SANS Institute

Join us for the exclusive release of the 10th annual SANS SOC Survey — the definitive global benchmark on how Security Operations Centers are evolving in a rapidly shifting cyber threat landscape.

Now celebrating a decade of research, the 2026 SOC Survey offers unparalleled insights into how organizations are building, managing, and modernizing their cyber defense capabilities across industries and geographies.

Whether you're leading a SOC, evaluating tools, or building your security team, this event will equip you with the latest data, trends, and expert analysis to guide your next move.

What You’ll Learn

• Key global trends in SOC structure, outsourcing, and operations
• How organizations are integrating AI and machine learning into detection and response workflows
• Top challenges facing SOC teams—from alert fatigue to staffing gaps
• Satisfaction levels with current toolsets and where teams are investing next
• Hiring, retention, and workforce composition benchmarks
• Budget priorities and planned changes for 2026 and beyond
• Practical takeaways for measuring, maturing, or modernizing your SOC

Why Register? By registering, you’ll gain:

• Actionable benchmarks to measure your organization against industry peers.
• Practical strategies you can take back to your team immediately.

Unlock Your Cybersecurity Potential in Austin

Join an energizing and focused event that blends deep technical learning with meaningful connections. Whether you're new to cybersecurity or leveling up your expertise, this event gives you face time with top-tier instructors and peers from across the industry. Add hands-on labs, interactive receptions, and bonus networking opportunities, and you have a transformative week that goes far beyond the classroom.

Explore a course catalog tailored for ambitious professionals, covering everything from foundational frameworks to the latest in security innovation. Dive into topics like:

• Hacker Tools, Techniques, and Incident Handling
• Security Leadership Essentials for Managers
• Cloud Native Security and DevSecOps Automation
• Network Monitoring and Threat Detection In-Depth
  …and more.

This event creates an intimate, community-focused atmosphere allowing you to focus on learning in a distraction-free setting with your like-minded industry peers. Enjoy bonus after-class extras like hands-on workshops, and networking sessions that extend value far beyond the classroom.

Your evolution begins here. Join SANS and transform your future. 

Fast-track your success with an intensive week of top-tier training at SANSFIRE 2026. Whether you're just starting or sharpening advanced skills, this event is built to elevate your expertise with hands-on labs, real-world techniques, and guidance from some of the best minds in cybersecurity. You'll leave not just better prepared but armed with certifications that set you apart. 

In a field that never stands still, staying ahead is more than important—it’s a necessity. This is more than just training; it’s your chance to transform your career, deepen your knowledge, and connect with a network of industry leaders who share your passion for growth and innovation.

Four years after the public debut of ChatGPT, the cybersecurity landscape has entered a new phase—where AI is no longer just a tool, but a battleground.

The 2026 SANS AI Research Survey explores this unprecedented duality: the same generative AI technologies empowering defenders are equally leveraged by attackers. Security teams are now tasked with using AI to secure systems while simultaneously defending against AI-driven threats. 

In this exclusive event, we reveal key findings from the latest SANS research, diving into the real-world tactics, struggles, and successes organizations face as they draw from this shared AI wellspring. 

What You’ll Learn

• How many teams have actually deployed AI in security operations?
• Which use cases show results, and which have underdelivered?
• Budget, staffing, and training trends for AI integration
• Real-world examples of AI-enhanced attacks seen in the wild
• Which defense strategies have succeeded (and failed) against them?
• Patterns in attacker behavior powered by generative AI
• Confidence levels in AI-generated decisions during threat detection and response
• False positive rates, automation hesitations, and decision overruling
• Human-AI collaboration friction points
• How organizations balance investment between AI for defense and AI risk mitigation
• Strategic shifts in response to evolving attacker capabilities 

Why Register? By registering, you’ll gain:

• Actionable benchmarks to measure your organization against industry peers.
• Practical strategies you can take back to your team immediately.
• 3 CPE credits for attending.
• Access to attend both live or the recorded session on your own time.
• Exclusive access to the full 2026 SANS AI Survey Insights Report once published.

Unleash Elite Potential. Transform Your Career.

This is where high-impact training meets high-value connections. Learn alongside peers who are driven to lead, and take advantage of in-person extras like expert-led workshops, intimate networking receptions, and interactive problem-solving sessions. The energy is contagious—and the opportunity, unmatched. 

