The Cybersecurity Events Worth the Flight: A Curated Global Guide to 2026–2027
Why This Guide Exists
There are hundreds of cybersecurity events every year, and most security leaders quietly waste budget and calendar on the wrong ones. The problem is rarely a shortage of options — it is the absence of a clear way to decide which gathering actually serves a specific purpose. A board-facing CISO and a senior threat researcher should almost never attend the same event for the same reasons, yet the typical "top conferences" list flattens that distinction into an undifferentiated pile, and almost always over-indexes on a handful of US mega-events while ignoring the local scenes where much of the real community lives.
This guide takes a different approach. It is a curated selection of the events that genuinely move the industry across the rest of 2026 and all of 2027 — organized by region, balancing the global flagships with the strong local conferences in Spain, the United Kingdom, Brazil, Argentina and across Latin America. Each event carries a sharp brief, a recommended audience, and one critical signal: whether it is built for executives, for practitioners, or for both.
The goal is not to list everything. It is to help you decide where to spend the two scarcest resources a security leader has — time and travel — and to build a deliberate calendar rather than a reactive one.
The measure of a good conference year is not how many events you attended. It is whether the handful you chose advanced a specific objective — a board relationship, a technical capability, a market view, a hiring pipeline — that you could not have advanced as efficiently any other way.
How to Read This Guide — The Lens
Every event is tagged with one of three lenses, because matching the event to the audience is where most conference budgets are won or lost.
Executive — built around strategy, governance, risk, leadership and the business of security. The room is CISOs, security executives, and the leaders they report to. You go for perspective, peer relationships, and analyst-grade direction — not for exploit code.
Technical — built around research, offensive and defensive capability, and hands-on depth. The room is researchers, engineers, red and blue teams, and practitioners. You go for new techniques, tooling, training, and the cutting edge of how attacks and defenses actually work.
Both — large enough, and structured deliberately enough, to serve executives and practitioners in parallel tracks. You go with a team and split up.
A note on dates: everything below is accurate as of late May 2026 and should be reconfirmed on each event's official site before booking. Items marked *expected* are recurring events whose 2027 dates were not yet published at the time of writing — they are projected from their usual window and should be treated as planning estimates, not confirmed dates.
The Rest of 2026 at a Glance
| Country | Logo | Event | Dates | City, Country | Lens | Best for | Site |
|---|---|---|---|---|---|---|---|
| 🇺🇸 | Gartner Security & Risk Management Summit | Jun 1–3, 2026 | National Harbor, USA | Executive | CISOs, security & risk leaders | gartner.com | |
| 🇬🇧 | Infosecurity Europe | Jun 2–4, 2026 | London, UK | Both | Leaders, practitioners, buyers | infosecurityeurope.com | |
| 🇯🇵 | Gartner Security & Risk Management Summit | Jul 22–24, 2026 | Tokyo, Japan | Executive | CISOs & risk leaders (APAC) | gartner.com | |
| 🇺🇸 | Black Hat USA | Aug 1–6, 2026 | Las Vegas, USA | Both | Researchers, CISOs, red/blue teams | blackhat.com | |
| 🇧🇷 | Gartner Security & Risk Management Summit | Aug 4–5, 2026 | São Paulo, Brazil | Executive | CISOs & risk leaders (LATAM) | gartner.com | |
| 🇺🇸 | DEF CON 34 | Aug 6–9, 2026 | Las Vegas, USA | Technical | Hackers, researchers, practitioners | defcon.org | |
| 🇨🇴 | DragonJAR Security Conference | Sep 2026 (confirm) | Colombia | Technical | Hackers, researchers (Spanish-LATAM) | dragonjar.org | |
| 🇧🇷 | Mind The Sec | Sep 15–17, 2026 | São Paulo, Brazil | Executive | Leaders, decision-makers (LATAM) | mindthesec.com.br | |
