25 Cybersecurity Conference
Recommendations for 2022
January 14 - 16, 2022
Shmoocon, the annual “east coast hacker convention” focuses on creating an interesting atmosphere for exactly 1,425 attendees. There’s something for everyone here as the event covers a broad range of topics like live exploit demos and discussions around critical threats.
Although the 2022 Shmoocon is already sold out, be sure to snag your tickets for 2023 by following the event on Twitter. Tickets are released in batches but can sell out in 11 seconds or less.
SANS Cyber Threat Intelligence Summit
January 27 - 28, 2022
SANS holds multiple summits year-round, which are typically free for virtual attendees. SANS Cyber Threat Intelligence Summit should be a fascinating win for those interested in digital forensics and incident response (DFIR), as well as anyone with an interest in CTI.
This year’s summit includes prescriptive talks on threat forecasting, APTs, and career guidance for new or aspiring threat analysts.
Mesa, AZ + Virtual
February 4 -5, 2022
CactusCon is a small,but rapidly growing non-profit con organized by Arizonians committed to providing in-depth education on numerous areas of security.This is an outstanding regional conference for folks in the Southwest or allergic to fluffy conference talks.
This year, attendees can choose from deep-dives into several areas like hands-on car hacking, video game hacks, or Linux incident response.
March 5, 2022 (Tentative)
”[Bsides] has a great atmosphere, fantastic people, and engaging presentations that go in depth on the problems that practitioners are trying to solve,” said Kevin Swartz, director of Demand Generation at JupiterOne.
If you're not located by Tampa - here’s a full list of BSides events occurring worldwide in 2022.
New2Cyber Summit 2022
March 23 - 24, 2022
This virtual event is free, and it’s possibly one of the single most important events of the year for folks who are trying to break into their first security job. SANS events are well-staffed with some of the best advocates and mentors, plus highly-relevant agendas of content. It’s well worth attending if you’re discerning a security vocation or trying to uplevel your career.
Summit attendees will receive access to the SANS New2Cyber Summit Slack workspace, where you can interact with and ask questions of both the speakers and fellow attendees during the event. This is an amazing benefit that you can only get by registering.
March 17 - 19, 2022
The 9th Annual WICYS Conference is not only the flagship conference for women in cybersecurity but, regardless of gender, is the largest cybersecurity conference with equal representation of professionals and students.
Executives, professionals, graduate students, and even high schoolers are welcome to attend, learn, and connect. WiCys is a critical organization and both women in security and allies should look at other opportunities to get plugged in if they can’t make the Marrch conference in Cleveland.
April 5 - 9, 2022
Nullcon is now in it’s 12th year as an India-based, global non-profit that is dedicated to offering a unique platform for security research and technology in both Germany and India. Attendees can expect to choose from sessions around prototypes, exhibitions, training, workshops, and job fairs.
An additional conference will be held in Goa, India in the second half of 2022.
OSNIT Summit 2022
April 7 2022
Many seasoned security pros cut their teeth on OSINT, or the act of seeking, finding, and gathering data from internet-facing platforms. It’s an important skill for security pros in any specialization, especially those of us who have a focus on threat intelligence, threat hunting, and research.
SANS OSINT summit is free and designed to offer value to OSINT specialists of all skill levels, from beginner to advanced.
Belgium + Virtual
April 21 - 23, 2022
BruCON 0x0D Virtual Spring Training will be between 21st until 23rd April 2021. Our regular training track will take place from 4th until 6th October 2021 followed by our conference on 7th and 8th October 2021
BruCON is a conference by and for the security and hacker(*) community.
Montreal, Canada + Virtual
May 15 - 22, 2022
The annual NorthSec conference consists of three distinct parts:
Trainings, May 15-18
High-quality training sessions, given by the absolute best experts in their field. We strive to provide the highest level of exclusive content, giving you a unique opportunity to improve your applied security knowledge.
Primary conference, May 20-21
Subjects covered will be as diverse as pentesting, network security, software and/or hardware exploitation, web hacking, reverse engineering, malware and cryptography.
