Ned Baltagi, the Managing Director, Middle East, Turkey, and Africa at SANS Institute, says a key highlight of 2024 was the successful launch of new training programs focused on Secure Software Development, Threat Intelligence Automation, and Industrial Control Systems (ICS) Security

How did the industry and your company fare in 2024, and what were the key highlights?
In 2024, the cybersecurity industry continued to accelerate at a rapid pace, driven by an evolving threat landscape, heightened regulatory pressures, and the increased complexity of securing cloud environments, IoT devices, and critical infrastructure. At SANS Institute, we experienced robust growth as organizations prioritized workforce development and sought high-quality, vendor-neutral cybersecurity training and certifications. Our global footprint expanded through a series of new training partnerships, additional courses delivered online and in-person, and the introduction of advanced research-based content.

A key highlight was the successful launch of new training programs focused on Secure Software Development, Threat Intelligence Automation, and Industrial Control Systems (ICS) Security. These offerings resonated strongly with enterprises, government agencies, and practitioners who needed immediately applicable skills. Additionally, we saw greater engagement within our community through the SANS Summit series and interactive capture-the-flag competitions, which fostered collaboration and continuous learning.
Overall, 2024 demonstrated that trust in highly specialized training providers remains paramount, and our focus on providing deep, practical knowledge continues to differentiate SANS in a crowded market.

What opportunities do you foresee for 2025, and how do you plan to leverage them?
In 2025, we anticipate significant opportunities stemming from the convergence of cybersecurity with emerging technologies and the increased emphasis on continuous workforce development. The shift toward zero-trust architectures, the adoption of quantum-resistant cryptography, and the integration of AI-powered analytics tools into security operations will drive demand for specialized training. As organizations embrace more remote and hybrid work models, they’ll also need to ensure that skills remain current in a distributed workforce environment.

SANS plans to leverage these opportunities by expanding our curriculum to address cutting-edge topics. We will continue to offer flexible learning formats, blending virtual and in-person training to meet the diverse needs of professionals. Additionally, we’re enhancing our mentorship programs and alumni networks to help graduates continually refresh their knowledge and exchange best practices with peers. We aim to equip security teams with the versatile, forward-looking capabilities they need to protect their organizations amidst accelerating technological change by aligning our offerings with these trends.

What major challenges did you encounter in 2024, and how did you address them?
One of the main challenges we confronted last year was the intensifying complexity of cyber threats. Attackers leveraged increasingly sophisticated tactics, including supply chain compromises, AI-driven malware, and nation-state-sponsored campaigns targeting critical infrastructure. This evolution required us to continuously update our training content to keep pace with new threat vectors. We invested heavily in our research capabilities, working closely with industry experts, and refined our curriculum more frequently, ensuring our students remained well-prepared.

Which emerging technologies do you believe will be in high demand in 2025, and why?
We foresee several emerging technologies playing pivotal roles in cybersecurity. Quantum-resistant cryptography will gain traction as organizations begin preparing for quantum computing’s ability to break classical encryption. This will create demand for training that helps practitioners understand, implement, and maintain new cryptographic standards. Simultaneously, the proliferation of artificial intelligence and machine learning tools in both offensive and defensive roles will shape how analysts detect threats and automate responses.

Professionals will need specialized skills to interpret AI-driven insights, govern the ethical use of these tools, and maintain a human-in-the-loop approach to critical decision-making. The rise of secure DevOps, or DevSecOps, will continue as businesses integrate security early in the software development lifecycle. Cloud-native security tools and frameworks that protect containers, microservices, and serverless architectures will also be in demand. Finally, advanced identity and access management solutions – particularly those aligned with zero-trust principles – will be vital as enterprises seek to mitigate insider threats and secure an expanding digital ecosystem.

What will be your primary focus areas and strategic priorities for 2025?
Our strategic priorities for 2025 centre on three key areas. First, we aim to enhance the depth and breadth of our training curriculum to reflect the latest cybersecurity trends. This includes developing specialized tracks focusing on quantum-resistant strategies, AI-driven threat intelligence, and advanced ICS security. We’ll ensure that learners receive the most current and actionable guidance by continually updating our material and integrating research-derived insights.

We’re committed to expanding our global community of cybersecurity professionals. Through partnerships with universities, industry groups, and government agencies, we’ll strengthen regional footprints, support community-driven initiatives, and help close the cybersecurity skills gap. By focusing on curriculum innovation, cutting-edge delivery, and community building, we aim to elevate the capabilities of professionals and organizations worldwide.