| 🇦🇪 | GISEC Global | Sep 16–18, 2026 | Dubai, UAE | Both | Leaders, practitioners, gov (MEA) | gisec.ae | |
| 🇬🇧 | Gartner Security & Risk Management Summit | Sep 22–24, 2026 | London, UK | Executive | CISOs & risk leaders (EMEA) | gartner.com | |
| 🇬🇧 | International Cyber Expo | Sep 29–30, 2026 | London, UK | Both | Leaders, practitioners, buyers (UK) | internationalcyberexpo.com | |
| 🇨🇱 | 8.8 Computer Security Conference | Oct 1–2, 2026 | Santiago, Chile | Technical | Hackers, researchers (LATAM) | 8dot8.org | |
| 🇨🇦 | Black Hat — Toronto | Oct 6–8, 2026 | Toronto, Canada | Both | Researchers & leaders (Canada) | blackhat.com | |
| 🇦🇷 | ekoparty | Oct 7–9, 2026 | Buenos Aires, Argentina | Technical | Hackers, researchers (LATAM) | ekoparty.org | |
| 🇸🇬 | Singapore International Cyber Week / GovWare | Oct 12–15, 2026 | Singapore, Singapore | Both | Policy, executives, practitioners | sicw.gov.sg | |
| 🇩🇪 | it-sa Expo & Congress | Oct 27–29, 2026 | Nuremberg, Germany | Both | Practitioners, buyers (DACH/EU) | itsa365.de | |
| 🇪🇸 | Jornadas STIC CCN-CERT | Late Nov 2026 (expected) | Madrid, Spain | Both | Gov, leaders, practitioners (Spain) | ccn-cert.cni.es | |
| 🇸🇦 | Black Hat MEA | Dec 1–3, 2026 | Riyadh, Saudi Arabia | Both | Researchers & leaders (MEA) | blackhat.com | |
| 🇬🇧 | Black Hat Europe | Dec 7–10, 2026 | London, UK | Both | Researchers, CISOs, red/blue teams | blackhat.com | |
| 🇦🇪 | GITEX Global | Dec 7–11, 2026 | Dubai, UAE | Executive | Tech & business leaders, gov | gitex.com | |
| 🇧🇷 | H2HC (Hackers to Hackers Conference) | Q4 2026 (confirm) | São Paulo, Brazil | Technical | Researchers, underground (BR) | h2hc.com.br | |
| 🇧🇷 | Roadsec (finale) | Q4 2026 (confirm) | São Paulo, Brazil | Technical | Community, students, practitioners (BR) | roadsec.com.br |
All of 2027 at a Glance
| Country | Logo | Event | Dates | City, Country | Lens | Status | Site |
|---|---|---|---|---|---|---|---|
| 🇮🇳 | Gartner Security & Risk Management Summit | Mar 8–9, 2027 | Mumbai, India | Executive | Confirmed | gartner.com | |
| 🇪🇸 | RootedCON Madrid | Early Mar 2027 (expected) | Madrid, Spain | Both | Expected | rootedcon.com | |
| 🇦🇺 | Gartner Security & Risk Management Summit | Mar 15–16, 2027 | Sydney, Australia | Executive | Confirmed | gartner.com | |
| 🇺🇸 | RSAC Conference | Apr 5–8, 2027 | San Francisco, USA | Both | Confirmed | rsaconference.com | |
| 🇬🇧 | CyberUK | Apr 2027 (expected) | UK | Executive | Expected | cyberuk.uk | |
| 🇬🇧 | Infosecurity Europe | Jun 2027 (expected) | London, UK | Both | Expected | infosecurityeurope.com | |
| 🇺🇸 | Black Hat USA | Early Aug 2027 (expected) | Las Vegas, USA | Both | Expected | blackhat.com | |
| 🇺🇸 | DEF CON 35 | Aug 5–8, 2027 | Las Vegas, USA | Technical | Confirmed | defcon.org | |
| 🇧🇷 | Mind The Sec | Sep 2027 (expected) | São Paulo, Brazil | Executive | Expected | mindthesec.com.br | |
| 🇦🇪 | GISEC Global | Sep 2027 (expected) | Dubai, UAE | Both | Expected | gisec.ae | |
| 🇦🇷 | ekoparty | Oct 2027 (expected) | Buenos Aires, Argentina | Technical | Expected | ekoparty.org | |
| 🇨🇱 | 8.8 Computer Security Conference | Oct 2027 (expected) | Santiago, Chile | Technical | Expected | 8dot8.org | |
| 🇸🇬 | Singapore International Cyber Week / GovWare | Oct 2027 (expected) | Singapore, Singapore | Both | Expected | sicw.gov.sg | |
| 🇩🇪 | it-sa Expo & Congress | Oct 2027 (expected) | Nuremberg, Germany | Both | Expected | itsa365.de | |
| 🇸🇬 | Black Hat Asia | Spring 2027 (TBA) | Singapore, Singapore | Both | TBA | blackhat.com | |
| 🇸🇦 | Black Hat MEA | Dec 2027 (expected) | Riyadh, Saudi Arabia | Both | Expected | blackhat.com | |
| 🇬🇧 | Black Hat Europe | Dec 2027 (expected) | London, UK | Both | Expected | blackhat.com | |
| 🇦🇪 | GITEX Global | Dec 2027 (expected) | Dubai, UAE | Executive | Expected | gitex.com |
The 2027 calendar is anchored by the confirmed dates above, with the rest of the year's recurring flagships repeating in their usual windows. Use the confirmed dates to build the spine of your 2027 plan, and pencil in the expected events to be locked once each organizer publishes.
