Latest news with #SANSCyberAcademies
Gulf Today
07-05-2025
- Business
- Gulf Today
GISEC is a global hub for cybersecurity innovation and collaboration: Experts
The first day of the GISEC Global 2025 has once again positioned Dubai at the heart of global cybersecurity discussions. Now in its 14th edition, the three-day event, taking place at the Dubai World Trade Centre, has become a key platform for advancing cybersecurity dialogue and innovation. Top global cybersecurity enterprises, government officials, CISOs, and experts from leading corporates in the Middle East, Africa, and Asia, are showcasing cutting-edge solutions, exchanging frontline insights, and forging strategic alliances aimed at strengthening cyber defenses across borders and industries. UAE's Strategic Cybersecurity Vision: The UAE is widely regarded as a global leader in cybersecurity, thanks to its forward-thinking policies and national strategies designed to strengthen its digital infrastructure. This vision is underpinned by initiatives like Cyber Sniper, which upskills local talent, and the Dubai Electronic Security Center's cybersecurity index, which ensures organizations adhere to strict security guidelines. Ned Baltagi, Managing Director for the Middle East, Turkey, and Africa at SANS Institute, shared his thoughts on the UAE's proactive approach to cybersecurity. Baltagi said: "The UAE's forward-thinking cybersecurity policies and national strategies are setting a global example. By aligning with frameworks like SCyWF and investing in programmes that develop homegrown talent, the UAE is building a sustainable cybersecurity ecosystem." He further emphasized that the SANS Cyber Academies are instrumental in developing local talent through industry-aligned training and certifications, helping to bridge skills gaps and enhance regional resilience. Cybersecurity Innovation: One of the key themes discussed on the first day was the increasing role of AI in both driving cyberattacks and advancing cybersecurity defenses. With AI-powered threats becoming faster, more targeted, and harder to detect, the cybersecurity community is responding by leveraging AI to enhance defensive measures. Sujoy Banerjee, Associate Director at ManageEngine, highlighted the growing complexity of cyber threats and the need for evolving regulatory frameworks to address them. He stated, "Although AI is intended to ease the burdens of organizations today, it has turned out to be a menace. Becoming an ally for bad actors, AI introduces potential (and scalable) cyber risks into the picture in the form of fake websites, hyper-realistic phishing attempts, and much more." Banerjee also called for updated policies and guidelines to combat AI-specific threats, such as data poisoning and misuse of AI agents, which could undermine traditional cybersecurity defenses. Endorsing a similar view, Meriam ElOuazzani, Senior Regional Director for META at SentinelOne, said. "GISEC plays a pivotal role in advancing the region's cybersecurity landscape by uniting global innovation with regional ambition. It's where the region shapes its cyber resilience blueprint and asserts its leadership on the global stage." ElOuazzani spoke about the significance of agentic AI, a technology that autonomously triages alerts, investigates threats, and triggers full-loop remediation workflows. This innovation is changing the paradigm from reactive security to proactive defense, ensuring faster response times and stronger protection. The Growing Threat of AI-driven Ransomware: AI-driven ransomware has emerged as one of the most pressing concerns. Attackers are leveraging AI to automate phishing, adapt in real-time, and bypass traditional defenses, resulting in more targeted and damaging attacks. Gopan Sivasankaran, General Manager, Secureworks, a Sophos Company, explained how this evolution is reshaping the cybersecurity landscape. "AI-driven ransomware is fundamentally changing the way cyberattacks unfold—making them faster, more targeted, and harder to detect," he noted. This rise in AI-powered cybercrime is not only challenging traditional security measures but also reshaping the dynamics of cyber insurance. Sivasankaran continued, "Insurers are looking for organizations to demonstrate proactive detection, rapid response, and end-to-end visibility before offering favorable coverage." As a result, businesses must invest in AI-driven security solutions like Sophos' XDR and MDR to reduce exposure to such threats and meet rising insurance expectations. Collaboration in Cyber Defence: GISEC 2025 highlighted the importance of collaboration between the public and private sectors in addressing the region's most significant cybersecurity challenges. Maher Jadallah, Vice President for Middle East & North Africa at Tenable, discussed how GISEC provides a unique platform for this collaboration: "Every year, GISEC unites the global and regional cybersecurity community, providing a vital platform for exchanging knowledge, forging partnerships, and driving innovation." Jadallah emphasised the growing importance of a risk-based approach to vulnerability management, particularly in sectors like energy, utilities, and manufacturing, where operational technology (OT) is increasingly converging with IT. "By combining continuous visibility across IT and OT assets with threat intelligence, security teams can focus on the most impactful risks," he added. This unified approach to cybersecurity is essential to ensure resilience across critical infrastructure environments, which are often prime targets for cybercriminals. Upskilling and Retaining Local Talent: A major theme throughout GISEC 2025 was the need to upskill local cybersecurity talent. As the region faces a growing cybersecurity skills gap, many organizations are now prioritizing internal development over external hiring. Ned Baltagi from SANS Institute noted, "Curiosity, adaptability, and cultural fit often outmatch technical credentials—and these traits already exist internally." Companies are recognizing that these qualities are crucial for building a resilient cybersecurity workforce. Baltagi's comments resonate with the findings of SANS' latest Workforce Research Report, which shows that 51% of organizations prefer to upskill their existing teams rather than hiring externally. By investing in tailored training programs and certifications, companies are ensuring that their teams are equipped to handle the complex challenges of today's rapidly evolving cybersecurity landscape. GISEC 2025's first day reinforced the UAE's commitment to becoming a global leader in cybersecurity. As the region continues to face increasingly sophisticated cyber threats, the emphasis on AI-driven solutions, collaboration, and upskilling local talent is more critical than ever. Industry leaders underscored the need for proactive cybersecurity measures, continuous innovation, and international cooperation to build a secure digital future. With GISEC providing the stage for these vital discussions, the UAE is well-positioned to lead the way in shaping the global cybersecurity landscape.
