SANS Institute

Wikipedia

SANS Institute
AbbreviationSANS
Formation1989; 36 years ago (1989)
Location
  • United States
Website

The SANS Institute (officially the Escal Institute of Advanced Technologies) is a private U.S. for-profit company[1] founded in 1989 that specializes in information security, cybersecurity training, and selling certificates. Topics available for training include cyber and network defenses, penetration testing, incident response, digital forensics, and auditing.[2] The information security courses are developed through a consensus process involving administrators, security managers, and information security professionals. The courses cover security fundamentals and technical aspects of information security. The institute has been recognized for its training programs[3] and certification programs.[4] Per 2021, SANS is the world’s largest cybersecurity research and training organization.[5] SANS is an acronym for SysAdmin, Audit, Network, and Security.[6]

Programs

SANS sponsors several community resources including the Internet Storm Center, an internet monitoring system operated by volunteer security practitioners that provides analysis of emerging threats and has been recognized for identifying novel attack patterns[7]. The SANS Reading Room maintains an extensive archive of information security research documents that serves as a key resource for security professionals. SANS also co-founded the Center for Internet Security and provides cybersecurity news through various digital publications.

SANS offers news and analysis through Twitter feeds and e-mail newsletters. Additionally, there is a weekly news and vulnerability digest available to subscribers.[8]

Training

When originally organized in 1989,[9] SANS training events functioned like traditional technical conferences showcasing technical presentations. By the mid-1990s, SANS offered events which combined training with tradeshows. Beginning in 2006, SANS offered asynchronous online training (SANS OnDemand) and a virtual, synchronous classroom format (SANS vLive). Free webcasts and email newsletters (@Risk, Newsbites, Ouch!) have been developed in conjunction with security vendors. The actual content behind SANS training courses and training events remains "vendor-agnostic". Vendors cannot pay to offer their own official SANS course, although they can teach a SANS "hosted" event via sponsorship.

SANS training has evolved from traditional technical conferences to include asynchronous online training and virtual classrooms. The organization maintains a vendor-agnostic approach to content development. In 1999, SANS formed the Global Information Assurance Certification (GIAC) program, which provides certifications that are consistently ranked among the most valuable in the cybersecurity industry[10]. The institute also developed NetWars, a cyberattack simulation platform used by U.S. military organizations including the Air Force and Army.

It has developed and operates NetWars, a suite of interactive learning tools for simulating scenarios such as cyberattacks. NetWars is in use by the US Air Force[11] and the US Army.[12][13]

Faculty

The majority of SANS faculty are not SANS employees, but industry professionals and experts in the field of information security.[14][15] The faculty is organized into six different levels: Mentors, Community, Certified Instructors, Principal Instructors, Senior Instructors, and Fellows.[16]

SANS Technology Institute

As of 2006, SANS established the SANS Technology Institute, an accredited college based on SANS training and GIAC certifications. On November 21, 2013, SANS Technology Institute was granted regional accreditation by the Middle States Commission on Higher Education.[17]

SANS Technology Institute focuses exclusively on cybersecurity, offering a Master of Science degree program in Information Security Engineering (MSISE), five post-baccalaureate certificate programs (Penetration Testing & Ethical Hacking, Incident Response, Industrial Control Systems, Cyber Defense Operations, and Cybersecurity Engineering (Core), and an upper-division undergraduate certificate program (Applied Cybersecurity). SANS later launched a bachelor's degree program in Applied Cybersecurity as well.[18]

SANS continues to offer free security content via the SANS Technology Institute Leadership Lab[19] and IT/Security related leadership information.[20]

Courses & Certifications

SANS offers more than 85 cybersecurity courses covering topics such as penetration testing, incident response, cloud security, and digital forensics. The curriculum includes both technical training and security leadership education. GIAC certifications validate skills in specific security domains and are widely recognized for their rigor[21]and relevance to current security challenges.

Global Impact and Recognition

SANS maintains significant influence on international cybersecurity practices. The institute's curriculum aligns with the U.S. National Institute of Standards and Technology (NIST) NICE Cybersecurity Workforce Framework[22], and its training content addresses the core cybersecurity threats and priorities identified in official European Union cybersecurity frameworks.[23] The organization has been cited as a key solution to addressing the global cybersecurity skills gap[24], with its training programs helping to alleviate workforce shortages worldwide.

Criticism and Controversy

The SANS Institute has faced criticism regarding the high cost of its training programs and certifications, with public debates about their return on investment for individual professionals[25]. The ethical nature of some course content has also been questioned. For instance, courses covering "active defense" and "hack back" techniques have been noted to sit in a legal and ethical grey area[26]. In a notable incident that challenged the institute's security posture, SANS confirmed a 2020 data breach that compromised the personal information of thousands of users[27].

