Cisco Redefines Security for the Agentic Era with AI Defense Expansion and AI-Aware SASE

Rhea-AI Summary

Cisco (NASDAQ: CSCO) unveiled broad security enhancements on Feb 10, 2026 to support enterprise adoption of agentic AI. Key additions include expanded Cisco AI Defense (AI BOM, MCP catalog, multi-turn red teaming, real-time guardrails), AI-aware SASE traffic controls, and IOS XE 26 with full-stack post-quantum cryptography for resilient, encrypted AI workflows.

Also announced: Duo Active Directory Defense and AgenticOps for Security to improve identity protection and autonomous remediation across distributed environments.

Positive

• Expanded Cisco AI Defense adds AI BOM and MCP catalog for AI supply-chain visibility
• Real-time guardrails and multi-turn red teaming increase runtime protection for agents
• AI-aware SASE introduces AI traffic optimization and intent-aware inspection for reliable agent workflows
• IOS XE 26 delivers industry-first full-stack post-quantum cryptography for enterprise routing and switching

Negative

• None.

Key Figures

Publication date: Feb. 10, 2026 AI Defense launch: January 2025 IOS XE version: 26 +3 more

6 metrics

Publication date Feb. 10, 2026 Cisco Live EMEA announcement timing

AI Defense launch January 2025 Reference point for latest AI Defense expansion

IOS XE version 26 Latest OS powering Cisco 8000 and C9000 Series

8100 variants 2 Two new 8100 Series Secure Router variants for SMBs

Market share change 20% Cisco SASE market share up roughly 20% since 2023

Reference year 2023 Baseline year for SASE market share comparison

Market Reality Check

Price: $86.27 Vol: Volume 17,522,615 is belo...

normal vol

$86.27 Last Close

Volume Volume 17,522,615 is below the 20-day average of 22,408,917 (relative volume 0.78x). normal

Technical Trading above the 200-day MA of 70.13 and within 0.46% of its 52-week high.

Peers on Argus

CSCO is up 2.31% with key peers also positive (e.g., HPE +2.14%, NOK +2.28%, UI ...

CSCO is up 2.31% with key peers also positive (e.g., HPE +2.14%, NOK +2.28%, UI +15.35%), but no peers appeared in the momentum scanner, so the move screens as stock-specific rather than a broad sector rotation.

Previous AI Reports

5 past events · Latest: Jan 26 (Positive)

Same Type Pattern 5 events

Date	Event	Sentiment	Move	Catalyst
Jan 26	AI partner program	Positive	+3.2%	Launch of Cisco 360 Partner Program for AI-era customer outcomes.
Jan 26	AI privacy study	Positive	+3.2%	Data and Privacy Benchmark Study highlighting AI-driven privacy investment.
Jan 15	AI summit event	Positive	+1.1%	Announcement of second annual AI Summit featuring major ecosystem leaders.
Dec 04	AI uptake research	Neutral	-0.2%	OECD-Cisco research on global generative AI adoption and digital well-being.
Nov 04	AI platform launch	Positive	-2.9%	Launch of Cisco IQ unified AI-powered customer journey experience.

Pattern Detected

Recent AI-tagged announcements often saw modest positive reactions, though one major AI product launch drew a negative move, indicating mixed but generally constructive responses to AI news.

Recent Company History

Over recent months, Cisco has issued multiple AI-focused updates. In November 2025, it launched Cisco IQ, an AI-powered unified customer experience, which coincided with a -2.86% move. Subsequent AI-related studies and program launches in December 2025 and January 2026 linked to moves between -0.17% and +3.24%. The second annual AI Summit on Jan 15, 2026 saw a +1.13% reaction. Today’s AI security and networking announcement fits this ongoing AI-centric product and platform trajectory.

Historical Comparison

AI

+0.9 %

Average Historical Move

Historical Analysis

In the past 5 AI-tagged announcements, CSCO’s average 24h move was about 0.92%, indicating that AI-related news has typically driven moderate, not extreme, stock reactions.

Typical Pattern

AI-tagged news shows progression from AI customer platforms and research to ecosystem summits and partner programs, with this update extending into AI security, governance, and network-level protection.

Market Pulse Summary

This announcement deepens Cisco’s AI strategy by expanding AI Defense, introducing AI-aware SASE fea...

