Latest news with #SCyWF
Gulf Today
07-05-2025
- Business
- Gulf Today
GISEC is a global hub for cybersecurity innovation and collaboration: Experts
The first day of the GISEC Global 2025 has once again positioned Dubai at the heart of global cybersecurity discussions. Now in its 14th edition, the three-day event, taking place at the Dubai World Trade Centre, has become a key platform for advancing cybersecurity dialogue and innovation. Top global cybersecurity enterprises, government officials, CISOs, and experts from leading corporates in the Middle East, Africa, and Asia, are showcasing cutting-edge solutions, exchanging frontline insights, and forging strategic alliances aimed at strengthening cyber defenses across borders and industries. UAE's Strategic Cybersecurity Vision: The UAE is widely regarded as a global leader in cybersecurity, thanks to its forward-thinking policies and national strategies designed to strengthen its digital infrastructure. This vision is underpinned by initiatives like Cyber Sniper, which upskills local talent, and the Dubai Electronic Security Center's cybersecurity index, which ensures organizations adhere to strict security guidelines. Ned Baltagi, Managing Director for the Middle East, Turkey, and Africa at SANS Institute, shared his thoughts on the UAE's proactive approach to cybersecurity. Baltagi said: "The UAE's forward-thinking cybersecurity policies and national strategies are setting a global example. By aligning with frameworks like SCyWF and investing in programmes that develop homegrown talent, the UAE is building a sustainable cybersecurity ecosystem." He further emphasized that the SANS Cyber Academies are instrumental in developing local talent through industry-aligned training and certifications, helping to bridge skills gaps and enhance regional resilience. Cybersecurity Innovation: One of the key themes discussed on the first day was the increasing role of AI in both driving cyberattacks and advancing cybersecurity defenses. With AI-powered threats becoming faster, more targeted, and harder to detect, the cybersecurity community is responding by leveraging AI to enhance defensive measures. Sujoy Banerjee, Associate Director at ManageEngine, highlighted the growing complexity of cyber threats and the need for evolving regulatory frameworks to address them. He stated, "Although AI is intended to ease the burdens of organizations today, it has turned out to be a menace. Becoming an ally for bad actors, AI introduces potential (and scalable) cyber risks into the picture in the form of fake websites, hyper-realistic phishing attempts, and much more." Banerjee also called for updated policies and guidelines to combat AI-specific threats, such as data poisoning and misuse of AI agents, which could undermine traditional cybersecurity defenses. Endorsing a similar view, Meriam ElOuazzani, Senior Regional Director for META at SentinelOne, said. "GISEC plays a pivotal role in advancing the region's cybersecurity landscape by uniting global innovation with regional ambition. It's where the region shapes its cyber resilience blueprint and asserts its leadership on the global stage." ElOuazzani spoke about the significance of agentic AI, a technology that autonomously triages alerts, investigates threats, and triggers full-loop remediation workflows. This innovation is changing the paradigm from reactive security to proactive defense, ensuring faster response times and stronger protection. The Growing Threat of AI-driven Ransomware: AI-driven ransomware has emerged as one of the most pressing concerns. Attackers are leveraging AI to automate phishing, adapt in real-time, and bypass traditional defenses, resulting in more targeted and damaging attacks. Gopan Sivasankaran, General Manager, Secureworks, a Sophos Company, explained how this evolution is reshaping the cybersecurity landscape. "AI-driven ransomware is fundamentally changing the way cyberattacks unfold—making them faster, more targeted, and harder to detect," he noted. This rise in AI-powered cybercrime is not only challenging traditional security measures but also reshaping the dynamics of cyber insurance. Sivasankaran continued, "Insurers are looking for organizations to demonstrate proactive detection, rapid response, and end-to-end visibility before offering favorable coverage." As a result, businesses must invest in AI-driven security solutions like Sophos' XDR and MDR to reduce exposure to such threats and meet rising insurance expectations. Collaboration in Cyber Defence: GISEC 2025 highlighted the importance of collaboration between the public and private sectors in addressing the region's most significant cybersecurity challenges. Maher Jadallah, Vice President for Middle East & North Africa at Tenable, discussed how GISEC provides a unique platform for this collaboration: "Every year, GISEC unites the global and regional cybersecurity community, providing a vital platform for exchanging knowledge, forging partnerships, and driving