Talk With an Expert

CloudSecNext Summit & Training 2025

  • Thu, Oct 2 - Thu, Oct 9, 2025
  • 10 Courses
  • 12 CPEs (Summit Only)
  • English
Embassy Suites by Hilton Denver Downtown & Virtual (MT)
1420 Stout Street, Denver, CO 80202
CloudSecNext Summit
Early Bird Offer

Save 300 USD using the code "EarlyBirdNA" and pay for any 4-6 day course (excluding Beta Courses) by August 29, 2025.

Register

Summit and Course Registration

from $8,260 USD
In personIncludes
  • Course: Live Instructor Training with Hands-on Exercises
  • Summit: Talks, Presentations and Workshops
  • Summit: Solutions Expo Hall
Live onlineIncludes
  • Course: Virtual Live Instructor Training with Hands-on Exercises
  • Summit: Select Talks and Content
  • Summit: Interactive Chat on Slack

Summit Registration Only

from Free
$525 USD*Prices exclude applicable local taxes
In personIncludes
  • Free Lunch and Snacks
  • Summit: Solutions Expo Hall
Attend In PersonLogin to register
Free
Live onlineIncludes
  • Interactive Chat on Slack
  • Talks and Sessions
Important Dates
Refund Deadline:
Hotel Group Discount Deadline:

Courses

Looking for Group Purchasing? Contact Us

Showing 9 of 10
Filter by:

SEC504: Hacker Tools, Techniques, and Incident Handling

Essentials
SEC504Offensive Operations
SEC504: Hacker Tools, Techniques, and Incident Handling
  • GIAC Certified Incident Handler
  • 6 Days
  • 38 CPEs
  • Mick Douglas
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,780 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC522: Application Security: Securing Web Applications, APIs, and Microservices

Advanced
SEC522Cloud Security
SEC522: Application Security: Securing Web Applications, APIs, and Microservices
  • GIAC Certified Web Application Defender
  • 6 Days
  • 36 CPEs
  • Dr. Johannes Ullrich
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,780 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC540: Cloud Native Security and DevSecOps Automation

Advanced
SEC540Cloud Security
SEC540: Cloud Security and DevSecOps Automation
  • GIAC Cloud Security Automation
  • 5 Days
  • 38 CPEs
  • Jon Zeolla
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,780 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC588: Cloud Penetration Testing

Intermediate
SEC588Offensive Operations
SEC699: Advanced Purple Teaming - Adversary Emulation & Detection Engineering
  • GIAC Cloud Penetration Tester
  • 6 Days
  • 36 CPEs
  • Karim Lalji
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,780 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC488: Cloud Security Essentials

Major UpdatesEssentials
SEC488Cloud Security
SEC488: Cloud Security Essentials
  • GIAC Cloud Security Essentials
  • 5 Days
  • 36 CPEs
  • Chris Edmundson
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,780 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC510: Cloud Security Controls and Mitigations

Advanced
SEC510Cloud Security
SEC510: Cloud Security Controls and Mitigations
  • GIAC Public Cloud Security
  • 5 Days
  • 38 CPEs
  • Brandon Evans
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,780 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

FOR509: Enterprise Cloud Forensics and Incident Response

Intermediate
FOR509Digital Forensics and Incident Response
FOR509: Enterprise Cloud Forensics and Incident Response
  • GIAC Cloud Forensics Responder
  • 6 Days
  • 36 CPEs
  • Terrence Williams
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,780 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC541: Cloud Security Threat Detection

Advanced
SEC541Cloud Security
SEC541: Cloud Security Attacker Techniques, Monitoring, and Threat Detection
  • GIAC Cloud Threat Detection
  • 5 Days
  • 30 CPEs
  • Ryan Thompson
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,260 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

SEC549: Cloud Security Architecture

Advanced
SEC549Cloud Security
SEC549: Cloud Security Architecture
  • GIAC Cloud Security Architecture and Design
  • 5 Days
  • 30 CPEs
  • Eric Johnson
  • Starts 4 Oct 2025 at 8:30 AM MT
  • $8,260 USD (Course)
  • $999 USD (Certification)
  • *Prices exclude applicable local taxes

View course details
Log in to register:In-PersonVirtual

Summit Chairs

Schedule

Summit Dates

Thursday 2nd October & Friday 3rd October

Training Dates

Saturday 4th October - Thursday 9th October

Showing 18 of 34
Filter by:

Opening Remarks

Summit Day 108:45AM - 09:00AM MDT
In-Person

Keynote | To Be Announced

Summit Day 109:00AM - 09:45AM MDT
In-Person

Break

Summit Day 109:45AM - 10:00AM MDT
In-Person

How I Learned to Stop Worrying and Love Vibe Coding: Security Edition

As a security professional, watching AI-generated code seep into production feels like a nightmare. It’s incredibly fast to write and looks convincing—but it’s often wrong.

