Training
Featured CourseView All Courses
Get a free hour of SANS training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training, Courses, and Resources
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely.

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

SANS Amsterdam October 2025

  • Mon, Oct 20 - Sat, Nov 1, 2025
  • 15 Courses
  • 2 Tournaments
  • English
Amsterdam Marriott Hotel & Virtual (CEST)
Stadhouderskade 12, Amsterdam, 1054 ES, Netherlands
Amsterdam
Jump to:

Hands-On Cyber Security Training in Amsterdam

Unlock the full potential of your career with cyber security training at SANS Amsterdam October 2025. Guided by world-renowned instructors at the forefront of the field, this event provides exclusive access to live industry experts, ensuring you stay ahead of the curve.

Immerse yourself in a learning environment that features industry-leading hands-on labs, simulations, and exercises, all geared towards practical application in your professional endeavors. Seize the opportunity to hone your skills during bonus sessions and activities, backed by SANS's unwavering commitment to excellence and expertise.

Event Features

  • Practical Cyber Security Training: Delivered by real-world practitioners providing actionable insights.
  • Real-time Support: Receive immediate assistance from certified teacher assistants throughout your course.
  • Immersive Labs in a Virtual Environment: Hands-on practice to sharpen your skills in a secure setting.
  • Thought Leadership Talks & Workshops: all centered around training topics.
  • Comprehensive Courseware: Course materials provided in electronic and printed formats.
  • GIAC Certification: Most courses align with the highest standard in cybersecurity certification.
  • CPE Credits: Earn Continuing Professional Education credits towards a certification.

Whether you're a seasoned professional or new to the field, SANS Amsterdam October 2025 equips you with the skills and knowledge needed to navigate the ever-evolving threat landscape.

Please note, courses are available In-Person in Amsterdam, NL and Live Online during this event. Register now to secure your spot.

Student Notice: Starting in September 2025, SEC488 will transition to a 5-Day course with a remote CTF.
Train In Amsterdam

Students Say

  • Slide 1 of 4
    The overall experience was excellent, the instructor was amazing plus the SANS team organising it as well. The venue, breaks and food were excellent as well. Thank you.
    Flavia Munhoso Goncalves LDR512, SANS Amsterdam July
  • Slide 2 of 4
    The level of energy the instructor exhibits for teaching is fantastic. The instructor is able to simplify the concepts efficiently and teach it which is crucial for students who are not familiar with the concepts.
    Bhargav RathodFOR610, SANS Amsterdam January
  • Slide 3 of 4
    Thanks for the great teaching. Very inspiring. It is good to take a step back and have such perspective from others (from the teachers of course but also the other participants). SANS rules!
    Frederic MayerSEC566, SANS Amsterdam January
  • Slide 4 of 4
    Structured information, great exercises, good delivery and interaction. Great after course events, seminars. Great location and services.
    Anne-Marie MaresSEC497, SANS Amsterdam February
Slide 1 of 0
Early Bird Offer

Save €250 EUR using the code "EarlyBirdEMEA-EURO" and pay for any 4-6 day course (excluding Beta Courses) by September 19, 2025.

Courses

Looking for Group Purchasing? Contact Sales

GIAC Certification Exam Attempt

2 Free practice tests when you add a certification exam attempt to your course. Available for select courses below.

OnDemand Access

Add 4 months of OnDemand access to your course purchase. Only available for courses with an OnDemand option.

Showing 9 of 15
Filter by:

SEC504: Hacker Tools, Techniques, and Incident Handling

Essentials
SEC504Offensive Operations
SEC504: Hacker Tools, Techniques, and Incident Handling
  • GIAC Certified Incident Handler
  • 6 Days
  • 38 CPEs
  • Jon Gorenflo
  • Starts 27 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics

Intermediate
FOR508Digital Forensics and Incident Response
FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics
  • Starts 27 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-Person

SEC560: Enterprise Penetration Testing

Intermediate
SEC560Offensive Operations
SEC560: Enterprise Penetration Testing
  • Starts 27 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC555: Detection Engineering and SIEM Analytics

Intermediate
SEC555Cyber Defense
SEC555: SIEM with Tactical Analytics
  • Starts 20 Oct 2025 at 8:30 AM CEST
  • €7,715 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses

Major UpdatesIntermediate
SEC599Offensive Operations
SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses
  • Starts 20 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC699: Advanced Purple Teaming - Adversary Emulation & Detection Engineering

Advanced
SEC699Offensive Operations
SEC699: Advanced Purple Teaming - Adversary Emulation & Detection Engineering
  • Starts 20 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC588: Cloud Penetration Testing

