SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

Experience SANS training through course previews.
Learn MoreLet us help.
Contact usBecome a member for instant access to our free resources.
Sign UpWe're here to help.
Contact UsAs organizations continue to leverage cloud services for enterprise workloads as well as newer GenAI use cases security professionals need to deal with new risks, threats, and issues.
Join us for CloudSecNext, where top experts and real-world practitioners will share insights, case studies, and hands-on technical training to help you build and maintain a secure cloud infrastructure.
The Summit is great for those who have direct use/control of Cloud infrastructure. A wealth of information and experiences for those getting into the field and as always, there were great networking opportunities.
Great way to step back from day-to-day security controls to see the transformational themes our industry is facing. There was a good combination of technical talks with actionable tips for the next 30 days, mixed with themes our org will see over the next 3-5 years.
The Summit provided valuable insight from colleagues in security regarding process tooling, and opportunities that can be encountered in the cloud. The time to network and discuss challenges was invaluable.
The content is stellar, and the opportunities for networking and industry knowledge-sharing are invaluable.
Starting in September 2025, SEC488 will transition to a 5-Day course with a remote CTF.
The industry's top practitioners will share their latest cloud security techniques, tools, case studies, and solutions.
You’ll have the chance to engage with Summit Chairs, speakers, and your peers in the community for deep-dive discussions, and casual chats over breaks, meals, and evening receptions.
The days will be filled with the latest in cloud security, but the fun goes up a notch at night for those joining us in Denver.
Explore the latest tools and solutions in cloud security.
Enhance your knowledge base and add to your toolkit by bundling your Summit experience with a hands-on, immersive course taught by top SANS instructors and course authors.
Save 300 USD using the code "EarlyBirdNA" and pay for any 4-6 day course (excluding Beta Courses) by August 29, 2025.
Looking for Group Purchasing? Contact Us
2 free practice tests when you add a certification exam attempt to your course. Available for select courses below.
Add OnDemand access for 4 months to help you prepare for your GIAC exam. Available for select courses below.
Frank Kim is the Founder of ThinkSec, a security consulting and CISO advisory firm. He leads the Cybersecurity Leadership and Cloud Security curricula at SANS, as well as authors and instructs multiple SANS courses.
Learn moreEric is a Co-founder and Principal Security Engineer at Puma Security and a Senior Instructor with the SANS Institute.
Learn moreBailey Bercik is a Senior Threat Intelligence Analyst at Microsoft’s Threat Intelligence Center (MSTIC).
Learn moreThursday 2nd October & Friday 3rd October
Saturday 4th October - Thursday 9th October
As a security professional, watching AI-generated code seep into production feels like a nightmare. It’s incredibly fast to write and looks convincing—but it’s often wrong.
Presented by
Jon Zeolla
Certified Instructor
Over the last 3 years, Unit 42 has performed multiple investigations relating to the threat actor group "JavaGhost," which targeted organizations’ AWS environments.
Presented by
Margaret Kelley
Principal Consultant
Virtual
Cloud-based identity security is notoriously slippery: every cloud has a different security philosophy and the actions that cloud logs describe are not always easy for a defender to visualize.
Presented by
Lydia Graslie
Detection Engineer
Over the last 3 years I've led the implementation of multi-cloud security platforms at 3 different UK organisations: OVO Energy, Q-Solution, and The National Archives.
Presented by
Paul Schwarzenberger
Cloud Security Engineer
Virtual
In today's rapidly evolving digital landscape, ensuring robust cloud security is more critical than ever.
Presented by
Manish Kumar Yadav
Principal Security Architect
As organizations expand their cloud footprint, securing this dynamic environment becomes increasingly complex and critical.
Presented by
Shivam Dhar
VP - Lead Security Engineer
Virtual
As cloud environments evolve, securing AI-driven and cloud-native workloads has become a paramount challenge.
Presented by
Advait Patel
Senior Site Reliability Engineer
The session will help attendees learn how Infrastructure as Code (IaC) and GitOps, powered by Argo CD and Crossplane, can significantly strengthen your multi-cloud security posture through automated, declarative governance and real-time threat mitigation.
Presented by
Arun Pandiyan Perumal
Site Reliability Engineer
Virtual
In this talk, we will discuss how we are moving GitHub’s cloud security posture program from an alert-driven to a guardrail-driven environment, the tools we use in AWS and Azure, and the successes and pitfalls of building this program.
Presented by
Shaun McCullough
Certified Instructor
We all hear it: "Manage your infrastructure as code." But what happens when the reality of multi-account setups, unmanaged settings, and the limitations of your IaC tool start pushing your team toward manual fixes?
