SANS Rocky Mountain Fall is Live Online! Join us Nov 2-7 MT for 17 interactive courses + NetWars. Save $300 thru 10/7.


Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.

Learn How to Defeat Advanced Adversaries at SANS San Jose Cyber Security Training Event

Hands-On Virtual Labs Guide Students Through the Execution of Adversary Tactics

  • Bethesda, MD
  • May 29, 2019

SANS Institute, the global leader in cyber security training and certifications, today announced the agenda for SANS San Jose 2019 (#SANSSanJose) taking place August 12-17 in California. Course topics to include cyber defense, ethical hacking, penetration testing, security management and secure development. Digital forensic expert Alissa Torres (@sibertor) will teach SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses.

Torres explains, “Nation-state adversaries are universally becoming faster at gaining access, entrenchment, and lateral movement in their victim's environments. An annual red team exercise and/or pentest does not adequately emulate these persistent highly-adaptive adversaries. So, it makes sense that over the last few years more organizations are standing up purple team cells within their internal security teams staffed with senior professionals who grasp both the offensive tactics of an adversary AND how to detect and defend against these nefarious methods. SEC599 provides this holistic security perspective - delivering expertise that today's senior cybersecurity professionals need to be most impactful to their organizations. Frankly, recent conversations with colleagues who are growing their security teams indicate that the most attractive candidates know how to exploit an enterprise, investigate a critical incident, and mitigate and harden assets to prevent future breaches. Join me in San Jose where I will share how to be that professional.”

The SEC599 curriculum, with its in-depth technical content and virtual hands-on lab environment, takes a classically trained blue-teamer and guides them through the execution of adversary tactics. Contrastingly, a professional well-versed in red team methods gain insight into how they can be detected in endpoint and network device logs while identifying which enterprise mitigations may defeat them the next time they attack.

Additional course offerings at SANS San Jose include SEC401: Security Essentials Bootcamp Style, SEC540: Cloud Security and DevOps Automation, SEC575: Mobile Device Security and Ethical Hacking, SEC642: Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques, and MGT414: SANS Training Program for CISSP® Certification. Bonus evening talks will round out the agenda.

To learn more about SANS San Jose 2019, or to register, visit:

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions worldwide. Renowned SANS instructors teach more than 60 courses at In-Person and Live Online cyber security training events, and more than 50 courses are available anytime, anywhere with our OnDemand platform. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system – the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (