SANS Cyber Academies: Building the cyber workforce of tomorrow

Tahawul Tech

05-02-2025

Empowering cybersecurity defenders with tailored training, global certifications, and inclusive opportunities
In today's digital age, cyber threats are evolving at an unprecedented pace, targeting critical infrastructure, sensitive data, and economic stability. The global cybersecurity skills gap continues to widen, leaving organizations vulnerable to attacks that can disrupt operations, compromise safety, and cause significant financial and reputational damage. Cybersecurity education is no longer optional—it's a necessity.
By equipping professionals with the skills to defend against sophisticated threats, we can safeguard industries, protect communities, and foster innovation. SANS Cyber Academies are at the forefront of this mission, delivering tailored, hands-on training that addresses regional and industry-specific challenges while building a diverse and resilient cybersecurity workforce.
SANS Cyber Academies are revolutionizing cybersecurity education by delivering fast-tracked, hands-on training programs designed to address the global skills gap. With a focus on regional and industry-specific needs, SANS equips professionals with practical skills and globally recognized certifications, empowering them to tackle evolving cyber threats.
Ned Baltagi, Managing Director, Middle East, Turkey and Africa, at SANS Institute spoke to Sandhya D'Mello, Technology Editor, CPI Media Group about safeguarding critical infrastructure in the Gulf to fostering diversity and inclusion in the cybersecurity workforce, SANS Cyber Academies are building a resilient, skilled, and diverse community of defenders ready to secure the future.
Interview Excerpts:
Q. Can you elaborate on the impact of SANS Cyber Academies in the Middle East, particularly in how they are addressing the cybersecurity skills gap across critical sectors?
At SANS Institute, we are tackling the pressing cybersecurity skills gap through the SANS Cyber Academy, a fast-tracked training program designed to deliver impactful results. Participants gain practical, hands-on skills taught by world-class SANS Instructors, enabling them to make an immediate impact in the real world. What makes the SANS Cyber Academy unique is its tailored approach. In the Middle East, we work closely with local government organizations and industry leaders to design programs that target specific industries and address their cybersecurity challenges. This ensures our graduates are not only highly skilled but also well-equipped to tackle the region's most pressing security needs.
Consider the Gulf region, where critical infrastructure underpins economic stability and public safety. Cybersecurity upskilling is essential, and defenders require specialized training to tackle threats effectively, all while maintaining a focus on safety. At SANS, our academies are designed to adapt to organizational and regional needs, ensuring the training remains relevant and impactful.
For example, we recently delivered two Cyber Academies in Kuwait, equipping participants with the skills and strategies to combat evolving cyber threats in a high-stakes industry. Programs like these exemplify our commitment to providing targeted, results-driven training that empowers teams to excel in their specific environments. Every team member, from technical staff to leadership, must develop the expertise required to address cybersecurity challenges across all business sectors. Whether it's safeguarding critical infrastructure in ICS/OT environments or protecting sensitive data in the financial sector, tailored expertise is essential to meet the unique demands of each industry.
SANS Cyber Academies don't just train individuals—they build resilient, diverse, and highly skilled communities ready to tackle the world's most pressing cybersecurity challenges
Q. What are the most pressing cyber threats currently impacting the Gulf region's infrastructure, and how is SANS working to mitigate these threats through its training programs?
The Gulf region's critical infrastructure faces increasingly sophisticated cyber threats, with adversaries exploiting both IT and ICS environments. Sectors like Oil and Gas and Energy are particularly targeted, as attackers aim to disrupt operations, compromise safety, and even cause environmental harm. Incidents like TRISIS/TRITON and ransomware attacks, including EKANS, can cause catastrophic physical damage, operational shutdowns, and severe financial losses, jeopardizing lives and environmental safety. Specialized cybersecurity training, therefore, is essential to combat threats and high-stakes risks in industrial environments.
SANS Institute addresses these challenges through its ICS curricula and training programs, equipping professionals with the required skills to protect these critical systems. Courses like ICS410: ICS/SCADA Security Essentials lay a strong foundation for securing industrial environments, while ICS515: ICS Visibility, Detection, and Response teaches teams advanced threat detection and incident response, using hands-on labs with real hardware.
For leaders, ICS418: ICS Security Essentials for Leaders focuses on aligning cybersecurity strategies with business objectives, helping them manage industrial cyber risks effectively. Meanwhile, courses like ICS456 and ICS612 dive deeper into standards compliance and advanced technical defenses, providing practical, real-world expertise.
