As cyber threats grow in complexity and frequency, organizations' strategies for detection and response must continuously evolve. The SANS 2025 Detection and Response Survey webcast will delve into the current state of cybersecurity operations, questioning whether the heavy emphasis on endpoint detection is creating new blind spots. By concentrating primarily on endpoints, organizations may narrow their scope and overlook threats emerging from...

Since 2017, the SANS ICS/OT Cybersecurity Survey has been a foundational benchmark for critical infrastructure asset owners and operators. Each year, SANS explores the growing trends in cyber threats, vulnerabilities, and risks across industrial environments, including actionable recommendations for how organizations can improve their security posture. On this webcast, we will explore results from our 2025 survey. We will cover specific topics...

Industrial environments are under constant threat and defending them requires more than traditional IT security measures. SANS Houston 2025: Mission Critical OT Training (November 3-8, CT) is for professionals securing operational technology (OT), industrial control systems (ICS), and the technology that keeps our world running. Join the global leaders in ICS/OT cybersecurity for a week of hands-on, practitioner-led training that sharpens your...

Moving red and blue teams out of their silos means building a continuous feedback loop that translates adversarial knowledge into actionable defensive countermeasures and real fixes. At the Solutions Summit for Hack & Defend 2025, we’ll present state of the art solutions that can help you to achieve this. Furthermore, with AI and automation everywhere, it’s easy to get buried in data. In this forum, we will show you solutions t...

In an era where digital footprints expand faster than security teams can track, managing the attack surface is no longer a reactive task, it’s a continuous battle. Organizations face an evolving threat landscape driven by shadow IT, cloud sprawl, third-party risks, and zero-day vulnerabilities. Yet, many security teams struggle to gain full visibility into their external exposure, let alone remediate risks before adversaries exploit them...

Join top SANS instructors as they share their personal journeys into cybersecurity—how they got started, what shaped their careers, and the lessons they’ve learned along the way. From first steps into the industry to becoming recognized experts, their stories offer inspiration and practical guidance for anyone looking to launch or grow a career in cyber. Moderated by Karen Wetzel from NICE, this session will also connect their expe...

Securing the cloud isn’t easy. Thales Group reported that the percentage of corporate data stored in the cloud has doubled from 2015 (30%) to 2022 (60%). Meanwhile, the 2023 Unit 42 Attack Surface Threat Report, published by a threat research branch of Palo Alto Networks, reported that “80% of security exposures were observed in cloud environments.” Because this percentage is significantly larger than the percentage of data i...

Serious Cyber Security Training in Raleigh Unlock the full potential of your cybersecurity career at SANS Raleigh 2025 (September 15-20, ET). Guided by world-renowned instructors at the forefront of the field, this event provides exclusive access to live industry experts, ensuring you stay ahead of the curve. Immerse yourself in a learning environment that features industry-leading hands-on labs, simulations, and exercises, all geared towards...

As digital transformation accelerates, Zero Trust has become crucial for defending against an increasingly complex threat landscape. The rise in ransomware, credential stealers, supply chain attacks, and disruptive incidents impacting availability in 2024 has underscored the need for resilient cybersecurity strategies that can withstand and adapt to evolving threats. Our 2025 survey focuses on how Zero Trust principles, such as identity manage...

Generative AI (GenAI) and large language models (LLM) entered the cybersecurity zeitgeist nearly three years ago, when ChatGPT became available to the public. The industry immediately saw its potential and scrambled to incorporate it in any way that made sense (and many ways that did not make sense). How have our expectations stacked up against reality? What security problems has GenAI made more manageable, if any? The 2025 SANS AI Survey trie...