Cisco Ships DefenseClaw at RSAC 2026

Cisco announced a suite of AI agent security tools at RSAC 2026 in San Francisco, headlined by DefenseClaw โ€” an open-source framework that scans AI agents for vulnerabilities. The tool installs in about five minutes and is built on top of NVIDIA's OpenShell, an agent security project NVIDIA released the previous week.

From Access Control to Action Control

The core idea behind Cisco's approach is a shift in how enterprise security thinks about agents. Traditional zero trust architectures verify who is logging in; agents require governing what actions they can take. Tom Gillis, Cisco's SVP and GM for infrastructure and security, called the distinction a "big step forward" โ€” and said no equivalent capability currently exists in the market.

The new Zero Trust Access for AI agents, integrated into Cisco's Duo IAM, allows admins to register agents alongside the employees who use them, then define task-level permissions. An agent can be allowed to read a financial database but not modify it. Access can also be restricted to specific time windows โ€” for example, business hours only โ€” shrinking the attack surface further.

What Else Shipped

Alongside DefenseClaw, Cisco released AI Defense: Explorer Edition, a free self-service tier for developers to test model and application resilience. Splunk, which Cisco acquired in 2024, also received updates including an AI-assisted detection builder and automated breach remediation agents.

The announcements follow NVIDIA's OpenShell release last week, suggesting the enterprise security ecosystem is converging fast on agentic AI as the next major threat surface.