Jon Zeolla
Certified InstructorFounder and CEO at Zenable
Specialities
Cloud Security
Experience SANS training through course previews.
Learn MoreLet us help.
Contact usBecome a member for instant access to our free resources.
Sign UpWe're here to help.
Contact UsCloud Security
Jon Zeolla is a full-stack security engineer and the founder and CEO of Zenable, working at the intersection of quality engineering, automation, and emerging tech. He focuses on helping teams move fast without breaking things or compromising security. As a SANS Certified Instructor, Jon travels globally to train organizations on AI safety, cloud-native security, and compliance. He is also a CNCF Ambassador and an active contributor to the open-source community. Jon regularly builds and shares projects that embed Governance, Risk Management, and Compliance (GRC) directly into developer workflows—favoring guardrails over gates to reduce friction and accelerate innovation.
Finally, Jon is an organizer of BSides Pittsburgh (the city’s largest security conference), an IANS Faculty member, and an AWS community builder. You can see more of his contributions and awards at jonzeolla.com.
Jon was clear and to the point, happy to answer questions and respectful.
Jon has taken significant time to thoroughly answer questions myself and other classmates have had that have really helped in our understanding. He reminds me a lot of John Strand from back in the day.
Instructor is fantastic. Extremely knowledgeable in the subject matter and has easily answered many complicated questions.
Here are upcoming opportunities to train with this expert instructor.
Explore content featuring this instructor’s insights and expertise.
This is a 2 hour hands-on workshop. Is your company adopting containers but you haven’t had a chance to figure out the best way to secure them yet?
The Cloud is enabling businesses to quickly adopt and use technology in ways that we've never imagined before. Security teams need to find ways to keep up; automation is the solution.By using Policy as Code tools we can define and enforce security guardrails. This allows developers and cloud engineers to continue shipping features while bringing the confidence to everybody that security requirements are being met.
Part 3: Continuing the Cloud Security Flight Simulator series, join SEC540: Cloud Native Security and DevSecOps Automation instructor Jon Zeolla for a webcast on software supply chain security.
Traditional compliance and risk management techniques don’t scale in cloud-native environments—manual processes are now an anti-pattern for good security.
Learn the core concepts of GRC Engineering and explore how Policy as Code can bridge the gap between regulatory demands and the flexibility required in cloud-native environments
Review relevant educational resources made with contribution from this instructor.