Cyber Security Courses

This comprehensive catalog of more than 60 cyber security courses will advance your technical skills in any focus area, including pen test, cyber defense, forensics, threat intelligence and incident response, security management, critical infrastructure security, and secure development. Explore the full list of courses below, or use the SANS training roadmap to develop a personalized training path of your own.

Whether you're new to the field, a seasoned professional, or an experienced leader in the industry, there's a SANS course that will deliver the knowledge you need, along with relevant, practical hands-on skills you can use immediately.

Security

Course	Certification	Course Demo	Delivery Methods
SEC301: Introduction to Cyber Security	GISF	SEC301	Live Online
SEC401: Security Essentials Bootcamp Style	GSEC	SEC401	Live Online
New SEC402: Cybersecurity Writing: Hack the Reader	—	SEC402	Live Online
New SEC403: Secrets to Successful Cybersecurity Presentation	—	—	Online
SEC440: Critical Security Controls: Planning, Implementing, and Auditing	—	SEC440	Live Online
New SEC450: Blue Team Fundamentals: Security Operations and Analysis	—	SEC450	Live Online
SEC455: SIEM Design & Implementation	—	SEC455	Live Online
SEC460: Enterprise Threat and Vulnerability Assessment	GEVA	SEC460	Live Online
SEC487: Open-Source Intelligence (OSINT) Gathering and Analysis	—	SEC487	Live Online
Beta SEC488: Cloud Security Essentials	—	—	Live
SEC501: Advanced Security Essentials - Enterprise Defender	GCED	SEC501	Live Online
SEC503: Intrusion Detection In-Depth	GCIA	SEC503	Live Online
SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling	GCIH	SEC504	Live Online
New SEC505: Securing Windows and PowerShell Automation	GCWN	SEC505	Live Online
SEC506: Securing Linux/Unix	GCUX	SEC506	Live Online
SEC511: Continuous Monitoring and Security Operations	GMON	SEC511	Live Online
SEC530: Defensible Security Architecture and Engineering	GDSA	SEC530	Live Online
SEC534: Secure DevOps: A Practical Introduction	—	SEC534	Live Online
SEC540: Cloud Security and DevOps Automation	GCSA	SEC540	Live Online
SEC542: Web App Penetration Testing and Ethical Hacking	GWAPT	SEC542	Live Online
SEC545: Cloud Security Architecture and Operations	—	SEC545	Live Online
SEC546: IPv6 Essentials	—	—	Live Online
Beta SEC552: Bug Bounties and Responsible Disclosure	—	—	Live
SEC555: SIEM with Tactical Analytics	GCDA	—	Live Online
SEC560: Network Penetration Testing and Ethical Hacking	GPEN	SEC560	Live Online
SEC562: CyberCity Hands-on Kinetic Cyber Range Exercise	—	—	Live
SEC564: Red Team Exercises and Adversary Emulation	—	SEC564	Live Online
SEC566: Implementing and Auditing the Critical Security Controls - In-Depth	GCCC	—	Live Online
SEC573: Automating Information Security with Python	GPYC	SEC573	Live Online
SEC575: Mobile Device Security and Ethical Hacking	GMOB	SEC575	Live Online
SEC580: Metasploit Kung Fu for Enterprise Pen Testing	—	SEC580	Live Online
Beta SEC588: Cloud Penetration Testing	—	—	Live
SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses	GDAT	SEC599	Live Online
SEC617: Wireless Penetration Testing and Ethical Hacking	GAWN	SEC617	Live Online
SEC642: Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques	—	—	Live Online
SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking	GXPN	SEC660	Live Online
Beta SEC699: Purple Team Tactics - Adversary Emulation for Breach Prevention & Detection	—	—	Live
SEC760: Advanced Exploit Development for Penetration Testers	—	—	Live

Incident Response & Forensics

Course	Certification	Course Demo	Delivery Methods
Beta FOR308: Digital Forensics Essentials	—	—	Live
New FOR498: Battlefield Forensics & Data Acquisition	—	FOR498	Live Online
FOR500: Windows Forensic Analysis	GCFE	FOR500	Live Online
FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics	GCFA	FOR508	Live Online
FOR518: Mac and iOS Forensic Analysis and Incident Response	—	FOR518	Live Online
FOR526: Advanced Memory Forensics & Threat Detection	—	FOR526	Live Online
FOR572: Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response	GNFA	FOR572	Live Online
FOR578: Cyber Threat Intelligence	GCTI	FOR578	Live Online
FOR585: Smartphone Forensic Analysis In-Depth	GASF	FOR585	Live Online
FOR610: Reverse-Engineering Malware: Malware Analysis Tools and Techniques	GREM	FOR610	Live Online

