Menu
🤖 GAESP · Americas · 2026

AI Cybersecurity Training USA and Canada 2026 — GAESP Workshop

GAESP — two days of live, hands-on AI security training covering Generative AI and Agentic AI, scheduled in Eastern Time for cybersecurity professionals across the USA and Canada.

2 Days
Instructor-led
15+
Workshops delivered
40+
Countries served
90-Day
Replay access

Why AI cybersecurity matters right now in this region.

The Urgency

The USA set the agenda for AI governance in 2023. Two years later, the compliance work lands on your desk.

If you're a cybersecurity professional in the USA or Canada, you've had a clear regulatory signal since October 2023: Executive Order 14110 on Safe, Secure, and Trustworthy Development and Use of AI. EO 14110 directed federal agencies and regulated industries to implement AI risk management, red-team testing for frontier AI models, and safety evaluations. NIST responded with the AI Risk Management Framework — GOVERN, MAP, MEASURE, MANAGE — and the Generative AI Profile (NIST IR 2006) extending it specifically for LLMs.

Then the SEC issued guidance on AI disclosure obligations. Colorado passed the first comprehensive state AI law — the Colorado Artificial Intelligence Act — which took effect in February 2026 and requires algorithmic impact assessments, disclosure, and risk management for high-risk AI systems. Other states are following. And CISA keeps publishing AI security guidance for critical infrastructure that eventually becomes an expectation.

The practical challenge is that none of these frameworks tell you how to actually do the work. How to red team the LLM your product team shipped last quarter. How to audit the AI agent your operations team gave email access to last week. How to generate compliance evidence for a NIST AI RMF assessment without spending two weeks manually filling spreadsheets. That gap between policy and practice is what GAESP is built to close.

GAESP is 2 days of hands-on AI security training — both Generative AI (LLM-based systems and the risks specific to them) and Agentic AI (autonomous agents that execute tools, hold memory, and chain reasoning across steps). 16 hours. 13 modules. Live sessions in Eastern Time. 30 seats per batch. I teach every cohort personally.

What AI-capable cybersecurity professionals earn in this region.

Salary Premium

AI-capable cybersecurity professionals command a 40–60% salary premium.

35–50%Salary premiumAI-capable cybersecurity roles vs baseline across USA and Canada
USD 130K–200KUS mid-level (indicative)AI security roles in financial services, government, and tech sector
CAD 160K–280KCanada senior/lead (indicative)AI security leads at major Canadian banks, Shopify, Telco, public sector

Indicative ranges based on 2026 Americas compensation data. AI security remains a premium discipline with limited public benchmarks; ranges are directional. Sources: Robert Half 2026, Dice Salary Survey, Michael Page Americas.

US demand concentrates in financial services (under SEC and OCC scrutiny), defense and intelligence contractors (EO 14110 downstream), and the major cloud/tech firms. Canada follows closely, anchored by the major banks and public sector digital transformation programmes.

The regulatory drivers making AI cybersecurity mandatory in this region.

Regulatory Mandate

US federal and state AI regulation is creating an expanding compliance surface for cybersecurity teams.

US Executive Order 14110NIST AI RMF + Gen AI ProfileSEC AI Disclosure GuidanceColorado AI Act (2026)Canadian AIDA (Bill C-27)OSFI Guideline B-13

US Executive Order 14110

Safe, Secure, and Trustworthy AI · Federal agencies + regulated industries · Red-team testing + safety evaluation

NIST AI RMF + Gen AI Profile

GOVERN, MAP, MEASURE, MANAGE · NIST IR 2006 for LLMs · De facto US AI governance standard

SEC AI Disclosure Guidance

Material AI risks · Disclosure obligations for public companies · Board-level accountability

Colorado AI Act (2026)

First comprehensive US state AI law · High-risk AI · Algorithmic impact assessments · Consumer rights

Canadian AIDA (Bill C-27)

Artificial Intelligence and Data Act · High-impact AI systems · Harm avoidance + transparency

OSFI Guideline B-13

Technology and Cyber Risk Management · All federally regulated financial institutions · AI risk in scope

Every US and Canadian framework creates demand for cybersecurity professionals who can do the actual AI security work — not just map policy to a framework box, but test, red-team, and defend live AI systems. GAESP builds exactly those skills.

