GIAC Research Papers
Explore GIAC research papers authored by certified professionals, covering real-world cybersecurity topics including cloud security, incident response, digital forensics, and AI.
2026 Cybersecurity Workforce Research Report by SANS | GIAC
Research PaperCybersecurity LeadershipThe cybersecurity workforce is at a turning point. AI is transforming how work gets done, regulators are redefining ‘qualified,’ and organizations are recognizing that the right skills, not headcount, are what drive success. As AI reshapes the cyber workforce, this report helps leaders make informed decisions and shows practitioners where skills and careers are heading.
- 11 Mar 2026
- SANS Institute, GIAC Certifications
Cloud Security Groundhog Day: Avoiding Recurring Mistakes in a Dynamic Landscape
Research PaperCloud SecurityDownload the SANS ebook and learn how to strengthen your cloud and AI security strategies.
- 16 Oct 2025
- Dr. Anton Chuvakin, Dr. Paul Vixie, Frank Kim, Simon Vernon, Brandon Evans, Dave Shackleford, Wesley Kuzma
OT Network Visibility and Detective Controls in a NERC CIP World
Research PaperIndustrial Control Systems SecurityAs cyber threats grow and regulations evolve, critical infrastructure must balance compliance and innovation.
- 20 Aug 2025
- Tim Conway
A New Era in Vulnerability Management: A SANS Review of the Seemplicity Platform
Research PaperCyber DefenseIn this paper, Dave Shackleford offers an inside look at Seemplicity, a vendor-agnostic remediation orchestration platform designed to unify vulnerability management across code, cloud, and infrastructure.
- 18 Aug 2025
- Dave Shackleford
Adopting an Offensive Security Posture: Strategies and Best Practices
Research PaperCyber DefenseThis paper delves into essential concepts, and offers practical guidance for adopting an offensive security posture.
- 18 Aug 2025
- Jorge Orchilles
ZTA Unpacked: The Critical Technical Components of Zero Trust Architecture
Research PaperCloud SecurityThis paper demystifies the technical foundation of Zero Trust Architecture (ZTA) and outlines the key technologies that drive modern, mature implementations.
- 15 Aug 2025
- Greg Scheidel
NERC CIP-015: Monitoring Deep Inside Critical Networks to Keep Adversaries Outside
Research PaperIndustrial Control Systems SecurityThe North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) Standards (hereinafter referred to as the Standards) require preventive controls to establish Electronic Security Perimeters (ESPs) containing Bulk Electric System (BES) Cyber Systems and to control communications in and out of those ESPs.
- 14 Aug 2025
- Tim Conway, Robert M. Lee
SANS 2025 Security Awareness Report
Research PaperSecurity Awareness, Cybersecurity LeadershipNow in its 10th year, the SANS Security Awareness Report remains the definitive, practitioner-built resource for understanding and managing the human side of cybersecurity.
- 12 Aug 2025
- Lance Spitzner
Enhanced Decisions with WatsonX: A Look at IBM QRadar Investigation Assistant
Research PaperCyber DefenseThis paper examines IBM QRadar Investigation Assistant, an AI-powered tool that enhances SOC performance by streamlining incident triage, automating threat enrichment, and enabling natural language query capabilities.
- 6 Aug 2025
- Matt Bromiley
Cybersecurity Solutions Healthcare Report 2025
Research PaperCybersecurity LeadershipReview and compare vendor capabilities, featuring SANS Institute as a top provider of security training and services tailored for healthcare.
- 30 Jul 2025
Balancing On-Prem and Cloud Security Strategic Considerations for Modern Organizations
Research PaperCyber DefenseThis paper examines the strategic trade-offs between cloud and on-prem deployments, and the growing trend of consolidating tools into integrated security platforms.
- 30 Jul 2025
- Matt Bromiley
AI-Driven SecOps: Unifying Controls, Automating Response, and Advancing the Modern SOC Using Cortex XSIAM
Research PaperArtificial IntelligenceNew research from IDC reveals the tangible business value of rigorous, practitioner-led training from SANS: faster threat detection and response, reduced operational risk, stronger team cohesion, and millions in annual cost savings.
- 29 Jul 2025
- Dave Shackleford