CTF competition, May 20-21
Our applied security contest (also called "Capture The Flag") now opposes nearly 150 teams of 20 people trying to obtain the most points by capturing flags.
Start stocking up on energy drinks now if you plan to participate in the CTF, which is expected to draw over 150 teams to compete.
43rd IEEE Symposium
San Francisco, CA
May 22 - 26, 2022
Since 1980, the IEEE Symposium on Security and Privacy has been the premier forum for presenting developments in computer security and electronic privacy, and for bringing together researchers and practitioners in the field. The 2022 Symposium will mark the 43rd annual meeting of this flagship conference.
The Symposium will be held on May 22-26, 2022, and the Security and Privacy Workshops will be held on May 26, 2022. Both events will be in San Francisco, CA at the Hyatt Regency.
BSides Cayman Islands
Cayman Islands + Virtual
May 26 - 27, 2022
The first annual Security BSides Cayman Islands will be happening on the 26th and 27th of May 2022.
Where: Kimpton Seafire, Seven Mile Beach Cayman Islands, Virtual
Tickets will be on sale shortly through a Cayman based event management company. We're aiming to give away 25-50 in person tickets to local Students and job seekers.
BSides NOVA is another event that bears mention due to its wild popularity among security pros in the DC Metro area, including tons of professionals who work for defense contractors.
BSides NOVA also partners with VetSec, a non-profit that provides education and guidance to military veterans entering the cybersecurity field.
San Francisco, CA + Virtual
June 6 - 9, 2022
The RSAC is among the largest infosec conferences of the entire year. Historically, the gathering has drawn over 60,000 attendees to Moscone Center in downtown San Francisco.
Such a large gathering naturally results in an overwhelming number of content tracks and sessions to choose from, plus a massive diversity of attendees - you’ll see cryptographers, hackers, and professionals from around the world.
We advise first or even second-time attendees to RSAC to make the most of their time by attending one of the conference’s many virtual orientation sessions.
National Harbor, MD
June 7 - 9, 2022
Gartner Symposiums are not your average hacker conference - you won’t find many subversive t-shirts or blinky badges here. Instead, it hosts an elevated gathering of “CxOs,” or a blend of CISOs, CIOs, and other security and risk executives.
Each annual symposium is focused on a key set of priorities for CxOs to use to accelerate digital innovation, including emerging technologies, vision, cloud, and machine identity management.
June 28 - 29, 2022
AWS re:Inforce is slated to be one of the year’s top events for cloud-native security professionals - including both cloud specialists and security teams. If you liked the recent AWS re:Invent conference, there’s a strong chance you’ll love re:Inforce.
“re:Invent had such a wide reach across AWS services and helped us discover cutting-edge tools,” says Carter Hesterman, Director of Engineering, Applications at JupiterOne. “I’m really looking forward to a similar vibe at re:Inforce with the narrowed focus security. I expect to learn about more pragmatic use cases for AWS security tools and techniques.”
Black Hat USA
Las Vegas + Virtual
July 31 - August 5, 2022
Black Hat has been a major infosec conference for 24 years and a key part of the annual “hacker summer camp,” a back-to-back series of infosec conferences that take place at the height of summer in Las Vegas. This conference is known for it’s high-value content, as well as some genuinely memorable after-parties.
JupiterOne Field Security Director Jasmine Henry loves Black Hat USA, which is known to insiders as “BHUSA,” because of its ideal blend of corporate security considerations and live demos from cutting-edge researchers.
Anyone who’s ever been to BHUSA or other “hacker summer camp” conferences in Vegas can attest to exactly why the famous “3-2-1” rule matters during the long, chaotic days of running around, trying to absorb as much as possible. That means you must make sure to get 3 hours of sleep, 2 meals, and 1 shower every day, no exceptions.
The Diana Initiative
Las Vegas, NV
August 10-11, 2022
The Diana Initaitive (TDI) is dedicated to helping members of all underrepresented communities - including women, non-binary, and transgender people at every stage of their infosec careers.
