New SANS Courses
New Courses in Development 2022
SEC673: Advanced Information Security Automation with Python
SEC673 is designed as a logical progression point for students who have completed SEC573: Automating Information Security with Python, or for those who are already familiar with basic Python programming concepts. This course will teach you the advanced programming concepts you need to make your code faster, more efficient, and easier to develop and maintain. You will learn how to automate common networking and desktop applications using Python objects.
SEC388: Introduction to Cloud Computing and Security
This course is designed for anyone who needs to fill a skills gap when it comes to Cloud, and either a decision-making or hands-on role, in an organization planning to move to or already operate in the cloud.
SEC549: Enterprise Cloud Security Architecture
Learn how to design and build an enterprise cloud security architecture in cloud-first and hybrid environments.
Digital Forensics & Incident Response
FOR528 teaches students how to deal with the specifics of ransomware in order to prepare for, detect, hunt, response to, and deal with the aftermath of ransomware. The class includes multiple hunting methods, a hands-on approach to learning using real-world data, and a full-day CTF-style capstone to help students solidify their learning.
This course focuses on memory forensics from acquisition to detailed analysis, from analyzing one machine to many machines all at once. It'll cover Windows, Mac and Linux memory forensics as well as cloud memory acquisition.
FOR548: eDiscovery - Tactics for Conquering the Data Minefield
FOR548 teaches students the controls put in place to govern the
eDiscovery process, where and how the data is stored and how best to
satisfy the collection requirements imposed upon them and their
Industrial Control Systems
SEC446: Hardware Assisted Hacking
Tightly packed with tips, techniques, and hands-on procedures, this course teaches the foundations of both hardware theory and hardware practice, as well as how they relate to hardware and software security.
SEC565: Red Team Operations
This course prepares operators to emulate adversaries and threats in a professional manner to test a target organization's people, process, and technology from a holistic perspective.
SEC598: Purple Team Tactics - Security Automation for Offense and Defense
Learn how to break down an organization's security issues and define solutions to locally automate secure configurations, set a desired state configuration, deploy infrastructure as code in different environments, and detect and respond to security incidents in an automated manner.
SEC670: Red Team Ops - Windows Tool Development
Learn the essential building blocks for developing custom offensive tools through required programming, APIs used, and mitigations for techniques.
MGT416: Vendor Risk Management & Data Privacy
This course will provide an overview of the key elements that are required to properly implement and deliver a successful Vendor Risk and Data Privacy program.
MGT533: Cyber Incident Management
Go beyond technical analysis and response activities and learn how effectively manage and lead people and processes for cyber incidents