Skip to main content

Zscaler Zenith Live 2026: all the key announcements for our partners

3 MINUTE READ
Announcements

Zscaler used Zenith Live 2026 to push Zero Trust into new territory: AI agents. The company unveiled its Zero Trust AI Security solution, a sovereign European cloud commitment, a new enterprise browser, and an agentic security operations model. For partners, the message is clear. There are fresh ways to start conversations, win expansion deals, and build recurring revenue. Here's what happened and why it matters for you.

Securing agentic AI took centre stage

The headline was Zscaler's Zero Trust AI Security solution, built on three innovations that map to discovery, enforcement, and protection.

  • AI Access Graph maps how identities, agents, and data connect across the enterprise, powered by the Symmetry Systems acquisition.
  • AI Broker secures agent communications over MCP and agent-to-agent (A2A) protocols, with a built-in agent registry.
  • AI Endpoint Security catches AI threats where work happens: browsers, plug-ins, AI IDEs, and local models.

The pitch is sharp. AI agents are fast becoming the new weakest link, multiplying the attack surface through agent sprawl, non-human identities, authorisation gaps, and intent-based threats. This adds a new pillar, Zero Trust AI Agents, alongside existing AI Protect capabilities. For you, it's a timely hook: your customers are adopting AI now, and they need to secure it.

Digital sovereignty: the EMEA angle

Zscaler framed rising sovereignty demands around an evolving transatlantic relationship, the EU's drive for competitiveness, a shifting threat landscape, and sovereignty itself. Its answer is a committed 5-C approach:

  • Choice: no vendor lock-in.
  • Control: verified data residency.
  • Continuity: resilience during disruption.
  • Collaboration: trusted local partnerships.
  • Compliance: regulatory compliance by default.

It's underpinned by a dedicated European cloud of more than 25 data centres that supports GDPR and DORA compliance. For regulated accounts in banking, healthcare, and the public sector, that's a strong opener.

Zero Trust SASE: the browser as the new on-ramp

Zscaler also moved its Zero Trust SASE platform forward, and the standout for partners is the Zero Trust Browser. Delivered as a cross-browser extension or a full enterprise browser, built on the SquareX acquisition, it brings Zero Trust controls, localised data protection, and Browser Detection and Response (BDR) to any device, managed or not.

The commercial angle is the Zero Trust Browser replaces expensive VDI and VPN setups for unmanaged and BYOD scenarios, contractors, third parties, and M&A, becoming a single on-ramp to the Zero Trust Exchange. Best of all, it ties into the ZIA, ZPA, and ZDX stack your partners already sell, so it lands as an expansion in existing accounts, not a net-new platform.

Post-quantum cryptography: ahead of the curve

Zscaler now performs real-time inline inspection of PQC traffic using the NIST-standardised ML-KEM (FIPS 203) hybrid key exchange, with PQC visibility and reporting in the admin portal. It defends against "harvest now, decrypt later" attacks, helps customers meet emerging government PQC mandates, and shows which clients and servers are already quantum-ready. That's a clear differentiator for forward-looking and regulated accounts.

Agentic SOC: a managed-services opportunity

Zscaler detailed its approach to agentic security operations, built on the Red Canary acquisition and the Data Fabric for Security. The model is a closed loop: connect your data, detect active threats, apply agents, and drive remediation, automating work that used to eat up analyst hours.

For Westcon partners, this is arguably the highest-margin, stickiest play in the portfolio. It's built so partners can offer managed SOC and MSSP services on top of Zscaler, pairing neatly with existing managed-service programmes and opening a recurring-revenue route into the mid-market.

What this means for you

Zenith Live 2026 made Zscaler's direction clear: extending Zero Trust from users, branches, and clouds to AI agents. Here's how to turn that into pipeline.

Lead with AI and data readiness. Use the Westcon DSPM and EASM assessments, built on Zscaler technology, to scope a customer's AI attack surface. Our free Tech Insights assessments make a great door-opener.

Position the strongest near-term plays:

  • The Zero Trust Browser for BYOD, contractor, and VDI-replacement deals.
  • The sovereign European cloud story for regulated accounts.
  • The agentic SecOps stack for recurring revenue and managed SOC services.

Anchor every conversation in zero-day protection. If you're reachable, you're breachable. Frontier AI now finds exploits at machine speed, so patching can't keep up. But apps placed behind the Zero Trust Exchange have no public IP, ports, or discoverable surface, so even a known CVE can't reach them. Zscaler's Project Glasswing work, using Anthropic's Mythos model, is strong proof.

The takeaway

The throughline is consistent. Help customers secure how they adopt AI, modernise access through the browser, build recurring revenue on managed SecOps, and anchor every deal in an architecture that removes the attack surface entirely.

These announcements give you fresh reasons to call your customers this quarter. Speak to your Westcon-Comstor team to book a Tech Insights assessment and get the enablement you need to start selling today.