Whether you are a security pro, software developer, security administrator, or any other role in the IT security fields, attending a conference is an excellent way to network with other professionals and extend your knowledge base. These IT security and cybersecurity conferences provide exclusive access to some of the newest innovations and ideas from all around the globe, putting you in the same room as the leading experts and security pros. There are hundreds of these conferences to choose from each year, giving you the ability to choose what is right for you.
However, not all security conferences are the same, and they may not fit your preferences or budget. Some conferences are small and intimate with plenty of time for collaboration and questions, while others are large, loud, and draw in thousands of people at a time. While the bigger security conferences may not offer as much time for small discussions, they still provide plenty of networking opportunities and presentations from some of the top global experts in the security field.
BMC’s list allows you to find the top IT Security, Information Security, and CyberSecurity conferences of 2019 that are relevant to you quickly and efficiently. Whether you are looking for a conference by date, location nearest to you, or a specific price range, our list provides both national and international options so you are sure to find exactly what you are looking for.
This list will be updated regularly, so feel free to contact me if you would like to add a security conference to the directory. To be considered, please email all details including the conference name, dates of the event, location, and a link to the event’s website to firstname.lastname@example.org.
Top IT Security, InfoSec, & CyberSecurity Conferences for 2019
Date: January 21-26
Location: Miami, Florida
Cost: $5,730 to $6,610
SANS Miami 2019 is organized by the SANS Institute, the global leader in information security training, and features hands-on cyber security courses taught by the industry’s top professionals and instructors in the field. These courses range in levels from introductory all the way to the most advanced training available. The event also offers insightful presentations by keynote speakers and plenty of unique networking opportunities. Some of the trainings include: Hacker Tools, Techniques, Exploits, and Incident Handling; Continuous Monitoring and Security Operations; Network Penetration Testing and Ethical Hacking; Active Defense and Incident Response, to name a few.
Date: March 4-8
Location: San Francisco, California
Cost: $1,995 to $2,895
The RSA Conference is one of largest security conferences in the entire world, with more than 40,000 attendees in 2018 alone. Add to that the more than 700 speakers from all across the globe, and it’s no wonder this event is one of the largest and most popular in the area of cybersecurity. The event features relevant topics and resources each year, with tracks in areas such as encryption and national security, Department of Defense perspectives on cyber threats, and hacking, to name a few. It provides insights and networking opportunities to help you get ahead, and stay ahead, of cyber threats and system compromises.
Date: March 20-22
Location: Vancouver, British Columbia
Cost: $2,000 to $2,600 CAD
CanSecWest is one of the world’s most advanced technical conferences aimed at applied digital security. The event is a three-day, single-track conference that offers best practices and real-world experiences regarding new vulnerabilities, attacks, and defenses, provided in lecture-style presentations by an experienced professionals. CanSecWest consistently draws a variety of vendors and security professionals, including offensive and defensive experts. The information presented and shared is extremely critical, on topics like hacking drones, embedded systems, security software, web hacking techniques, and advanced malware deobfuscation.
Date: March 29-31
Location: Austin, Texas
InfoSec Southwest annually brings together some of the top experts and professionals from the field of information security and hacking disciplines. The scope of InfoSec Southwest is broad, and it is organized of seminars, e-learning workshops, in-house training sessions, conferences, and executive programs. It also includes deep dives into the social and legal implications of hacking and how they are affecting the hacker culture.
Date: April 1-3
Location: Lake Buena Vista, Florida
Cost: $1,795- $4,195
InfoSec World has been one of the main “business of security” conferences in the world for 25 years. Bringing together expert speakers, security practitioners, and industry leaders, InfoSec World addresses ways to manage today’s threats to cultivate business while preventing, detecting, and responding to security challenges that arise. Some topics that will be covered at the 2019 conference include: DevSecOps, securing mobile devices and applications, building an effective insider threat program, drone security, cryptocurrency, AI, and blockchain.