Analysis

This announcement deepens Cisco’s AI strategy by expanding AI Defense, introducing AI-aware SASE features, and adding post-quantum-ready routing and switching. It complements earlier AI efforts such as Cisco IQ, partner programs, and AI summits, showing a broad push across security, networking, and ecosystem tools. Investors may track how these capabilities influence adoption of AI-driven workflows, demand for secure connectivity, and future AI-tagged updates, which historically produced moderate average moves of about 0.92%.

Key Terms

secure access service edge (sase), model context protocol (mcp), post-quantum cryptography, sd-wan, +2 more

6 terms

secure access service edge (sase) technical

"Industry-first, AI-aware security advancements to Cisco's Secure Access Service Edge (SASE)..."

A secure access service edge (SASE) is a cloud-delivered approach that combines networking and cybersecurity into a single service to connect users, devices and branch offices to applications wherever they are. Think of it as replacing separate roads and security checkpoints with one managed highway that both directs traffic and screens travelers; for investors, SASE matters because it can drive predictable subscription revenue, lower operational costs, and reduce security risk for customers.

model context protocol (mcp) technical

"including model context protocol (MCP) servers and third-party dependencies..."

The Model Context Protocol (MCP) is a system that helps financial models understand and share information about market conditions and data. It’s like a common language that ensures different tools and models work together smoothly, making predictions and decisions more accurate and consistent.

post-quantum cryptography technical

"add full-stack, post-quantum cryptography and operational improvements..."

Post-quantum cryptography is a set of new methods for scrambling data so it stays secure even if powerful quantum computers exist; think of replacing today’s locks with designs that a future high‑speed lockpicker cannot open. For investors, it matters because companies must upgrade systems, meet regulations, and protect customer and trade data—creating costs, competitive advantages, or legal and reputational risks depending on how quickly and effectively they adopt these new security standards.

sd-wan technical

"Unified policy enforcement across SD-WAN and SSE: Coordinates controls..."

SD‑WAN is a technology that uses software to control and direct wide-area network traffic between offices, data centers and cloud services instead of relying solely on traditional hardware routers. Think of it as a smart traffic manager that chooses the fastest, cheapest or safest route for each data flow, improving performance, cutting telecom costs and simplifying upgrades. Investors care because it can lower operating expenses, enable faster cloud adoption and create steady demand for networking and security services.

multi-factor authentication (mfa) technical

"where modern controls and MFA can be difficult to apply to older protocols..."

Multi-factor authentication (MFA) is a security method that requires two or more different ways to prove your identity before allowing access to an account—for example, a password plus a one-time code sent to a phone or a fingerprint. For investors this matters because MFA significantly reduces the risk of unauthorized access to sensitive corporate systems, financial accounts, and shareholder data, helping protect company value and reduce the chance of fraud or regulatory problems.

active directory technical

"Active Directory Defense: Cisco Duo is rolling out new capabilities..."

Active Directory is a centralized system that acts like a company-wide digital phonebook plus security guard, storing and managing user accounts, devices, and access permissions so employees and systems can prove who they are and access the right resources. For investors, it matters because it underpins a firm’s IT security, operational continuity and regulatory compliance—failures or weaknesses can lead to outages, data breaches or fines that hurt revenue and reputation.

AI-generated analysis. Not financial advice.

News Summary:

• Cisco is announcing a suite of capabilities to help enterprises securely adopt AI technology while maintaining agent integrity and control of agentic interactions.
• Biggest-ever updates to Cisco's AI Defense solution bring AI supply chain governance and runtime protections to agentic tool use, reducing the risk of compromise or manipulation.
• Industry-first, AI-aware security advancements to Cisco's Secure Access Service Edge (SASE) pair with AI traffic detection and optimization to keep agentic workflows safe, fast, and reliable.
• Cisco's latest secure routing and smart switching solutions add full-stack, post-quantum cryptography and operational improvements designed to support resilient, encrypted communications for AI-driven workflows.

AMSTERDAM, Feb.10, 2026 /PRNewswire/ -- CISCO LIVE EMEA -- Cisco (NASDAQ: CSCO) today announced a sweeping evolution of its security portfolio to help enterprises adopt agentic AI with confidence, combining agent protection, interaction governance, and resilient connectivity for AI-driven workflows.

As organizations move from AI assistants to autonomous agents that use tools and data across hybrid environments, security teams need to strengthen agentic defenses, govern agent interactions with enterprise systems and external services, and maintain reliable, cryptographically protected connectivity at scale.

"In the age of AI, safety and security are pre-requisites for adoption, and AI agents bring a whole new set of challenges," said Jeetu Patel, Cisco's President and Chief Product Officer. "As agents take on critical enterprise roles, we're developing protections that work both ways: preventing agents from being compromised and controlling what they can access and do on our behalf."

