2026 Cybersecurity Conference Strategy · SECURITY TRAINING DRAMA CLUB🎭

2026 Cybersecurity Conference Strategy

My 2026 strategy focuses on attending major hacker and security conferences to either secure accepted training sessions or market a unique workshop combining method acting, improv, clowning, hypnotism, and seduction as part of a comprehensive social engineering class. This approach rounds out technical skills with essential social ones, creating a distinctive offering in the cybersecurity education space.

Conference Schedule & Strategy

Nullcon - Goa, India

Website: https://nullcon.net/goa-2026

Dates: February 27 - March 3, 2026

Training: Feb 25-27 and March 2-4
Day Zero (CISOs/CTOs): Feb 27
Conference: Feb 28 - March 1

About: Nullcon is India's premier cybersecurity conference and one of Asia's largest information security events, bringing together over 3,000 security researchers, hackers, defenders, and technology leaders from across the globe. The event features deep-dive trainings, cutting-edge research talks, panel discussions, live hacking demos, and CTF challenges.

My Strategy:

Offer a free workshop in exchange for complimentary conference pass and room
Requires fundraising or self-funding for travel costs
I'm traveling to Amsterdam to meet with the conference organizer to negotiate this arrangement
Since this is run by the same organizer as Hardware.io, there may be opportunities to leverage this relationship for both events

BSides San Francisco

Website: https://bsidessf.org

Dates: March 21-22, 2026

About: BSidesSF is a non-profit, community-driven information security conference that advances the body of knowledge by providing an open forum for discussion and debate for security practitioners. The conference features diverse presentations, workshops, and villages, drawing practitioners and security leaders from across the industry.

My Strategy:

Guerrilla marketing opportunity with low travel costs from my location
Book a separate venue for a daytime workshop during the conference
Advertise our workshop directly to conference attendees
Consider running the workshop on repeat the week after BSidesSF
Use the event as a marketing platform even without an official speaking slot

BSides San Diego

Website: https://www.bsidessd.org

Dates: April 4, 2026 (Friday)

Location: San Diego State University Student Union, 6075 Aztec Circle Dr, San Diego, CA 92182

About: BSides San Diego is America's Finest BSides - a 100% volunteer-organized, community-focused information security conference. It's a one-day extravaganza featuring enthusiastic talks, engaging training, extraordinary giveaways, and exciting villages, with after-hours events at Aztec Lanes.

My Strategy:

Road trip from San Francisco (more research needed)
Rent a local venue in San Diego
Run the same playbook as San Francisco - advertise workshop to attendees
Leverage proximity and timing after BSidesSF for cost efficiency

NolaCon - New Orleans

Website: https://events.humanitix.com/nolacon

Dates: May 15-17, 2026 (estimated - confirm with organizer)

About: NolaCon is an annual cybersecurity conference where hackers, researchers, and defenders unite. Set against the vibrant backdrop of New Orleans, it fuses technical depth, real-world expertise, and hacker culture. The conference features cutting-edge talks on network defense, malware analysis, forensics, and ethical hacking, along with hands-on labs and training.

My Strategy:

I'm good friends with the conference organizer
Will reach out to discuss offering our workshop officially
Same core approach: offer the unique social engineering workshop
Leverage personal relationship for potential speaking/training opportunity

Hardwear.io - Santa Clara, CA

Website: https://hardwear.io

Dates: May 26-30, 2026 (estimated based on 2025 dates)

About: Hardwear.io is a premier hardware security conference and training event focused exclusively on embedded security, hardware reverse engineering, and physical security. Topics include silicon reverse engineering, side channel attacks, fault injection, firmware security, IoT security, and breaking secure boot mechanisms. The event features intensive hands-on trainings, top-tier hardware security talks, CTF competitions, and the unique HardPwn challenge.