Q. How do SANS Cyber Academies adapt their curriculum to meet the specific needs of different global and regional markets, and can you provide examples of how these programs are customized to foster diversity in cybersecurity professions?
We offer a range of Cyber Academies tailored to diverse pathways, empowering individuals globally with specialized, accessible training that builds foundational cybersecurity skills and prepares them for impactful careers.
For instance, in partnership with Tamkeen, the Bahrain Cyber Reskilling Program provided intensive eight-week training for Bahraini nationals aged 18 and above, culminating in three GIAC certifications. This initiative directly addressed the local skills gap and equipped participants with globally recognized credentials to advance their cybersecurity careers.
Breaking gender barriers, our Women's Pathway, fosters inclusion and leadership for women and underrepresented genders in cybersecurity. Programs like the Women's Cyber Academy and Secure Diversity Leadership Academy, in collaboration with organizations such as WiCyS, offer scholarships and certifications to help women and underrepresented genders lead in cybersecurity.
Our Veterans Pathway supports US military veterans and spouses transitioning into cybersecurity with comprehensive and immersive training that covers the latest technologies and techniques used in the field building on existing military expertise to further cybersecurity careers.
With our Diversity Pathway, programs like Cyversity SANS Diversity Academy, funded by Google and Palo Alto Networks, and Jumpstart into Cyber, backed by NSF, empower underrepresented groups with no-cost training, gamified learning, and certification opportunities.
Our goal is to create a more inclusive and diverse cybersecurity landscape through these academies, equipping individuals with the knowledge, skills, and certifications needed to build successful careers. At the same time, we address critical industry challenges by fostering a dynamic and resilient workforce prepared to tackle the evolving cybersecurity threat landscape.
Q. In what ways do the SANS Cyber Academies' programs contribute to upskilling and reskilling, particularly in the context of the rapidly evolving cyber threat landscape? What opportunities does this create for professionals seeking to enter or advance in the cybersecurity field?
We are constantly recruiting individuals with curiosity and a drive to learn for our SANS Cyber Academies, as these programs encourage continuous development. These academies provide an accessible opportunity for individuals who may have not recognized their aptitude for cybersecurity – or lacked the means to explore the field – to discover their potential and develop their skills. Organizations can amplify this by partnering with us or allocating resources for ongoing education during onboarding. Investing in training not only strengthens defenses against emerging threats but also enhances employee retention by fueling their passion for learning and staying current, creating a workforce that is both skilled and motivated to contribute effectively.
Moreover, the SANS Cyber Academies offer a faster, more impactful alternative to standalone training, equipping individuals with certifications like GIAC in weeks rather than months, while maintaining exceptional success rates. Beyond training, they build a community of like-minded, skilled professionals and benefit the broader industry.
Q. How does the education provided by SANS Cyber Academies benefit the wider community and nation, and what impact does this have on the growth and resilience of the cybersecurity sector?
Addressing the growing cybersecurity threats requires a workforce that is both skilled and diverse. SANS Cyber Academies actively work to bridge this gap by equipping individuals from varied backgrounds with advanced cybersecurity knowledge and practical skills. Our academies represent more than just a learning opportunity, they provide a pathway for participants to contribute innovative ideas and solutions to the cybersecurity sector. By welcoming talent that has historically been underrepresented in the industry, the academies help drive creativity, enhance leadership opportunities, and strengthen the overall resilience and growth of the cybersecurity field at a national and global
The education provided by SANS Cyber Academies strengthens national security, bridges the cybersecurity skills gap, and empowers individuals with industry-recognized certifications. For instance, the program in Kuwait saw students consistently achieving high marks in their GIAC certifications, demonstrating the effectiveness of the training and their readiness to excel in the field. Participants also benefited from the support of a robust cybersecurity community, fostering collaboration and shared learning. Beyond individual achievements, SANS contributed to the wider community through security events and resource sharing, promoting broader awareness and resilience, and the program delivered highly trained employees who are better equipped to safeguard critical assets, mitigate risks, and support organizational cybersecurity strategies. These outcomes collectively enhance community resilience, drive innovation, and support economic growth while building a more secure and inclusive cybersecurity sector.