38th ANNUAL FIRST CONFERENCE
FIRST is an international confederation of trusted computer incident response teams who cooperatively handle computer security incidents and promote incident prevention programs.
FIRST (Forum of Incident Response and Security Teams) is an international not-for-profit association of trusted Computer Security and Incident Response Teams (CSIRTs), Product Security Incident Response Teams (PSIRTs), and independent security researchers from the public, private, and academic sectors. Since its founding in 1990, FIRST has fostered global cooperation and coordination in incident prevention, rapid response, and information sharing.
With over 800 member teams representing more than 100 countries, FIRST plays a vital role in strengthening the global cybersecurity ecosystem. FIRST provides access to best practices, tools, and trusted communication channels that empower the incident response community.
Recognized by TripWire as one of the Top 19 Information Security Conferences of 2020, the FIRST Annual Conference is a premier event that promotes worldwide collaboration among CSIRTs. The conference offers a dynamic forum for sharing goals, ideas, and strategies to improve cybersecurity on a global scale.
The 38th Annual FIRST Conference will take place June 14–19, 2026, in Denver, Colorado, USA. Join us to connect with leading experts, exchange insights, and contribute to shaping the future of incident response.
Be part of the global response community.
See you in Denver!
Sponsor Highlights
Support the 38th Annual FIRST Conference through sponsorship! The annual conference is by far one of the most unique international assemblies of incident response and computer security professionals. Sponsorship opportunities are limited and are on a first-come, first-served basis.
Gold
Dream
Dream is an AI-Cyber resilience platform for governments and critical infrastructure. It fuses internal configurations and alerts' telemetry with cyber threat intelligence, which are then translated into automations and playbooks, to map adversary TTPs to your environment, expose misconfigurations, prioritize exploitable vulnerabilities, as well as simulate attacker paths.
Gold
VMRay
VMRay provides industry-leading sandboxing technology for the automated analysis and identification of sophisticated malware and phishing threats. Headquartered in Bochum, Germany, with a subsidiary in Boston, USA, VMRay is trusted by government and defense organisations, global enterprises, financial institutions, and top consulting and accounting firms worldwide.
Silver
GROUP-IB
Founded in 2003 and headquartered in Singapore, Group-IB is a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime. Combating cybercrime is in the company’s DNA, shaping its technological capabilities to defend businesses and citizens and support law enforcement operations.
Group-IB’s Unified Risk Platform (URP) underpins its conviction to build a secure and trusted cyber environment by utilizing intelligence-driven technologies and expertise that detects and defends against all nuances of digital crime. The platform includes the world’s most trusted Threat Intelligence, the most complete Fraud Protection, AI-powered Digital Risk Protection, multi-layered protection with Managed Extended Detection and Response (XDR), all-infrastructure Business Email Protection, and External Attack Surface Management. Furthermore, Group-IB’s full-cycle incident response and investigation capabilities have consistently elevated industry standards. This includes the 70,000+ hours of cybersecurity incident response completed by our sector-leading DFIR Laboratory, more than 1,400 successful investigations completed by the High-Tech Crime Investigations Department, and round-the-clock efforts of CERT-GIB.
Silver
Tidal Cyber
The Tidal Cyber Threat-Led Defense platform ensures your security stack is equipped to defend against the most relevant threats by mapping your tools against TTPs. Coverage maps leverage multiple frameworks, including MITRE ATT&CK, to reveal where your tools effectively defend against adversary behaviors, pinpoint critical coverage gaps, and recommend prioritized actions based on residual risk.