Amazon Web Services, Microsoft Azure, and Google Cloud Platform combined currently hold a bit over 50% of the worldwide cloud market. But what about the other half? Large corporations with a global presence or a local enterprise might find that a niche cloud provider better meets their needs. Alibaba Cloud's, IBM Cloud's, and Oracle Cloud's market share are not that far behind GCP, and you might find yourself on one of these platforms while yo...

We’ve all heard the buzz around pushing application security into the hands of developers, but if you’re like most companies, it has been hard to actually make this a reality. You aren’t alone – putting the culture, processes, and tooling into place to make this happen is tough. Join Scott Gerlach as he shares his triumphs and failures practices and tools at companies such as GoDaddy, SendGrid, and Twilio. Dig into spec...

The presentation draws attention to practical threat detection and incident response from dissecting advanced ICS adversary threat capabilities, tactics techniques and procedures. Dean will illustrate why the cyber weapons and the techniques may be more important than adversary attribution for tactical ICS incident response.

Why are ransomware attacks so prevalent?It's because they're effective and profitable for adversaries. We have all heard the horror stories of bad actors gaining access and deploying ransomware on an organization's network, encrypting their data, and then demanding payment to regain access to their systems. The victim organizations are often unprepared and unable to deal with a ransomware attack, leading to severe financial and operational dam...

The most comprehensive ICS security event of the year is back!The annual ICS Security Summit brings together the industry’s top practitioners and leading experts from around the globe to share actionable ideas, methods, and techniques for safeguarding critical infrastructures. At this year’s ICS Security Summit, you’ll have the chance to learn, connect, and share with thousands of cybersecurity professionals in attendance onl...

It’s well-documented and often discussed that diverse teams lead to better, more profitable outcomes, and the last couple years have seen a surge in long-overdue dialogue about the importance of equity, inclusion, and belonging. Much of this dialogue has focused on gender equity and including/amplifying voices of the BIPOC* community in cybersecurity. With this Summit, we turn our attention to the unique strengths, experiences, and chall...

Hands-On Cyber Security Training Taught by Real-World PractitionersAttend in San Diego, CA or Live OnlineLearn real-world cyber security skills from top industry experts during SANS Security West 2022 (May 5-10). Join us Live Online or in San Diego, CA to experience interactive training with hands-on labs, practice your skills during NetWars Tournaments, and network with your peers in real-time. Choose your course and register now! SANS Securi...

Stay Informed with What's Next in Cloud SecurityCloud-based services are becoming increasingly more attractive to organizations as they offer cost savings, flexibility, and increased operational efficiency. However, protecting systems, applications, and data in the cloud presents a new set of challenges for organizations to overcome. Security teams need to adapt and learn how to utilize the tools, controls, and design models needed to properly...

Connect the dots with OSINT The Open-Source Intelligence (OSINT) Summit will bring together OSINT practitioners, investigators, and enthusiasts alike to share their OSINT techniques and tools. As an attendee, you will learn current, real-world methods from others in the OSINT community who collect information across the Internet, analyze the results, and utilize key data to reach their objectives. The OSINT Summit will explore the following to...

Cutting-Edge Offensive Operations Training Attend in Austin, TX or Live OnlineSANS Pen Test Austin 2022 is six days of in-depth, hands-on penetration testing, red teaming, purple teaming, and exploit development training for professionals who need to know how to find vulnerabilities within their organizations, understand risk, and prioritize resources based on potential real-world attacks.This event isn't just for penetration testers or red te...