This conference first started in 2015 among a group of women attending Def Con 23 who shared lunch together in a cafeteria, and became its own conference in 2017. Recent virtual events housed nearly 2000 participants who attended talks, participated in hands-on workshops (hacking IoT, soldering, lock picking), and engaged in a fierce capture-the-flag (CTF).
If you’re planning to fly into Vegas for Black Hat or DefCon, this conference is definitely worth adding to your list.
UseNix Security Symposium
August 10 - 12, 2022
The 31st USENIX Security Symposium will take place on August 10–12, 2022, at the Boston Marriott Copley Place in Boston, MA, USA.
The USENIX Security Symposium brings together researchers, practitioners, system administrators, system programmers, and others interested in the latest advances in the security and privacy of computer systems and networks.
Las Vegas, NV
August 11 - 14, 2022
DEFCON is among the most iconic, well-known hacker conferences in the world. The event is fiercely non-commercial and renowned for its intense dedication to presenting premium security content, ranging from hands-on exploit demos to interactive tabletops, and workshops on using Elastic (ELK) stack for cloud threat hunting.
Most security GOATs have a DEF CON story (or three), including Tyler Shields, CMO at JupiterOne: “My first DEF CON was DEF CON 6 when it was still on the downtown strip. DEF CON to me represents innovation and creativity.. It's where guardrails are removed and new ideas can foster. I’ve made many long-lasting and impactful relationships with like-minded people over the years by going to DEFCON.
Many of those I’ve met are now CEOs or senior executives with some of the biggest cybersecurity firms on the planet. Learning from each other and being part of that community that has had such an amazing impact was, and remains, incredible.”
Atlanta, GA + Virtual
September 12 - 14, 2022
Security demands staying a step ahead. Attending Global Security Exchange (GSX) yearly ensures you never fall behind. Be there—on-site or online—when the worldwide security industry reconvenes next September to stay informed, connected, and prepared for what’s next.
Brought to you by ASIS International—the world’s largest membership organization for security management professionals—involvement in GSX directly supports the funding of scholarship for security professionals and the administration of essential industry certifications, standards, and guidelines.
Grand Rapids, MI
October 13 - 14, 2022
Hacker conferences should be fun, inclusive, and quirky - which is precisely what to expect from GrrCON.
GrrCON is an information security and hacking conference that provides the Midwest InfoSec community with a fun atmosphere to come together and engage with like minded people.
We keep GrrCON small with around 2,000 attendance to allow us to provide those things other events leave out. Whether you are a Fortune 500 executive, security researcher, industry professional, student, or a hacker of “flexible” morals you will find something for you at GrrCON.
National Cyber Summit
National Cyber Summit is the nation’s most innovative cyber security-technology event, offering unique educational, collaborative and workforce development opportunities for industry visionaries and rising leaders. NCS offers more value than similar cyber conferences with diverse focus-areas, premier speakers, and unmatched accessibility. Our core focus is on three things: education, collaboration and innovation.
Held in Huntsville, Alabama, one of the nation's largest technological hubs, the Summit attracts both government and commercial participants. Long known as the home to Department of Defense organizations and civilian departments and agencies including DHS, NIST, NASA, TVA, NSA and DOE, Huntsville also has many other industries represented. Companies are diverse and include healthcare, automotive and energy industries, academia, genetic research and high technology.
THOTCON is a hacking conference based in Chicago IL, USA. This is a non-profit, non-commercial event looking to provide the best conference possible on a limited budget.
Once you attend a THOTCON event, you will have experienced one of the best information security conferences in the world combined with a uniquely casual and social experience.
The conference will be held at a location only to be disclosed to attendees and speakers during the week before the event.
Chaos Communication Congress
This annual conference is organized by the Chaos Computer Club (CCC) to host workshops on security, cryptography, privacy, and online freedom of speech.
Since 1984, CCC has been the among the largest global hacker events and host to its own unique quirks - including volunteers who are called “chaos angels,” plus dedicated open spaces where attendees can self-assemble for collaboration and discussion.
2022 conference list researched and compiled by Tanvi Tapadia and Jasmine Henry.