Home Cybersecurity Services CIS CyberMarketSANS Workforce Security and Risk Training

SANS Workforce Security and Risk Training

The partnership between SANS and CIS draws on the shared mission to ensure that infosec practitioners have the skills needed to enhance the cybersecurity readiness and response of U.S. State, Local, Tribal, and Territorial (SLTT) government entities.

Learn how to make your limited training budget go further with discounts from SANS

About SANS

SANS is the most trusted and largest source for information security training and security certification in the world. SANS’ mission is to ensure that infosec practitioners in critical organizations have the skills needed to protect national security. Our best-in-class Security Awareness solutions can transform your organization’s ability to measure and manage human risk as well as help build and mature your security awareness program.

SANS Workforce Security and Risk Training

Security Awareness training is a critical component of a comprehensive security program. Compliance and behavior change becomes difficult for non-technical individuals without the proper content. SANS Workforce Security and Risk Training offers a comprehensive solution for end users and individuals of all levels with expert-authored content. Created by a trusted global network of cybersecurity professionals, this partnership program includes several key security awareness products:

End User – Comprehensive security awareness training for all staff designed by industry experts to change user behavior, mature your program, and protect your organization.
Phishing Tools – Consistently reinforce the importance of security and create a top-notch defense against any kind of phishing attack.
IT Administrator - Level up your technical staff with advanced training to protect your whole organization
Developer – Train your developers in secure coding techniques and how to recognize current threat vectors in web applications.
NERC CIP – Relevant training addresses NERC CIP reliability standards for the utility industry.
ICS Engineer – Designed exclusively for people who support, interact with, or operate within ICS environments.
Business Leaders and Managers - Leadership-focused cybersecurity training to secure business processes.
Role-Based PCI-DSS 4 - Equip staff to understand and safeguard cardholder data per the 2024 PCI-DSS 4 standards.
Workforce Risk Management for AI - Equip your staff with the essential knowledge and skills to navigate the complex AI landscape.

Watch video to learn more

SANS Workforce Security and Risk Training

SANS Workforce Security and Risk Training offers customizable, expert-authored security awareness training with a focus on measurable outcomes for organizations to change user behavior and reduce risk.

Maintain Compliance
Address relevant standards and regulations, such as the CIS Controls, PCI DSS, HIPAA, GDPR, OWASP Top 10, NERC, and more.
Customizable
Tailor your awareness program to the unique cybersecurity needs of your organization with different training modules, tracks, and styles.
Flexible
Administer training with the SANS-hosted LMS or deploy on your own SCORM-compliant LMS. Enable your staff to complete training on their own pace.
Developed by Experts
Leading cybersecurity and instructional design experts work together to keep learners engaged from start to finish.
Measurable
Demonstrate the effectiveness of your program with objective data. Through continual simulation and testing, measure where your employees need reinforcement and how your program is succeeding.

What our members are saying

I love your product. I implemented SANS Security Awareness at California Air Resources Board... I really enjoyed the program; I had 92% compliance with 1,300 staff. Your product was an obvious choice for our organization here at Covered California.Terese MatchimISO for California Health Benefit Exchange

Pricing and Contact Information

SANS and CIS have partnered to offer SANS Workforce Security and Risk Training at deeply discounted rates to SLTT entities during special purchase windows.

Winter Buy Window: December 1, 2025 – January 31, 2026

Summer Buy Window: June 1 – July 31, 2026

General Security Awareness Training

Product License	End User	Phishing	End User & Phishing Bundle
1-year price	$3,420	$4,260	$6,660
# of Users Included	1,200	1,200	1,200
Each Additional User	$2.85	$3.55	$5.55

2-Year Price	$6,300	$7,920	$12,180
# of Users Included	1,200	1,200	1,200
Each Additional User	$5.25	$6.60	$10.15

Specialized Security Awareness Training

Product License	Annual Price	# of Users Included	Each Additional User
IT Administrator	$3,175	50	$63.50
Developer	$2,890	10	$289.00
NERC CIP	$3,175	50	$63.50
ICS Engineer	$3,175	50	$63.50
Business Leaders & Managers	$3,175	50	$63.50
Role-Based PCI-DSS 4	$3,000	150	$20.00
Workforce Risk Management for AI	$3,175	50	$63.50

*Service level and hosting options are available at an additional cost.

Please visit www.sans.org/partnerships/sltt to request a detailed price quote and see available options. Specific pricing information, outside-buy-window pricing, and written quotes are available by request. Please contact us with questions.

In addition to SANS Workforce Security and Risk Training, SANS offers significant discounts on other industry-leading cybersecurity training programs during the buy windows. Learn more about other SANS training solutions available through our partnership: SANS Skills Quest by NetWars and SANS Technical Training.

Website

www.sans.org/partnerships/sltt

Email address

[email protected]