RSA Conference 2026: The most expensive networking event in cybersecurity. Is it worth it?

We went to RSA Conference 2026 as part of a trade mission, half out of curiosity and half because someone convinced us it was worth the flight. What we found was a week that was bigger, louder, and more expensive than we had anticipated and at the same time, surprisingly manageable in ways we hadn’t expected. If you’re considering going next year, whether as a visitor, an exhibitor, or somewhere in between, here’s what you actually need to know.

This article is an honest account of what the conference looks like from the floor, what a booth actually costs (guestimate), how the messaging across the event felt, and where we think the real value sits. We hope it saves you some time, some money, and maybe a few uncomfortable conversations about ROI.

What to expect from the conference itself

RSA Conference is held in San Francisco’s Moscone Center and spans two main halls, North and South. Both are large, but don’t let that intimidate you: unlike Mobile World Congress in Barcelona, where you can easily spend half an hour walking from one end to the other, RSA is surprisingly compact. You can get from one far corner of the hall to the other in five to ten minutes. If you’re planning your schedule, don’t over-allocate time for just walking the floor. In a single day, you can realistically cover the entire exhibition.

What you will underestimate, however, is everything happening outside the official conference venue. The week before the show even opened, the city was already plastered with advertising: taxis wrapped in vendor messaging, billboards, and outdoor activations on seemingly every corner. And then there are the side events. Through platforms like Luma, you can find ten to twenty satellite events per day running alongside the main conference, from invite-only dinners to open networking drinks. Depending on your job title and the company you represent, access to some of these events is selective, but many are more accessible than they appear. The sheer volume of activity outside the Moscone Center is something that genuinely surprised us and, frankly, is where a lot of the real networking happens.

The real cost of exhibiting

If you’ve been walking the floor and eyeing the enormous, polished stands in the central hall, you’ve probably already sensed that this doesn’t come cheap. Based on pricing data from RSA Conference (note: figures are from 2020 and will have increased with inflation), a 9×9 metre stand, so 81 square metres, starts at around $126,000. And that’s just the floor space. Add a low-to-mid-range branding setup and you’re looking at an additional $40,000 to $80,000 on top. Factor in staff, travel, accommodation, and giveaways, and it becomes very easy to see how total spend for a major exhibitor tips well past $300,000.

For smaller companies or startups, there are dedicated sections with more modest stand options. A 3×3 metre space in the startup area runs closer to $14,000, still not trivial, but a very different conversation. The trade-off is visible: the branding in those sections was noticeably simpler, and some stands were little more than a backdrop and a table. 

The important thing, though, for innovation you don’t go to the main area. So for buyers looking for innovative, emerging solutions, those startup sections are arguably where the most interesting conversations happen. Several founders we spoke to confirmed that the profile of visitors in those areas tends to be more intentional and more curious than the foot traffic that wanders through the big brand territory.

Where to be on the floor, and where not to bother

The central areas of the exhibition are dominated by the major players: Wiz, Crowdstrike, Cisco, Splunk and their peers. Their stands are full of screens, presenters with microphones, staff with coin-based giveaway systems, and an overwhelming amount of simultaneous activity. Standing next to the Wiz stand, for example, the word that comes to mind is “overwhelming”: everyone wants something from you, and it’s hard to have a meaningful conversation in that environment. That said, for pure brand awareness among a cybersecurity audience, the presence of these stands is undeniably impactful.

What’s worth noting is that presence at RSA isn’t limited to the exhibition floor. Microsoft, for instance, reportedly hired out several floors of a nearby hotel and used the conference week to bring their existing relationships into that space, with a comparatively modest stand on the floor serving more as a signpost than a sales environment. That approach says a lot about how the more sophisticated players are thinking about the event: the conference is the occasion everyone of importance in cybersecurity and their mothers gathers in San Francisco, not the venue.

How well are the presentations attended?