North America
Gartner Security & Risk Management Summit — National Harbor, MD, USA · *Jun 1–3, 2026 · Lens: Executive*
The definitive analyst-driven gathering for CISOs and security and risk leaders in the Americas, just outside Washington, D.C. Research-backed sessions on strategy, governance, AI defense, cloud and data security, and the decisions leaders are making now. Best for: CISOs and security and risk executives who want Gartner's direction and high-quality peer company.
Black Hat USA — Las Vegas, USA · *Aug 1–6, 2026 (2027 ~early Aug, expected) · Lens: Both*
The most respected information security conference in the world, and the anchor of "hacker summer camp." Four days of intensive Trainings give way to two days of Briefings disclosing the year's most significant offensive and defensive research, alongside Arsenal tool demos, a sprawling Business Hall, and invitation-only executive Summits. Best for: researchers, red and blue teams, and security leaders who want the agenda for the year ahead — go with a team and split the technical and executive tracks.
DEF CON — Las Vegas, USA · *DEF CON 34: Aug 6–9, 2026 · DEF CON 35: Aug 5–8, 2027 · Lens: Technical*
The world's largest hacker conference, beginning the moment Black Hat ends. The unfiltered, community-run heart of the field — villages (AppSec, IoT, car hacking, aerospace, adversary), CTFs, badge culture, and research stress-tested in workshop form. Best for: hackers, researchers and hands-on practitioners who want depth and community. Less suited to executives there purely for business.
RSAC Conference — San Francisco, USA · *Apr 5–8, 2027 · Lens: Both*
The world's largest cybersecurity gathering returns to Moscone Center, drawing 40,000-plus attendees across keynotes, the Innovation Sandbox, hundreds of sessions and an enormous expo. As much a market and business event as a content one. Best for: the entire industry — leaders setting strategy, teams scanning the vendor landscape, and anyone who needs to take the pulse of the whole field in one week.
Black Hat — Toronto, Canada · *Oct 6–8, 2026 · Lens: Both*
Black Hat's Canadian edition brings the franchise's mix of technical Briefings and practitioner content to Toronto's MTCC, serving the Canadian and broader North American community closer to home. Best for: Canadian and regional researchers, practitioners and leaders wanting Black Hat-grade content without the Las Vegas trip.
Europe
Europe rewards a two-layer strategy: the global flagships in London, and the strong national scenes — especially Spain's and the UK's own — that the flagships do not replace.
United Kingdom
Infosecurity Europe — London · *Jun 2–4, 2026 (2027 ~June, expected) · Lens: Both*
Europe's largest gathering of the information security industry, now in its fourth decade and increasingly leaning into senior decision-maker content. A highly efficient way to compress a year of European market intelligence, vendor evaluation and peer connection into three days at ExCeL. Best for: security leaders making investment decisions, practitioners benchmarking solutions, and anyone mapping the European vendor ecosystem.
CyberUK — Glasgow / rotating UK · *Apr 2027 (expected; 2026 was Apr 21–23, Glasgow) · Lens: Executive*
The UK government's flagship cybersecurity conference, run by the National Cyber Security Centre, convening thousands of public- and private-sector cyber leaders. Strongly oriented to national resilience, policy and leadership. Best for: executives, public-sector leaders, and anyone whose work intersects UK government, critical national infrastructure and policy.
International Cyber Expo — London · *Sep 29–30, 2026 · Lens: Both*
A focused London exhibition and conference at Olympia, co-located with International Security Expo, bridging cyber and physical security with strong networking and a leadership programme. Best for: UK and European leaders, practitioners and buyers wanting a sharper, more curated alternative to the largest expos.
Black Hat Europe — London · *Dec 7–10, 2026 (2027 ~Dec, expected) · Lens: Both*
The European edition of Black Hat closes the year with specialized Trainings and a two-day conference of fresh research, Arsenal demos and a Business Hall — Europe's premier technical security event, with executive content alongside. Best for: researchers, red and blue teams, and leaders wanting Black Hat's technical depth on the European calendar.
*Also on the UK radar (community/technical, confirm dates each year):* 44CON and BSides London are long-running staples of the UK technical community — smaller, deeper, and well worth tracking for practitioners.
