SANS AI Cybersecurity Summit 2026

Mon, Apr 20 - Mon, Apr 27, 2026
9 Courses
12 CPEs (Summit Only)
English

Hilton Arlington Rosslyn The Key & Virtual (ET)

1900 Fort Myer Drive, Arlington, VA 22209

Jump to:

Event Highlights
Courses
Speakers
Sponsors
Schedule
Location

Summit: April 20-21 | Training: April 22 – 27 | Summit Chair: Rob T. Lee | In-Person and Live Online Summit CPE Credits: 12

Stay Ahead of Tomorrow’s Threats

Slide 1 of 2
Slide 2 of 2

The AI Cybersecurity Summit brings together the most critical aspects of AI in cybersecurity. From leveraging AI to strengthen your defenses to protecting against sophisticated AI-powered attacks that are already reshaping the threat landscape.

Join us in Arlington, VA, where you will have the opportunity to connect with cybersecurity professionals, AI/ML experts, and thought leaders to exchange insights, showcase innovative applications, and advance the use of AI-powered cybersecurity solutions.

You will gain a deeper understanding and how to better utilize these new methods for your cybersecurity strategy and operations.

"This is one of the best Summits SANS has ever delivered. We need more on AI!" - Geoff Parker, Diebold Nixdorf Inc.

What Attendees Say

Slide 1 of 4
Wide array of relevant topics of concern for AI use and risk considerations. One of the best virtual events I've attended.
Eric VollmanKemper
Slide 2 of 4
This is a critical information sharing and educational experience, and certainly amongst the best that SANS hosts. I'd recommend this summit for anyone involved with AI.
Geoff Parker
Slide 3 of 4
The workshop I selected was excellent, with a strong focus on practical labs, and I walked away feeling much more equipped to handle upcoming challenges in machine learning security. The presentation, content, and examples were top-notch, and I would highly recommend this workshop to anyone looking to deepen their understanding of adversarial ML.
In-Person AI Cybersecurity Summit Attendee, 2025
Slide 4 of 4
We can always rely on SANS for excellent educational data straight from the trenches.
J. Michael Butler

Summit Highlights

Highly Technical Talks, Sessions, & Workshops

Gain deeper understanding of how to deploy AI and Machine Learning across your cybersecurity strategy and operations while securing rapid AI transformation in every business unit.

One-Of-A-Kind Networking with Top Industry Minds

You’ll have the chance to engage with Summit Chairs, speakers, and your peers in the community for deep-dive discussions, and casual chats over breaks, meals, and evening receptions.

Summit@Night

The days will be filled with the latest in AI cybersecurity, but the fun goes up a notch at night for those joining us in Arlington.

Solutions Expo Hall

Explore the latest tools and solutions in AI cybersecurity.

World-Class SANS Courses

Enhance your knowledge base and add to your toolkit by bundling your Summit experience with a hands-on, immersive course taught by top SANS instructors and course authors.

Register

Summit and Course Registration

from $5,250 USD

In personIncludes

Course: Live Instructor Training with Hands-On Exercises
Summit: Talks, Presentations and Workshops
Summit: Unmatched Networking
Summit: Evening Receptions
Summit: Access to Summit Exhibit Hall
Summit: Lunch and light refreshments will be provided during the event and scheduled breaks

Select course to Enroll

Live onlineIncludes

Course: Virtual Live Instructor Training with Hands-On Exercises
Summit: Access to Select Talks
Summit: Interactive Chat on Slack
First Access to Approved Recordings and Decks

Select course to Enroll

Summit Registration Only

from Free

$525 USD*Prices exclude applicable local taxes

In personIncludes

Talks, Presentations and Workshops
Unmatched Networking
Evening Receptions
Access to Summit Exhibit Hall
Lunch and light refreshments will be provided during the event and scheduled breaks
First Access to Approved Recordings and Decks

Attend In PersonLogin to register

Free

Live onlineIncludes

Access to Select Talks
Interactive Chat on Slack
First Access to Approved Recordings and Decks

