Question 1

What Are The Laptop Requirements?

Accepted Answer

Cloud Accounts:Time-limited AWS accounts are provided to students 24 hours before class starts by SANS to use for completing the labs. Students can log in to their SANS account and visit the MyLabs page to download their cloud credentials the day before class begins.Mandatory Laptop Requirement:Students must bring their own system configured according to these instructions.A properly configured system is required to fully participate in this course. If you do not carefully read and follow these instructions, you will likely leave the class unsatisfied because you will not be able to participate in hands-on exercises that are essential to this course. Therefore, we strongly urge you to arrive with a system meeting all the requirements specified for the course.Students must be in full control of their system's network configuration. The system will need to communicate with the cloud-hosted DevOps server using a combination of HTTPS, SSH, and SOCKS5 traffic on non-standard ports. Running VPN, intercepting proxy, or egress firewall filters may cause connection issues communicating with the DevOps server. Students must be able to configure or disable these services to connect to the lab environment.Bring Your Own Laptop Configured Using the Following Directions:A properly configured system is required for each student participating in this course. Before starting your course, carefully read and follow these instructions exactly:Host Operating System: Latest version of Windows 10, macOS 10.15.x or later, or Linux that also can install and run the Firefox browser described below.Fully update your host operating system prior to the class to ensure you have the right drivers and patches installed.Mandatory Host Hardware RequirementsCPU: 64-bit 2.5+ GHz multi-core processor or higherWireless Ethernet 802.11 B/G/N/ACLocal Administrator Access within your host operating systemMust have the ability to install Firefox, enable a Firefox extension, and install a new trusted root certificate on the machine.Mandatory Software RequirementsPrior to class, ensure that the following software is installed on the host operating system:Firefox 120.0+Firefox SmartProxy extensionIn SummaryBefore beginning the course you should:Have a laptop with a solid-state drive (SSD), 16GB of RAM, and a 64-bit operating system.Install the latest version of Firefox and the SmartProxy extension.Download the SEC545 Lab Setup Instructions from your sans.org account.After you have completed those steps, access the SANS provided AWS account to connect to the SANS Cloud Security Flight Simulator and connect to the SEC545 DevOps server. The SEC545 Instance hosts an electronic workbook, VSCode, Gitlab, and Terminal services that can be accessed through the Firefox browser.Your course materials include a "Setup Instructions" document that details important steps you must take before you travel to a live class event or start an online class. It may take 30 minutes or more to complete these instructions.Your class uses an electronic workbook for its lab instructions. In this new environment, a second monitor and/or a tablet device can be useful for keeping class materials visible while you are working on your course's labs.If you have additional questions about the laptop specifications, please contact customer service.

Question 2

Who Should Attend SEC545 Training?

Accepted Answer

SEC545 is a hands-on technical course for the following individuals:Application Security Engineers: Professionals seeking to understand how LLMs and GenAI components impact traditional applications or differ from them. They are interested in learning about the unique security challenges posed by GenAI and exploring the tools available to secure the entire GenAI application lifecycle. Cloud Security Engineers: Cloud professionals who need to understand how hosting GenAI applications impacts their security posture. They want to identify the new risks introduced by these applications, learn how to mitigate them, and explore the security controls that can be applied to protect GenAI workloads in the cloud. SOC Analysts, Incident Handlers, and Threat Intelligence Professionals: Professionals responsible for monitoring, investigating security alerts, and hunting for threats. They need to understand the components of GenAI applications, how these applications are hosted, and the internal and external systems they interact with. Additionally, they must be able to analyze logs and alerts generated by various GenAI components, detect anomalies, and conduct thorough investigations. Security Professionals: Experts responsible for securing an organization’s network and infrastructure. They need to understand the impact of GenAI applications within their environment, the internal systems these applications may interact with, and the potential risks and vulnerabilities from a security perspective. Security Auditors, Compliance, and Risk Managers: Professionals focused on understanding the risks introduced by adopting GenAI, assessing their potential impact, and developing effective risk management strategies. They also need to learn how to integrate GenAI-related risks into their current auditing, compliance, and risk management frameworks.

Question 3

What Will You Get?

Accepted Answer

Electronic and printed coursewareMp3 audio files of course lectureSANS provisioned AWS accountSANS provided OpenAI API Key

Question 4

What Are The Prerequisites For This Course?

Accepted Answer

Familiarity with Linux command shells and associated commandsFamiliarity Python and Bash scriptingBasic understanding of common application attacks and vulnerabilitiesBasic knowledge of public cloud services and cloud-native technologies, including Kubernetes

Question 5

What Learning Path Is This Course A Part Of?

Accepted Answer

The SEC545 course is a part of the Cloud Security curriculum to help professionals convert traditional cybersecurity skills into the nuances of cloud security.Depending on your current or desired future role, one of these courses is a great next step in your cybersecurity journey:SEC522: Application Security: Securing Web Apps, APIs, and Microservices | GWEB SEC588: Cloud Penetration Testing | GCPN FOR509: Enterprise Cloud Forensics and Incident Response | GCFR LDR520: Emerging Trends for Cyber Leaders: AI and Cloud

Question 6

What Is GenAI and LLM Application Security And Why Is It Important?