What you build across the 2 days.

Workshop Structure

Two days. Thirteen modules. Live coaching in Eastern Time.

Day 1 — GenAI Security Foundations
#Module
01Introduction to Generative AI and Agentic AI for Cybersecurity
02AI Threat Landscape (OWASP LLM Top 10 + Agentic Risks)
03Setting Up Your AI Lab Environment
04Simulating AI-based Attacks — Prompt Injection, Model Poisoning, and Agentic Tool Abuse
05Malware Detection Using AI
06Deepfake Detection Techniques
07Phishing Detection with AI
Day 2 — Agentic AI Security & GRC
#Module
08Agentic SIEM — SOC Automation with AI Agents
09Security Testing with AI and AI Agents
10AI-based Ethical Hacking (LLM + Agentic Systems)
11AI in GRC — Governance, Risk & Compliance Automation
12AI Red Teaming (LLM + Agentic AI)
13Capstone Exercise — Full AI Security Scenario
Your Instructor

Know Your Coach

29+

Years Experience

CISSPCISMCRISCCCSPCPEGPCPISI

5,000+

Coached

40+

Countries

“As a military veteran and cybersecurity professional with 29 years of experience, I've dedicated my life to learning and training.”

I've been in cybersecurity for 25 years. I hold CISSP, CCSP, CISM, CISA, CRISC, and CPISI credentials. I've coached 5,000+ professionals across 40+ countries through Cybernous including US and Canadian practitioners in financial services, defense contracting, government, and technology sectors. 400+ ISC² endorsements. Best Mentor Award 2025 by REVA University. I teach every GAESP cohort personally.

— Manoj Sharma

Every session is hands-on. By end of Day 2 you'll have run real prompt injection tests, built an AI-augmented SOC workflow for a US financial services scenario, and produced a red team report against a live LLM — with me walking through each one alongside you.

Find your country — delivery details, salary ranges, and employers.

By Country

AI cybersecurity training delivered to your country.

AI cybersecurity training for USA professionals

The United States is the world's largest AI security hiring market. Executive Order 14110 (October 2023) set federal AI security expectations across agencies and regulated industries. NIST published the AI Risk Management Framework and Generative AI Profile as the voluntary but de facto standards. The SEC issued AI disclosure guidance affecting all public companies. Colorado's AI Act (effective February 2026) is the first comprehensive state law — others are in progress in California, Texas, Illinois, and New York.

CISA's AI security guidance for critical infrastructure — covering the 16 critical infrastructure sectors — creates downstream AI security obligations for energy, water, financial services, healthcare, transportation, and communications operators. The National Security Agency (NSA) and Department of Defense (DoD) each publish AI security guidance for their contractors and the defence industrial base.

US AI security hiring concentrates at JPMorgan Chase, Bank of America, Goldman Sachs, Citigroup, Morgan Stanley, Microsoft, Google, Amazon Web Services, Meta, Apple, Palantir Technologies, CrowdStrike, Palo Alto Networks, Mandiant (Google), Booz Allen Hamilton, MITRE Corporation, Leidos, Science Applications International Corporation (SAIC), and the major federal agencies (CISA, NSA, DoD, FBI, DHS).

Delivery: GAESP workshop scheduled in Eastern Time (America/New_York). Attendable from all US time zones — ET, CT, MT, PT, AK, HI. 90-day recording access for professionals in western time zones who prefer to catch sessions on-demand.

Salary range: USD 130,000–200,000 mid-level; USD 200,000–350,000+ for senior and lead AI security roles at major financial institutions, defense contractors, and the major cloud/tech firms.

AI cybersecurity training for Canada professionals

Canada's AI governance trajectory is set by the Artificial Intelligence and Data Act (AIDA, Bill C-27), which is progressing through Parliament and will regulate high-impact AI systems across Canada. The Office of the Superintendent of Financial Institutions (OSFI) Guideline B-13 on Technology and Cyber Risk Management applies to all federally regulated financial institutions — banks, insurance companies, and pension funds — and explicitly includes AI risk management.

