CISSP members can fill in their CISSP ID# when they register for conference training and SANS will submit a request to CISSP for the attendee to receive credit for SANS CPEs earned.
If you participated in training other than conference training, such as the Mentor Program, SANSonDemand or vLive!, you may logon to your account and download a copy of your certificate of completion. CPEs are not awarded for recertification.
Self study students can submit CPEs, but we no longer supply Certificates of Completion since we have no way of knowing the material was completed. We recommend Self Study students complete their GIAC certification which is evidence of completion.
You earn 1 CPE credit for ISC2 per hour of SANS training. A conference usually lasts 6 days for 6 hours a day, which would be 36 credits. Students can earn CPE credits through the Mentor Program, vLive!, OnDemand, Onsite, and Conferences.
SANS will submit CPE credits to ISC2 if you enter your CISSP# whenregistering.
Job-Based (Long) Courses
These courses address a range of skill sets including entry level information security and broad based security essentials, as well as advanced subject areas like audit, intrusion detection, incident handling, firewalls and perimeter protection, forensics, hacker techniques, and Windows and Unix operating system security.
- Audit 410 :: IT Security and Control Essentials
- Audit 507 :: Auditing Networks, Perimeters, and Systems
- Legal 523 :: Legal Issues in Information Technology and Information Security
- Management 411 :: SANS 17799/27001 Security & Audit Framework
- Management 414 :: SANS +S Training Program for the CISSP Certification Exam
- Management 512 :: SANS Security Leadership Essentials for Managers with Knowledge Compression
- Management 525 :: Project management and Effective Communications for Security Professionals and Managers
Security 301 :: Introduction to Information Security
- Security 401 :: SANS Security Essentials Bootcamp Style
- Security 502 :: Perimeter Protection In-Depth
- Security 503 :: Intrusion Detection In-Depth
- Security 504 :: Hacker Techniques, Exploits and Incident Handling
- Security 505 :: Securing Windows
- Security 506 :: Securing Unix/Linux
- Security 542 :: Web App Penetration Testing and Ethical Hacking
- Security 560 :: Network Penetration Testing and Ethical Hacking
- Security 617 :: Assessing and Securing Wireless Networks
- Forensic 408 :: Computer Forensic Essentials
- Forensic 508 :: Computer Forensic Investigations and Incident Response
- Forensic 610 :: Reverse-Engineering Malware: Malware Analysis Tools and Techniques
Skill-Based (Short) Courses
Skill-based courses address a specific skill set in audit, legal, management and security.
- Audit 305 :: Technical Communication and Presentation Skills for Security Professionals
- Audit 429 :: IT Security Audit Essentials Bootcamp
- Audit 440 :: 20 Critical Security Controls: Planning, Implementing, and Auditing
- Audit 521:: Meeting the Minimum: PCI/DSS 1.2: Becoming and Staying Compliant
- Developer 532 :: Essential Secure Coding in ASP.NET
- Developer 541 :: Secure Coding in Java/JEE: Developing Defensible Applications
- Developer 544 :: Secure Coding in .NET: Developing Defensible Applications
- Forensic 526 :: Advanced Filesystem Recovery and Memory Forensics
- Management 305 :: Technical Communication and Presentation Skills for Security Professionals
- Management 404 :: Fundamentals of Information Security Policy
- Management 421 :: SANS Leadership and Management Competencies
- Management 438 :: How to Establish a Security Awareness Program
- Management 442 :: Information Security Risk Management
- Security 434 :: Log Management in-Depth: Compliance, Security, Forensics, and Troubleshooting
- Security 464 :: Hacker Detection for Systems Administrators with Continuing Education Program
- Security 517 :: Cutting-Edge Hacking Techniques
- Security 531 :: Windows Command-Line Kung Fu In-Depth for Info Sec Pros
- Security 546 :: IPv6 Essentials
- Security 550 :: Information Reconnaissance: Competitive Intelligence and Online Privacy
- Security 569 :: Combating Malware in the Enterprise: Practical Step-by-
- Security 577 :: Virtualization Security Fundamentals
- Security 580 :: Metasploit Kung Fu for Enterprise Pen Testing
Certificates of attendance for webcasts can be found by clicking on "My Webcasts" under "Account Details" on your account dashboard.
Certificates of attendance for webcasts can be found by clicking on "My Webcasts" under "Account Details" on your account dashboard.