Important Dates

Refund Deadline:: April 3, 2026
Hotel Group Discount Deadline:: March 30, 2026

Courses

Looking for Group Purchasing? Contact Us

Showing 9 of 9

Filter by:

SEC504: Hacker Tools, Techniques, and Incident Handling

SEC504Offensive Operations

GIAC Certified Incident Handler
6 Days
38 CPEs
Joshua Wright

Starts 22 Apr 2026 at 8:30 AM ET
$8,780 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

SEC560: Enterprise Penetration Testing

SEC560Offensive Operations

GIAC Penetration Tester
6 Days
36 CPEs
Chris Elgee

Starts 22 Apr 2026 at 8:30 AM ET
$8,780 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

SEC511: Cybersecurity Engineering: Advanced Threat Detection and Monitoring

SEC511Cyber Defense

SEC511: Continuous Monitoring and Security Operations

GIAC Continuous Monitoring Certification
6 Days
46 CPEs
Seth Misenar

Starts 22 Apr 2026 at 9:00 AM ET
$8,780 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

FOR578: Cyber Threat Intelligence

FOR578Digital Forensics and Incident Response

GIAC Cyber Threat Intelligence
6 Days
36 CPEs
John Doyle

Starts 22 Apr 2026 at 8:30 AM ET
$8,780 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

SEC595Cyber Defense, Artificial Intelligence

GIAC Machine Learning Engineer
6 Days
36 CPEs
Christopher Crowley

Starts 22 Apr 2026 at 8:30 AM ET
$8,780 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

SEC598: AI and Security Automation for Red, Blue, and Purple Teams

SEC598Offensive Operations, Artificial Intelligence

GIAC AI Security Automation Engineer
6 Days
36 CPEs
Jason Ostrom

Starts 22 Apr 2026 at 8:30 AM ET
$8,780 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

LDR514: Security Strategic Planning, Policy, and Leadership

LDR514Cybersecurity Leadership

GIAC Strategic Planning, Policy, and Leadership
5 Days
30 CPEs
Russell Eubanks

Starts 22 Apr 2026 at 8:30 AM ET
$8,260 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

SEC535: Offensive AI - Attack Tools and Techniques

SEC535Offensive Operations, Artificial Intelligence

GIAC Offensive AI Analyst
3 Days
18 CPEs
Moses Frost

Starts 22 Apr 2026 at 8:30 AM ET
$5,250 USD (Course)
$999 USD (Certification)
*Prices exclude applicable local taxes

View course details

SEC545: (5-Day) GenAI and LLM Application Security

SEC545Cloud Security, Artificial Intelligence

SEC545: GenAI and LLM Application Security

GIAC AI Platform Security
5 Days
30 CPEs
Ahmed Abugharbia & Viswanath Chirravuri

Starts 22 Apr 2026 at 8:30 AM ET
$8,260 USD (Course)
*Prices exclude applicable local taxes

View course details

Featured Speakers

Julie Davila

VP of Product Security

Julie Davila is VP of Product Security at GitLab, where she enables critical infrastructure software factories to develop secure software faster. Her career has spanned from US Army service to NASA, where she helped implement the first federal AWS migration.

Learn more

Diana Kelley

CISO

Diana Kelley is the CISO at Noma Security where she serves as a trusted advisor to customers while spearheading strategic programs to support continuous innovation and AI security leadership.

Learn more

Jacob Klein

Head of Threat Intelligence

Jacob Klein currently serves as the Head of Threat Intelligence at Anthropic. He leads a specialized team dedicated to detecting and investigating sophisticated real-world AI misuse cases, translating these insights into robust safeguards that protect against emerging threats.

Learn more

Pliny the Liberator

“Pliny the Liberator” is an anonymous internet personality with a penchant for poking holes in billion-dollar AI systems.

Learn more

Bruce Schneier

Fellow & Lecturer

Bruce Schneier is an internationally renowned security technologist, called a "security guru" by the Economist. He is the New York Times best-selling author of 14 books - including Rewiring Democracy and A Hacker's Mind.

