, cloud, and collaboration tools. Trusted by over 80 of the Fortune 100, Proofpoint helps organizations of all sizes stop threats, prevent data loss, and embrace AI securely and confidently.
Redflags pairs on-device behavioural telemetry with intelligent, preemptive nudges at the point of decision. Turning points of risk into learning moments and building secure habits without disrupting work. Lightweight to deploy and fast to value, Redflags is backed by behavioural science, repeatedly proving operational risk reduction with measurable results.
Redflags now has a diverse client base, working with organisations like global Telcos, maritime transport, financial services and public sector institutions to deliver meaningful behaviour change.