Browse Definitions :
Definition

SANS Institute

The SANS Institute is a private, for-profit organization that offers information security and cybersecurity training and certification in 90 cities around the world.

The Institute was founded in 1989 as a cooperative dedicated to IT security research and education. SANS maintains the largest repository of security information in the world and is also the largest certification body. The organization makes a large collection of security research documents freely available and operates an Internet warning system: The Internet Storm Center.

Resources offered by SANS:

  • SANS Information Security Reading Room offers over 2520 research papers in 96 categories.
  • SANS Weekly Bulletins and Alerts provides security news and vulnerability alerts.
  • SANS Security Policy Project offers security policy templates.
  • Vendor-Related Resources
  • Information Security Glossary includes brief definitions of security terms and acronyms.
  • Internet Storm Center
  • S.C.O.R.E. - A mechanism designed to help industry members agree on tools to secure common software and systems.
  • CIS Critical Security Controls provides a consensus-based ranking of the most effective security controls.
  • Intrusion Detection FAQ (frequently-asked questions).
  • SANS Press Room - Resources to help media cover the industry.

The SANS Institute’s GIAC (Global Information Assurance Certification) program provides a standards-based means to ensure the knowledge and abilities of a security professional. The program encourages continuous learning through its work-study program which provides teaching credits that can be redeemed for a reduced rate on classes.

This was last updated in May 2016

Continue Reading About SANS Institute

SearchCompliance
  • ISO 31000 Risk Management

    The ISO 31000 Risk Management framework is an international standard that provides businesses with guidelines and principles for ...

  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

SearchSecurity
  • Pretty Good Privacy (PGP)

    Pretty Good Privacy or PGP was a popular program used to encrypt and decrypt email over the internet, as well as authenticate ...

  • cyberterrorism

    Cyberterrorism is often defined as any premeditated, politically motivated attack against information systems, programs and data ...

  • click fraud (pay-per-click fraud)

    Click fraud -- sometimes called 'pay-per-click fraud' -- is a type of fraud that artificially inflates traffic statistics for ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
Close