Ahmed Abugharbia

Ahmed Abugharbia is the co-founder of Cystack, a leading cybersecurity firm, and the founder of Cyberdojo, a company developing AI-based threat hunting tools and offering specialized Cloud and AI Security services. He has built advanced capabilities in cloud security and helped establish Cloud Security Operations Centers for multiple Fortune 100 companies, significantly strengthening their ability to detect and respond to evolving threats. With over 17 years of experience in the field, Ahmed has led large-scale initiatives across cloud security, network and application security, and incident response. A SANS Certified Instructor, he is the author of SEC545: GenAI and LLM Application Security and also teaches SEC540: Cloud Native Security and DevSecOps Automation.

More About Ahmed

Specialties

Cloud Security

Upcoming Courses

Profile

For more than a decade, Ahmed has delivered security training in various capacities—from mentoring teammates and conducting hands-on workshops to training clients on technical topics such as offensive security and secure infrastructure design. His journey with SANS began in 2013 when he took SEC401: SANS Security Essentials – Network, Endpoint, and Cloud and SEC560: Enterprise Penetration Testing and earning both GIAC Security Essentials (GSEC) and GIAC Penetration Test Certification (GPEN) certifications. Having experienced many classes and certifications by then, he found SANS training uniquely practical and impactful. This experience led him to pursue a role as a SANS instructor when he decided to make teaching a central part of his career.

Ahmed is also a faculty member at the SANS Technology Institute, an NSA Center of Academic Excellence in Cyber Defense and a multiple-time National Cyber League champion.

Over the past several years, Ahmed has specialized in Cloud Security, working closely with large enterprises to build and mature their Cloud Security Operations Centers, integrating scalable detection, response, and governance mechanisms. In parallel, he has been researching and working on the security of AI-based applications, particularly focusing on the risks posed by generative models and the secure deployment of LLM-powered systems.

In his teaching, Ahmed consistently hears that DevOps and cloud topics feel overwhelming due to their depth and pace of change. He acknowledges this challenge while also viewing it as a catalyst for innovation and growth. His approach is rooted in two principles: understand the fundamentals and apply them through hands-on practice. He believes students learn best when they gain conceptual clarity first and then reinforce it through real-world scenarios.

Ahmed encourages continuous learning, deeper exploration of complex topics, and maintaining strong peer connections through open communication channels after class. His ultimate goal is to send students back to their roles equipped with actionable knowledge and skills that can create immediate, measurable impact.

Ahmed holds a bachelor’s degree in computer science and a wide range of industry certifications, including GSEC, GPEN, AWS Certified DevOps Engineer – Professional, AWS Certified Solutions Architect – Associate, CEH, JNCIS-FWV, JNCIA-IDP, and CCNA. He is fluent in both English and Arabic. Outside the world of cybersecurity, he practices Brazilian Jiu Jitsu, which he describes as a form of martial arts that is all about solving technical problems under pressure.