Awards Programs

SANS acknowledges the contributions made by exceptional information security professionals, through its annual awards programs.[28]

  • Difference Makers Awards (DMA) celebrates individuals or teams whose efforts and contributions have resulted in significant advancements in cybersecurity defense capabilities and who are contributing back to the information security community in ways that deserve recognition.[29][30]
  • Michael J. Assante ICS Security Lifetime Achievement Award acknowledges individuals who have made exceptional contributions to the security of Industrial Control Systems (ICS) on a global scale. Recipients are celebrated for their efforts to bridge the gap between IT and operational technology (OT), significantly enhancing awareness and implementations of cyber-secure ICS.[31][32]

See also

References

  1. "What is the SANS Institute?". SANS Frequently Asked Questions (faq): Security Training: General. Retrieved 2012-09-19.
  2. "The SANS Institute Company Profile - Office Locations, Competitors, Revenue, Financials, Employees, Key People, Subsidiaries". crafit.io.
  3. "SC Magazine Awards 2015" (PDF). SC Magazine. Archived from the original (PDF) on 2018-08-07. Retrieved 2015-11-17.
  4. "2014 SC Awards U.S. Winners". SC Magazine. Retrieved 2015-11-17.
  5. Perlroth, Nicole (2021-11-15). "Alan Paller, a Mover on Cybersecurity Threat, Is Dead at 76". The New York Times. Retrieved 2022-03-19.
  6. "SANS Definition from PC Magazine Encyclopedia". www.pcmag.com. Retrieved 2016-09-14.
  7. Pauli, D (November 16, 2016). "DDoS back-off timer tickles SANS ISC's 'unbearable lightness of scanning'". The Register.
  8. Messier, Ric (2014). GSEC: GIAC Security Essentials Certification. New York: McGraw-Hill Education. p. 7. ISBN 978-0-07-181962-6.
  9. "SANS Institute: About". sans.org. Archived from the original on 2013-04-12. Retrieved 2008-12-16.
  10. Grimes, R.A. (January 10, 2023). "The top cybersecurity certifications for 2023". CSO Online.
  11. "Stepped Up Cyberthreats Prompt Air Force To Rethink Training, Acquisitions". Afcea International. Retrieved 2015-11-17.
  12. "Strengthening the nation's defense against hackers". www.cbsnews.com. 26 April 2015. Retrieved 2015-11-17.
  13. O'Harrow, Robert Jr (2012-11-26). "CyberCity allows government hackers to train for attacks". The Washington Post. ISSN 0190-8286. Retrieved 2015-11-17.
  14. Cyber Security Minute (15 February 2017). "Instructor Expertise".
  15. PacketStan. "What I Learned At Camp".
  16. SANS Technology Institute. "Instructors".
  17. "SANS Technology Institute, The - Statement of Accreditation Status". Middle States Commission on Higher Education. Retrieved 2022-03-19.
  18. "College Navigator-SANS Technology Institute, National Center for Education Statistics".
  19. "STI Information Security Laboratory". sans.edu. Archived from the original on 2010-12-20. Retrieved 2007-07-14.
  20. "STI Information Security Leadership Laboratory". sans.edu. Archived from the original on 2010-12-16. Retrieved 2007-05-10.
  21. Verton, D (February 16, 2004). "The 10 most difficult IT certifications". Computerworld.
  22. Petersen, R (2020). "Workforce Framework for Cybersecurity (NICE Framework)" (PDF). National Institute of Standards and Technology.
  23. Ifigeneia, Lella (October 2023). "ENISA THREAT LANDSCAPE 2023". European Union Agency for Cybersecurity.
  24. Finkle, J (March 19, 2012). "U.S. government, companies scramble to find cybersecurity pros". Reuters.
  25. Mello, J.P. (May 5, 2021). "Is that pricey cybersecurity certification worth it?". Forbes.
  26. Leyden, J (October 12, 2017). "SANS teaches infosec pros to hack back (and get away with it)". The Register.
  27. Gatlan, S (December 3, 2020). "SANS confirms data breach after hacker steals info for 28,000 users". Bleeping Computer.
  28. "Cybersecurity Awards | SANS Institute". www.sans.org. Retrieved 2024-02-08.
  29. Institute, SANS. "SANS Announces the 2021 Winners of the Difference Makers Awards". www.prnewswire.com (Press release). Retrieved 2024-02-11.
  30. "Nominations Now Open for the SANS 2020 Difference Makers Awards". AP News. 2020-10-01. Retrieved 2024-02-11.
  31. JupiterOne. "JupiterOne CISO and Head of Research Wins SANS Lifetime Achievement Award". www.prnewswire.com (Press release). Retrieved 2024-02-11.
  32. "Edwards is awarded SANS ICS Lifetime Achievement Award - ISA". isa.org. Retrieved 2024-02-11.