A clear, factual timeline tracing the evolution of cybersecurity organizations, certifications, and communities — including the founding of SDSUG, Arizona’s first cybersecurity network.
By Hunter Storm
President, SDSUG
CISO | Advisory Board Member | SOC Black Ops Team | Systems Architect | QED-C TAC Relationship Leader | Originator of Human-Layer Security
HunterStorm.com
© 2026 Hunter Storm. All rights reserved.
Cybersecurity did not emerge fully formed. It grew through decades of organizations, certifications, conferences, and practitioner communities — each contributing to the discipline we know today. This page provides a structured, editable timeline of major milestones in global, national, and Arizona cybersecurity history. It is intentionally incomplete and designed for ongoing contribution by practitioners, historians, and long‑time community members.
Setting the Record Straight About SDSUG
SDSUG was founded on September 25, 2001, at a time when the term user group was widely used for any recurring technical community. That naming choice reflected the language of the era — not the scale, structure, or impact of what SDSUG actually became.
Although SDSUG carried the “user group” label, it was never just a user group in the modern sense. From its earliest years, SDSUG functioned as:
- Arizona’s first cybersecurity community
- Arizona’s first cybersecurity conference
- Arizona’s first cybersecurity network
- A practitioner‑focused, vendor‑neutral educational institution
- A regional hub for professional development and CPE‑earning events
Founder Leo J. Hauguel organized full‑day events at Rio Salado College, that drew hundreds of attendees, offered Continuing Professional Education (CPE) credits, and ran multiple simultaneous breakout sessions. These were structured, well‑run, and widely respected — long before Arizona had any formal cybersecurity conferences or professional associations operating at that scale. Although Leo referred to them as “user group meetings,” they were full conferences with formal check‑in, professional association partnerships, and vendor sponsorships.
In practice, SDSUG was a multi‑room, multi‑speaker, all‑day conference series in everything but name. It could easily have been called the Sonoran Desert Cybersecurity Conference, but Leo chose to preserve the social, community‑first spirit of the group.
SDSUG’s name reflects its origin moment. Its function reflects something much larger.
This page preserves that history and places SDSUG in its proper context within the broader evolution of cybersecurity communities.
How to Use This Timeline
This timeline is a living document. Dates marked TBD are placeholders for future verification. Volunteers are encouraged to help confirm founding years, early events, and local community histories — especially for Arizona organizations whose records predate modern archiving practices.
The goal is not to create an exhaustive list, but to provide a clear, authoritative scaffold that can grow as more information becomes available.
Historical Timeline
(All dates marked TBD are intentionally left blank for ongoing verification.)
| Year | Entity / Event | Type | Scope / Location | Notes |
|---|---|---|---|---|
| 1958 | MITRE Corporation | Organization | US | Federally funded R&D center; foundational to security and systems engineering. |
| 1969 | ISACA (originally EDPAA) | Organization | Global (US‑founded) | Governance, audit, and security association. |
| 1978 | CISA | Certification | Global | One of the earliest major audit/security certifications. |
| 1979 | National Computer Security Conference | Conference | US (Maryland) | Widely cited as one of the first major dedicated computer security conferences. |
| 1984 | ISSA | Organization | Global | Professional association for information security. |
| 1989 | (ISC)² | Organization | Global | Nonprofit cert body; steward of CISSP. |
| 1989 | SANS Institute | Organization | Global (US‑founded) | Major training and research organization. |
| 1990 | FIRST (Forum of Incident Response and Security Teams) | Organization | Global | Early global CSIRT coordination body. |
| 1994 | CISSP | Certification | Global | Broad, vendor‑neutral infosec certification. |
| 1996 | InfraGard (pilot → national) | Organization | US | FBI + private sector partnership; exact AZ date TBD. |
| 2001 — Sept 9 | OWASP Foundation | Organization | Global | Open Web Application Security Project. |
| 2001 — Sept 25 | SDSUG founded | Community / Network | Arizona | First cybersecurity community in Arizona. First cybersecurity network in Arizona. First cybersecurity conference in Arizona in all but name. |
| 2002 | CISM | Certification | Global | Management‑focused security certification. |
| 2002 | Security+ | Certification | Global | Vendor‑neutral baseline security certification. |
| 2003 | CEH | Certification | Global | Ethical hacking certification. |
| 2004 | ENISA | Organization | EU | European cybersecurity agency. |
| 2006 | OSCP | Certification | Global | Hands‑on penetration testing certification. |
| 2008 | Cloud Security Alliance (CSA) | Organization | Global | Cloud security best‑practices body. |
| TBD | ISSA Phoenix Chapter | Local Chapter | Arizona | Volunteers will confirm founding year. |
| TBD | InfraGard Arizona Members Alliance | Local Chapter | Arizona | Volunteers will confirm founding year. |
| TBD | OWASP Phoenix | Local Chapter | Arizona | Volunteers will confirm founding year. |
| 2012 | CactusCon | Conference | Arizona (Mesa) | First large recurring hacker/cybersecurity conference in AZ. |
| TBD | Interface Conference (first national date) | Conference | US | Volunteers will confirm. |
| TBD | Interface Conference (first Arizona date) | Conference | Arizona | Volunteers will confirm. |
| TBD | Phoenix 2600 / DC480 / EVSec / SWCSF | Local Groups | Arizona | Each group’s founding year to be documented by organizers. |
CALL FOR CONTRIBUTIONS
If you were part of any Arizona cybersecurity community, conference, or organization — or if you have archival materials, newsletters, photos, or firsthand knowledge — we invite you to help fill in the missing dates. Your contributions ensure that the history of Arizona’s cybersecurity ecosystem is preserved accurately and respectfully. You can choose to have public attribution for your contribution, or we can publish it anonymously according to your preference. Contact SDSUG.
The Sonoran Desert Security User Group (SDSUG) is Arizona’s longest‑running cybersecurity community and a central institution in the region’s security ecosystem. Founded in 2001 and operating continuously for more than 25 years, SDSUG provides practitioner‑driven leadership, vendor‑neutral governance, and trusted peer collaboration across the Southwest. Through its annual research, ecosystem mapping, and community programs, SDSUG strengthens regional resilience and serves as a stable anchor for Arizona’s cybersecurity practitioners, organizations, and critical‑infrastructure partners.
Need Something Else?
Join SDSUG
Become part of Arizona’s first cybersecurity community.
Join SDSUG Form
Volunteer
Help support the community and our events.
Volunteer Form
Submit an Article
Share your expertise with Arizona’s first cybersecurity community.
Submit Article Form
Update Membership
If you’ve moved, changed jobs, or updated your email:
Update Membership Form
Speak at SDSUG
Share your expertise with the community.
Speaker Form
General Questions
Have a question about SDSUG or our events?
Contact Form
If you are unable to use these forms due to accessibility needs, please contact us directly at President@sdsug.org. This option is provided for users with functional accessibility barriers that prevent form use.
Explore SDSUG
Start Here
Your guided introduction to SDSUG.
Membership
Join SDSUG for trusted peer collaboration and professional networking.
Leadership
Meet the team guiding SDSUG’s direction.
About SDSUG
Our mission, history, and values.
Events & Meetings
Upcoming topics, speakers, and educational sessions.
Sponsors
Organizations supporting SDSUG’s mission and practitioner community.
SDSUG at a Glance
Overview and FAQ.
Safety & Incident Response
Standards, trained officers, and incident‑response protocols.
Site Index
A full directory of SDSUG pages.
Last Updated: April 2026