SANS Share Your Story: How SEC401 Builds Your Security Foundation with Genie-Rose Luluquisin
The video, part of SANS “Share Your Story” series, features Genie Rose Luluquisin, a security operations manager, recounting how the SEC401 Fundamentals of Information Security course reshaped her career. She describes entering a male‑dominated SOC environment, feeling the need for external validation, and how SANS provided the credibility and technical grounding she lacked. Luluquisin emphasizes that SEC401 taught her to view incidents holistically—recognizing that an attacker’s actions are interconnected rather than isolated events. She applied the lessons immediately, improving investigative depth and gaining the confidence to speak up during high‑stakes incidents. The curriculum’s breadth, spanning over 30 topics, equips participants with both high‑level concepts and low‑level technical details, making them actionable from day one. Memorable quotes underscore the transformation: “It’s not just you’re killing one fire; there’s more around it,” and “I’m not just thinking—I know what’s happening.” These illustrate how the course shifted her mindset from tentative speculation to authoritative analysis, reinforcing the value of a solid security foundation. For organizations, the takeaway is clear: investing in foundational training like SEC401 cultivates confident, well‑rounded SOC analysts who can diagnose complex threats quickly and mentor peers, ultimately strengthening the enterprise’s cyber‑defense posture.
Two Generations. One Powerful Learning Journey.
The video “Two generations. One powerful learning journey” showcases a father‑daughter duo—Sunel Wari and Mariam Barki—who trace their paths from early tech roles to advanced cybersecurity careers, emphasizing the pivotal role of SANS training. Sunel, after five years in technology, pivoted...
Data Security in the Age of AI: Proactive Strategies to Protect Your Most Valuable Assets
The webcast, led by Peter Sleven, senior information‑security manager at Bank of Ireland, examined how enterprises can safeguard data as AI adoption accelerates. Sleven framed data security as a prerequisite for successful AI projects and outlined a roadmap that spans...
Cybersecurity Standards Scorecard (2025 Edition)
The webcast, hosted by veteran SANS instructor James Troll, introduces the 2025 edition of the Cybersecurity Standards Scorecard – an annual research effort that catalogues and evaluates the growing universe of cyber‑security frameworks. Troll notes that the SANS database now...
Blue Team | Intelligence-Driven Defense for the Real World
The video outlines an intelligence‑driven approach to blue‑team operations, arguing that modern cyber‑threat intelligence (CTI) must evolve from static reports into an operational pipeline that turns external threat feeds and internal telemetry into concrete defensive actions. The speaker, who credits...
Red Team | Weaponizing LLM Fine-Tuning for Stealthy C2
Researchers from Palo Alto Networks' Cortex team demonstrated how attackers can weaponize fine-tuning of large language models to build stealthy command-and-control channels that live inside popular AI models. They show attackers already using LLMs for reconnaissance, social engineering and coding,...
Blue Team | From Exploit to Risk: Scaling Purple Team Insights
Anthony Switzer argues for “first-principle purple teaming,” a methodology that converts red-team and pentest findings into actionable business risk and mission impact. He stresses translating technical detections (e.g., Active Directory exploits, MITRE mappings) into language executives and auditors understand, and...
Blue Team | Hunting Cloud Persistence Without Malware
The talk explains how modern attackers achieve long-term cloud persistence without malware by abusing legitimate cloud-native features—OAuth app consent, stolen or replayed tokens, mismanaged service principal credentials, long-lived API keys, mailbox rules and automated connectors. These malicious activities blend into...