innovation." Jadallah emphasised the growing importance of a risk-based approach to vulnerability management, particularly in sectors like energy, utilities, and manufacturing, where operational technology (OT) is increasingly converging with IT. "By combining continuous visibility across IT and OT assets with threat intelligence, security teams can focus on the most impactful risks," he added. This unified approach to cybersecurity is essential to ensure resilience across critical infrastructure environments, which are often prime targets for cybercriminals. Upskilling and Retaining Local Talent: A major theme throughout GISEC 2025 was the need to upskill local cybersecurity talent. As the region faces a growing cybersecurity skills gap, many organizations are now prioritizing internal development over external hiring. Ned Baltagi from SANS Institute noted, "Curiosity, adaptability, and cultural fit often outmatch technical credentials—and these traits already exist internally." Companies are recognizing that these qualities are crucial for building a resilient cybersecurity workforce. Baltagi's comments resonate with the findings of SANS' latest Workforce Research Report, which shows that 51% of organizations prefer to upskill their existing teams rather than hiring externally. By investing in tailored training programs and certifications, companies are ensuring that their teams are equipped to handle the complex challenges of today's rapidly evolving cybersecurity landscape. GISEC 2025's first day reinforced the UAE's commitment to becoming a global leader in cybersecurity. As the region continues to face increasingly sophisticated cyber threats, the emphasis on AI-driven solutions, collaboration, and upskilling local talent is more critical than ever. Industry leaders underscored the need for proactive cybersecurity measures, continuous innovation, and international cooperation to build a secure digital future. With GISEC providing the stage for these vital discussions, the UAE is well-positioned to lead the way in shaping the global cybersecurity landscape.
Syyaha
24-04-2025
- Business
- Syyaha
SANS Institute to Host SANS Riyadh May 2025 and Cyber Workforce Masterclass to Power Saudi Arabia's Cyber Future
SANS Institute, the global leader in cybersecurity training and certification, is returning to Saudi Arabia with SANS Riyadh May 2025 (May 10 – May 22) at the Hyatt Regency Riyadh Olaya. Designed to empower cybersecurity professionals across the Kingdom and beyond, the event will offer eight fundamental and globally recognized courses focused on practical, hands-on skills to counter today's most pressing threats and organizational Kingdom's growing economy and swift adoption of advanced technologies under Vision 2030 have made it a prime target for cyber threats. Sectors such as energy, finance, and healthcare, which heavily depend on data and network systems, have experienced significant breaches, highlighting the critical need for skilled cybersecurity professionals to protect against digital vulnerabilities.'As Saudi Arabia continues to rise as a regional cybersecurity powerhouse. SANS is proud to play a role in developing the Kingdom's cyber workforce by equipping professionals with actionable skills and real-world capabilities,' said Ned Baltagi, Managing Director, Middle East, Africa, and Turkey at SANS Institute. 'With the right training and strategic focus, the Kingdom can build teams that are technically strong and deeply aligned with its national security objectives.'The following courses are available at SANS Riyadh May, both virtually and Security Essentials – Network, Endpoint, and CloudSEC504: Hacker Tools, Techniques, and Incident HandlingFOR508: Advanced Incident Response, Threat Hunting, and Digital ForensicsFOR578: Cyber Threat IntelligenceSEC560: Enterprise Penetration TestingSEC488: Cloud Security EssentialsSEC530: Defensible Security Architecture and Engineering: Implementing Zero Trust for the Hybrid EnterpriseSEC511: Cybersecurity Engineering: Advanced Threat Detection and MonitoringTo further address the Kingdom's needs, SANS will host a Cyber-Workforce Masterclass on May 15 from 9:30 AM – 12:30 PM at the Hyatt Regency Riyadh Olaya. The session, 'Unlock the Future of Cybersecurity Talent Development', will guide cybersecurity leaders on building sustainable talent pipelines, enhancing staff retention, and aligning workforce development with global frameworks like SCyWF and the NCA's Essential Cybersecurity Controls (ECC-2).Attendees will gain practical experience through real-world tabletop exercises, strategies to attract, develop, and retain talent, and global insights from the latest SANS GIAC Workforce Report. Participants will receive a certificate of attendance and actionable takeaways for implementing sustainable security frameworks. Open to all cybersecurity enthusiasts, two SANS Community Night Sessions will also be held. On May 12 – AI & Cybercrime: How Criminals Are Weaponizing AI – this talk will look at how attackers are leveraging artificial intelligence to target organizations through social engineering attacks, and what organizations can do to combat these threats. May 19 – Detection Through Monitoring: Leveraging the Home Field Advantage – will dig into specific tactics that leverage that home field advantage and make it easier for security teams to effectively detect and respond. Both sessions will run from 5:30 PM – 6:30 PM AST