Innovative Courses, Industry-Leading Instructors

Whether you're refining your cybersecurity skill set or exploring cutting-edge solutions, you'll find the right course here. Explore tracks on:

• Cybersecurity Tactics & Strategy
• Advanced Control Implementation
• Building a Secure Organizational Mindset
• Translating Policy Into Practice
  …and more.

This is more than an event—it’s a deep dive into a supportive, distraction-free space built for growth and collaboration.

This event creates an intimate, community-focused atmosphere allowing you to focus on learning in a distraction-free setting with your like-minded industry peers. Enjoy bonus after-class extras like hands-on workshops, and networking sessions that extend value far beyond the classroom.

Your evolution begins here. Join SANS and transform your future.

Elevate Your Skills. Redefine the Cyber Game.

Dive into an immersive cyber security training experience at SANS New York 2026. Led by world-renowned instructors boasting extensive industry experience, this event offers live access to top experts in the field.

SANS New York 2026 is equipped with industry-leading hands-on labs, simulations, and exercises that you can immediately apply upon your return to work.

Innovative Courses, Industry-Leading Instructors

Choose from our menu of courses tailored for cybersecurity-seeking practitioners, from foundational skills to cutting-edge innovations, that dive deep into topics like:

• Hacker Tools, Techniques, and Incident Handling
• Security Leadership Essentials for Managers
• Cloud Penetration Testing
• ICS Visibility, Detection, and Response
  and many more!

This event creates an intimate, community-focused atmosphere allowing you to focus on learning in a distraction-free setting with your like-minded industry peers. Enjoy bonus after-class extras like hands-on workshops, and networking sessions that extend value far beyond the classroom.

Your evolution begins here. Join SANS and transform your future.

Unlock Your Cybersecurity Potential in Virginia Beach

Join an energizing and focused event that blends deep technical learning with meaningful connections. Whether you're new to cybersecurity or leveling up your expertise, this event gives you face time with top-tier instructors and peers from across the industry. Add hands-on labs, interactive receptions, and bonus networking opportunities, and you have a transformative week that goes far beyond the classroom.

Innovative Courses, Industry-Leading Instructors
Craft your own learning journey from a diverse menu of courses that span everything from cyber essentials to advanced strategy. Explore topics like:

• Security Culture 
• CIS Controls Implementation And Audit Readiness
• Strategic Security Decision-Making
• Policy Frameworks And Team Enablement
  …and many more.

In this focused and welcoming environment, you’ll find real connections, actionable insights, and a chance to truly invest in your career.

Your evolution begins here. Join SANS and transform your future.

Threat hunting is no longer just a niche skill—it’s a critical pillar of modern defense. Now in its second decade, the 2026 SANS Threat Hunting Survey delivers a comprehensive, vendor-neutral look at how organizations around the world are adapting their hunting strategies to match the speed, complexity, and stealth of today’s threats. This year’s report explores the maturation of threat hunting in the face of faster, stealthier adversaries. From credential abuse and malware-free intrusions to the hunt for lateral movement in cloud environments, defenders are evolving—and this survey shows how. Join us for an exclusive look at the key findings from the latest research, and discover how threat hunters are staying proactive, practical, and one step ahead.

What You’ll Learn

• Top Threats: How teams are detecting malware-free intrusions, credential abuse, and lateral movement 
• Cloud Hunting: Progress and pain points in multi-cloud environments 
• AI in Hunting: Where AI helps, where it doesn’t, and what’s actually working 
• Hunt Maturity: Benchmarks on tools, training, and metrics 
• Lessons Learned: What works, what doesn’t, and how to stay ahead 

Why Register? By registering, you’ll gain:

• Actionable benchmarks to measure your organization against industry peers. 
• Practical strategies you can take back to your team immediately. 
• 3 CPE credits for attending. 
• Access to attend both live or the recorded session on your own time. 
• Exclusive access to the full 2026 Threat Hunting Survey Insights report

Elevate your cybersecurity skillset at SANS Network Security 2026! Dive into an exhilarating week of intensive, top-tier training designed to sharpen your skills, whether you're just starting out or advancing your expertise. Engage directly with leading minds in the field through hands-on labs and real-world techniques, and gain insights that only face-to-face interactions can offer.