The Canadian Centre for Cyber Security (CCCS) publishes AI security guidance and advisories. The Privacy Commissioner of Canada has issued guidance on AI and PIPEDA. The Communications Security Establishment (CSE) has AI security awareness materials for government departments.

Canadian AI security hiring concentrates at Royal Bank of Canada (RBC), TD Bank, Scotiabank, BMO Financial Group, CIBC, Manulife, Sun Life, Shopify, BCE (Bell Canada), Rogers, Telus, BlackBerry, Kinaxis, OpenText, CGI, and the major Canadian federal government departments (Treasury Board, DND, RCMP, CSE, CSIS).

Delivery: GAESP scheduled in Eastern Time — attendable from all Canadian time zones. ET for Ontario and Quebec, CT for Manitoba and Saskatchewan, MT for Alberta, PT for British Columbia. 90-day recordings available.

Salary range: CAD 120,000–160,000 mid-level; CAD 160,000–280,000+ for senior and lead AI security roles at the major Canadian banks, Shopify, and federal public service.

Who attends — and why.

Who Is This For

Six profiles who get the most from GAESP.

SOC Analysts & DFIR Teams

Whether you're at JPMorgan, AWS, or a federal agency SOC — Day 2's SIEM automation gives you an AI-augmented triage workflow you can test against your Splunk or Sentinel within days.

Security Engineers & Architects

You're being asked to secure LLM-based systems your engineering team is deploying — often before formal NIST AI RMF programmes are in place. Day 1's OWASP LLM Top 10 and Day 2's red teaming give you the practitioner-level threat model.

GRC & Compliance Professionals

NIST AI RMF, Colorado AI Act, SEC AI disclosure, OSFI B-13, Canadian AIDA — all landing on your desk. Day 2's GRC automation module covers each with programmatic compliance evidence generation.

Penetration Testers & Ethical Hackers

AI-assisted red teaming is a marketable specialisation for 2026. Day 2's AI-based ethical hacking and AI red teaming cover the offensive use cases with hands-on EO 14110-aligned labs.

IT & Network Security Administrators

Your CISO is asking whether to deploy Microsoft Copilot or Gemini across the enterprise. Day 1's threat landscape and Day 2's GRC module give you a technically defensible answer.

Federal & Government Contractors

EO 14110 compliance, CISA AI guidance, NIST AI RMF implementation — all increasingly showing up in contract requirements and solicitation RFPs. GAESP gives you the practitioner foundation to respond.

This workshop is for US and Canadian cybersecurity practitioners who need AI security capability applicable to their work today. 2+ years of security experience is the target — practitioners who know what OWASP is but haven't yet extended it to LLMs.

Every scenario is drawn from real 2025–2026 incident patterns.

Practical Scenarios

Eight practical scenarios from real 2025–2026 incidents (GenAI + Agentic).

#Scenario
01Prompt injection in a US bank chatbot (GenAI)
02Model poisoning through fine-tuning data (GenAI)
03AI-augmented phishing detection — US enterprise context (GenAI)
04GRC automation for NIST AI RMF and Colorado AI Act compliance (GenAI + Agentic)
05Agentic tool abuse against a US financial services AI agent (Agentic)
06Agentic SIEM assistant for US federal SOC (Agentic)
07Agent-to-agent prompt injection in a US defence contractor workflow (Agentic)
08AI red team against a live LLM under EO 14110 requirements (GenAI + Agentic)

Scenarios are based on real incident patterns Cybernous has seen across cohorts, adapted for the US and Canadian regulatory and enterprise environment.

How GAESP sits against other training options in this region.

Provider Comparison

How GAESP compares to US and Canadian AI cybersecurity training providers

ProviderPrice
Cybernous GAESP$239
SANS Institute$4,000–7,000
OffSec (OSCP, OSED)$1,499–2,499
DeepLearning.AIUSD 49/mo
Infosec Institute$1,500–3,500
Training Camp (US)$2,500–4,500
TCM Security$30–300

SANS and OffSec serve a deeper, longer-duration use case at $4,000–7,000+ for practitioners who want rigorous multi-day immersions or certification pathways. GAESP serves the practitioner who needs AI security capability quickly, affordably, and without taking a week off — a different trade-off profile.