Date: May 6-10
Location: Amsterdam, Netherlands
The Hack In The Box Security Conference is held each year in Amsterdam and is globally recognized for its networking opportunities and its forward-thinking views on computer security issues. The two day conference consists of multitrack sessions that cover topics such as: Practical machine learning in infosecurity; Cloning Android HCE cards; The making of Drammer; Attacks against ISO crypto libraries; Keyless entry system attacks; and Hunting for vulnerabilities in Signal. Attendees can expect to develop new professional relationships and alliances while learning from some of the top security experts in the industry.
Date: April 16-18
Cost: SD $995 to SD $1695
The ICS Cyber Security Conference is a three-day event that includes multi-track trainings and workshops specifically aimed at operations, control systems, and IT security professionals. The conference is one of the longest-running events with a focus on cybersecurity in the industry, and featured speakers from top organizations all across the world. The 2018 event consisted of many tracks, such as: Lessons Learned from the Triton/TRISIS ICS Malware; Practical Cybersecurity Assessment of Smart Grids; Discussions of recent ICS cyber incidents in the APAC region; Cybersecuring APR1400 Nuclear Power Reactors; and Hacking Safety Controllers for Fun and Profit.
Date: May 3-4
Location: Chicago, Illinois
Cost: $69- $299
ThotCon is an annual conference in Chicago started and held specifically for hackers and the local hacking culture. ThotCon is a small and nonprofit event, with an attendance last year of about 1,000 people. The event is low-cost yet high quality, with a strong focus on providing one of the best information security conference experiences in a social and relaxing environment. In honor of its secretive nature, the specific location of the event is kept confidential until a week before the conference, when it is then released to attendees and speakers alike. Some of the previous topics covered at ThotCon conferences include: Using, or securing against, the latest hacking methods such as side channels, physics, and low cost tools; Hacking Python; and Intercepting, modifying, and generating wireless signals with SD.
Date: May 14-17
Location: Ottawa, Canada
Cost: $500- $1,370 USD
The International Cryptographic Module Conference is designed to bring together global experts in commercial cryptography. The conference is aimed at those interested in developing, specifying, and procuring certified commercial off-the-shelf cryptographic modules; government departments responsible for testing cryptographic modules; and key players and stakeholders in standards development, to name a few. The 2019 ICM conference includes a variety of speakers, such as TIM ANDERSON, Program Manager, WWPS Security & Compliance Business Acceleration Team at Amazon; DEBRA BAKER, Cybersecurity Evangelist at Cisco; JEFF BLANK, Technical Director, Endpoint Solutions for NSA Cybersecurity; and JOSHUA BRICKMAN, Director, Security Evaluations for Oracle.
Date: May 20-22
Location: San Francisco, California
Organized by The Institute of Electrical and Electronics Engineers, the IEEE Symposium on Security and Privacy attracts both developers and researchers interested in computer security and electronic privacy. Workshops for the 2019 event will include: Workshop on Technology and Consumer Protection; Deep Learning and Security Workshop; International Workshop on Privacy Engineering; IEEE Workshop on the Internet of Safe Things; and 4th Workshop on Traffic Measurements for Cybersecurity.
Date: June 4-6
Location: London, UK
Infosecurity Europe is the region’s largest and most widely attended information security event. The event features Europe’s most comprehensive conference program, with over 360 exhibitors showcasing the newest information security solutions and products to close to 18,000 attendees. The conference featured sessions on the latest research on vulnerabilities and how to defend against them, and short presentations that addressed the latest business challenges, how to align info security with your organization’s strategic business plan, and how to overcome new challenges.
Date: June 17-20
Location: National Harbor, Maryland
Cost: $3,100 to $3,400
The Gartner Security & Risk Management Summit is one of the largest gatherings for security, risk management, and business continuity management leaders. The event provides proven practices and strategies for cost-effective security while reducing risks and compromises through a mixture of keynotes from global experts, panels, roundtables, workshops, and even one-on-one meetings. The presentations cover topics such as: Risks and opportunities of smart machines, artificial intelligence, the Internet of Things and operational technology; Data security and risk governance; Mobile security for digital business; Protecting vital infrastructure; and Privacy and data security.