Learn more

Sounil Yu

Co-founder and Chief AI Safety Officer

Sounil Yu is the Founder and CTO of Knostic, and a leading voice in AI cybersecurity innovation. He is the creator of the Cyber Defense Matrix and the DIE Resiliency Framework.

Learn more

Thank You To Our Sponsors

Schedule

Summit Dates

April 20-21

Training Dates

April 22 – 27

Showing 16 of 31

Filter by:

Select day:

Credential Pick Up

08:00AM - 09:00AM EDT

In Person

Opening Remarks

09:00AM - 09:10AM EDT

Presented by

Rob T. Lee

Fellow

In-Person & Virtual

Keynote: Announcement Coming Soon

09:10AM - 09:35AM EDT

In-Person & Virtual

Keynote: Integrous AI

In computer security, the CIA Triad represented the three security properties systems should have: confidentiality, integrity, and availability. Of the three, integrity has been the most elusive; and, in an AI-powered internet-of-things world, the most important. This talk explores all the facets of integrity: data, processing, storage, and contextual. Web 1.0 was all about availability; Web 2.0 about privacy. If we are ever going to build the distributed, decentralized, intelligent web of tomorrow - and trust these systems to take complex on our behalf - we are going to need to solve integrity.

09:40AM - 10:05AM EDT

Presented by

Bruce Schneier

Fellow & Lecturer

In-Person & Virtual

Keynote: This Is Not a Forecast: AI-Enabled Cyber, Twelve Months On

A year ago, AI-assisted cyber operations were mostly a trouble-shooting story, threat actors trouble-shooting tasks faster. That's no longer the picture.

10:10AM - 10:35AM EDT

Presented by

Jacob Klein

Head of Threat Intelligence

In-Person & Virtual

Break

10:40AM - 11:00AM EDT

In-Person & Virtual

Keynote: Announcement Coming Soon

11:00AM - 11:25AM EDT

In-Person & Virtual

Fireside Chat—Day 1 Keynotes

11:30AM - 12:15PM EDT

Moderated by

Rob T. Lee

Fellow

Presented by

Bruce Schneier

Fellow & Lecturer

Jacob Klein

Head of Threat Intelligence

In-Person & Virtual

Lunch

12:15PM - 01:30PM EDT

In-Person & Virtual

SANS360 Lightning Talks: 10 speakers—6 minutes each: Problem-To-Solution-Next

Topics to Include:

"Predictive AI Shrinks Brand Takedown Cycles: Weeks of Manual Triage to <7 Minutes, $12M ROI"

"AI Security Reality Check: Stop Chasing Shiny Threats, Do the Basics"

01:30PM - 02:30PM EDT

Presented by

Ismael Valenzuela

Senior Instructor

Harry Thomas

CTO and Co-Founder

Daniel Bardenstein

CEO & Co-Founder

Yotam Perkal

Research Director

Zakery Stufflebeam

Director Information Technology Security

Dr. Kellep Charles

Cybersecurity Department Chair

Andre Piazza

Cybersecurity Strategist

In-Person & Virtual

Workshop: Hands-on threat modelling with the OWASP AI Exchange

We all want to connect AI to everything and provide it with our data — as long as we can trust it. But how do we secure it? First, we need to understand what can go wrong: we need to identify and understand the threats.

02:30PM - 04:00PM EDT

Presented by

Rob van der Veer

Chief AI Officer

Disesdi Shoshana Cox

CEO & Head of Research

In-Person Only

SANS AI Gauntlet: Live Cyber Range Experience!

12 AI-powered cyber threat challenges 6 hours across two days Live scoreboard + competition format Based on real-world adversary tactics

02:30PM - 05:30PM EDT

In-Person Only

Workshop: Powerful AI/ML Techniques for Surfacing Attacker Activity

Participants will leave being able to perform both AI and ML techniques for surfacing attacker activity in logs. The participant will learn about LLM limitations and how they can be overcome with additional ML techniques that allows an analyst to analyze larger data sets.

