RSA opened RSAC 2026 with a new deployment model for its ID Plus identity platform, aimed squarely at government agencies, financial services firms, and critical infrastructure operators that need identity security to work even when everything else fails.

RSA ID Plus Sovereign Deployment is a “deploy anywhere” identity and access management solution that gives organizations full-stack IAM capabilities across private cloud, multi-cloud, on-premises, and air-gapped environments. The core argument: organizations with the most to lose should not have to accept reduced functionality based on where they deploy.

The product includes phishing-resistant passwordless authentication that works offline, help desk fraud prevention through RSA Help Desk Live Verify, and protection against advanced bypass attacks via RSA Mobile Lock and Risk AI. For resilience, it can be paired with RSA Authentication Manager to provide redundant authentication during cloud outages.

“RSA ID Plus Sovereign Deployment is a direct response to the tightening regulatory environment, operational realities, and emerging threats that our customers face,” said RSA CEO Greg Nelson. “We built this solution for high-assurance organizations where failure is not an option and where compromise is a non-starter.”

The compliance alignment is extensive. RSA says the product meets Executive Order 14028, OMB M-22-09, NIS2, DORA, and global data sovereignty mandates.

“RSA ID Plus Sovereign Deployment is the first and only full stack identity solution that enables government agencies, financial services, critical infrastructure, and healthcare organizations to modernize their identity infrastructure while meeting regulatory requirements,” said Kevin Orr, RSA’s Federal and Strategic President.

RSA manages more than 60 million identities across 9,000 organizations globally.