SANS Institute

From Wikipedia, the free encyclopedia
Jump to: navigation, search

The SANS Institute (officially the Escal Institute of Advanced Technologies)[1] is a private U.S. for-profit company[2] founded in 1989 that specializes in information security and cybersecurity training. Topics available for training include cyber and network defenses, penetration testing, incident response, digital forensics, and audit. The information security courses are developed through a consensus process involving administrators, security managers, and information security professionals. The courses cover security fundamentals and technical aspects of information security. The Institute has been recognized for its training programs[3] and certification programs.[4] SANS stands for SysAdmin, Audit, Network and Security.[5]

SANS Programs[edit]

The SANS Institute sponsors the Internet Storm Center, an internet monitoring system staffed by a global community of security practitioners, and the SANS Reading Room, a research archive of information security policy and research documents. SANS is one of the founding organizations of the Center for Internet Security.

SANS offers news and analysis through Twitter feeds and e-mail newsletters. Additionally, there is a weekly news and vulnerability digest available to subscribers.[6]

SANS training[edit]

When originally organized in 1989,[7] SANS training events functioned like traditional technical conferences showcasing technical presentations. By the mid-1990s, SANS offered events which combined training with tradeshows. Beginning in 2006, SANS offered asynchronous online training (SANS OnDemand) and a virtual, synchronous classroom format (SANS vLive). Free webcasts and email newsletters (@Risk, Newsbites, Ouch!) have been developed in conjunction with security vendors. The actual content behind SANS training courses and training events remain "vendor-agnostic." Vendors cannot pay to offer their own official SANS course, although they can teach a SANS "hosted" event via sponsorship.

In 1999, the SANS Institute formed Global Information Assurance Certification (GIAC), an independent entity that grants certifications in information security topics.[8]

It has developed and operates NetWars, a suite of interactive learning tools for simulating scenarios such as cyberattacks. NetWars is in use by the US Air Force[9] and the US Army.[10][11]

SANS Technology Institute[edit]

As of 2006 SANS established the SANS Technology Institute, a graduate school based on SANS training and GIAC certifications. On November 21, 2013, SANS Technology Institute was granted regional accreditation by the Middle States Commission on Higher Education.[12]

SANS Technology Institute focuses exclusively on cybersecurity, offering two Master of Science degree programs (in Information Security Engineering (MSISE) and Information Security Management (MSISM)), and three post-baccalaureate certificate programs (Penetration Testing & Ethical Hacking, Incident Response, and Cybersecurity Engineering (Core)).

SANS continues to offer free security content via the SANS Technology Institute Leadership Lab [13] and IT/Security related leadership information.[14]

See also[edit]


  1. ^ Bloomberg profile
  2. ^ "What is the SANS Institute?". SANS Frequently Asked Questions (faq): Security Training: General. Retrieved 2012-09-19. 
  3. ^ "SC Magazine Awards 2015" (PDF). SC Magazine. 
  4. ^ "2014 SC Awards U.S. Winners". SC Magazine. Retrieved 2015-11-17. 
  5. ^ "SANS Definition from PC Magazine Encyclopedia". Retrieved 2016-09-14. 
  6. ^ Messier, Ric (2014). GSEC: GIAC Security Essentials Certification. New York: McGraw-Hill Education. p. 7. ISBN 978-0-07-181962-6. 
  7. ^ "SANS Institute: About". 
  8. ^ "GIAC Information Security Certifications - Cyber Certifications". 
  9. ^ "Stepped Up Cyberthreats Prompt Air Force To Rethink Training, Acquisitions". SIGNAL Magazine. Retrieved 2015-11-17. 
  10. ^ "Strengthening the nation's defense against hackers". Retrieved 2015-11-17. 
  11. ^ Jr, Robert O'Harrow (2012-11-26). "CyberCity allows government hackers to train for attacks". The Washington Post. ISSN 0190-8286. Retrieved 2015-11-17. 
  12. ^ SANS Technology Institute. "Accreditation". 
  13. ^ "STI Information Security Laboratory". 
  14. ^ "STI Information Security Leadership Laboratory". 

External links[edit]