Spain
RootedCON — Madrid (and regional editions) · *Early Mar 2027 (expected; 2026 was Mar 5–7, Madrid) · Lens: Both, technically rooted*
The most important cybersecurity congress in Spain and one of the most influential in the entire Spanish-speaking world, drawing well over 10,000 attendees and hundreds of speakers to Kinépolis Madrid. Famously technical and community-driven — real vulnerabilities, advanced attack and defense techniques, incident-response experience — with bootcamps and RootedLabs in the days prior. RootedCON also runs regional editions across Spain (Valencia, Málaga and others) and has expanded internationally (Portugal, Panamá, Dominican Republic). Best for: the Spanish-speaking technical community — pentesters, red and blue teams, researchers — and leaders who want to plug into Spain's security scene.
Jornadas STIC CCN-CERT — Madrid · *Late Nov 2026 (expected; 2025 ran Nov 24–27) · Lens: Both, gov-anchored*
The Spanish national cryptologic centre's flagship event — the reference gathering for public-sector and enterprise security in Spain, now run in convergence with the RootedCON community and the Joint Cyberspace Command. A unique blend of institutional weight and community depth. Best for: public-sector leaders, enterprise CISOs and practitioners operating in or with Spain and the Spanish administration.
Continental Europe
Gartner Security & Risk Management Summit — London (EMEA edition) · *Sep 22–24, 2026 (2027 expected) · Lens: Executive*
The EMEA edition of Gartner's flagship summit, delivering analyst-grade strategy, governance and risk content tuned to the European landscape. Best for: CISOs and security and risk leaders across EMEA seeking direction and senior peer company.
it-sa Expo & Congress — Nuremberg, Germany · *Oct 27–29, 2026 (2027 ~Oct, expected) · Lens: Both*
Europe's largest dedicated IT security trade fair and the definitive annual benchmark for the DACH region and continental Europe — tens of thousands of professionals and hundreds of exhibitors across endpoint, network, cloud, OT/ICS and compliance. Best for: practitioners and buyers, especially across German-speaking and continental European markets.
Middle East & Africa
GISEC Global — Dubai, UAE · *Sep 16–18, 2026 (2027 expected) · Lens: Both*
The Arab world's largest and most influential cybersecurity exhibition and conference at the Dubai World Trade Centre — tens of thousands of specialists, vendors and government stakeholders, with live attack simulations and a strong critical-infrastructure focus. Best for: leaders, practitioners and public-sector stakeholders engaging with Middle East and African markets.
Black Hat MEA — Riyadh, Saudi Arabia · *Dec 1–3, 2026 (2027 ~Dec, expected) · Lens: Both*
Black Hat's Middle East and Africa edition has rapidly become one of the region's marquee security events, pairing the franchise's technical Briefings and Trainings with the scale of Saudi Arabia's fast-expanding cyber ecosystem. Best for: researchers and security leaders building presence or capability across the MEA region.
GITEX Global — Dubai, UAE · *Dec 7–11, 2026 (2027 ~Dec, expected) · Lens: Executive*
Not a pure security event, but the world's largest technology and AI exhibition, with a substantial cybersecurity presence and unmatched access to Middle Eastern, African and Asian markets, governments and dealmaking. Best for: technology and business leaders, and security executives whose mandate intersects digital strategy and partnerships.
Asia-Pacific
Gartner Security & Risk Management Summit — Tokyo, Japan · *Jul 22–24, 2026 · Lens: Executive*
The Japan edition of Gartner's flagship summit, bringing analyst-grade security strategy and risk guidance to the region. Best for: CISOs and security and risk leaders in Japan and the wider APAC market.
Singapore International Cyber Week / GovWare — Singapore · *Oct 12–15, 2026 (2027 ~Oct, expected) · Lens: Both*
Asia-Pacific's most established cybersecurity event, uniquely blending high-level policy and diplomacy with GovWare, its cornerstone trade conference and exhibition. The week convenes policymakers, executives and practitioners from across the region around resilience, trust and the future of digital security. Best for: policy-engaged executives, regionally operating CISOs, and practitioners who want the APAC pulse in one concentrated week.
Gartner Security & Risk Management Summit — Mumbai, India · *Mar 8–9, 2027 · Lens: Executive*
Gartner's India edition, serving one of the world's fastest-growing security markets. Best for: CISOs and security and risk leaders across India and South Asia.
Gartner Security & Risk Management Summit — Sydney, Australia · *Mar 15–16, 2027 · Lens: Executive*
The Australia and New Zealand edition, tuned to the regional regulatory and threat environment. Best for: CISOs and security and risk leaders across ANZ.