Summit Day 110:00AM - 10:30AM MDT
In-Person

Defending Against JavaGhost: Preventing Abuse of Your Cloud Environments for Cyber Attacks

Over the last 3 years, Unit 42 has performed multiple investigations relating to the threat actor group "JavaGhost," which targeted organizations’ AWS environments.

Summit Day 110:00AM - 10:30AM MDT

Virtual

Snakes on a (Control) Plane: Purple Teaming Azure IAM for Threat Detection

Cloud-based identity security is notoriously slippery: every cloud has a different security philosophy and the actions that cloud logs describe are not always easy for a defender to visualize.

Summit Day 110:35AM - 11:05AM MDT
In-Person

How to Successfully Implement a Cloud Security Platform

Over the last 3 years I've led the implementation of multi-cloud security platforms at 3 different UK organisations: OVO Energy, Q-Solution, and The National Archives.

Summit Day 110:35AM - 11:05AM MDT

Virtual

Cloud-Driven Security: Building a Data Lake and Integrating Agentic Solutions for Real-Time Action

In today's rapidly evolving digital landscape, ensuring robust cloud security is more critical than ever.

Summit Day 111:10AM - 11:40AM MDT
In-Person

Guardians of the Cloud: From Stealth to Security at Scale

As organizations expand their cloud footprint, securing this dynamic environment becomes increasingly complex and critical.

Summit Day 111:10AM - 11:40AM MDT

Virtual

Securing the Future: Leveraging AI and GenAI in Cloud Security to Combat Emerging Threats

As cloud environments evolve, securing AI-driven and cloud-native workloads has become a paramount challenge.

Summit Day 111:45AM - 12:15PM MDT
In-Person

IaC and GitOps for Resilient Multi-Cloud Security: Turning Argo CD and Crossplane into Enforcers of Enterprise for Declarative, Automated Governance and Threat Mitigation

The session will help attendees learn how Infrastructure as Code (IaC) and GitOps, powered by Argo CD and Crossplane, can significantly strengthen your multi-cloud security posture through automated, declarative governance and real-time threat mitigation.

Summit Day 111:45AM - 12:15PM MDT

Virtual

Lunch

Summit Day 112:15PM - 01:30PM MDT
In-Person

Ghosts to Guardrails: Moving Beyond the Alert Driven Posture

In this talk, we will discuss how we are moving GitHub’s cloud security posture program from an alert-driven to a guardrail-driven environment, the tools we use in AWS and Azure, and the successes and pitfalls of building this program.

Summit Day 101:30PM - 02:00PM MDT
In-Person

IaC Meets Reality: Engineering for the Cloud You Actually Have

We all hear it: "Manage your infrastructure as code." But what happens when the reality of multi-account setups, unmanaged settings, and the limitations of your IaC tool start pushing your team toward manual fixes?

Summit Day 102:05PM - 02:35PM MDT
In-Person

Break

Summit Day 102:35PM - 02:50PM MDT

Behind the Clicks: What AI Tools in the Cloud Aren’t Telling You

As AI features rapidly roll out across popular cloud tools like Microsoft 365 Copilot, Salesforce Einstein, Grammarly Business, and Zoom’s smart summaries, organizations are unknowingly inheriting risk — not just technical, but regulatory and reputational.

Summit Day 102:50PM - 03:20PM MDT
In-Person

Go Jump in a Lake: How a Data Lake Can Help Your Security Program

Back in the olden days, security was done using a SIEM. You plunked down a large sum of money, poured all of your logs (or at least the ones you could afford) into this thing that patiently collected them, then searched it either manually or automatically for threats.