Intermediate
SEC588Offensive Operations
SEC588: Cloud Penetration Testing
  • GIAC Cloud Penetration Tester
  • 6 Days
  • 36 CPEs
  • Moses Frost
  • Starts 20 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC510: Cloud Security Controls and Mitigations

Advanced
SEC510Cloud Security
SEC510: Cloud Security Controls and Mitigations
  • Starts 27 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

FOR509: Enterprise Cloud Forensics and Incident Response

Major UpdatesIntermediate
FOR509Digital Forensics and Incident Response
FOR509: Enterprise Cloud Forensics and Incident Response
  • GIAC Cloud Forensics Responder
  • 6 Days
  • 36 CPEs
  • David Szili
  • Starts 20 Oct 2025 at 8:30 AM CEST
  • €8,230 EUR (Course)
  • €905 EUR (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

Schedule

Showing 2 of 4
Filter by:

Auto Map Your Reports To MITRE Using Agentic AI

AI is everywhere. Most organizations and users are still just using it as a glorified google search, but it can do so much more! in this talk, we will walk through a practical example on how to leverage agentic AI to enrich your pentest reports with auto tagging mitre ID's!

06:00PM - 07:00PM CEST

Presented by

Jean-François Maes

Certified Instructor

Jean-François Maes
In-Person & Virtual

The Always-On Purple Team: AI Agents on the Loose

Top-rated RSA session in 2023, 2024 and 2025, the "Always-On Purple Team" session is back! Attendees will discover how AI agents autonomously execute purple teaming and showcase an architecture where AI agents collaborate on threat intel, adversary emulation, and detection engineering. Will include a live demo (based on publicly available tools) and sharing of code!

07:00PM - 08:00PM CEST

Presented by

Erik Van Buggenhout

Senior Instructor

Erik Van Buggenhout
In-Person & Virtual

Security Is Hard, Will AI Save The Day?

This session will be a fairly lighthearted look at the problems we have in cybersecurity today, and why we struggle to improve things, despite spending billions. We will have a short case study and then finish with some suggestions on how we can make things better.

06:00PM - 07:00PM CET

Presented by

Tarot (Taz) Wake

Certified Instructor

Tarot (Taz) Wake
In-Person & Virtual

Rethinking Digital Forensics in Incident Response

The term DFIR has become really popular over the last several years and is used as an all-encompassing term for digital forensics and incident response. But the reality is that there is actually an inherent contradiction between digital forensics and incident response, because the actual end goals of digital forensics and incident response are actually not the same. The reality is that for most organizations, incident response focuses on making the pain go away, and maybe improving security going forward. Thinking about a legal outcome is far from the reality for most organizations.

07:00PM - 08:00PM CET

Presented by

Jason Jordaan

Principal Instructor

Jason Jordaan
In-Person & Virtual

Amsterdam, The Netherlands

Amsterdam Marriott Hotel

Amsterdam is a charming city renowned for its picturesque canals, historic architecture, and vibrant culture. Visitors can explore world-class museums like the Van Gogh Museum and Rijksmuseum, cycle through the city's scenic streets, or relax in iconic neighborhoods like Jordaan. With cozy cafes, tulip markets, and a rich history, Amsterdam offers a perfect mix of relaxation and adventure.

View Hotel
Amsterdam

3 Reasons To Stay At The Event Venue

  • Ultimate Convenience

    Eliminate the hassle of daily commutes and wasted travel time. You’ll have everything you need—from your training to dining and amenities - all in one centralized, convenient location.

  • Seamless Networking Opportunities

    Stay where the action is! Maximize your chances to connect with fellow cybersecurity professionals and industry leaders - from impromptu conversations in the lobby to exclusive after-hours events.

  • All Day, All Event Access

    SANS live training events include bonus sessions exclusively at the venue. Staying on-site ensures you won’t miss these opportunities to grow your network and engage with peers beyond the conference agenda.

People Shaking Hands

Location Information

Hotel Special Rates & Reservations

Delegates attending SANS Amsterdam October 2025 may benefit from a discounted room rate at the Amsterdam Marriott Hotel. Hotel bedrooms are limited and are subject to availability.

Book For 17-27 OctoberBook For 24 October-3 November

Directions

The Amsterdam Marriott Hotel boasts an unparalleled city center location across from the Leidseplein, just moments from Amsterdam's iconic attractions. It is approximately a 30-40 minute journey from the airport to the hotel, depending on traffic. If you are traveling by car, please set your GPS location to 'Vondelstraat 1' for the entrance of the parking garage.

View On Google Maps