RSA Conference also has a full programme of talks and sessions, and on paper, getting a speaking slot sounds like a compelling way to generate visibility. In practice, the picture is more nuanced. The no-show rate at RSA is notoriously high, and it makes sense when you consider that attendees are simultaneously being pulled in a dozen different directions by side events, meetings, and impromptu hallway conversations. People sign up for sessions and then simply don’t show up because something better came along.

That doesn’t mean presentations are worthless, but it does mean you should think carefully about whether they justify the investment. If you can bring your own audience, meaning you actively invite relevant contacts to attend your session, the format can work well. If you’re relying on organic walk-in traffic to fill a room, the results are likely to be disappointing. An expo pass also doesn’t give you access to the main session tracks, which means a significant portion of the conference content is gated behind a higher ticket tier.

Side events: where the real networking happens

If there’s one thing we’d tell every first-timer, it’s this: plan your side events as carefully as you plan your time on the floor, if not more carefully. The satellite ecosystem around RSA is enormous, and the quality varies wildly. We attended an afterparty hosted by a major vendor that was so overcrowded it was genuinely unpleasant. We left, walked around the block, and stumbled into an unmarked VIP event we hadn’t registered for and ended up having some of the best conversations of the week.

The lesson isn’t just “go to smaller events.” It’s that the entire week in San Francisco is the event, and RSA Conference is the anchor that brings everyone to the same city at the same time. One investor we met put it well: he wasn’t there primarily for RSA itself, but because every European contact he wanted to meet happened to be in San Francisco that week. That framing completely changes how you should approach your planning. Block out time for the floor, yes, but fill the rest of your calendar with targeted one-on-ones and smaller gatherings where conversations can actually go somewhere.

Booth messaging: everyone’s shouting, nobody’s saying anything

This is perhaps the most striking observation from the entire week. Walk the floor at RSA 2026 and you will see an almost identical message repeated stand after stand: AI-powered, agentic, automated. The three dominant product categories on the floor were AI security tools, application security (AppSec), and identity and access management, and within each of those categories, the messaging was largely indistinguishable. Phrases like “discover and protect sensitive data” or “cloud and on-premise” were everywhere, attached to stands that cost hundreds of thousands of dollars, telling you almost nothing about what the company actually does differently.

The irony is that while every brand is trying to stand out visually, with elaborate theming, dramatic staging, and expensive giveaways, the actual product messaging has converged into a kind of monoculture. The stands that genuinely stuck in our memory were the ones that committed to a clear, specific identity. Aikido Security, a Belgian company, had a full Matrix theme: a Neo lookalike in a leather coat, Matrix-branded polarised sunglasses as giveaways, and a slogan that, while vague on product detail, was at least consistently and boldly itself. 

Then there were also a castle with a dragon (entirely unclear what they do) and a vinyl record shop (still don’t know what they do but looked amazing). I, for sure, was still talking about these stands at the end of the day but I’m unable to tell you the name of the companies, or what they do. I’m not sure to what extend they stood out to others. 

Should you go? Our verdict

The trade mission that brought us to RSA Conference was, without question, worth it. Travelling alongside dozens of companies and government representatives, including visits to places like Stanford University that you simply wouldn’t get access to independently, created a depth of connection that a standard conference trip can’t replicate. And it wasn’t just the Dutch delegation: European companies from several other countries joined trade missions of their own, which made for a rich mix of perspectives on the floor and at side events. For European cybersecurity companies that want to explore the US market, understand how others are succeeding there, or simply build relationships with defence and government stakeholders, a trade mission is a clear yes.

RSA Conference itself is more nuanced. As a standalone destination, it’s hard to justify the cost unless you’re a large brand with the budget to do it properly or a startup in the right section looking for early customer conversations. For mid-sized European companies, the smarter play is probably to use the fact that everyone is in San Francisco that week as a reason to stack your calendar with targeted meetings and treat the expo floor as context rather than the main event. The conference is the occasion. Make sure you plan accordingly.