Connect with SANS faculty, participate in workshops exclusively offered in-person, and join a community of peers who are just as passionate as you are. From networking events to community-building activities, you’ll enjoy all-access, in-person only benefits that foster memorable and lasting connections.

Cloud sprawl, misconfigurations, shadow IT, third-party risk, and identity-driven threats—exposure management is now a defining challenge in cybersecurity. As digital environments expand, so does the complexity of defending them.

The 2026 SANS Exposure Management Survey explores how organizations are tackling this challenge. Join us for a webcast unveiling key findings from this global survey of cybersecurity leaders and practitioners.

You’ll get data-driven insights into how teams discover, assess, and reduce exposures—plus what’s working, where the gaps are, and how maturity is being measured.

What You'll Learn

• How organizations are gaining visibility across cloud, hybrid, and third-party ecosystems
• Which tools and techniques are helping teams prioritize exposures here automation and AI are making the biggest impact
• How maturity is measured and how exposure management aligns with business goals
• Common pain points and blind spots in modern exposure management programs
• Cultural and organizational factors that influence success
  

Why Register? By registering, you’ll gain:

• Actionable benchmarks to measure your organization against industry peers.
• Practical strategies you can take back to your team immediately.
• 3 CPE credits for attending.
• Access to attend both live or the recorded session on your own time.
• Exclusive access to the full 2026 Exposure Management Survey Insights report

Cloud security is no longer optional—it's a moving target. As organizations accelerate multi-cloud adoption, they face growing complexity, evolving threats, and rising expectations around compliance, visibility, and control.

The 2026 SANS Cloud Security Research Survey brings together insights from security leaders and practitioners worldwide. This year’s study examines the current state of cloud security, highlighting key challenges, top threats, and the tools organizations are using—or wish they had—to secure cloud environments at scale.

Join us for this exclusive webcast to explore the survey findings, gain practical insights, and benchmark your organization’s approach to cloud security.

What You’ll Learn

• Top Cloud Threats in 2026: Credential theft, misconfigurations, ransomware, and more
• Tool Adoption Trends: CNAPP, SSE, IAM—who's using what, and how well it's working
• DevSecOps Integration: How teams are embedding security earlier in the cloud development cycle
• Compliance & Governance: Strategies to keep up with expanding regulatory demands
• AI in Cloud Security: Emerging use cases and buyer sentiment around AI-driven tools
• Gaps & Opportunities: What the industry still lacks—and where investment is headed next
  

Why Register? By registering, you’ll gain:

• Actionable benchmarks to measure your organization against industry peers.
• Practical strategies you can take back to your team immediately.
• 3 CPE credits for attending.
• Access to attend both live or the recorded session on your own time.
• Exclusive access to the full 2026 Cloud Survey Insights report

As industrial environments become more connected and threats more advanced, the challenge of securing ICS and OT systems grows more urgent. How are asset owners responding—and where are the biggest gaps?

Join us to discuss insights from SANS 9th annual State of ICS/OT Security Survey. This trusted industry research captures how organizations across sectors are evolving their industrial cybersecurity strategies in response to regulatory pressures, emerging threats, and operational demands.

Building on key findings from 2025—like improvements in incident response and IT-OT alignment—this year’s survey dives deeper into visibility across the ICS cyber kill chain, the growing role of cyber-informed engineering (CIE), and the need for resilience-focused security controls.

Whether you manage industrial assets, influence cyber strategy, or lead incident response, this session delivers the benchmarks and insights you need to make informed decisions in 2026 and beyond.