Accepted Answer

GenAI and Large Language Model (LLM) application security refers to the strategies, tools, and practices used to protect generative AI systems from misuse, manipulation, and cyber threats. As organizations increasingly build and deploy GenAI-powered applications, these systems become valuable targets for attackers. Unlike traditional software, GenAI introduces unique risks, including prompt injection attacks, malicious model outputs, and vulnerabilities in third-party tools or models. Without strong security measures, GenAI applications can inadvertently leak sensitive data, generate harmful content, or expose organizations to supply chain attacks.Prioritizing security in GenAI applications ensures that these powerful technologies can be used safely, ethically, and reliably. Securing GenAI is essential not only for protecting business assets but also for maintaining public trust. This 5-day course provides a comprehensive look at GenAI and LLM application security, covering everything from prompt-level risks and supply chain vulnerabilities to in-depth topics like model training, MLSecOps, agent infrastructure, and cloud deployment scenarios. Students gain hands-on experience in threat modeling real-world GenAI pipelines and defending AI infrastructure that includes components such as Airflow, SageMaker, AWS Bedrock, and containerized environments.Why it matters:Prevent data leaks from malicious prompts or compromised models  Reduce risk of manipulation through prompt injection or model abuse  Protect third-party supply chains involved in building GenAI apps  Secure full GenAI stacks, including agents, pipelines, and infrastructure Ensure regulatory compliance and responsible AI use  Safeguard organizational reputation by preventing harmful or biased outputs

Question 7

How Will This Course Benefit My Career?

Accepted Answer

SEC545 will strengthen your cybersecurity career by equipping you with the skills needed to secure one of the fastest-growing areas in technology: Generative AI. As more organizations adopt GenAI tools, there is a growing demand for security professionals who can identify risks, implement controls, and build secure AI applications. This course provides both technical knowledge and strategic guidance, helping you stand out in a competitive job market.  The 5-day course goes significantly further than its 3-day predecessor. It includes new labs on threat modeling with MAESTRO, securing MLOps pipelines, training models with SageMaker, and attacking agent infrastructure through MCP. Students gain hands-on experience defending against advanced GenAI threats across a real deployment pipeline. This level of depth gives practitioners a unique edge in applying GenAI security concepts in production environments.Career benefits:  Boost your value with specialized GenAI security skills Demonstrate proficiency with modern AI infrastructure like LangChain, Bedrock, and MCP Stay ahead of emerging security trends in LLMs, agents, and AI-driven apps Build hands-on experience with threat modeling, MLSecOps, and cloud AI security Strengthen leadership potential by integrating GenAI into enterprise security strategies Align AI security with organizational risk management and compliance frameworks

Question 8

What Is a Beta Course and Why Should I Take It Now?

Accepted Answer

A beta course is an early-access version of a new SANS course, offered at a 25% discount, designed for students who want to be first to access cutting-edge content and help shape its final form. By enrolling in SEC545 Beta, you’ll get hands-on experience across the full GenAI security stack, including prompt injection, model hardening, MLSecOps, and AI infrastructure defense. You'll also learn directly from the course author, Ahmed Abugharbia, and share feedback that helps refine the course before its full release. This is your chance to: Access a brand-new 5-day GenAI security course before general release Save 25% on tuition Learn from the course author Provide feedback that shapes future versions of the course Seats are limited, reserve your spot today.  Is the 3-Day Version Still Available? Yes, the original 3-day version of SEC545 is still available OnDemand while the 5-day course is in beta. If you’re looking to get started right away with GenAI security training and prefer a self-paced format, you can still purchase and complete the 3-day course now. Head to the SEC545 3-Day Course Page to register. Once the 5-day version is fully released, the 3-day course will be retired.

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

SEC545: (5-Day) GenAI and LLMs Application Security

Course Overview

What You'll Learn

Business Takeaways

Meet Your Author

Ahmed Abugharbia

Course Syllabus

Section 1GenAI, Large Language Models (LLMs), and Security Risks

Topics covered

Labs

Section 2Securing GenAI Applications

Topics covered

Labs

Section 3Agentic AI Security

Topics covered

Labs

Section 4MLSecOps and Securing GenAI Applications Lifecycle

Topics covered

Labs

Section 5AI for Security

Topics covered

Labs

Things You Need To Know

Relevant Job Roles

Cloud Security Engineer Training, Salary, and Career Path

Cloud Security Analyst Training, Salary, and Career Path

Cybersecurity Architecture (OPM 652)

Technology Research and Development (OPM 661)

Network Operations (OPM 441)

Software Security Assessment (OPM 622)

Enterprise Architecture (OPM 651)

Secure Systems Development (OPM 631)

Course Schedule & Pricing

OnDemand Bundle

SANS Skills Quest by NetWars Core Edition

We couldn't find a match for your selection

Benefits of Learning with SANS

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

SEC545: (5-Day) GenAI and LLMs Application Security

Featured Quote

Course Overview

What You'll Learn

Business Takeaways

Meet Your Author

Ahmed Abugharbia

Course Syllabus

Section 1GenAI, Large Language Models (LLMs), and Security Risks

Topics covered

Labs

Section 2Securing GenAI Applications

Topics covered

Labs

Section 3Agentic AI Security

Topics covered

Labs

Section 4MLSecOps and Securing GenAI Applications Lifecycle

Topics covered

Labs

Section 5AI for Security

Topics covered

Labs

Things You Need To Know

What Are The Laptop Requirements?

Who Should Attend SEC545 Training?

What Will You Get?

What Are The Prerequisites For This Course?

What Learning Path Is This Course A Part Of?

What Is GenAI and LLM Application Security And Why Is It Important?

How Will This Course Benefit My Career?

What Is a Beta Course and Why Should I Take It Now?

Relevant Job Roles

Cloud Security Engineer Training, Salary, and Career Path

Cloud Security Analyst Training, Salary, and Career Path

Cybersecurity Architecture (OPM 652)

Technology Research and Development (OPM 661)

Network Operations (OPM 441)

Software Security Assessment (OPM 622)

Enterprise Architecture (OPM 651)

Secure Systems Development (OPM 631)

Course Schedule & Pricing

OnDemand Bundle

SANS Skills Quest by NetWars Core Edition

We couldn't find a match for your selection

Benefits of Learning with SANS