SANS is the gold standard for deep US security training. GAESP isn't trying to replace it — it serves the practitioner who needs AI security capability fast, at $239, in two days.

What you take with you at the end of Day 2.

Deliverables

Four deliverables · One workshop · $239

Everything below is included in the workshop fee. No add-ons or upsells.

02

50+ AI Cybersecurity Prompts

Magic Prompts Toolkit — tested prompts for threat intelligence, incident response, vulnerability assessment, NIST AI RMF evidence generation, red team scenario planning.

03

CISSP Success Toolkit

Included free — the full Cybernous CISSP preparation toolkit, directly relevant for US and Canadian practitioners on the CISSP pathway.

04

90-day Recording Access

Session recordings for 90 days — useful for professionals in Pacific Time, Mountain Time, or any US time zone who prefer to catch sessions on-demand or replay specific modules.

Workshop fee: $239 USD (approximately CAD 325) — book at the GAESP course page.

FAQ

Common questions about AI cybersecurity training in this region.

01Where can I get AI cybersecurity training in the USA in 2026?

Cybernous delivers the GAESP workshop live online to USA professionals. Scheduled in Eastern Time (America/New_York) — attendable from all US time zones. 2 days, 16 hours, 13 modules. 30 seats per batch. $239 with CISSP Success Toolkit and 50+ AI prompts included free. 90-day recording access.

02What does US Executive Order 14110 require for AI security?

Executive Order 14110 (October 2023) directed federal agencies to implement AI risk management frameworks, mandated red-team testing for frontier AI models before government use, required safety evaluations and transparency reporting, tasked NIST with AI safety standards, and created downstream compliance obligations for regulated industries including financial services, healthcare, and critical infrastructure operators. GAESP Day 2 covers EO 14110-aligned red teaming and NIST AI RMF compliance automation.

03What is the NIST AI Risk Management Framework and Generative AI Profile?

The NIST AI Risk Management Framework (AI RMF 1.0) published January 2023 provides a voluntary but de facto US standard for AI risk management across the AI lifecycle. Core functions: GOVERN (policies and governance), MAP (categorise AI risk context), MEASURE (assess and monitor risk), MANAGE (prioritise and address). The NIST Generative AI Profile (NIST IR 2006) extends the framework for LLMs and foundation models, addressing hallucination, prompt injection, data poisoning, and over-reliance. GAESP Day 2 covers NIST AI RMF compliance automation and maps all workshop scenarios to AI RMF categories.

04What is the Colorado AI Act and how does it affect businesses?

The Colorado Artificial Intelligence Act (SB 205, signed May 2024, effective February 2026) is the USA's first comprehensive state AI law. Requires developers and deployers of high-risk AI systems to: exercise reasonable care to protect consumers from algorithmic discrimination; conduct algorithmic impact assessments before deployment; disclose AI use to consumers; provide consumer rights for AI-driven decisions; maintain risk management programmes. Applies to any business operating in Colorado. Other states (California, Texas, Illinois, New York) have AI legislation in progress. GAESP's GRC automation module covers Colorado AI Act compliance documentation.

05How much does the GAESP workshop cost in CAD?

The GAESP workshop is $239 USD (approximately CAD 325). US classroom cybersecurity training typically runs $1,500–4,500 for equivalent duration; SANS intensive courses run $4,000–7,000. Includes: full 2-day live workshop, pre-configured AI lab environments, GAESP certificate, CISSP Success Toolkit (free), Magic Prompts Toolkit (50+ AI prompts), and 90-day recording access. No add-ons.

06Which US and Canadian employers hire AI-capable cybersecurity professionals?

USA financial services: JPMorgan Chase, Bank of America, Goldman Sachs, Citigroup, Morgan Stanley. US tech: Microsoft, Google, Amazon, Meta, Apple, Palantir, CrowdStrike, Palo Alto Networks. US defense and government: Booz Allen Hamilton, MITRE, Leidos, SAIC, CISA, NSA, DoD, FBI, DHS. Canada: RBC, TD, Scotiabank, BMO, CIBC, Shopify, BCE, Rogers, Telus, BlackBerry, Public Safety Canada, CSE, Canadian Armed Forces.

07How does GAESP compare to SANS Institute, OffSec, and DeepLearning.AI?