What You’ll Learn

• How organizations are improving visibility across the ICS Cyber Kill Chain to detect and respond to threats earlier
• What cyber-informed engineering (CIE) looks like in practice—and how it’s being used to bridge safety, reliability, and cybersecurity
• Where key gaps and dependencies exist in OT-specific security controls and architectures
• How to maximize the ROI of cybersecurity investments in industrial settings
• Which areas saw progress in 2025, including response times, visibility, and IT-OT collaboration—and where critical misalignments remain how standards, regulations, and threat intelligence are shaping ICS/OT cyber programs moving forward
• Real-world safety and reliability impacts of modern ICS threats—and what your peers are doing to mitigate them
  

Why Register? By registering, you’ll gain:

• Actionable benchmarks to measure your organization against industry peers.
• Practical strategies you can take back to your team immediately.
• 3 CPE credits for attending.
• Access to attend both live or the recorded session on your own time.
• Exclusive first access to the full 2026 ICS/OT Survey Insights report

SANS Fall Cyber Solutions Fest 2026: Emerging Technologies Track explores the cutting edge of security innovation as organizations race to secure increasingly complex digital ecosystems. This track highlights breakthrough capabilities in AI-driven defense, autonomous security operations, quantum-resilient architectures, next-gen cloud and CNAPP frameworks, and advanced identity protection. Attendees will gain deep insights into how emerging tools, platforms, and methodologies are reshaping modern security strategies and accelerating detection, response, and resilience.

Designed for practitioners, leaders, and technology evaluators, this track delivers practical, vendor-agnostic guidance from top SANS experts and real-world case studies from the front lines. Sessions will showcase how emerging technologies can be operationalized at scale, reduce analyst workload, improve visibility across hybrid environments, and help organizations prepare for the next wave of threats. Join us to understand what’s coming, what matters, and how to build a future-ready security posture.

Why Register

• See what’s next first—gain early insight into the technologies shaping security in 2026 and beyond.
• Hear from top SANS and industry experts delivering practical, unbiased guidance you can apply immediately.
• Evaluate emerging solutions with real-world case studies that separate hype from reality.
• Strengthen your strategy with actionable frameworks for adopting AI, autonomous security, quantum-resilient design, and more.

The SANS Fall Cyber Solutions Fest 2026 SOC Track brings together frontline defenders, analysts, engineers, and SOC leaders to dissect the evolving threat landscape and the technologies reshaping modern security operations. With adversaries advancing faster than ever, this track delivers deep technical sessions focused on detection engineering, advanced analytics, automation, AI-enhanced triage, and next-generation SOC architectures designed for hybrid and cloud-native environments. Attendees will learn practical methods to reduce alert fatigue, enhance threat visibility, and accelerate response—rooted in real-world case studies from industry experts.

Through hands-on demonstrations, expert-driven briefings, and collaborative discussions, participants will explore tools, frameworks, and operational best practices that drive measurable SOC maturity. Whether your team is improving existing workflows or architecting a future-state SOC, this track equips security professionals with actionable strategies to operationalize intelligence, leverage automation responsibly, and build a resilient, adaptive detection and response capability. Join us to strengthen your SOC’s effectiveness and prepare for the challenges of tomorrow’s cyber landscape.

Who Should Attend:

• SOC analysts, detection engineers, incident responders, and threat hunters seeking practical, real-world techniques to elevate their operational capabilities.
• SOC managers, CISOs, and security leaders focused on maturing their SOC programs, optimizing workflows, and integrating automation and AI.
• Organizations evaluating next-generation SOC tools, architectures, and strategies to strengthen resilience and accelerate threat detection and response.

The SANS Fall Cyber Solutions Fest 2026: Identity Security and Zero Trust Track delivers a deep technical examination of identity as the modern attack surface. As adversaries exploit misconfigured IdPs, weak federation trust, poisoned authentication flows, and over-permissioned service principals, this track analyzes the mechanics of identity compromise across multiple attack surfaces, and hybrid environments. Sessions will dissect novel identity threat vectors, including token replay and manipulation, MFA fatigue attacks, conditional access bypass techniques, and identity infrastructure persistence. Practitioners will gain prescriptive guidance on securing authentication pipelines, hardening federation architectures, and monitoring high-risk identity events with advanced telemetry.

Anchored in Zero Trust architecture, the track focuses on continuous policy enforcement, adaptive authentication, micro-segmentation, and automated privilege reduction across distributed systems. Experts will present reference architectures and implementation patterns for identity-centric Zero Trust deployments, covering identity threat detection and response (ITDR), identity-driven segmentation, policy decision point/orchestration design, and integration of identity context into SIEM, XDR, and SOAR workflows. Attendees will leave with actionable techniques for securing machine identities, enforcing least privilege at scale, validating trust signals in real time, and operationalizing Zero Trust across multi-cloud and SaaS ecosystems.