SEC536: Adversarial AI - Penetration Testing AI Systems


Experience SANS training through course previews.
Learn MoreLet us help.
Contact usBecome a member for instant access to our free resources.
Sign UpWe're here to help.
Contact UsKey findings:
The data shows organizations have made real gains in speed and process discipline since 2019, detecting and containing incidents faster and assessing their IR programs more consistently. But that progress hasn't translated into better outcomes against repeat attackers: the rise in returning threat actors using familiar TTPs suggests organizations still aren't systematically applying lessons learned from past incidents. Staffing remains the other soft spot, with career growth and pay, not benefits, driving IR talent out the door. Respondents represented organizations of all sizes, from under 1,000 employees to more than 50,000, with the largest concentrations in banking and finance, cybersecurity, government, and technology, and operations spanning North America, Europe, Asia-Pacific, and beyond.


Megan is a Senior Security Engineer at Datadog, SANS DFIR faculty, and co-author of FOR509. She holds two master’s degrees, serves as CFO of Mental Health Hackers, and is a strong advocate for hands-on cloud forensics training and mental wellness.
Learn more

Terrence Williams is a SANS Certified Instructor and Security Engineer, Investigations at Meta, with deep expertise in cloud security, digital forensics, and incident response.
Learn more