Browse Definitions :
Definition

SANS Institute

Contributor(s): Matthew Haughn

The SANS Institute is a private, for-profit organization that offers information security and cybersecurity training and certification in 90 cities around the world.

The Institute was founded in 1989 as a cooperative dedicated to IT security research and education. SANS maintains the largest repository of security information in the world and is also the largest certification body. The organization makes a large collection of security research documents freely available and operates an Internet warning system: The Internet Storm Center.

Resources offered by SANS:

  • SANS Information Security Reading Room offers over 2520 research papers in 96 categories.
  • SANS Weekly Bulletins and Alerts provides security news and vulnerability alerts.
  • SANS Security Policy Project offers security policy templates.
  • Vendor-Related Resources
  • Information Security Glossary includes brief definitions of security terms and acronyms.
  • Internet Storm Center
  • S.C.O.R.E. - A mechanism designed to help industry members agree on tools to secure common software and systems.
  • CIS Critical Security Controls provides a consensus-based ranking of the most effective security controls.
  • Intrusion Detection FAQ (frequently-asked questions).
  • SANS Press Room - Resources to help media cover the industry.

The SANS Institute’s GIAC (Global Information Assurance Certification) program provides a standards-based means to ensure the knowledge and abilities of a security professional. The program encourages continuous learning through its work-study program which provides teaching credits that can be redeemed for a reduced rate on classes.

This was last updated in May 2016

Continue Reading About SANS Institute

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

Close