SAN FRANCISCO

AI Agent Security Summit

Security in the Agentic Era Starts in San Francsico

Last October's AI Agent Security Summit was the largest one to date - This May, it returned to San Francisco at a watershed moment in the AI revolution. The agentic attack surface has changed rapidly in a frighteningly short time span; the emergent risks of shadow AI, frameworks like the OWASP Top 10 for Agentic Applications, or the adoption of new open-source tools like OpenClaw have shifted the conversation. See the content from the Commonwealth Club on May 27 to catch up on what's new, what's noise, and what's next.

With participation from

What's Changed in 2026

Developments in agent adoption in the last six months have fundamentally changed the conversation around purpose-built security.

Autonomous Security

Emergent tools like Anthropic's Claude Mythos and OpenAI's GPT-5.5 have made traditional vulnerability management roles more operational. Security practitioners and decision-makers are forced to re-think how their teams will take ownership moving forward.

Democratized Agents

Wide spread adoption of open source programs like ClawHub allow attackers to prey on the same tools and connectors that make agents so useful. With skills becoming more useful to developers by the day, MCP servers have continued to manifest as a predominant attack surface

Security Shared Ownership

When AI mandates come from company leadership, deployment starts in development teams, and agents start using identities and permissions of internal employees, the security responsibility no longer belongs to the SOC alone. Security leaders have to take ownership over the success and potential risk introduced by enterprise AI

Explore the Sessions

See What's Next

Want to take the next steps towards holistic AI security in your organization? Join our June 15 webinar to learn:

• Why agents are where enterprise AI gets put into action, and how it becomes consequential when security isn’t purposefully considered

• Where siloed model, identity, endpoint, and application security practices fall short when preventing or remediating the ephemeral and changing attack surfaces agents pose

• Why frameworks like the OWASP Top 10 for Agentic Applications have become relevant, and how to put them into practice

• How “secure-by-design” comes up short in practice, and how to make it a reality

Why Should You Attend?

If you work at the intersection of AI Agents and security this content is for you:

Stay ahead of the conversation – Enterprise agentic development is moving at breakneck pace. Our community aims to navigate the adoption journey smoothly and securely.
Network with experts – Connect with security leaders from disruptive startups to established enterprises and hyperscalers.
Contribute your voice – Share your experience and perspective to guide peers during a critical moment in the agentic era.