SANS Instructors

Justin Searle has redefined industrial cybersecurity by leading the development of NIST IR 7628, a cornerstone in smart grid security, and creating open-source tools like ControlThings that have become essential for ICS/IIoT assessments.

Andreas is a seasoned cyber threat intelligence professional with over 15 years in cybersecurity. He specializes in cyber threat analysis and building threat management programs.

Dave Shackleford, founder of Voodoo Security, has advanced cybersecurity through his leadership roles, including serving as CTO for the Center for Internet Security, where he coordinated the first published virtualization security benchmarks.

Steve splits his time between Europe and the US, bringing a unique blend of physics expertise and an early foundation in machine learning to every project. His career spans high-stakes programming roles, from banking in Europe to cybersecurity in the US.

Jeff is a Subject Matter Expert (SME) for the Global Industrial Cyber Security Professional (GICSP) certification and is an instructor for the ICS612: ICS Cybersecurity In-Depth course.

James Shewmaker, founder of Bluenotch Corporation, has over two decades of technical experience in IT, primarily developing appliances for automation and security for broadcast radio, internet, and satellite devices.

Raul is founder of DinoSec, where he performs advanced cybersecurity analysis services, security research, and technical training. For 20+ years, he has applied his expertise, innovating offensive and defensive solutions for organisations worldwide.

Bryan Simon, a SANS Senior Instructor and author of SEC401, has been involved in cybersecurity since 1991. He’s the president of Xploit Security Inc., and has taught cybersecurity students from organizations like the FBI, NATO, and UN.

Serving as a Threat Operations, Intel Specialist for HiddenLayer, Jim's role involves curating intelligence collections and automating the processing and exploitation of data to ensure efficient analysis.

Stephen Sims, an esteemed vulnerability researcher and exploit developer, has significantly advanced cybersecurity by authoring SANS's most advanced courses and co-authoring the "Gray Hat Hacking" series.

Ed is the founder of the SANS Penetration Testing Curriculum and Counter Hack; leads the team that builds NetWars, Holiday Hack, and CyberCity; and is President of the SANS Technology Institute.

Kenton is a well-respected cybersecurity consultant and thought leader based in Calgary, Canada. To SANS, Kenton brings more than 25 years of hands-on and management experience in a wide range of industries from hi-tech to critical infrastructure.