With many events choosing to retain virtual elements forced on them by the pandemic, there’s still an abundance of online content to choose from

Cybersecurity conferences 2022: A rundown of online, in person, and 'hybrid' events

Last year saw a partial return to normality for infosec conferences amid the global rollout of Covid-19 vaccines as many events returned to an in-person format.

As with remote working, however, a complete return to the pre-pandemic status quo seems unlikely, with numerous events recognizing the merits of continuing to stream presentations online for those unable or unwilling to attend physically.

Barring dangerous new coronavirus variants, the number of in-person infosec events is set to swell further in 2022, and it looks to be another bumper year when it comes to hearing about the latest cutting-edge security research and insights without leaving your home or office.


Catch up with the latest information security events news and analysis


The hybrid model has been embraced by one of the most popular infosec events franchise.

“Little did we know that 2020 and our year of virtual events would be just a warm-up for 2021 and the future of events,” Steve Wylie, general manager for Black Hat events, told The Daily Swig for our 2021 end-of-year review.

“For Black Hat, we believe our future will be in-person and virtual. Nothing beats the experience of in-person interaction and engagement,” he added, but also said online access suits “conference goers who cannot travel”, with the added bonus of streaming recorded presentations, thus avoiding “the dilemma of choosing which sessions to miss out on”.

Wylie concluded: “I believe this past two years has forever changed the conference world – hopefully for the good.”

Check out the infosec conference calendar for the rest of 2022 below, which we’ll update as and when event organizers confirm dates for upcoming editions.

Cybersecurity conferences: 2022 schedule

Here’s a rundown of upcoming cybersecurity conferences, which we will update throughout the year as events are announced, rescheduled, or reconfigured:


BSides events | Various dates throughout year | In person, online or hybrid

There have been more than 700 BSides events worldwide in 55 countries to date, and 20 events are planned for the US alone in 2022, as well as on every other continent.

Visit the BSides website for full details.


SANS Institute live training courses | Various dates throughout year | Mix of online and in person

The SANS Institute continues to offer remote, on-demand training packages and live training sessions.

Visit the SANS Institute website for full details.


Conf42 tech conferences | Various dates throughout year | Online

Tech events taking place throughout 2022 will focus on subjects including python, mobile, chaos engineering, Golang, cloud native, machine learning, and DevSecOps, among numerous others.

Visit the Conf42 website for full details.


Linux Foundation events | Various dates throughout year | Mix of online and in person

The Linux Foundation, which advocates for the open source ecosystem and Linux operating systems, has scheduled numerous events throughout 2022, including Cephalocon, GitOpsCon Europe, and the Open Source Summit.

Visit the Linux Foundation events website for full details.


Open Security Summit | Various dates throughout year | Online

Monthly events focused on the collaboration between developers and application security professionals that brings together leading figures from OWASP, security, development, government agencies and vendors.

Visit the Open Security Summit website for full details.


Security Summits | January 26-December 6 | Online

At the time of writing SecurityWeek is hosting 10 virtual cybersecurity summits covering topics including ransomware, attack surface management, supply chain security, and threat intelligence.

Visit the Security Summits website for full details.


OWASP Global AppSec Europe | June 6-8 | Virtual

The Open Web Application Security Project (OWASP) aims to equip developers, defenders, and advocates to build a more secure web with a conference and training courses.

Visit the OWASP Global AppSec website for full details.


RSA Conference USA 2022 | June 6-9 | San Francisco and online

RSAC, which was founded in 1991 as a cryptography-focused conference, now attracts around 45,000 attendees each year and features talks on a wide range of cybersecurity topics.

Visit the RSAC website for full details.


Hardwear.io Hardware Security Trainings | June 6-10 | California, US

Security researchers showcase and discuss their findings related to attacking and defending various hardware.

Visit the Hardware.io website for full details.


Cisco Live | In person and online | June 12-16, Las Vegas; Melbourne, TBC; February 6-10, 2023, Amsterdam

Featuring keynote talks, training sessions, and contests, Cisco Live has separate events for the Americas, APJC, and EMEAR regions, and a suite of on-demand sessions.

Visit the Cisco Live website for full details.


