← All articles

How Do I Book Meetings at RSA Without a Booth in 2026?

By Asaf Katz · July 8, 2026

QUICK ANSWER

You do not need a booth to win at RSA. You need a targeted list, senders matched to the buyer's role, and a short human ask sent before the doors open. I once booked 38 C-level meetings at RSA from 1,266 prospects with no booth and no brand. The booth is the expensive part. The meetings are the cheap part.

You do not need a booth to win at RSA. You need a targeted list, senders matched to the buyer's role, and a short human ask sent before the doors open. I once booked 38 C-level meetings at RSA from 1,266 prospects with no booth and no brand. The booth is the expensive part. The meetings are the cheap part.

Most founders get this backwards. They spend six figures on floor space, then hope the right people wander over. The people you want are not wandering. They are triaging 300 emails and 40 booth invites, and they decided who to meet with two weeks before they landed. This article is how to be on that list.

Why does a booth rarely produce the meetings you actually want?

A booth is a broadcast. It catches whoever walks past. At a cybersecurity conference that is mostly other vendors, job seekers, and analysts collecting swag. The CISO you flew in to meet has a full calendar and a security detail of gatekeepers. She is not stopping at row H.

The booth also arrives too late in the buying journey. By the time someone approaches your stand, they are either already researching you or just curious. Neither is a booked meeting with your exact target account. You paid for reach when what you needed was relevance.

I am not against booths for every company. If you have brand and a field team that works the floor, a booth compounds. But if you are early, with no brand and a thin team, the booth is the most expensive way to meet the wrong people. Spend that money on the list and the outreach instead.

What do you send, and when?

Three weeks out, you send a short message on LinkedIn. Not a pitch. A connection with a 12-word opener that names something real about their world. Then you connect before you ask for anything. When they accept, you follow with one line: you will both be at the event, and you would value 15 minutes.

At RSA, my openers were 12 words. Short enough to read on a phone in a hallway. The senders were matched to the buyer. Our technical founder reached out to AppSec leads, peer to peer. Our CEO reached out to CISOs, title to title. That match matters more than the copy. A CISO ignores an SDR and reads a founder.

The numbers held up. From 1,266 prospects we got 519 connections and 161 conversations, and those turned into 38 C-level meetings. No booth. No brand. Just the right person sending the right short thing before the event, then following up on the floor.

How do you build the target list before the conference?

Start with the attendee reality, not your dream list. Pull the accounts you know are attending or exhibiting. Cross-reference the agenda: who is speaking, who is sponsoring, whose team is presenting. Those people are confirmed to be in the building on specific days. That is gold, because your ask is honest. You are not guessing they will be there. You know.

Then rank by fit, not by logo size. A mid-market CISO who has your exact problem beats a Fortune 100 name who does not. The whole point of a conference is compression: hundreds of your buyers in one city for three days. Do not waste that on accounts that will never buy.

This is a Foundation task before it is a Conversion task. If you cannot describe your avatar in one sentence and your message in one more, no list will save you. AI amplifies whatever exists, including the broken parts. A precise list built on a fuzzy avatar just fails faster.

Why does the invite beat the pitch every time?

The ask is the variable. Across hundreds of my campaigns, event invites get accepted 40 to 50 percent of the time. Pitch outreach gets 5 to 10. Same lists, same senders. The only thing that changed was what I asked for.

A conference gives you the most natural invite there is. You are not asking for a demo. You are asking for 15 minutes at an event they already chose to attend. The context does the persuading. So do not open with your product. Open with the room you are both standing in.

How to get people to meet you without pitching

If you want to raise the yield further, host something small. A breakfast, a curated dinner for eight CISOs, a side roundtable on one sharp topic. That is a better invite than a booth demo, and it costs less. People remember the eight-person dinner. Nobody remembers your banner.

What should you skip?

Skip the mass badge-scan blast. Renting the attendee list and emailing all of it is how you get filtered and burn your domain. Skip the generic "let's connect at RSA" with no reason attached. It reads as a template because it is one.

Skip the twelve-slide deck for the follow-up. After the event, the buyer does not want your deck. They want one line that references what you actually discussed in the hallway. Skip the vanity metric of badges scanned. The metric is meetings booked with named target accounts, and then meetings that turn into pipeline.

And skip the assumption that the conference is the whole play. The event is a compression event inside a longer motion. The meeting you book on the floor is the start of a sequence, not the finish. Treat it like the top of a funnel you already know how to run.

FAQ

How far in advance should I start outreach for a security conference? Start three weeks out for the first touch. That gives room to connect, get accepted, and confirm a time before calendars fill. Two weeks is workable. One week is a scramble, and the good slots are already gone.

Do I need a big brand to book meetings at RSA? No. I booked 38 C-level meetings with no brand and no booth. What worked was a tight list, a sender who matched the buyer's title, a 12-word opener, and an invite instead of a pitch. Relevance beats reputation for the first meeting.

Should I run my own side event or just do one-to-one outreach? Do both if you can. One-to-one outreach fills specific meetings. A small hosted dinner or roundtable creates a room your buyers want to be in, which lifts acceptance and gives you a reason to reach out. Eight of the right people at dinner beats a hundred badge scans.

What is the single biggest mistake founders make at conferences? Paying for reach when they needed relevance. The booth catches whoever walks by. The meetings that matter come from deciding who you want, matching the sender to their role, and asking for time before the event, not hoping they find you on the floor.

If you are planning your next conference and you are not sure your list, message, and offer are ready to carry it, run the free check at https://asafkatz.com/#check first.

Frequently asked questions

How far in advance should I start outreach for a security conference?

Start three weeks out for the first touch. That gives room to connect, get accepted, and confirm a time before calendars fill. Two weeks is workable. One week is a scramble, and the good slots are already gone.

Do I need a big brand to book meetings at RSA?

No. I booked 38 C-level meetings with no brand and no booth. What worked was a tight list, a sender who matched the buyer's title, a 12-word opener, and an invite instead of a pitch. Relevance beats reputation for the first meeting.

Should I run my own side event or just do one-to-one outreach?

Do both if you can. One-to-one outreach fills specific meetings. A small hosted dinner or roundtable creates a room your buyers want to be in, which lifts acceptance and gives you a reason to reach out. Eight of the right people at dinner beats a hundred badge scans.

What is the single biggest mistake founders make at conferences?

Paying for reach when they needed relevance. The booth catches whoever walks by. The meetings that matter come from deciding who you want, matching the sender to their role, and asking for time before the event, not hoping they find you on the floor.

Related

Take the free 60-second check