Unlock the full potential of your cybersecurity career at SANS Nashville Winter 2026 (January 12-17, CT). Guided by world-renowned instructors at the forefront of the field, this event provides exclusive access to live industry experts, ensuring you stay ahead of the curve. Immerse yourself in a learning environment that features industry-leading hands-on labs, simulations, and exercises, all geared towards practical application in your profes...

Branch offices, remote campuses, and distributed OT/IoT environments have long relied on legacy VPNs, firewalls, and replicated security stacks to stay connected and secure. But these approaches introduce high costs, operational complexity, and leave dangerous gaps—especially around lateral movement within branch networks. In this SANS First Look webcast, we explore how Zscaler’s Zero Trust Branch (ZTB) introduces a new, streamline...

Bootstrap means to start with “existing resources,” is commonly used with startup companies, and is far more widely applicable. There are many examples of successful bootstrapping and many advantages. Tenable, Sourcefire (acquired by Cisco for $2.7 billion), Malwarebytes, and SolarWinds are all companies that were bootstrapped. Wireshark and OSSEC are open source projects that were bootstrapped. The BSides conferences were bootstra...

Operational Technology (OT) environments are more dependent than ever on remote access—for vendor support, troubleshooting, and data sharing—yet each connection can expand the attack surface. From disruptive ransomware to the cascading impacts seen in events like Ukraine’s 2015 grid attacks and Colonial Pipeline, the lesson is clear: Remote access is both a necessity and a potential vulnerability. This webcast distills guidan...

The SANS 2026 Kubernetes and CNAPP Forum is a focused, one-day event designed for security professionals, DevOps teams, and cloud architects seeking to secure modern, containerized applications. As Kubernetes and Cloud-Native Application Protection Platforms (CNAPPs) become core to enterprise infrastructure, this forum explores the evolving threat landscape, key attack vectors, and emerging defense strategies. Through expert-led sessions, tech...

The Model Context Protocol (MCP) is becoming increasingly important in enabling and expanding the capabilities of agents. By allowing agents to take actions on behalf of users, MCP raises critical questions around authentication and authorization. In this webcast, we will dissect the challenges of secure delegation, explore various approaches to authentication and authorization, and discuss potential security risks and best practices for mitig...

Join us for the grand finale of the Holiday Hack Challenge 2025 where we’ll reveal the names of the big winners as we bid farewell to another chapter of challenges, victories, and innovation! As we wrap up the year, we'll take you behind the scenes to explore the 2025 challenges and share a few tips and insights that will prepare you for the 2026 journey, as always, promising an even more thrilling experience. Tune in with Chief Holiday...

The rapid adoption of artificial intelligence (AI) across enterprises is transforming decision-making and efficiency. But with these benefits come new data security risks—ranging from inadvertent exposure of sensitive PII to gaps in existing data loss prevention (DLP) programs. Traditional controls, built for data at rest and in transit, often fail to keep pace with the dynamic nature of AI deployments and the growing volume of business...

In an era of relentless and increasingly stealthy cyber threats, security operations centers (SOCs) are under pressure to investigate and respond faster than ever without sacrificing accuracy or defensibility. The traditional separation between digital forensics and incident response (DFIR) no longer fits the scale or speed of modern attacks. This session explores the strategic shift toward unified DFIR platforms that merge forensic-grade inve...

Join us for our 14th Annual SANS Cyber Threat Intelligence Summit – an event devoted solely to the tradecraft of cyber threat analysis and intelligence. Gain fresh perspectives and insights from leading practitioners who will share the latest real-world case studies, innovative techniques, and practical solutions designed to challenge CTI assumptions and deepen your understanding. A key highlight of the Summit is the curated networking,...