(ISC)2 Secure North America | June 15 | Online

One-day cybersecurity event from the non-profit and provider of training and certifications for cybersecurity professionals.

Visit the (ISC)2 website for full details.


Cloudflare Connect London | June 16 | London, UK and online

The web security and DDoS mitigation experts offer insights on Cloudflare innovations, industry trends, and the future of networking and security.

Visit the Cloudflare Connect website for full details.


TyphoonCon 2022 | June 20-24 | Seoul, South Korea

Two-day conference, live hacking competition with prizes on offer up to $500,000, and three training days centred around vulnerability discovery, advanced exploitation techniques, and reverse engineering.

Visit the TyphoonCon website for full details.


Infosecurity Europe 2022 | June 21-23 | London

Taking place at ExCeL London, Infosecurity Europe features a conference and exhibition, and runs an annual competition, in conjunction with the UK government and Tech UK, to find the UK’s Most Innovative Cyber SME.

Visit the Infosecurity Europe website for full details.


LeHACK | June 24-25 | Paris

LeHACK is back after being cancelled twice during the pandemic, and will include LeHACK Kids, a series of coding and computer security workshops for children aged 8-16.

Visit the LeHACK website for full details.


EuskalHack Security Congress | June 24-25 | San Sebastian, Spain

Organized by the Ethical Hacking Association of Euskadi, the two-day event in Spain’s Basque Country will feature technical talks as well as a hackathon.

Visit the EuskalHack Security Congress website for full details.


FIRST Conference 2022 | June 26-July 1 | Dublin, Ireland with “limited virtual components”

The Forum of Incident Response and Security Teams (FIRST) brings together security and computer security and incident response teams (CSIRTs) from around the world to share ideas and information on how to tackle cybersecurity challenges.

Visit the FIRST website for full details.


Hack in Paris | June 27-July 1 | Paris, France

Tenth edition will again feature trainings, talks, and workshops on topics such as industrial espionage, penetration testing, physical security, forensics, and malware analysis techniques and countermeasures.

Visit the Hack in Paris website for full details.


Pass the SALT | July 4-6 | Lille, France

A conference dedicated to free software, open protocols, and information security, taking place in France but with all talks delivered in English.

Visit the Pass the SALT website for full details.


(ISC)2 SECURE Singapore | July 14 | Singapore

One-day cybersecurity event from the non-profit and provider of training and certifications for cybersecurity professionals.

Visit the (ISC)2 website for full details.


SteelCon | July 22-24 | Sheffield

A hacker conference for the northwest of England “for anyone who is interested in how things work, how things can be broken, and how they can be fixed”.

Visit the SteelCon website for full details.


May Contain Hackers 2022 | July 22-26 | Zeewolde, Netherlands

Outdoor hacker camp focused on “knowledge sharing, technological advancement, experimentation, connecting with your hacker peers and hacking”.

Visit the May Contain Hackers website for full details.


Black Hat USA 2022 | August 6-11 | Las Vegas and online

Black Hat’s flagship event, which again will be an in-person/virtual hybrid, will feature the usual presentations on the latest cutting-edge security research, plus hacking tools demonstrated in the Arsenal sessions.

Visit the Black Hat website for full details.


DEF CON 30 | August 11-14 | Las Vegas and online

Black Hat’s less corporate sister event is not cancelled for 2022, as the famous in-joke meme would have it, and will kick off just as Black Hat USA concludes.

Visit the DEF CON website for full details.


HITBSecConf 2022 | August 25-26 | Singapore

HITBSecConf – short for Hack In The Box Security Conference –features trainings, a multi-track conference, and a CTF.

Visit the HITBSecConf website for full details.


Blue Team Con | August 27-28 | Chicago, US

Aimed at infosec pros working in cybersecurity defensive roles, as well as practitioners performing governance, risk, and compliance, application security developers and anyone else who helps safeguard organizations.

Visit the Blue Team Con website for full details.


VMworld 2022 | August 29-September 1, US; November 7-10, Europe | online

Hosted by VMware, the multi-cloud conference features a security track and last year’s keynotes came from Michael J Fox and Dr Nicole Forsgren from Microsoft Research.

Visit the VMware website for full details.


NullCon Goa | September | Goa, India

The 14th edition of Nullcon’s flagship event will feature talks from elite security researchers, CTFs, and an exhibition, among other things.