As AI features rapidly roll out across popular cloud tools like Microsoft 365 Copilot, Salesforce Einstein, Grammarly Business, and Zoom’s smart summaries, organizations are unknowingly inheriting risk — not just technical, but regulatory and reputational.
Presented by
AD Edwards
AI and Cloud Governance Strategist
Back in the olden days, security was done using a SIEM. You plunked down a large sum of money, poured all of your logs (or at least the ones you could afford) into this thing that patiently collected them, then searched it either manually or automatically for threats.
Presented by
Brian Davis
Principal Software Engineer
As enterprises shift to cloud-based infrastructures, Identity and Access Management (IAM) has become central to securing digital assets.
Presented by
Neha Prakash
IAM Business Analyst
What does the "perfect" CI/CD pipeline look like, especially one built with security at its core?
Presented by
Andoni Alonso
Cloud Security Engineer
Insider threat or...Inside of the house?
Cloud security is a serious business, but what happens when the Advanced Persistent Threat shares your Wi-Fi password?
Authorization is a crucial aspect of securing our application with right controls.
Presented by
Ramesh Babu
Senior Engineering Manager
Securing multiple clouds is a daunting task. It typically requires cloud security engineers to have a deep understanding of each cloud's controls. Generative AI (GenAI) offers a promising way to simplify this process.
Presented by
Brandon Evans
Senior Instructor
Agentic AI workflows—autonomous pipelines in which large language models (LLMs) plan, decompose, and execute sequences of tasks—are rapidly being adopted in cybersecurity for threat hunting, incident response, and vulnerability management.
Presented by
Sri Keerthi Suggu
Senior Cyber Security Engineer
Developers are not security experts, yet they are expected to write secure code.
Presented by
Nir Valtman
CEO & Founder
Abstract: As supply chain security continues to evolve in 2025, much of the focus remains on malicious packages in ecosystems like PyPI, NPM, and compromised GitHub Actions workflows. But what about your Terraform modules and providers?
Presented by
Dakota Riley
Associate Instructor
Cloud Computing is complex and often misunderstood, and Identity Access and Management (IAM) is a major challenge in the cloud.
Presented by
Lakshmi Gudimella
Senior Manager CyberSecurity
Cloud Storage has been around for 19 years. Amazon Simple Storage Service was released in 2006. It's 2025 and cloud data security is still complex to manage.
Presented by
Jason Kao
Founder
A special discounted rate of $235.00 S/D plus applicable taxes will be honored based on space availability.
A limited number of Government Per Diem rooms at the prevailing rate are available with proper ID.
These rates include Internet in your room and are only available through Tuesday, September 9, 2025.
Complimentary Breakfast and Happy Hour
Enjoy complimentary breakfast and happy hour drinks & snacks when you stay with SANS at the Embassy Suites Denver Downtown.
Eliminate the hassle of daily commutes and wasted travel time. You’ll have everything you need—from your training to dining and amenities - all in one centralized, convenient location.
Stay where the action is! Maximize your chances to connect with fellow cybersecurity professionals and industry leaders - from impromptu conversations in the lobby to exclusive after-hours events.
SANS live training events include bonus sessions exclusively at the venue. Staying on-site ensures you won’t miss these opportunities to grow your network and engage with peers beyond the conference agenda.
Embassy Suites Denver Downtown is located across the street from The Colorado Convention Center and a five-minute walk from 16th Street Mall and the free MallRide shuttle to Union Station. Ball games at Pepsi Center and Coors Field are a mile away. Enjoy made-to-order breakfast and access to the indoor saltwater pool and fitness center.
- Self-Parking: Not available - Valet Parking: $58.00 daily (includes in-and-out privileges.) Available valet-parking is covered and secured. Rates listed are prevailing and subject to change. Alternative Parking Options - SANS recommends researching nearby parking facilities for more affordable options. Some ome popular parking apps that can help you locate and reserve space during your training are SpotHero, ParkMobile, and ParkWhiz. Distances from Nearby Airport - From Denver International Airport (DEN): Approximately 27.5 miles.
Unlock Hilton Gold Status with staying 8 nights in a 90-day period. Did you know by staying just 8 nights in a 90-day period with Hilton, you can status match your current loyalty program to Hilton Gold Status? Hilton Gold Status provides exclusive perks such as a daily food and beverage credit, premium internet access, potential room upgrades based on availability, and many more benefits.
The SANS North America Summit Volunteer Program is a popular and competitive way for professionals to attend two-day SANS Summits in-person for free, in exchange for their assistance with the Summit. Summit Volunteers assist the team onsite with various tasks to set up, support, and tear down the event afterward. To learn more about the qualifications and how to apply, please visit our NA Summit Volunteer Program page.