Tahawul Tech
05-02-2025
- Business
- Tahawul Tech
SANS Cyber Academies: Building the cyber workforce of tomorrow
Empowering cybersecurity defenders with tailored training, global certifications, and inclusive opportunities In today's digital age, cyber threats are evolving at an unprecedented pace, targeting critical infrastructure, sensitive data, and economic stability. The global cybersecurity skills gap continues to widen, leaving organizations vulnerable to attacks that can disrupt operations, compromise safety, and cause significant financial and reputational damage. Cybersecurity education is no longer optional—it's a necessity. By equipping professionals with the skills to defend against sophisticated threats, we can safeguard industries, protect communities, and foster innovation. SANS Cyber Academies are at the forefront of this mission, delivering tailored, hands-on training that addresses regional and industry-specific challenges while building a diverse and resilient cybersecurity workforce. SANS Cyber Academies are revolutionizing cybersecurity education by delivering fast-tracked, hands-on training programs designed to address the global skills gap. With a focus on regional and industry-specific needs, SANS equips professionals with practical skills and globally recognized certifications, empowering them to tackle evolving cyber threats. Ned Baltagi, Managing Director, Middle East, Turkey and Africa, at SANS Institute spoke to Sandhya D'Mello, Technology Editor, CPI Media Group about safeguarding critical infrastructure in the Gulf to fostering diversity and inclusion in the cybersecurity workforce, SANS Cyber Academies are building a resilient, skilled, and diverse community of defenders ready to secure the future. Interview Excerpts: Q. Can you elaborate on the impact of SANS Cyber Academies in the Middle East, particularly in how they are addressing the cybersecurity skills gap across critical sectors? At SANS Institute, we are tackling the pressing cybersecurity skills gap through the SANS Cyber Academy, a fast-tracked training program designed to deliver impactful results. Participants gain practical, hands-on skills taught by world-class SANS Instructors, enabling them to make an immediate impact in the real world. What makes the SANS Cyber Academy unique is its tailored approach. In the Middle East, we work closely with local government organizations and industry leaders to design programs that target specific industries and address their cybersecurity challenges. This ensures our graduates are not only highly skilled but also well-equipped to tackle the region's most pressing security needs. Consider the Gulf region, where critical infrastructure underpins economic stability and public safety. Cybersecurity upskilling is essential, and defenders require specialized training to tackle threats effectively, all while maintaining a focus on safety. At SANS, our academies are designed to adapt to organizational and regional needs, ensuring the training remains relevant and impactful. For example, we recently delivered two Cyber Academies in Kuwait, equipping participants with the skills and strategies to combat evolving cyber threats in a high-stakes industry. Programs like these exemplify our commitment to providing targeted, results-driven training that empowers teams to excel in their specific environments. Every team member, from technical staff to leadership, must develop the expertise required to address cybersecurity challenges across all business sectors. Whether it's safeguarding critical infrastructure in ICS/OT environments or protecting sensitive data in the financial sector, tailored expertise is essential to meet the unique demands of each industry. SANS Cyber Academies don't just train individuals—they build resilient, diverse, and highly skilled communities ready to tackle the world's most pressing cybersecurity challenges Q. What are the most pressing cyber threats currently impacting the Gulf region's infrastructure, and how is SANS working to mitigate these threats through its training programs? The Gulf region's critical infrastructure faces increasingly sophisticated cyber threats, with adversaries exploiting both IT and ICS environments. Sectors like Oil and Gas and Energy are particularly targeted, as attackers aim to disrupt operations, compromise safety, and even cause environmental harm. Incidents like TRISIS/TRITON and ransomware attacks, including EKANS, can cause catastrophic physical damage, operational shutdowns, and severe financial losses, jeopardizing lives and environmental safety. Specialized cybersecurity training, therefore, is essential to combat threats and high-stakes risks in industrial environments. SANS Institute addresses these challenges through its ICS curricula and training programs, equipping professionals with the required skills to protect these critical systems. Courses like ICS410: ICS/SCADA Security Essentials lay a strong foundation for securing industrial environments, while ICS515: ICS Visibility, Detection, and Response teaches teams advanced threat detection and incident response, using hands-on labs with real hardware. For leaders, ICS418: ICS Security Essentials for Leaders focuses on aligning cybersecurity strategies with business objectives, helping them manage industrial cyber risks effectively. Meanwhile, courses like ICS456 and ICS612 dive deeper into standards compliance and