Zawya
16-04-2025
- Business
- Zawya
SANS Institute to host SANS Riyadh May 2025 and Cyber Workforce Masterclass to power Saudi Arabia's cyber future
Riyadh, Kingdom of Saudi Arabia – SANS Institute, the global leader in cybersecurity training and certification, is returning to Saudi Arabia with SANS Riyadh May 2025 (May 10 - May 22) at the Hyatt Regency Riyadh Olaya. Designed to empower cybersecurity professionals across the Kingdom and beyond, the event will offer eight fundamental and globally recognized courses focused on practical, hands-on skills to counter today's most pressing threats and organizational needs. The Kingdom's growing economy and swift adoption of advanced technologies under Vision 2030 have made it a prime target for cyber threats. Sectors such as energy, finance, and healthcare, which heavily depend on data and network systems, have experienced significant breaches, highlighting the critical need for skilled cybersecurity professionals to protect against digital vulnerabilities. 'As Saudi Arabia continues to rise as a regional cybersecurity powerhouse. SANS is proud to play a role in developing the Kingdom's cyber workforce by equipping professionals with actionable skills and real-world capabilities,' said Ned Baltagi, Managing Director, Middle East, Africa, and Turkey at SANS Institute. 'With the right training and strategic focus, the Kingdom can build teams that are technically strong and deeply aligned with its national security objectives.' The following courses are available at SANS Riyadh May, both virtually and in-person. SEC401: Security Essentials - Network, Endpoint, and Cloud SEC504: Hacker Tools, Techniques, and Incident Handling FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics FOR578: Cyber Threat Intelligence SEC560: Enterprise Penetration Testing SEC488: Cloud Security Essentials SEC530: Defensible Security Architecture and Engineering: Implementing Zero Trust for the Hybrid Enterprise SEC511: Cybersecurity Engineering: Advanced Threat Detection and Monitoring To further address the Kingdom's needs, SANS will host a Cyber-Workforce Masterclass on May 15 from 9:30 AM – 12:30 PM at the Hyatt Regency Riyadh Olaya. The session, ' Unlock the Future of Cybersecurity Talent Development ', will guide cybersecurity leaders on building sustainable talent pipelines, enhancing staff retention, and aligning workforce development with global frameworks like SCyWF and the NCA's Essential Cybersecurity Controls (ECC-2). Attendees will gain practical experience through real-world tabletop exercises, strategies to attract, develop, and retain talent, and global insights from the latest SANS GIAC Workforce Report. Participants will receive a certificate of attendance and actionable takeaways for implementing sustainable security frameworks. Open to all cybersecurity enthusiasts, two SANS Community Night Sessions will also be held. On May 12 - AI & Cybercrime: How Criminals Are Weaponizing AI - this talk will look at how attackers are leveraging artificial intelligence to target organizations through social engineering attacks, and what organizations can do to combat these threats. May 19 - Detection Through Monitoring: Leveraging the Home Field Advantage - will dig into specific tactics that leverage that home field advantage and make it easier for security teams to effectively detect and respond. Both sessions will run from 5:30 PM – 6:30 PM AST. For more information and to register for SANS Riyadh May 2025, visit: To register for the SANS Riyadh May 2025 Community Nights, visit: To register for the Riyadh Edition of the Cyber-Workforce Masterclass, visit: SANS will be hosting more training events over the summer, including SANS Riyadh June 2025, SANS Riyadh July 2025 and SANS Riyadh Cyber Leaders 2025. About SANS Institute The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cybersecurity training and certification to professionals in government and commercial institutions worldwide. Renowned SANS instructors teach more than 60 courses at in-person and virtual cybersecurity events and OnDemand. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cybersecurity. The SANS Technology Institute, a regionally accredited independent subsidiary, offers master's and bachelor's degrees, graduate certificates, and an undergraduate certificate in cybersecurity. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to manage their 'human' cybersecurity risk easily and effectively. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system–the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community.