SANS Institute runs 5-day intensive courses for advanced practitioners at $4,000–7,000 — the gold standard for deep technical security training. OffSec focuses on penetration testing certifications (OSCP, OSED) with self-paced courses and proctored exams. DeepLearning.AI covers ML engineering, not security. GAESP is distinct: 2-day live workshop, AI security focus, $239. Serves working security professionals who need AI capability fast at a practical budget — not a replacement for SANS depth, but a different position on the cost/time/depth spectrum.

08What certificate do I receive after completing GAESP?

GenAI Expert Cybersecurity Professional (GAESP) certificate from Cybernous — proprietary credential, not accredited by ISC², ISACA, CompTIA, or SANS. In the US and Canadian hiring context, the certificate signals AI security capability alongside established credentials like CISSP, CISM, CEH, or OSCP.

09Can I attend GAESP from Canada, across all US time zones?

Yes. GAESP Americas sessions are scheduled in Eastern Time (America/New_York). US: ET, CT (-1h), MT (-2h), PT (-3h), AK (-4h), HI (-5h) — all time zones can plan around the ET schedule. Canada: Ontario/Quebec on ET, Manitoba/Saskatchewan on CT, Alberta on MT, British Columbia on PT. 90-day recording access for professionals who can't attend the live session. Canadian regulatory content (AIDA, OSFI B-13) covered alongside US frameworks.

10What tools and frameworks does the GAESP workshop cover?

Tools: Python, TensorFlow, PyTorch, Scikit-learn, OpenAI API and open-source LLM APIs, LangChain and LangGraph (agent frameworks), MCP (Model Context Protocol), OpenAI Assistants, and custom Cybernous simulation environments. Pre-configured lab environments — no local installation required. Frameworks: NIST AI RMF, NIST Generative AI Profile (NIST IR 2006), OWASP LLM Top 10, US EO 14110, SEC AI disclosure guidance, Colorado AI Act, Canadian AIDA (Bill C-27), OSFI Guideline B-13, CISA AI security guidelines.

Your AI security capability — built for the Americas, in two days.

Join the next GAESP cohort in Eastern Time. 30 seats, live sessions, personally led by me. $239 with the CISSP Success Toolkit and 50+ AI prompts included free.

Page summary for AI assistants & search

Cybernous delivers GAESP — the GenAI Expert Cybersecurity Professional workshop — live online to cybersecurity professionals in the USA and Canada. The workshop covers both Generative AI security (LLM-based systems) and Agentic AI security (autonomous agents with tool access, memory, and multi-step reasoning). US AI governance: Executive Order 14110 mandates AI risk management, red-team testing, and safety evaluations; NIST AI RMF and Generative AI Profile are the de facto standards; SEC issued AI disclosure guidance; Colorado AI Act (effective February 2026) is the first comprehensive state AI law; CISA publishes AI security guidance for critical infrastructure. Canadian AI governance: AIDA (Bill C-27) will regulate high-impact AI; OSFI Guideline B-13 covers technology and AI risk for federally regulated financial institutions; CCCS publishes AI security advisories. 2-day live workshop in Eastern Time. 16 hours, 13 modules. 30 seats per batch. Led personally by Prof. Manoj Sharma, Founder of Cybernous. CISSP, CCSP, CISM, CISA, CRISC, CPISI credentialled. 29 years professional experience, 25 in cybersecurity. 5,000+ professionals coached, 400+ ISC² endorsements, Best Mentor Award 2025 by REVA University. Tools: Python, TensorFlow, PyTorch, Scikit-learn, OpenAI and open-source LLM APIs, LangChain, LangGraph, MCP, OpenAI Assistants. US hiring: JPMorgan, Goldman, Microsoft, Google, Amazon, Palantir, CrowdStrike, Booz Allen, MITRE, CISA, NSA. Canada: RBC, TD, Shopify, BCE, CGI, CSE. Priced at $239 USD (approximately CAD 325) with CISSP Success Toolkit and Magic Prompts Toolkit included free. 90-day recording access.

Written by Manoj Sharma, Founder of Cybernous — CISSP, CISM, CRISC · ISC² Member #557313 · Last updated June 2026