advanced technical defenses, providing practical, real-world expertise. Q. How do SANS Cyber Academies adapt their curriculum to meet the specific needs of different global and regional markets, and can you provide examples of how these programs are customized to foster diversity in cybersecurity professions? We offer a range of Cyber Academies tailored to diverse pathways, empowering individuals globally with specialized, accessible training that builds foundational cybersecurity skills and prepares them for impactful careers. For instance, in partnership with Tamkeen, the Bahrain Cyber Reskilling Program provided intensive eight-week training for Bahraini nationals aged 18 and above, culminating in three GIAC certifications. This initiative directly addressed the local skills gap and equipped participants with globally recognized credentials to advance their cybersecurity careers. Breaking gender barriers, our Women's Pathway, fosters inclusion and leadership for women and underrepresented genders in cybersecurity. Programs like the Women's Cyber Academy and Secure Diversity Leadership Academy, in collaboration with organizations such as WiCyS, offer scholarships and certifications to help women and underrepresented genders lead in cybersecurity. Our Veterans Pathway supports US military veterans and spouses transitioning into cybersecurity with comprehensive and immersive training that covers the latest technologies and techniques used in the field building on existing military expertise to further cybersecurity careers. With our Diversity Pathway, programs like Cyversity SANS Diversity Academy, funded by Google and Palo Alto Networks, and Jumpstart into Cyber, backed by NSF, empower underrepresented groups with no-cost training, gamified learning, and certification opportunities. Our goal is to create a more inclusive and diverse cybersecurity landscape through these academies, equipping individuals with the knowledge, skills, and certifications needed to build successful careers. At the same time, we address critical industry challenges by fostering a dynamic and resilient workforce prepared to tackle the evolving cybersecurity threat landscape. Q. In what ways do the SANS Cyber Academies' programs contribute to upskilling and reskilling, particularly in the context of the rapidly evolving cyber threat landscape? What opportunities does this create for professionals seeking to enter or advance in the cybersecurity field? We are constantly recruiting individuals with curiosity and a drive to learn for our SANS Cyber Academies, as these programs encourage continuous development. These academies provide an accessible opportunity for individuals who may have not recognized their aptitude for cybersecurity – or lacked the means to explore the field – to discover their potential and develop their skills. Organizations can amplify this by partnering with us or allocating resources for ongoing education during onboarding. Investing in training not only strengthens defenses against emerging threats but also enhances employee retention by fueling their passion for learning and staying current, creating a workforce that is both skilled and motivated to contribute effectively. Moreover, the SANS Cyber Academies offer a faster, more impactful alternative to standalone training, equipping individuals with certifications like GIAC in weeks rather than months, while maintaining exceptional success rates. Beyond training, they build a community of like-minded, skilled professionals and benefit the broader industry. Q. How does the education provided by SANS Cyber Academies benefit the wider community and nation, and what impact does this have on the growth and resilience of the cybersecurity sector? Addressing the growing cybersecurity threats requires a workforce that is both skilled and diverse. SANS Cyber Academies actively work to bridge this gap by equipping individuals from varied backgrounds with advanced cybersecurity knowledge and practical skills. Our academies represent more than just a learning opportunity, they provide a pathway for participants to contribute innovative ideas and solutions to the cybersecurity sector. By welcoming talent that has historically been underrepresented in the industry, the academies help drive creativity, enhance leadership opportunities, and strengthen the overall resilience and growth of the cybersecurity field at a national and global The education provided by SANS Cyber Academies strengthens national security, bridges the cybersecurity skills gap, and empowers individuals with industry-recognized certifications. For instance, the program in Kuwait saw students consistently achieving high marks in their GIAC certifications, demonstrating the effectiveness of the training and their readiness to excel in the field. Participants also benefited from the support of a robust cybersecurity community, fostering collaboration and shared learning. Beyond individual achievements, SANS contributed to the wider community through security events and resource sharing, promoting broader awareness and resilience, and the program delivered highly trained employees who are better equipped to safeguard critical assets, mitigate risks, and support organizational cybersecurity strategies. These outcomes collectively enhance community resilience, drive innovation, and support economic growth while building a more secure and inclusive cybersecurity sector.
