VanTUG is evolving from an event-driven model to a program-driven Community of Practice model focused on structured learning, industry collaboration, and professional growth.
Cybersecurity & Compliance Community of Practice
Exploring modern cybersecurity, governance, identity security, compliance, and operational resilience.
The Cybersecurity & Compliance Community of Practice exists to help professionals understand, implement, and operationalize modern security and governance practices across enterprise environments. Through structured learning pathways and practitioner-led discussions, members gain practical insight into cybersecurity architecture, compliance requirements, governance frameworks, and risk management.
Focus Areas
→Zero Trust
Identity-first security, Conditional Access, MFA, Device Trust.
→Security Operations
Microsoft Defender, Threat Detection, Incident Response, Security Monitoring.
→Governance & Compliance
Microsoft Purview, Information Protection, Records Management, Data Lifecycle Management.
→Risk & Audit
NIST, ISO 27001, Audit Readiness, Risk Management.
Zero Trust & Enterprise Security Learning Pathway
A two-year, twelve-session learning pathway. Sessions begin in October 2026, following the launch of our Communities of Practice at VanTUG's 30th Anniversary celebration.
- September 2026 · CoP LaunchVanTUG 30th Anniversary & Communities of Practice Launch
Official launch of VanTUG's Communities of Practice model. Learning pathway sessions begin the following month.
- October 2026 · Session 1Foundations of Zero Trust
- December 2026 · Session 2Designing Zero Trust with Identity & Conditional Access
- February 2027 · Session 3Extending Zero Trust to Devices & Endpoints
- April 2027 · Session 4Securing Copilot with Information Governance
- June 2027 · Session 5From Zero Trust Design to Audit Readiness
- August 2027 · Session 6Security Operations & Threat Detection with Microsoft Defender
- October 2027 · Session 7Privileged Access & Identity Governance
- December 2027 · Session 8Data Protection, DLP & Insider Risk Management
- February 2028 · Session 9Incident Response & Enterprise Security Operations
- April 2028 · Session 10Zero Trust Architecture Review & Enterprise Case Studies
- June 2028 · Session 11Cloud Security & Hybrid Identity Protection
- August 2028 · Session 12Enterprise Security Strategy & Operational Resilience
| Month | Session | Topic |
|---|---|---|
| September 2026 | CoP Launch | VanTUG 30th Anniversary & Communities of Practice LaunchOfficial launch of VanTUG's Communities of Practice model. Learning pathway sessions begin the following month. |
| October 2026 | Session 1 | Foundations of Zero Trust |
| December 2026 | Session 2 | Designing Zero Trust with Identity & Conditional Access |
| February 2027 | Session 3 | Extending Zero Trust to Devices & Endpoints |
| April 2027 | Session 4 | Securing Copilot with Information Governance |
| June 2027 | Session 5 | From Zero Trust Design to Audit Readiness |
| August 2027 | Session 6 | Security Operations & Threat Detection with Microsoft Defender |
| October 2027 | Session 7 | Privileged Access & Identity Governance |
| December 2027 | Session 8 | Data Protection, DLP & Insider Risk Management |
| February 2028 | Session 9 | Incident Response & Enterprise Security Operations |
| April 2028 | Session 10 | Zero Trust Architecture Review & Enterprise Case Studies |
| June 2028 | Session 11 | Cloud Security & Hybrid Identity Protection |
| August 2028 | Session 12 | Enterprise Security Strategy & Operational Resilience |
Industry Contributors
The Cybersecurity & Compliance Community of Practice is supported by practitioners from across the enterprise technology ecosystem who contribute knowledge, experience, mentorship, and technical insight.

David Nudelman
Microsoft Security MVP — Cloud Adoption Strategy

Ali Alame
Principal Modern Workplace & Endpoint Security Architect

Presidoe Okuguni
Director, Community Strategy & Operations
Become a Contributor
We welcome:
- →Security Analysts
- →Security Architects
- →Compliance Professionals
- →Governance Specialists
- →Microsoft Security Practitioners
- →Risk Professionals
