RSA Conference 2026 put AI-driven threats and the security blind spots of GPU-powered data centers at the center of industry debate, exposing security gaps that exposes security gaps in endpoint defense and AI factory architectures [1]. Vendors and CISOs face new pressure to rethink endpoint defense, reference architectures, and the role of certified security in AI factories. According to Futurum Group’s 2H 2025 Cybersecurity Decision Maker Survey (n=1,008), 62.1% agree AI-powered defensive tools are now a necessity, with 73.2% planning to increase cybersecurity budgets.
What is Covered in this Article
- AI factories and the emergence of GPU ‘blind spots’ in security monitoring
- Shift toward validated reference architectures for AI data centers
- Vendor certification races and risk of lockout
- Escalating enterprise demand for AI-powered defense and budget expansion
The News
RSA Conference 2026 spotlighted a growing security gap: traditional endpoint detection and response (EDR) tools monitor only CPU and OS activity, leaving GPUs—now the backbone of AI factories—largely invisible to security teams [1]. As organizations scale AI workloads, this GPU blind spot creates new attack surfaces that legacy tools can’t address. Security vendors are now racing to certify their solutions on NVIDIA’s reference architectures, such as BlueField DPUs, with those failing to adapt at risk of being locked out of the AI data center. Enterprises are shifting away from custom architectures, favoring validated reference designs such as NVIDIA Enterprise AI Factory and Cisco Secure AI Factory. According to Futurum Group’s 2H 2025 Cybersecurity Decision Maker Survey (n=1,008), 62.1% of organizations now see AI-powered defensive tools as essential, and 43% plan to expand their security vendor portfolios in the next year.
Analyst Take
RSA 2026 marks a structural turning point. The rise of AI factories and GPU-centric compute is forcing a rethink of security fundamentals. The market is shifting from fragmented, best-of-breed tools to certified, reference-architecture-aligned solutions.
GPU Blind Spots Exposes Security Gaps and Board-Level Risk
AI factories run on GPU clusters that traditional EDR tools can’t see. This isn’t just a technical oversight—it’s a board-level risk. Attackers are already probing these blind spots, and enterprises can’t afford to rely on CPU-centric monitoring. According to Futurum Group’s 2H 2025 Cybersecurity Decision Maker Survey (n=1,008), 62.0% of organizations have seen a significant increase in sophisticated AI-driven attacks. The gap between AI-powered offense and legacy defense is widening. CISOs must demand GPU-aware security or risk regulatory and operational fallout.
Reference Architectures Exposes Security Gaps in Vendor Survival
The era of custom security stacks is ending for AI data centers. Organizations are abandoning bespoke architectures in favor of validated reference designs such as NVIDIA Enterprise AI Factory and Cisco Secure AI Factory. This is more than vendor marketing—it’s a structural shift. Security vendors unable to certify on NVIDIA’s architectures risk being locked out of the fastest-growing segment of the data center market. The certification race is a forcing function, not a nice-to-have. Enterprises will increasingly select security partners based on their alignment with these reference architectures, not just feature checklists.
AI-Powered Defense Exposes Security Gaps and Is Now Table Stakes
The market is in a net-expansion phase, not consolidation. According to Futurum Group’s 2H 2025 Cybersecurity Decision Maker Survey (n=1,008), 43.0% of enterprises plan to increase their number of security vendors, while only 34.6% are consolidating. The driver isn’t compliance—it’s the need to modernize for AI-driven threats that exposes security gaps. AI-powered defense is now a baseline requirement. Vendors that can’t deliver credible AI-driven detection and response will be relegated to legacy status. The next 18 months will separate those who can secure AI factories from those who can’t, as the market increasingly demands solutions that exposes security gaps in traditional architectures.
What to Watch
- GPU Security Certification: Will major EDR vendors achieve NVIDIA BlueField DPU certification by year-end, or will new entrants define the category?
- Reference Architecture Lock-In: Will enterprises become overly dependent on NVIDIA and Cisco for both compute and security, risking vendor lockout?
- AI Factory Breach Fallout: When will the first high-profile breach exploiting a GPU blind spot force regulatory intervention?
- Budget Expansion Reality: Will the planned 73.2% increase in cybersecurity budgets actually materialize as AI-driven threats escalate?
Sources
1. RSA Conference 2026: News And Analysis
Declaration of generative AI and AI-assisted technologies in the writing process: This content has been generated with the support of artificial intelligence technologies. Due to the fast pace of content creation and the continuous evolution of data and information, The Futurum Group and its analysts strive to ensure the accuracy and factual integrity of the information presented. The Futurum Group makes no guarantees regarding the completeness, accuracy, or reliability of any information contained herein. Readers are encouraged to verify facts independently and consult relevant sources for further clarification.
Disclosure: Futurum is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.
Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of Futurum as a whole.
Read the full Futurum Group Disclosure.
Author Information
FuturumAI
This content is written by a commercial general-purpose language model (LLM) along with the Futurum Intelligence Platform, and has not been curated or reviewed by editors. Due to the inherent limitations in using AI tools, please consider the probability of error. The accuracy, completeness, or timeliness of this content cannot be guaranteed. It is generated on the date indicated at the top of the page, based on the content available, and it may be automatically updated as new content becomes available. The content does not consider any other information or perform any independent analysis.
