SANS Cybersecurity Leadership Summit 2025
Summit Co-Chairs: Frank Kim & Jerich Beason
"Summits are a great way to meet and talk to the trail blazers; the individuals who each in their own way help shine a light for the rest of the community." - Michael Decker
In a rapidly evolving threat landscape, leaders can’t just keep up—they must set the standard. The SANS Cybersecurity Leadership Summit is for industry leading CISOs, directors and managers looking to empower themselves with the knowledge and tools to not just participate, but to set the pace in cybersecurity leadership.
This Summit provides invaluable insights from industry trailblazers who will share their strategies, lessons learned, and best advice.
Top 5 Reasons to attend:
1) Learn how to turn obstacles into opportunities from leaders who’ve paved the way.
2) In-depth talks on analyzing risk, assessing threats, and building and leading teams
3) Networking with experts and peers tackling the same hard-to-solve problems
4) New tools and approaches that you can immediately leverage in your work
5) Earn CPE credits for attending live (1 per hour of content)
The Cybersecurity Leadership Summit will address a wide range of topics, including:
What Attendees Say
“Attending the SANS Cybersecurity Leadership Summit was an insightful and enriching experience. The event was well-organized, featuring a diverse lineup of speakers who are experts in their respective fields. The presentations covered a wide range of relevant topics, from emerging AI threats and innovative defense strategies to leadership skills essential for navigating the ever-evolving cybersecurity landscape.” - Majda W.
“I found the sessions to be very useful and walked away with insights that will make my daily activities more effective.” - Fabio S.
"I've managed to learn something I didn't know from nearly every session, and I've been made aware of additional tools or methodologies that will help." - Dallas M.
3:00 pm - 3:15 pm UTC - Break
3:15 pm - 3:50 pm UTC - Navigating Regulatory Challenges: Understanding NIS2, DORA, and CRA
In an era where cybersecurity and digital resilience are paramount, organizations must effectively navigate the complexities of emerging regulations such as the Network and Information Security Directive 2 (NIS2), the Digital Operational Resilience Act (DORA), and the Cyber Resilience Act (CRA). This talk aims to equip management with a comprehensive understanding of these critical regulations and their implications for organizational operations. Experts Maxim Deweerdt, Principal SANS Instructor, and Pieter Batsleer, Senior Manager at NVISO, will provide an insightful overview of each regulation, emphasizing key elements that demand attention. Participants will gain actionable advice on compliance strategies, risk management, and best practices to ensure robust cybersecurity measures. This session is designed to empower leaders with the knowledge and tools necessary to proactively address regulatory challenges and enhance their organization's resilience against cyber threats.
3:50 pm - 4:25 pm UTC - Believing in Yourself to Lead Your Team
4:30 pm - 5:05 pm UTC - Bridging The Gap: The Playbook Of A BISO
Aligning security initiatives with an organization’s culture is no longer optional—it’s essential for fostering resilience, employee engagement, and long-term success. As the bridge between business objectives and cybersecurity priorities, the Business Information Security Officer (BISO) plays a pivotal role in shaping a security culture that empowers employees while minimizing risk.
This talk will provide a practical, step-by-step playbook for evaluating your organization’s cultural readiness, aligning security initiatives with core values, and embedding security into everyday operations. Learn how to shift from a compliance-driven mindset to a human-centric approach that fosters trust, collaboration, and shared responsibility across teams.
Through real-world examples and actionable strategies, attendees will gain insights into:
Assessing and understanding organizational culture.
- Building partnerships across business units to embed security seamlessly.
- Creating tailored messaging and programs that resonate with employees.
- Measuring and iterating on cultural alignment for continuous improvement.
Whether you’re a seasoned BISO or an emerging cyber leader, this session will equip you with the tools to align security with culture, overcome resistance, and drive meaningful organizational change.
5:10 pm - 5:40 pm UTC - Lunch Break
5:40 pm - 6:15 pm UTC - Bridging the Gap Between Engineers and Security Practitioners by Embedding Security Practices to Drive Positive Business Outcomes
Back to Events