Once an individual has earned GIAC Silver Certification, an option will appear in their Account Dashboard (https://www.sans.org/account/) to apply for GIAC Gold. This option will only be available for as long as the individual maintains a valid GIAC Silver Certification. The individual has to maintain their GIAC Silver Certification while working on their GIAC Gold Certification. To apply for GIAC Gold Certification, an individual must complete the application form in the Account Dashboard. The more initial information that is provided, the more likely it can be accepted promptly. Once the concept is accepted, the individual will need to pay the registration fee and will be contacted by their assigned GIAC Gold Adviser within 5 business days to begin setting the path to completion. The complete timeframe to complete the technical paper is six months.
SANS Training provides a core set of educational courses designed to help you master the practical steps necessary for defending your systems and networks against the most dangerous threats - the ones being actively exploited. The courses were developed through the community consensus of hundreds of administrators, security managers, and information security professionals, and address both security fundamentals and the in-depth technical aspects of the most crucial areas of information security. SANS Training courses can be taken on their own, or to help you prepare for the GIAC Certifications.
Please see our SANS Course Map at http://www.sans.org/sanscourses.php
The URL for the SANS Technology Institute is http://www.sans.edu
SANS courses and GIAC Certifications that are related to the curriculum of the SANS Technology Institute's Master's Degree program can be grandfathered into the Master's program provided that the GIAC Certification is current and the related Silver exam scores average 80 or higher. In addition, as an important prerequisite to admission to the Master's Program, applicants must already hold a current GIAC Gold Certification (written paper) in at least one major Certification related to the Master's curriculum with related Silver exam scores averaging 80 or higher.
The courses are designed to be taken either independently, or in series. Students can take individual courses to focus on specific areas of interest or responsibility. Or, courses can be taken sequentially, to provide a progressive education in information security, from basic concepts to in-depth technical knowledge.
No. SANS Security Essentials is a good starting point if you are new to security, or if you want a broad overview of security topics as opposed to focusing on a specific technology, but it is not a prerequisite. Students are free to take any courses in any order that they like.
The method that is best for you will depend on a number of factors, including time, cost, and how you learn best. Some students prefer conferences because the material is presented live, in a short period of time, and you can interact directly with an instructor to ask questions. Some prefer online training because it is convenient and you can work at your own pace, though it takes discipline to make the time in your schedule to learn the material. Others prefer the Mentor Sessions as they are smaller classes; taught at a slower pace and in a local setting.
There are 5 National Conferences which are our premier events that feature additional evening talks, Vendor expo and lunch activities and the networking opportunity with many other attendees. Regular Conference events do not include Vendor expos, lunch activities and evening talks.
You do incur travel costs such as hotel, food and transportation if you are not local.
Community SANS takes the exact same content you would get at conferences, where there is a single class held in your local community. The size of the class is smaller (approximately 20 people).The tuition is lower and you have little to no travel costs/time. The networking is with professionals from your own local community which holds its own value.
Community SANS events offer their own advantages (smaller class vs. more people, lower cost vs. additional activities) and of course schedule or travel can sometimes be the determining factor. These community events feature SANS Certified instructors and are held in various locations around the world and are led by real world practitioners trained by SANS Fellows.
SANS Regional Conferences are smaller conference-style events that feature five to ten SANS live training courses and may include such features as SANS@Night evening talks, Vendor expos and Lunch and Learns.
These are Mentor lead classes at your workplace. Classes usually can be scheduled to work around your organization's needs as they can meet over multiple sessions, days, evenings and even weekends! Visit: http://www.sans.org/mentor/at-work for more information or contact firstname.lastname@example.org.
There are no official prerequisites. However, students should be aware of the technical level of the course they wish to take. Information Security Officer training is intended as an introductory level track for those just getting started in security. SANS Security Essentials is a basic level course, targeted at students who have at least some familiarity with security concepts, networking, and operating system administration. To test your knowledge of TCP /IP see www.sans.org/conference/tcpip_quiz.php.
The SANS Institute is the leading provider of information security training and the trusted source for information security certification and research. Part of the SANS mission is to ensure that information security practitioners in critical organizations have the skills needed to protect national security.
The SANS Partnership Series is an outreach program created to provide highly discounted training to support constituencies that have:
1) A clear impact on national security 2) Large numbers of information security practitioners 3) Budget constraints that limit access to necessary training
Current eligible critical constituencies include:
- Educational Institutions - State & Local Law Enforcement - State & Local Government - Developing Nations/International Partners to the US
The secret to this successful program is cost reduction realized by delivering the courses to large classes (125 or more).
The OnSite program allowed many of our members to attend that have had restrictions on out of state travel. Additionally, all who attended appreciated the lower cost of hotel and other amenities compared to the larger cities where SANS events are hosted. - Randy Raw, Manager, Network Security, University of Missouri.
