Trusted forum for confidential collaboration since 2003
Overview
For over 20 years, the RSAC™ Executive Security Action Forum (ESAF) has been a trusted forum for Fortune 1000 security executives. Led by a program committee, the community shares information at confidential sessions throughout the year and at the annual meeting at RSAC™ Conference, enabling security leaders at some of the world’s largest enterprises to collaborate and find actionable solutions to common challenges.
Sessions
RSAC™ ESAF information sharing sessions are invitation-only and closed-door, enabling candid discussion among peers. The selection of topics and speakers is entirely member driven.
Membership
ESAF members are a select group of the most senior information security and risk executives responsible for protecting information for the world’s largest enterprises. Membership is by referral.
Research
We are sharing some hard-earned wisdom with the broader cybersecurity community through the “CISO Perspectives” series of reports and blogs. The aim is to help all organizations improve the management of cyber risks.
“I’ve be going to ESAF for 15 years. It continues to deliver. As CISOs, we’re unbelievably busy but it’s worth it to spend time at ESAF sessions.”
“It’s not often you get a place like this where you can really talk to other CISOs. Getting exposure to people that I want in my network. Super amount of value.”
“Superb content with excellent insights into the different ways organizations are trying to solve problems.”
Research Reports
How Top CISOs Are Transforming Third-Party Risk Management
Traditional third-party risk management in information security is ineffective. What are leading CISOs doing instead?
This report covers pioneering initiatives at six Fortune 1000 companies in a range of industries. Use their ideas to accelerate your own efforts to transform third-party risk management.
What Top CISOs Include in Updates for the Board
CISOs from the ESAF community consider reporting to the board as one of the most important aspects of their job.
This report takes a deep-dive view, analyzing the content of actual board presentations contributed by ESAF members and includes examples of content, dashboards, charts, and visuals.
How Top CISOs Are Navigating the Risks and Opportunities of GenAI
Recently, GenAI has been one of the most intensely-discussed topics in the RSAC™ ESAF community. In this report, we share anonymized highlights of those conversations and insights from RSAC’s Fortune 1000 GenAI survey.
Use this report to unlock early strategies to deploy GenAI safely across the business, to build better defenses with GenAI, and to confront GenAI-enabled threats.
RSAC™ 2025 ESAF Sponsors
Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 733,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. We are uniquely able to deliver tangible outcomes because of our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song. These capabilities, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.
ExtraHop empowers enterprises to stay ahead of evolving threats with the most comprehensive approach to network detection and response (NDR).
Uniquely combining NDR, network performance management (NPM), intrusion detection (IDS), and packet forensics in a single, integrated console, ExtraHop helps organizations extract the most in-depth insights from their network in real-time for complete visibility and unparalleled context. With a powerful all-in-one sensor, the ExtraHop RevealXTM platform enhances SOC productivity, reduces overhead, and elevates security postures.
The Forescout cybersecurity platform provides complete asset intelligence and control across IT, OT, and IoT environments. For more than 20 years, Fortune 100 organizations, government agencies, and large enterprises have trusted Forescout as their foundation to manage cyber risk, ensure compliance, and mitigate threats. With seamless context sharing and workflow orchestration across more than 100 full-featured security and IT product integrations, Forescout makes every cybersecurity investment more effective.
Proofpoint, Inc. is a leading cybersecurity and compliance company that protects organizations’ greatest assets and biggest risks: their people. With an integrated suite of cloud-based solutions, Proofpoint helps companies around the world stop targeted threats, safeguard their data, and make their users more resilient against cyber attacks.
SentinelOne (NYSE:S) is the world’s most advanced, autonomous AI-powered cybersecurity platform. Built on the first unified Data Lake, SentinelOne empowers the world to run securely by creating intelligent, data-driven systems that think for themselves, stay ahead of complexity and risk, and evolve on their own. Leading enterprises around the world trust SentinelOne to Secure Tomorrow™.