Cyber Defense Training

Employee, Contractor, Consultant: Which Work Model is Best for You?

We are lucky in Infosec. It may not be an easy field to get into, but once you’re in infosec, there is plenty of work available and many work models.

SANS 2025 Attack Surface & Vulnerability Management Survey: Hackers Don’t Wait—Why Should We?

This Attack Surface & Vulnerability Management Survey gathers insights from security leaders, practitioners, and researchers to map out the current state of attack surface and vulnerability management.

Fall Cyber Solutions Fest 2025: SOC Track

Join us to hear how others are succeeding and failing to maintain an operational balance between competing internal priorities and threats which seem to relentlessly improve.

Fall Cyber Solutions Fest 2025: Threat Track

In 2025, with AI and automation everywhere, it’s more important than ever to stay ahead of attackers, arming yourself with clear intelligence, full visibility, and smart processes to catch problems before they become crises.

Easing Into Consulting: Consulting on the Side & Other Approaches

Many people want to consult so they can choose their work, have more freedom, and have more opportunities to make great money. Yet many never start or start late.

Full Packet Capture as a Strategic and Regulatory Imperative

Cybersecurity leaders and compliance professionals are under increasing pressure to meet a growing array of global regulations—all while maintaining effective threat detection and response capabilities. Traditional monitoring is no longer enough. Full Packet Capture (FPC) is rapidly emerging as a foundational requirement—not only for real-time visibility and forensic analysis, but as a direct response to regulatory mandates in the U.S., EU, and beyond.

SANS Dallas 2025: SANS@Night - Honeypots at Scale: Insights From the SANS Internet Storm Center

This talk will use little PowerPoint but instead offer an engaging walk-through of recent events, how they manifested themselves in the ISC's data, how our different data feeds work, and more. A talk not just for packet connoisseurs but for everybody interested in a good story.

SANS Cyber Defense Initiative 2025: SANS@Night - Sorry if It's Hard to Catch My Vibe - A War Story of Vibe Coding Gone Wrong

In this talk, we'll take a look at an AI pentest report augmentation framework and the hurdles we faced whilst building it.

SANS Cyber Defense Initiative 2025: SANS@Night - How I've Changed the Way I Use AI in 2025

In this fast-paced, fun talk, we'll cover the top ways that I've improved my efficiency and productivity by changing the way I interact with AI in 2025 and into 2026.

SANS Cyber Defense Initiative 2025: SANS@Night - Pay to Play: Surviving and Winning Ransomware Negotiations in 2025

This isn't your typical "don't pay ransoms" talk. We'll explore the harsh realities where business continuity and regulatory pressure create impossible choices, providing practical frameworks for decision-making under duress, technical protocols for verifying attacker claims, and strategies for maintaining leverage when all seems lost.

CTI in the AI Arms Race: Building Resilient, Adaptive Intelligence Platforms for 2026

As adversaries harness AI to deploy polymorphic malware, agentic automation, and high-speed deception, defenders must respond with intelligent, explainable, and resilient threat intelligence systems.

2026 SANS State of Identity Threats & Defenses Survey Insights Event: How Identity Became the New Security Perimeter—And What’s Next

Overview Identity has become the new battleground. From SaaS to cloud to legacy Active Directory, it is now the central control point—and attackers know it.