Browse Definitions :
Definition

SANS Institute

Contributor(s): Matthew Haughn

The SANS Institute is a private, for-profit organization that offers information security and cybersecurity training and certification in 90 cities around the world.

The Institute was founded in 1989 as a cooperative dedicated to IT security research and education. SANS maintains the largest repository of security information in the world and is also the largest certification body. The organization makes a large collection of security research documents freely available and operates an Internet warning system: The Internet Storm Center.

Resources offered by SANS:

  • SANS Information Security Reading Room offers over 2520 research papers in 96 categories.
  • SANS Weekly Bulletins and Alerts provides security news and vulnerability alerts.
  • SANS Security Policy Project offers security policy templates.
  • Vendor-Related Resources
  • Information Security Glossary includes brief definitions of security terms and acronyms.
  • Internet Storm Center
  • S.C.O.R.E. - A mechanism designed to help industry members agree on tools to secure common software and systems.
  • CIS Critical Security Controls provides a consensus-based ranking of the most effective security controls.
  • Intrusion Detection FAQ (frequently-asked questions).
  • SANS Press Room - Resources to help media cover the industry.

The SANS Institute’s GIAC (Global Information Assurance Certification) program provides a standards-based means to ensure the knowledge and abilities of a security professional. The program encourages continuous learning through its work-study program which provides teaching credits that can be redeemed for a reduced rate on classes.

This was last updated in May 2016

Continue Reading About SANS Institute

SearchCompliance

SearchSecurity

  • cyber attack

    A cyber attack is any attempt to gain unauthorized access to a computer, computing system or computer network with the intent to ...

  • backdoor (computing)

    A backdoor is a means to access a computer system or encrypted data that bypasses the system's customary security mechanisms.

  • post-quantum cryptography

    Post-quantum cryptography, also called quantum encryption, is the development of cryptographic systems for classical computers ...

SearchHealthIT

SearchDisasterRecovery

  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

SearchStorage

  • cloud SLA (cloud service-level agreement)

    A cloud SLA (cloud service-level agreement) is an agreement between a cloud service provider and a customer that ensures a ...

  • NOR flash memory

    NOR flash memory is one of two types of non-volatile storage technologies.

  • RAM (Random Access Memory)

    RAM (Random Access Memory) is the hardware in a computing device where the operating system (OS), application programs and data ...

Close