Management

Course	Certification	Course Demo	Delivery Methods
MGT414: SANS Training Program for CISSP� Certification	GISP	MGT414	Live Online
MGT415: A Practical Introduction to Cyber Security Risk Management	—	—	Live Online
MGT433: SANS Security Awareness: How to Build, Maintain, and Measure a Mature Awareness Program	SSAP	MGT433	Live Online
MGT512: Security Leadership Essentials for Managers	GSLC	MGT512	Live Online
MGT514: Security Strategic Planning, Policy, and Leadership	GSTRT	MGT514	Live Online
New MGT516: Managing Security Vulnerabilities: Enterprise and Cloud	—	—	Live
New MGT521: Driving Cybersecurity Change - Establishing a Culture of Protect, Detect and Respond	—	—	Live
MGT525: IT Project Management, Effective Communication, and PMP^� Exam Prep	GCPM	—	Live

Developer

Course	Certification	Course Demo	Delivery Methods
DEV522: Defending Web Applications Security Essentials	GWEB	DEV522	Live Online
SEC540: Cloud Security and DevOps Automation	GCSA	SEC540	Live Online

Audit

Course	Certification	Course Demo	Delivery Methods
AUD507: Auditing & Monitoring Networks, Perimeters & Systems	GSNA	AUD507	Live Online
AUD566: Implementing and Auditing the Critical Security Controls - In-Depth	GCCC	—	Live Online

Legal

Course	Certification	Course Demo	Delivery Methods
LEG523: Law of Data Security and Investigations	GLEG	LEG523	Live Online

Team Based Training

Course	Certification	Course Demo	Delivery Methods
New TBT570: Team-Based Training - Blue Team and Red Team Dynamic Workshop	—	—	Live

Industrial Control Systems

Course	Certification	Course Demo	Delivery Methods
ICS410: ICS/SCADA Security Essentials	GICSP	ICS410	Live Online
ICS456: Essentials for NERC Critical Infrastructure Protection	GCIP	—	Live Online
ICS515: ICS Active Defense and Incident Response	GRID	ICS515	Live Online
New ICS612: ICS Cybersecurity In-Depth	—	—	Live

Hosted

Course	Certification	Course Demo	Delivery Methods
HOSTED: Physical Penetration Testing	—	—	Live
HOSTED: Assessing and Exploiting Control Systems	—	—	Live
HOSTED: Critical Infrastructure and Control System Cybersecurity	—	—	Live
HOSTED: Health Care Security Essentials	—	—	Live
HOSTED: Physical Security Specialist - Full Comprehensive Edition	—	—	Live
HOSTED: Physical Access Control Systems: Elements of Design, Offense, and Defense	—	—	Live
HOSTED: Measuring and Managing Cyber Risk Using FAIR	—	—	Live
New HOSTED: ICS Cybersecurity for Managers	—	—	Live
New HOSTED: Successful Infosec Consulting	—	—	Live Online

Special

Course	Certification	Course Demo	Delivery Methods
SPECIAL: Compliance Training and Securing the Human	—	—	Live
SPECIAL: Security Awareness Training for Electric Entities	—	—	Live
SPECIAL: Special for HIMSS: Implementing Healthcare Cyber-Hygiene with the Critical Security Controls	—	—	Live
SPECIAL: Introduction to Malware Analysis: Hands-on and Technical	—	—	Live
SPECIAL: Active Defense, Offensive Countermeasures and Cyber Deception (Two-day Version)	—	—	Live
SPECIAL: Lethal Threat Hunting and Incident Response Techniques	—	—	Live
SPECIAL: The Essentials of Automating Information Security with Python	—	—	Live

All SANS security training courses are available to be taught through our Private Training program at a customer's desired location. https://www.sans.org/private-training/

Security

Incident Response & Forensics

Management

Developer

Audit

Legal

Team Based Training

Industrial Control Systems

Hosted

Special

Downloads

Latest Whitepapers

Latest Tweets @SANSInstitute

Contact Us

Cyber Security Courses

Security

Incident Response & Forensics

Management

Developer

Audit

Legal

Team Based Training

Industrial Control Systems

Hosted

Special

Downloads

Subscribe to SANS Newsletters

Latest Whitepapers

Latest Tweets @SANSInstitute

Contact Us