The RSAC Conference 2025 has come and gone, but the impact of this year’s discussions on telecom security is sure to last. From groundbreaking insights to the latest trends, one thing became abundantly clear—AI is no longer just a buzzword. It’s the future of telecom security, and it’s happening right now.

Agentic AI: The future of autonomous security

One of the most talked-about topics at RSAC 2025 was agentic AI—a type of AI capable of making real-time, autonomous decisions without human input. Vendors at the event showcased how agentic AI could detect threats, automatically respond to incidents, and adapt to evolving attack techniques.

AI as a strategic asset: Why telecom can't afford to ignore it

While AI’s role in security is nothing new, RSAC 2025 made it clear that telecom operators can no longer view AI simply as a tool—it’s a strategic asset. Yet, traditional XDR solutions still lack telecom-specific expertise, leaving a gap in how well these platforms address the industry’s unique demands. By integrating AI into their security architecture, operators aren’t just automating tasks, they’re future-proofing their networks. Generative AI (GenAI), in particular, is redefining what’s possible in proactive threat detection and is quickly becoming a cornerstone of next-generation telecom defense.

Generative AI enables analysts to query complex data in natural language, improving understanding of Indicators of Compromise, threat severity, and overall security posture. GenAI can also generate telecom-specific detection rules, mitigation playbooks, and policies aligned with regulatory requirements for the human data scientist to review, reducing reliance on manual processes. Additionally, it can ingest external threat intelligence and combine with network telemetry to identify potential attack patterns and recommend mitigations. 

Why detection matters more than ever in telecom security

While AI continues to play a growing role in threat detection, recent global events are putting even more pressure on telecom operators to strengthen their front lines, starting with visibility. Recent events, such as activity attributed to the Salt Typhoon threat group and the cyber-attack affecting South Korea, have become clear reminders of how vulnerable networks can be without proper detection in place. As attacks become more advanced, operators are accelerating the deployment of network function protection systems to gain real-time observability and identify malicious activity before it spreads. 

These tools are essential not just for real-time monitoring, but for protecting network functions without impacting critical system resources. A single breach can damage customer trust and hit profitability hard. ML-enhanced EDR solutions are also becoming more common, using behavioral analytics to flag anomalous traffic that might otherwise go unnoticed. Telco-grade endpoint protection is foundational to staying secure in today’s threat landscape.

Inside the operator mindset: What telecom customers are prioritizing now

Across all of my customer conversations at RSAC 2025, one clear theme stood out: telecom operators are seeking a more proactive security strategy. This shift is fueled by the growing complexity of telecom infrastructure, fragmented security across network layers, increasing regulatory pressure, and AI-driven attacks targeting both infrastructure and subscriber data. In this environment, siloed vendor solutions and complex integrations are no longer sustainable.

What operators need is a layered security architecture — one that breaks down vendor silos and unifies endpoint, network, and cloud protection to deliver end-to-end visibility and faster, real-time threat response. Software, like that designed at Nokia, for multi-vendor, multi-domain, and multi-cloud environments gives telecom operators the flexibility and control they need.

What’s next for telecom security?

The conversations at RSAC 2025 made one thing clear and that is telecom security is entering a new phase, driven by AI but grounded in the realities of critical infrastructure protection. As operators face rising attacks on always-on networks, the need for 24/7 monitoring, network function protection, privileged access management, and proactive threat hunting has never been greater. 

Most CSPs are still in the early stages of SOC automation, and trust must be built over time. The opportunity lies in developing AI-driven solutions that are secure, scalable, and interoperable. By embracing agentic AI while staying vigilant, telecom operators can build a more resilient future—and stay ahead in a threat landscape that’s only getting more complex.

In conclusion, The AI revolution in telecom security is here

RSAC 2025 marked a pivotal moment for telecom security, as AI took center stage. Operators who are willing to embrace these technologies and adapt to the evolving security landscape will be better equipped to handle the next generation of cyber threats. The future is clear, and AI is not just a tool; it’s the backbone of telecom security.

Read more on why telecoms need a proactive AI defense here.