My Strategy:

This is run by the same organizer as Nullcon Goa
Expect that our Goa arrangement will include providing entertainment/content here
Conference is hardware-focused, so it's not an ideal fit for our social engineering workshop
However, we can still market the workshop there to attendees - "why not?"
View this as part of the package deal with the Nullcon organizer

Hushcon East - New York

Website: https://hushcon.com

Dates: June or July 2026 (TBD - awaiting confirmation)

About: Hushcon is a premier, community-oriented security and hacking conference known for its unique "hush rules" on all talks. It's an intimate, high-quality event that emphasizes privacy and allows speakers to present cutting-edge content that might not be shared at larger, more public conferences. The East Coast edition takes place in New York City.

My Strategy:

Planning to submit for this conference
Will offer workshop officially through CFP
If not accepted officially, will market workshop independently to attendees
Flexible approach: adapt based on acceptance/rejection

Conferences for Further Research

The following conferences are on my radar for potential 2026 opportunities. I need to research dates, submission deadlines, and determine the best approach for each:

44CON - London, England

Website: https://44con.com

Dates: September 2026 (TBD - typically mid-September)

About: 44CON is the UK's best combined security conference and training event held annually in London. It's a highly regarded information security conference that brings together professionals and enthusiasts with a balance of red, blue, and purple team talks. Topics include network security, cryptography, malware analysis, secure coding, vulnerability research, and digital forensics. The conference maintains an informal, friendly atmosphere with extensive Lockpick Village and Soldering Village activities.

Status: Researching 2026 dates and CFP timeline

GrrCON - Grand Rapids, Michigan

Website: https://grrcon.com

Dates: October 2026 (TBD - typically early October)

About: GrrCON is an information security and hacking conference that provides the Midwest InfoSec community with a fun atmosphere to engage with like-minded people from around the globe. With around 2,500 attendees, GrrCON keeps things intimate while offering three+ presentation tracks, in-conference workshops, and a solutions arena. Their motto: "No egos. No divas. Just a good time and good content."

Status: Researching 2026 dates and submission process

BruCon - Mechelen, Belgium

Website: https://www.brucon.org

Dates: September 24-25, 2026 (estimated - typically late September)

About: BruCON is an annual security and hacker conference providing two days of open discussions on critical infosec issues, privacy, information technology, and its cultural/technical implications on society. Organized in Belgium as a non-profit by volunteers, BruCON offers a high-quality lineup of speakers, security challenges, and workshops. It's a conference by and for the security and hacker community, emphasizing accessibility, affordability, and community engagement.

Status: Dates confirmed - need to research CFP and workshop opportunities

Saintcon - Provo, Utah

Website: https://www.saintcon.org

Dates: October 2026 (TBD - typically late October)

About: Saintcon is Utah's premiere cybersecurity conference, organized by the Utah chapter of the Security Advisory and Incident Network Team (UtahSAINT). For over 20 years, this conference has been "fun, engaging, and instructional," welcoming security and IT professionals as well as anyone interested in computer security, hacking, and security research. The event features keynotes, trainings, and presentations covering a wide variety of cybersecurity topics.

Status: Researching 2026 dates and participation opportunities

Workshop Details

The Unique Value Proposition:

Our social engineering workshop goes beyond traditional technical training by incorporating performance and psychological techniques:

Method Acting - Embody personas convincingly
Improv - Think on your feet in dynamic situations
Clowning - Disarm targets and create rapport
Hypnotism - Understand influence and persuasion
Seduction - Master the art of gaining trust

This approach teaches hackers and security professionals the human side of hacking, rounding out technical skills with essential social engineering capabilities that are rarely taught in traditional cybersecurity education.

Next Steps

Finalize Nullcon Goa arrangement during Amsterdam meeting
Confirm dates for Hushcon East, 44CON, GrrCON, and Saintcon 2026
Submit CFPs where applicable as deadlines approach
Book venues in San Francisco and San Diego for independent workshops
Develop marketing materials for guerrilla marketing campaigns
Reach out to NolaCon organizer about workshop opportunity
Research additional conferences in the Americas and Europe for potential expansion

This plan represents a comprehensive approach to establishing our unique social engineering training in the cybersecurity conference circuit, leveraging both official channels and creative marketing strategies.

6 comments