02:30PM - 05:30PM EDT

Presented by

Matthew Seyer

Director

Devanshi Agnihotri

Associate

In-Person Only

Workshop: Offensive AI In Practice: Hands on Exploitation of Vulnerable Applications Using Open Source AI Tools

AI is not replacing attackers, it is amplifying their capability, speed, and scale. This fully hands on workshop walks participants through deploying a vulnerable application locally using Docker and executing real exploitation exercises in a controlled environment.

02:30PM - 05:30PM EDT

Presented by

Andy Dennis

Head of Field Engineering

In-Person Only

Workshop: Hacking a Smart Pizza Place with the OWASP AI Exchange—PwnzzAI!

This workshop introduces participants hands-on to the security of AI systems, using the OWASP AI Exchange (owaspai.org) as a framework. Attendees will gain insight through hacking labs how modern AI architecture operates, how it can be attacked, and how to secure them in real-world deployments. The workshop covers threats to LLMs and to conventional machine learning models, covering critical risks such as prompt injection, sensitive data leakage, model and data poisoning, supply chain threats, vector database vulnerabilities, excessive agent behavior, system prompt exposure, misinformation, and resource abuse.

04:00PM - 05:30PM EDT

Presented by

Aruneesh Salhotra

CEO/CISO

Maryam Mouzarani

Software Red Teamer

In-Person Only

SANS@Night: Innovate. Connect. Unwind.

Join us at SANS@Night for an evening of networking with AI/ML experts and industry leaders at the Continental Pool Hall & Beer Garden. Exchange ideas, spark collaborations, and unwind with the brightest minds in AI.

Location: Continental Pool Lounge & Beer Garden

06:00PM - 08:00PM EDT

1911 Fort Myer Dr, Arlington, VA 22209

Credential Pick Up and Networking Breakfast

08:00AM - 09:00AM EDT

In Person

Opening Remarks: Rob Lee

09:00AM - 09:10AM EDT

Presented by

Rob T. Lee

Fellow

In-Person & Virtual

Keynote: Claw and Order: Protecting Your Shell from Bottom Dwellers

The rise of OpenClaw hints at the pent-up demand for a truly useful personal AI assistant. Despite all our efforts to create layered security boundaries and implore adherence to principles like Zero Trust, it seems like all that was thrown out the window as millions rushed to install OpenClaw and experience an AI personal assistant that actually does things for you.

09:10AM - 09:35AM EDT

Presented by

Sounil Yu

Co-founder and Chief AI Safety Officer

In-Person & Virtual

Keynote: Cram it up your Cramhole, LaFleur: Understanding and Managing Indirect Prompt Injection

Indirect prompt injection is not just another vulnerability to patch. It is a structural reality of how large language models operate. This session explores how the context window, or "cram hole," contributes to the success of prompt injection exploits and why that reality fundamentally reshapes how we must think about trust, control, and data boundaries in AI systems.

09:40AM - 10:05AM EDT

Presented by

Diana Kelley

CISO

In-Person & Virtual

Keynote: The Boring Seams

The industry is fixated on the model. Jailbreaking it, guarding it, aligning it. But the most consequential AI security vulnerabilities aren't in the AI. They reside in the orchestration layer: serialization boundaries, state management, credential stores, and trust boundaries between agents. Old bug classes, new topology.

10:10AM - 10:35AM EDT

Presented by

Julie Davila

VP of Product Security

In-Person & Virtual

Break

10:40AM - 11:00AM EDT

In-Person & Virtual

Keynote

11:00AM - 11:25AM EDT

Presented by

Pliny the Liberator

In-Person & Virtual

Fireside Chat—Day 2 Keynotes

11:30AM - 12:15PM EDT

Moderated by

Rob T. Lee

Fellow

Presented by

Pliny the Liberator

Sounil Yu

Co-founder and Chief AI Safety Officer

Julie Davila

VP of Product Security

Diana Kelley

CISO

In-Person & Virtual

Lunch

12:15PM - 01:30PM EDT

In-Person & Virtual

AI Security Policy Forum - organized by OWASP AI Exchange and SANS (Invitation Only)

INVITATION ONLY

AI Security Policy Forum, April 21, 12:30-4:30 PM

A closed, invite-only gathering of selected policy stakeholders and standardization leaders. Convened by the OWASP AI Exchange, in partnership with SANS Institute. The forum will take place on April 21 alongside the SANS AI Summit at a venue nearby.