Summit Day 103:25PM - 03:55PM MDT
In-Person

Day 1 Wrap-Up

Summit Day 104:00PM - 04:15PM MDT
In-Person

Opening Remarks

Summit Day 208:45AM - 09:00AM MDT
In-Person

Keynote | To Be Announced

Summit Day 209:00AM - 09:45AM MDT
In-Person

Break

Summit Day 209:45AM - 10:00AM MDT
In-Person

Identity and Access Management (IAM) in the Cloud

As enterprises shift to cloud-based infrastructures, Identity and Access Management (IAM) has become central to securing digital assets.

Summit Day 210:00AM - 10:30AM MDT
In-Person

Workshop | Level Up Your CI/CD: Building a secure pipeline with OSS

What does the "perfect" CI/CD pipeline look like, especially one built with security at its core?

Summit Day 210:00AM - 12:15PM MDT
In-Person

Get The Flock Out of My Cloud: Using DuckDB to Detect Spousal Sabotage (in AWS, Azure & GCP)

Insider threat or...Inside of the house?

Cloud security is a serious business, but what happens when the Advanced Persistent Threat shares your Wi-Fi password?

Summit Day 210:35AM - 11:05AM MDT
In-Person

Open FGA in IAM

Authorization is a crucial aspect of securing our application with right controls.

Summit Day 211:10AM - 11:40AM MDT
In-Person

Can GenAI Solve Multicloud Security?

Securing multiple clouds is a daunting task. It typically requires cloud security engineers to have a deep understanding of each cloud's controls. Generative AI (GenAI) offers a promising way to simplify this process.

Summit Day 211:45AM - 12:15PM MDT
In-Person

Lunch

Summit Day 212:15PM - 01:30PM MDT
In-Person

Agentic AI Workflows in Cybersecurity: Opportunities, Challenges, and Governance via the MCP Model

Agentic AI workflows—autonomous pipelines in which large language models (LLMs) plan, decompose, and execute sequences of tasks—are rapidly being adopted in cybersecurity for threat hunting, incident response, and vulnerability management.

Summit Day 201:30PM - 02:00PM MDT
In-Person

Workshop | Smarter Security, Faster Code: How Risk Mitigation Tools Empower Developers

Developers are not security experts, yet they are expected to write secure code.

Summit Day 201:30PM - 04:00PM MDT
In-Person

These aren't the Providers you are looking for: Compromising pipelines with Evil Terraform

Abstract: As supply chain security continues to evolve in 2025, much of the focus remains on malicious packages in ecosystems like PyPI, NPM, and compromised GitHub Actions workflows. But what about your Terraform modules and providers?

Summit Day 202:05PM - 02:35PM MDT

Break

Summit Day 202:35PM - 02:50PM MDT
In-Person

Safeguarding Cloud Identities

Cloud Computing is complex and often misunderstood, and Identity Access and Management (IAM) is a major challenge in the cloud.

Summit Day 202:50PM - 03:20PM MDT
In-Person

Amazon S3 Security: 19 Years Later. Why Cloud Data Security is Still Complex to Manage.

Cloud Storage has been around for 19 years. Amazon Simple Storage Service was released in 2006. It's 2025 and cloud data security is still complex to manage.

Summit Day 203:25PM - 03:55PM MDT

Presented by

Jason Kao

Founder

Jason Kao
In-Person

Day 2 Wrap-Up

Summit Day 204:00PM - 04:15PM MDT
In-Person

Embassy Suites by Hilton Denver Downtown

Hotel Special Rates and Reservations

A special discounted rate of $235.00 S/D plus applicable taxes will be honored based on space availability.

A limited number of Government Per Diem rooms at the prevailing rate are available with proper ID.

These rates include Internet in your room and are only available through Tuesday, September 9, 2025.

Complimentary Breakfast and Happy Hour

Enjoy complimentary breakfast and happy hour drinks & snacks when you stay with SANS at the Embassy Suites Denver Downtown.

Denver, Bridge

3 Reasons To Stay At The Event Venue

  • Ultimate Convenience

    Eliminate the hassle of daily commutes and wasted travel time. You’ll have everything you need—from your training to dining and amenities - all in one centralized, convenient location.

  • Seamless Networking Opportunities

    Stay where the action is! Maximize your chances to connect with fellow cybersecurity professionals and industry leaders - from impromptu conversations in the lobby to exclusive after-hours events.

  • All Day, All Event Access

    SANS live training events include bonus sessions exclusively at the venue. Staying on-site ensures you won’t miss these opportunities to grow your network and engage with peers beyond the conference agenda.

People Shaking Hands

More Information