Protect agents from compromise, manipulation, and poisoned tooling

Agentic AI innovations have expanded the attack surface across AI supply chains and the tool ecosystem. Enterprises need protections that reduce the risk of agents being manipulated, or hijacked, including during tool interactions.

In the biggest expansion since its January 2025 launch, Cisco AI Defense delivers new features to better secure agents and the AI supply chain. These features include:

• AI BOM (Bill of Materials): Provides centralized visibility and governance for AI software assets, including model context protocol (MCP) servers and third-party dependencies, to secure the AI supply chain
• MCP Catalog: Discovers, inventories, and helps manage risk across MCP servers and registries spanning public and private platforms, strengthening AI governance
• Advanced algorithmic red teaming: Expands the scope of AI security assessments with adaptive single and multi-turn testing for models and agents in multiple languages
• Real-time agentic guardrails to keep agents and applications safe: Continuously monitor and inspect agentic interactions to detect manipulation or unsafe behavior—such as poisoned tools or prompts designed to trigger unauthorized tool use—helping teams enforce policy and reduce compromise risk

Together, these updates help teams inventory and govern AI assets, understand provenance, and surface vulnerabilities earlier in the AI development lifecycle.

Since launch, AI Defense has mapped to leading AI frameworks from organizations like NIST, OWASP, and MITRE. The latest updates add mapping to Cisco's new Integrated AI Security and Safety Framework to help teams better understand adversary objectives and measure risk exposure.

In addition, AI Defense's runtime protections now feature a developer-ready integration with NVIDIA NeMo Guardrails' open source framework, offering organizations a modular, interoperable architecture to protect AI systems in real time in production. AI Defense is a key component of the Cisco Secure AI Factory with NVIDIA, a validated reference architecture to securely power AI workloads in customer environments.

"AI security teams are now being asked three questions at once: what AI assets do we have, where did they come from, and how will they behave in production as agents interact with tools and third-party services," said Chirag Mehta, Vice President and Principal Analyst at Constellation Research. "With AI BOM and MCP governance plus multi-turn red teaming and real-time guardrails, Cisco AI Defense is targeting the full risk path from the AI supply chain to agentic runtime."

Govern agent interactions and ensure AI workflows

AI agents rely on continuous interaction with LLMs, SaaS applications, data stores, and tool endpoints that are often remote. When responses are slow or unreliable, people and machines must wait—delaying decisions, disrupting operations, or halting processes altogether.

From a security perspective, these AI workflows involve semantically complex messages that evade analysis by conventional defensive tools unable to interpret the "why" and "how" of agentic actions.

To meet these needs, Cisco SASE is unveiling new capabilities designed to both govern agent interactions and keep AI traffic reliable:

• AI traffic optimization for predictable performance during surges: Detects AI traffic and applies optimization techniques like packet duplication to maintain reliable, low-latency AI interactions during bursts of load
• MCP visibility, logging, and policy control: Discovers and governs MCP communications with in-path controls and inspection outcomes to manage agent-to-tool connectivity
• Intent-aware inspection of interactions and tool requests: Combines rapid detection techniques with cloud-based analysis to evaluate the intent behind agentic messages and actions to detect and stop threats
• Unified policy enforcement across SD-WAN and SSE: Coordinates controls in a single framework to simplify governance as agent adoption accelerates and regulatory expectations evolve

"For today's CIOs and CISOs, the explosive growth of AI-driven workloads creates both opportunity and risk," said Mauricio Sanchez, Senior Director at Dell'Oro Group. "As enterprises adapt SASE architectures to support AI-driven workflows, Cisco has steadily increased its market share—up roughly 20% since 2023. Vendors that align networking, security, and policy enforcement are increasingly well-positioned as SASE deployments scale."

Deliver reliable, cryptographically protected connectivity at scale

As more businesses embed agentic AI into their operations, mission-critical workflows will traverse campus and branch environments. Organizations need networking that keeps AI-driven communications responsive today while preparing encryption for long-lived confidentiality and evolving regulatory expectations.

To meet this challenge, Cisco is announcing IOS XE 26, the latest version of the operating system that powers millions of networks globally. The new release powers its recently announced Cisco 8000 Series Secure Routers and Cisco C9000 Series Smart Switches, as well as two new variants of the 8100 Series Secure Routers for small and mid-size businesses, also available today. IOS XE 26 delivers industry-first full-stack post-quantum cryptography (PQC) protections for the enterprise, defending organizations against device tampering and data compromise designed to align with evolving European and global regulatory guidance.