12:30PM - 04:30PM EDT

Invitation Only

SANS360 Lightning Talks: 10 speakers—6 minutes each: Problem-To-Solution-Next

Topics to Include: "MCP Under Attack: Securing the New Trusted Control Plane"

"AI Isn’t the Risk. We Are, and That’s Where Security Must Change."

"120 Days to AI-Driven QA/QC for Power Systems: Governing Accountability and Cyber Risk"

01:30PM - 02:30PM EDT

Presented by

Yaamini Barathi Mohan

Vice President

Dr. Ferhat Dikbiyik

Chief Research & Intelligence Officer (CRIO)

Teri Green

Vice President of Technology

Bryant Pickford

Security Specialist Solutions Architect

Ugur Koc

SR. AI R&D Engineer

Marissa Morales-Rodriguez, Ph.D.

Founder and Technology Security Strategist

Sydney Marrone

Head of Threat Hunting

Yevhen Pervushyn

Founder & Security Researcher

In-Person & Virtual

Workshop: OWASP FinBot Lab: Exploit and Secure an Agentic Vendor Management System

In this immersive, hands-on workshop, participants will use FinBot—an interactive, multi-agent Capture-the-Flag (CTF) platform—to attack and then defend a realistic agentic financial workflow:

Invoice Intake → Validation → Approval → Funds Transfer → Reconciliation

02:30PM - 05:30PM EDT

Presented by

Helen Oakley

VP of Software and AI Security

Venkata Sai Kishore Modalavalasa

Chief Architect

In-Person Only

Workshop: Building the AI-Supercharged TIP on the Lakehouse: From Raw Signals to Intelligence at Scale

Modern cyber defenders are inundated with vast volumes of raw threat reports, advisories, technical analyses, incident summaries, and narrative threat write-ups, which are rich in context but unstructured and difficult to operationalize. In this hands-on workshop, participants will learn how to build an AI-augmented threat intelligence platform using a popular data Lakehouse, the free edition of Databricks, that transforms unstructured reports into structured, actionable intelligence and then applies Generative AI features and analytics to extract high-value insights at scale.

02:30PM - 05:30PM EDT

Presented by

Ismael Valenzuela

Senior Instructor

Markus Neis

Senior Cybersecurity Leader

In-Person Only

SANS AI Gauntlet: Live Cyber Range Experience!

12 AI-powered cyber threat challenges 6 hours across two days Live scoreboard + competition format Based on real-world adversary tactics

02:30PM - 05:35PM EDT

In-Person Only

Breakfast Networking Reception

Please join us for an In-Person Networking Breakfast. Share stories, make connections, and learn how to make the most of your week in Arlington, VA. Complimentary coffee and breakfast items to be provided. Hope to see you there!

07:30AM - 09:00AM EDT

In-Person

Hilton Arlington Rosslyn The Key

Hotel Special Rates and Reservations

A special discounted rate of $289.00 S/D plus applicable taxes will be honored based on space availability. A limited number of Government Per Diem rooms at the prevailing rate are available with proper ID.

These rates include Internet in your room and are only available through Monday, March 30, 2026.

SANS attendees will receive a discounted parking rate of $20 per day. Parking is discounted to $30 per overnight with in-and-out privileges for attendees who book in the SANS room block.

Book A Regular Reservation Book A Government Per Diem reservation

3 Reasons To Stay At The Event Venue

Ultimate Convenience
Eliminate the hassle of daily commutes and wasted travel time. You’ll have everything you need—from your training to dining and amenities - all in one centralized, convenient location.
Seamless Networking Opportunities
Stay where the action is! Maximize your chances to connect with fellow cybersecurity professionals and industry leaders - from impromptu conversations in the lobby to exclusive after-hours events.
All Day, All Event Access
SANS live training events include bonus sessions exclusively at the venue. Staying on-site ensures you won’t miss these opportunities to grow your network and engage with peers beyond the conference agenda.