"Security Awareness, Training and Education are still the best-return-on-investment for your security program and SANS is the strategy to meet that goal/objective
We hope to continue to offer this type and level of training not just for UGA, but 'outside the ARCH' both regionally and nationally." - Stan Gatewood, UGA Chief Information Security Officer.
Please visit https://www.sans.org/partnership/ page for a list of classes.
Please visit our https://www.sans.org/partnership/ page for a list of classes.
COINS is the acronym for Community Of Interest for Network Security. It was developed as a way of supporting local professional information and cyber security groups by offering SANS instructors and SANS Content to local InfoSec Chapters all over the U.S and Canada. We support associations like: Information System Security Association (ISSA), Information Systems Audit and Control Association (ISACA) , High Tech Crimes Association (HTCIA), Infragard and others.
We provide you with one of our qualified SANS Instructors that can teach on various topics. For more information on how we can work with your organization. For more information on scheduled training events, go to http://www.sans.org/coins/.
SANS OnSite Training is a cost-effective alternative to our conferences. If your organization has 25 or more people (35 or more outside of the US) who have similar training needs, then consider SANS training at your facility. Our OnSite training offers about a 20-35% discount off our conference fees per student while saving approximately $50,000 in travel expenses for 25 students. For more information see, http://www.sans.org/onsite.
SANS Institute is committed to assisting course participants subject to disabilities. SANS will provide the following at no additional cost to the employers of participants with disabilities: an additional seat in the classroom and an additional set of course materials for Auxiliary Aides and/or the course notes in computer-readable format, as requested by the participant's employer. The employer of the participant shall be responsible for all other costs of any necessary accommodation, including arranging and paying for Auxiliary Aides. The employer may call (301) 654-7267 or email email@example.com to request that SANS Institute make the arrangements for Auxiliary Aides and bill the costs to the employer. It is the responsibility of the employer to confirm with SANS all such arrangements at least four weeks before the course.
You cannot transfer, share or give your self study material to another person. The following is noted when you access your course material through your account.
"Important Notice: By accessing the SANS GIAC online course material, practice tests, exams, and related files, the student agrees to the following.
I understand that my license to use SANS electronic course materials is exclusively for my individual professional development. I will not transfer nor will I allow others to use the course materials or the test questions. I will not use any part of this material for teaching others nor will I incorporate it, nor allow it to be incorporated, in any other training materials or publications, electronic or print, without prior specific written consent of the SANS Institute."
We appreciate your inquiry and you can cut out a paragraph or two at a time from the books but we ask that you don't duplicate full pages of the course material. Please give SANS reference where it is used.
At this point in time we are unable to give out geographical information on certified students. That may change, but for now, it's the case.
GIAC Gold will distinguish itself from the existing exam-only 'GIAC Silver' certification by requiring candidates to complete a technical report covering an important area of security related to the certification the student is seeking. After completing the exams necessary to pass the GIAC Silver certification, students will have the option to pursue the GIAC Gold Certification. Candidates will work closely with an adviser through the process of developing their technical report. Once complete, the technical report will be reviewed for acceptance into the SANS Reading Room and the student earning GIAC Gold. All GIAC certified professionals who previously completed a practical assignment under the old GIAC requirements are already considered GIAC Gold certified.
The SANS Institute is not an accredited educational institution that issues college credits that can be transferred. However, applicable SANS courses and GIAC Certifications can be grandfathered into the Master's Program of SANS Technology Institute as described above. Also, some other colleges offer degrees that accept life experience and other training for credit; so please check with individual schools to see if they will accept training for credit from the SANS Institute since it is known for the quality of its training.
All credits are submitted as Type A credits.
Bootcamp sessions are evening hands-on sessions that allow students to utilize the knowledge gained throughout the course in an instructor-led environment. Laptops are required.
Bootcamp sessions are optional, but highly recommended, especially for students who are attempting certification. These hands on sessions reiterate what students learn during the day sessions.
Students only need laptops in the evening for the hands-on labs during bootcamp. The 9am to 5pm class is lecture only.
The CISSP Bootcamp is utilized to take the 10 domain quizzes, grade them and then discuss the right and wrong answers. The quizzes are done with pencil and paper. No laptop is required,
The primary difference is that the CISSP focuses on concepts, which is of course essential. GIAC covers concepts, but focuses more on the practical skills needed to apply those concepts on the job. Another difference is that you must be a security professional with a minimum of three years of experience in the field before you are even allowed to sit for the CISSP. There is no experience requirement to sit for any of the GIAC certifications. Additional information on GIAC can be found at the FAQ link, above, or the GIAC home page at http://www.giac.org/.