Together, these advancements help organizations maintain predictable performance for AI-driven traffic across distributed environments and protect encrypted communications as they prepare for PQC. They also extend security, visibility, and operational simplicity from the core to campus and branch locations where AI-enabled workflows increasingly originate.

Also announced today:

• Active Directory Defense: Cisco Duo is rolling out new capabilities to add visibility, insights, and protection for on-premises identity infrastructure, helping close the legacy gap where modern controls and MFA can be difficult to apply to older protocols and applications. In partnership with SpecterOps BloodHound Enterprise, Cisco helps teams identify and reduce real-world identity attack paths.
• AgenticOps for Security: New agentic capabilities in Cisco Security Cloud Control will proactively analyze firewall traffic, capacity, health, and configuration data to surface prioritized recommendations and autonomously remediate issues while maintaining security and compliance.

For more information, visit cisco.com/go/security.

Additional Resources:

• Blog: One platform for the Agentic AI era by Jeetu Patel, President and Chief Product Officer, Cisco
• Blog: Redefining Security for the Agentic Era
• Blog: Security for the Agentic Era: Cisco AI Defense Breaks New Ground
• Blog: SASE for the AI Era: See the Intent. Secure the Agent. Scale the AI.
• Blog: How to Protect Your Active Directory with Duo's New MFA and Visibility Solutions
• Blog: Reinventing Branch Networking: How Cisco Empowers Small Businesses and Beyond
• Blog: Protection, Policy and Power at the Foundation of Future-Ready Campus Networks
• For more information about announcements from Cisco Live Amsterdam, visit the Cisco Newsroom

About Cisco

Cisco (NASDAQ: CSCO) is the worldwide technology leader that is revolutionizing the way organizations connect and protect in the AI era. For more than 40 years, Cisco has securely connected the world. With its industry leading AI-powered solutions and services, Cisco enables its customers, partners and communities to unlock innovation, enhance productivity and strengthen digital resilience. With purpose at its core, Cisco remains committed to creating a more connected and inclusive future for all. Discover more on The Newsroom and follow us on X at @Cisco.

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at http://www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word 'partner' does not imply a partnership relationship between Cisco and any other company.

Disclaimer: Some of the products and features mentioned are still in development and will be made generally available as they are finalized, subject to ongoing evolution in development and innovation. The timeline for their release is subject to change. 

View original content to download multimedia:https://www.prnewswire.com/news-releases/cisco-redefines-security-for-the-agentic-era-with-ai-defense-expansion-and-ai-aware-sase-302683205.html

SOURCE Cisco Systems, Inc.

FAQ

What did Cisco (CSCO) announce on February 10, 2026 about AI security?

Cisco announced a major expansion of its AI security portfolio, including Cisco AI Defense and AI-aware SASE. According to the company, updates add AI BOM, MCP catalog, real-time guardrails, intent-aware inspection, and IOS XE 26 with post-quantum cryptography.

How does Cisco AI Defense protect enterprise AI agents (CSCO)?

AI Defense provides inventory, governance, and runtime protections for agents and models. According to the company, features include AI BOM visibility, MCP cataloging, adaptive multi-turn red teaming, and continuous guardrails to detect manipulation or poisoned tooling in production.

What SASE features did Cisco (CSCO) add to secure agentic AI traffic?

Cisco added AI traffic detection, optimization, and intent-aware inspection to SASE. According to the company, these capabilities enable packet duplication for bursts, MCP visibility and controls, and unified policy enforcement across SD-WAN and SSE for agent workflows.

What is IOS XE 26 and why does it matter for CSCO customers?

IOS XE 26 is the new OS release that supports Cisco routers and switches with PQC protections. According to the company, it powers 8000/8100/ C9000 platforms and adds full-stack post-quantum cryptography to defend long-lived encrypted AI communications.

How will Cisco Duo's Active Directory Defense affect legacy identity protection (CSCO)?

Duo's Active Directory Defense adds visibility and protections for on-premises identity infrastructure. According to the company, integration with SpecterOps BloodHound Enterprise helps identify attack paths and apply modern MFA and controls to legacy protocols and applications.

Does Cisco (CSCO) provide tools to automate security operations for AI-driven networks?

Yes. Cisco introduced AgenticOps for Security within Security Cloud Control to analyze and remediate network issues. According to the company, it prioritizes recommendations and can autonomously remediate firewall, capacity, and configuration problems while preserving compliance.