More Information

- SANS attendees will receive a discounted parking rate of $20 per day. Parking is discounted to $30 per overnight with in-and-out privileges for attendees who book in the SANS room block. Venue Parking Details - Self-Parking: $45 per day Rate listed is prevailing and subject to change. Alternative Parking Options - SANS recommends researching nearby parking facilities for more options. Some popular parking apps that can help you locate and reserve space during your training are SpotHero, ParkMobile, and ParkWhiz Distances from Nearby Airports - Ronald Reagan Washington National Airport (DCA): Approximately 4 miles - Dulles International Airport (IAD): Approximately 2.8 miles

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

SANS AI Cybersecurity Summit 2026

Share

Stay Ahead of Tomorrow’s Threats

What Attendees Say

Summit Highlights

Highly Technical Talks, Sessions, & Workshops

One-Of-A-Kind Networking with Top Industry Minds

Summit@Night

Solutions Expo Hall

World-Class SANS Courses

Register

Summit and Course Registration

Summit Registration Only

Courses

GIAC Certifications

Extra 4 Months of Course Access

SEC504: Hacker Tools, Techniques, and Incident Handling

Quick view

SEC560: Enterprise Penetration Testing

Quick view

SEC511: Cybersecurity Engineering: Advanced Threat Detection and Monitoring

Quick view

FOR578: Cyber Threat Intelligence

Quick view

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

Quick view

SEC598: AI and Security Automation for Red, Blue, and Purple Teams

Quick view

LDR514: Security Strategic Planning, Policy, and Leadership

Quick view

SEC535: Offensive AI - Attack Tools and Techniques

Quick view

SEC545: (5-Day) GenAI and LLM Application Security

Quick view

Featured Speakers

Julie Davila

Diana Kelley

Jacob Klein

Pliny the Liberator

Bruce Schneier

Sounil Yu

Thank You To Our Sponsors

Schedule

Summit Dates

Training Dates

Credential Pick Up

Opening Remarks

Keynote: Announcement Coming Soon

Keynote: Integrous AI

Keynote: This Is Not a Forecast: AI-Enabled Cyber, Twelve Months On

Break

Keynote: Announcement Coming Soon

Fireside Chat—Day 1 Keynotes

Lunch

SANS360 Lightning Talks: 10 speakers—6 minutes each: Problem-To-Solution-Next

Workshop: Hands-on threat modelling with the OWASP AI Exchange

SANS AI Gauntlet: Live Cyber Range Experience!

Workshop: Powerful AI/ML Techniques for Surfacing Attacker Activity

Workshop: Offensive AI In Practice: Hands on Exploitation of Vulnerable Applications Using Open Source AI Tools

Workshop: Hacking a Smart Pizza Place with the OWASP AI Exchange—PwnzzAI!

SANS@Night: Innovate. Connect. Unwind.

Credential Pick Up and Networking Breakfast

Opening Remarks: Rob Lee

Keynote: Claw and Order: Protecting Your Shell from Bottom Dwellers

Keynote: Cram it up your Cramhole, LaFleur: Understanding and Managing Indirect Prompt Injection

Keynote: The Boring Seams

Break

Keynote

Fireside Chat—Day 2 Keynotes

Lunch

AI Security Policy Forum - organized by OWASP AI Exchange and SANS (Invitation Only)

SANS360 Lightning Talks: 10 speakers—6 minutes each: Problem-To-Solution-Next

Workshop: OWASP FinBot Lab: Exploit and Secure an Agentic Vendor Management System

Workshop: Building the AI-Supercharged TIP on the Lakehouse: From Raw Signals to Intelligence at Scale

SANS AI Gauntlet: Live Cyber Range Experience!

Breakfast Networking Reception

Hilton Arlington Rosslyn The Key

3 Reasons To Stay At The Event Venue

Ultimate Convenience