CVE | FIRST VulnCon 2026 & Annual CNA Summit
Call for Speakers is Open! Submission Due by December 22!
Join us for the 2026 Vulnerability Management Ecosystem Collaboration, Ideation, and Action Conference (VulnCon), co-hosted by FIRST and the CVE Program. The conference will be held April 13–16, 2026, at the DoubleTree Resort by Hilton Hotel Paradise Valley – Scottsdale, Arizona, USA.
VulnCon brings together professionals from across the vulnerability management and cybersecurity landscape to collaborate, exchange ideas, and drive actionable outcomes. The conference is designed to help participants develop insights and strategies they can take back to their individual programs to strengthen the broader vulnerability management ecosystem. A key goal is to understand the work of major stakeholders and initiatives within the ecosystem and explore ways to amplify their impact.
VulnCon is open to both FIRST members and non-members worldwide who are actively engaged in the vulnerability management space.
Check out content from the previous VulnCons! VulnCon25 & VulnCon24
Sponsor Highlights
Support the CVE/FIRST VulnCon 2026 & Annual CNA Summit through sponsorship!
-
Co-Host
CVE
The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. There is one CVE Record for each vulnerability in the catalog. The vulnerabilities are discovered then assigned and published by organizations from around the world that have partnered with the CVE Program. Partners publish CVE Records to communicate consistent descriptions of vulnerabilities. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue, and to coordinate their efforts to prioritize and address the vulnerabilities. www.cve.org
-
Platinum
Nucleus Security
Nucleus Security is the leader in unified vulnerability management, helping enterprises prioritize and remediate vulnerabilities faster by unifying data, automating workflows, and scaling operations with built-in intelligence and business context. nucleussec.com/
-
Platinum
Qualys
Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of disruptive cloud-based security, compliance and IT solutions with more than 10,000 subscription customers worldwide. Qualys helps organizations streamline and automate their security and compliance solutions onto a single platform for greater agility, better business outcomes, and substantial cost savings. The Qualys Cloud Platform leverages a single agent to continuously deliver critical security intelligence while enabling enterprises to automate the full spectrum of vulnerability detection, compliance, and protection for IT systems, workloads and web applications across on premises, endpoints, servers, public and private clouds, containers, and mobile devices. www.qualys.com/
-
Platinum
VulnCheck
VulnCheck is the vulnerability intelligence company helping enterprises, government organizations, and cybersecurity vendors solve the vulnerability prioritization challenge. Trusted by some of the world's largest organizations responsible for protecting hundreds of millions of systems and people, VulnCheck helps organizations outpace adversaries by providing the most comprehensive, real-time vulnerability intelligence that is autonomously correlated with unique, proprietary exploit and threat intelligence. Follow the company on LinkedIn, Mastodon, or Twitter.
vulncheck.com