Date: August 3-8
Location: Las Vegas, Nevada
Cost: $495 to $2,795
Black Hat is one of the world’s biggest tech conferences, providing attendees with the latest research and trends in security. The 2018 event attracted more than 15,000 people, and has become the premier conference for researchers, security experts, vendors, and hackers. In fact, this conference has become so well-known in the city of Las Vegas, that workers at hotels and restaurants are advised to keep their wifi off for the entire event to ward against potential attacks or security threats. The 2018 Black Hat USA agenda featured numerous tracks, including: Applied Security; Cryptography; Data Forensics/Incident Response; Exploit Development; Hardware/Embedded; Internet of Things; Malware; Mobile; and Network Defense.
Date: August 8-11
Location: Las Vegas, Nevada
Cost: $260, cash only at the door
Another extremely popular event in Las Vegas is Def Con, one of the oldest and largest security conferences in the world. The conference begins each year when its cousin, Black Hat, ends, so the events share many similar topics and themes. However, Def Con brings in close to 25,000 attendees and is known for being a wilder event with some of the best hackers attending in the world. The event features speakers, contests, vendors, workshops, demo labs, and entertainment, not to mention plenty of opportunities to network with the world’s top hackers and potentially get headhunted by government officials looking for hacker talent for intelligence and law enforcement agencies.
Date: August 14-16
Location: Santa Clara, California
Cost: $915 $1065
The Usenix Security Symposium is a three-day conference that includes more than 80 refereed paper presentations as well as invited talks and various sessions. Organizers say that the Usenix Security Symposium brings together researchers, practitioners, system administrators, system programmers, and others interested in the latest advances in the security and privacy of computer systems and networks. Tracks for the 2018 conference included: Security Impacting the Physical World, Memory Defenses, Censorship and Web Privacy, Privacy in a Digital World, and Attacks on Crypto & Crypto Libraries.
Date: September 8-12
Location: Chicago, Illinois
The ASIS Global Security Exchange has been one of the leading conferences for security professionals worldwide for more than six decades. Organized by ASIS International, this event covers the full spectrum of security topics, with presentations and sessions in areas like data and infrastructure security, cybersecurity, counterterrorism, loss prevention, and facilities security. The keynote speakers for the 2018 GSX conference included: Fareed Zakaria GPS, a bestselling author, and a Washington Post columnist; Scott Klososky, Founder and Principal of TriCorps Technologies; Bradley Spacy Major General, U. S. Air Force Installation and Mission Support Center Commander; Brigadier General Mohammed Al-Habdan, Secretary General of the Higher Commission for Industrial Security | Ministry of Interior Kingdom of Saudi Arabia.
Date: September 25-26
Location: Chicago, IL
Cost: $99- $499
Cyber Security Chicago is a specialized conference that offers security insight for both IT managers as well as security specialists. The conference features some of the top cybersecurity experts as they share their knowledge on how you can build stronger defenses against attacks and how to recover if your systems are compromised. These experts cover all ranges of cyber security topics, from firewalls to threat intelligence solutions. Cyber Security Chicago focuses on six specific areas: Protection, Detection, Mitigation, Intelligence, Hacking, and Devsecops.
No matter your budget or your role in the security world, there is a conference for you. Whether you are looking for something small and familiar, or large and loud, these conferences are guaranteed to bring you closer to some of the biggest experts in the world while providing opportunities to learn about the latest research and to network with other security and IT professionals. It doesn’t matter which of these top IT security, information security, and cybersecurity conferences you choose, you will definitely not be disappointed.
These postings are my own and do not necessarily represent BMC's position, strategies, or opinion.