The SANS Institute has announced a major expansion of its Cyber Academies, aiming to triple the number of fully funded scholarships by 2026 in response to escalating threats to U.S. infrastructure. This initiative will provide immersive, instructor-led training to 500 individuals annually, equipping them with GIAC certifications and personalized support from student advisers and career services specialists to launch successful careers in cybersecurity.
As high-profile threats like Volt Typhoon continue to target U.S. infrastructure, the need for proven, hands-on cyber defenders has never been more urgent. From defending hospitals and utilities to stopping fraud against small businesses, organizations across every sector are seeking professionals with the skills and readiness to respond.
Founded by the late Alan Paller, SANS has spent decades equipping cybersecurity practitioners with the skills to operate effectively under real-world pressure. That legacy lives on through the SANS Cyber Academies, including intensive programs that have empowered thousands to safeguard critical systems. Participants gain hands-on experience with cybersecurity tools and techniques, build high-demand skills, and earn industry-recognized certifications that are highly valued by employers.
“Our founder, Alan Paller, believed that solving cybersecurity challenges starts with training people to act under pressure, not just understand the theory,” Dennis Kirby, chief executive officer at SANS Institute, said in a Tuesday media statement. “This expansion honors that legacy by opening access to the same rigorous training trusted by the world’s most mission-critical organizations. While many programs focus on entry-level access, we focus on identifying individuals with strong aptitude and long-term potential, then equipping them with current, hands-on skills through a proven training model that consistently produces practitioners ready to contribute from day one.”
As threats grow more complex, businesses and governments alike are recognizing the need for practical, hands-on training programs that develop job-ready talent.
“Developing a strong cybersecurity workforce is critical not only for protecting businesses but also for supporting our broader national security and economic interests,” said MK Palmore, director, Office of the Chief Information Security Officer, Google Cloud. “The SANS Cyber Academies are vital in equipping people with the practical skills needed to step into these roles and help defend against today’s persistent threats.”
“The cybersecurity workforce skills gap is one of the biggest challenges facing businesses today. Programs like the SANS Cyber Academies are giving people the real-world training and experience that employers need,” said Raj Chopra, senior vice president and chief product officer for Cisco Security. “We are proud to support efforts that not only create clear career pathways but also bring fresh talent and new perspectives into the cybersecurity field.”
The SANS Cyber Academies identify high-potential individuals with demonstrated aptitude and passion for cybersecurity and provide them with the tools they need to succeed. From former teachers and retail workers to military veterans and parents re-entering the workforce, graduates of the program are now fully engaged in cybersecurity roles, defending public and private systems nationwide.
“My experience in this program transformed my career aspirations from a dream to a reality,” said Cira Kohler, now a SOC analyst. “The classes offered the perfect blend of theory and practical skills to build not only a proficiency but a confidence in myself to take my education forward to a future career.”
The program is free to participants and is built around hands-on skill development. This means students actively practice detecting threats, using cybersecurity tools, and responding to real-world scenarios under guidance from expert instructors. As artificial intelligence rapidly became a transformative force in cybersecurity, SANS moved quickly to integrate AI-focused training into the curriculum.
SANS students were already trained to apply AI in threat detection, streamline analysis, and enhance incident response, while other, less agile training pathways were catching up. Academy students complete immersive, hands-on training led by SANS instructors and earn GIAC certifications that are trusted across the industry. They also receive individualized career support and direct access to employers ready to hire.
“We have seen individuals with no prior technical background step into roles defending hospitals, utilities, and public systems,” added Kirby. “That is what hands-on training unlocks: capability, confidence, and opportunity.”
This expansion reinforces the broader workforce strategy outlined by the White House in April, which emphasizes that closing critical skills gaps requires more than awareness. SANS is working closely with dozens of partners across industry, government, and nonprofit sectors, including Google, Cisco, and the Maryland Department of Labor, to extend the reach and impact of the Cyber Academies.
Applications for the next cohort are now open through May 22.
Last month, a global study from SANS and GIAC identified that the cybersecurity workforce crisis may be more misunderstood than ever. In a sharp break from headlines focused on unfilled roles, the 2025 Cybersecurity Workforce Research Report reveals that 52 percent of cybersecurity leaders say the real issue is not the number of people but the lack of the right people with the right skills.