Visit the NullCon website for full details.


Cloudflare Connect Sydney | September 8 | Sydney, Australia and online

The web security and DDoS mitigation experts offer insights on Cloudflare innovations, industry trends, and the future of networking and security.

Visit the Cloudflare Connect website for full details.


Texas Cyber Summit | September 22-24 | Austin, Texas

Multi-track in-person conference, with an additional virtual conference taking place separately on November 5, aimed at novices, experts, and all infosec pros and hobbyists in between.

Visit the Texas Cyber Summit website for full details.


RomHack 2022 | September 24 | Rome, Italy

Fifth edition will feature technical talks and takes place in Flaminio Village, a four-star campsite in Veio park.

Visit the RomHack website for full details.


International Cyber Expo | September 27-28 | London, UK

Co-located with the International Security Expo, this exhibition and conference was shaped by an advisory council chaired by former NCSC CEO Professor Ciaran Martin CB, and brings together CISOs, government officials, and policymakers.

Visit the International Cyber Expo website for full details.


VB2022 Prague | September 28-30 | Prague, Czech Republic

Virus Bulletin, the venerable malware-focused publication, has been running its annual conference for more than 30 years, and returns to an in-person format after two years online. 

Visit the Virus Bulletin website for full details.


CyberSec&AI Connected 2022 | Autumn | Prague, Czech Republic

Conference focused on AI, machine learning and how they intersect with security and privacy covers topics such as privacy-preserving AI, AI for cyberthreat intelligence, and election security, privacy, and trust.

Visit the CyberSec&AI Connected website for full details.


(ISC)² Security Congress 2022 | October 10-12 | Las Vegas and online

Dozens of sessions around professional development, with topics potentially including cloud security; DevSecOps; governance, risk, and compliance (GRC); and career development.

Visit the (ISC)² website for full details.


Authenticate 2022 | October 17-19 | Seattle, US

Hosted by the FIDO Alliance, the event is dedicated to the who, what, why and how of user authentication – with a focus on the FIDO standards-based approach.

Visit the Authenticate website for full details.


Cloudflare Connect San Francisco | October 18 | San Francisco, US and online

The web security and DDoS mitigation experts offer insights on Cloudflare innovations, industry trends, and the future of networking and security.

Visit the Cloudflare Connect website for full details.


Web Summit 2022 | November 1-4 | Lisbon, Portugal

Sir Tim Berners-Lee, architect of the World Wide Web, was among the speakers last year at an event that attracted some 42,000 attendees.

Visit the Web Summit website for full details.


2022 FIRST Cyber Threat Intelligence Symposium | November 2-4 | Berlin, Germany

FIRST (Forum of Incident Response and Security Teams) runs technical colloquia for discussing vulnerabilities, incidents, and tools impacting security/incident response teams, plus less technical, sometimes more hands-on, regional symposia.

Visit the FIRST website for full details.


(ISC)2 SECURE Asia-Pacific | November 10 | Online

One-day cybersecurity event from the non-profit and provider of training and certifications for cybersecurity professionals.

Visit the (ISC)2 website for full details.


OWASP Global AppSec San Francisco | November 14-18 | San Francisco, US

The Open Web Application Security Project (OWASP) aims to equip developers, defenders, and advocates to build a more secure web with this conference and training courses.

Visit the OWASP Global AppSec website for full details.


HITB + CyberWeek | November 24-25 | Abu Dhabi

HITBSecConf – short for Hack In The Box Security Conference – has multiple events featuring trainings, multi-track conferences, and CTFs throughout 2022.

Visit the HITBSecConf website for full details.


Black Hat Europe 2022 | December 5-8 | London, UK and online

Black Hat’s final major event of the year will as usual feature a stellar range of speakers speaking about hacking tools and techniques, security vulnerabilities, and cybercrime trends.

Visit the Black Hat website for full details.


(ISC)2 SECURE UK & Europe | December 8 | Online

One-day cybersecurity event from the non-profit and provider of training and certifications for cybersecurity professionals.

Visit the (ISC)2 website for full details.


RELATED Black Hat Europe: Laws and regulations need to change to secure world’s digital infrastructure