Black Hat Asia — Singapore · *Spring 2027 (dates TBA) · Lens: Both*
Black Hat's Asian edition at Marina Bay Sands brings the franchise's technical Briefings, Trainings and Arsenal to the regional community each spring. Best for: researchers, practitioners and security leaders across Asia-Pacific. *Confirm 2027 dates as published. Note: DEF CON also now runs a Singapore edition (April in 2026) worth tracking for 2027.*
Latin America
This is the region most "global top conference" lists ignore, and the one closest to home for much of the CISO2CISO community. The Latin American scene is deep, technical and growing fast — and it spans both executive and hardcore-hacker gatherings.
Argentina
ekoparty — Buenos Aires · *Oct 7–9, 2026 (2027 ~Oct, expected) · Lens: Technical*
Latin America's largest and most influential hacking and security conference, running for over two decades and convening more than 10,000 participants at the Centro de Convenciones de Buenos Aires for three days of research, villages, CTFs, live hacking, hardware hacking and workshops — with a strong and growing AI-security focus. The unmissable technical gathering for the regional community. Best for: hackers, researchers, developers and security practitioners across the region — and anyone who wants to feel the energy of LATAM's technical scene.
Segurinfo — Argentina (and regional editions) · *Multiple editions through the year (confirm dates) · Lens: Executive*
The region's long-running executive and corporate security congress series, run by USUARIA, with editions across several Latin American countries. Strongly oriented to CISOs, governance, compliance and the business of security rather than offensive research. Best for: executives and corporate security leaders who want the regional management-level conversation.
Brazil
Mind The Sec — São Paulo · *Sep 15–17, 2026 (2027 ~Sep, expected) · Lens: Executive*
The largest commercial cybersecurity event in the Southern Hemisphere, drawing well over 10,000 participants to the Transamérica Expo Center. Executive- and business-oriented — emerging threats, defensive strategy, privacy, compliance and governance, with a major exhibition and renowned speakers. Best for: decision-makers, CISOs, and vendors and consultants doing business across Brazil and Latin America.
H2HC (Hackers to Hackers Conference) — São Paulo · *Q4 2026 (confirm dates) · Lens: Technical*
One of the oldest and most respected technical security conferences in Latin America, organized by and for researchers and the underground community, known for original research, deep technical talks and trainings, and a track record of debuting techniques never shown publicly before. Best for: researchers, exploit developers and serious practitioners who want Brazil's deepest technical content.
Roadsec — São Paulo (national roadshow + finale) · *Q4 2026 finale (confirm dates) · Lens: Technical / community*
One of the largest hacking, security and technology roadshows in Latin America — an itinerant series across Brazilian cities culminating in a massive São Paulo finale with talks, CTFs (Hackaflag), workshops and a strong community and talent-discovery focus. Best for: the broad Brazilian community — students, practitioners and enthusiasts — and a great pulse on emerging regional talent.
*Also on the Brazilian radar (confirm dates):* BSides São Paulo, Security Leaders, and YSTS round out a deep national calendar.
Andean & Spanish-speaking LATAM
8.8 Computer Security Conference — Santiago, Chile · *Oct 1–2, 2026 (2027 ~Oct, expected) · Lens: Technical*
A 100% technical and academic conference and one of the most recognized in the Spanish-speaking world, with a distinctive pop-culture flair. Across more than 16 years it has run dozens of events across multiple countries, becoming a reference platform for the Spanish-language technical community. Best for: hackers, researchers and practitioners across the Andean region and Spanish-speaking LATAM.
DragonJAR Security Conference — Colombia · *Sep 2026 (confirm dates) · Lens: Technical*
One of the most established Spanish-language hacking conferences, a fixture of the Colombian and broader Latin American technical community, typically held in the early days of September. Best for: Spanish-speaking researchers, pentesters and practitioners across the region.
Latin America (executive)
Gartner Security & Risk Management Summit — São Paulo, Brazil · *Aug 4–5, 2026 (2027 expected) · Lens: Executive*
The Latin American edition of Gartner's flagship summit, delivering analyst-grade security and risk strategy in-region. Best for: CISOs and security and risk executives across Latin America who want Gartner's direction without leaving the region.
How to Build Your 2026–2027 Calendar
A guide is only useful if it turns into a decision. A simple way to choose, rather than over-attend:
Start from the objective, not the event. Decide what you actually need to advance — a board relationship, a technical capability for your team, a market view of a new region, a hiring pipeline, a vendor evaluation — and let that select the event. An event that does not map to a real objective is a trip, not a strategy.
Match the lens to the traveler. Send executives to executive events and practitioners to technical ones; the most common waste is a senior leader spending three days at a deeply technical conference, or an engineer sitting through strategy keynotes. For the "Both" events, send a small team and divide across the tracks.
Anchor the year regionally, and don't skip your own backyard. If your footprint is global, pick one strong anchor per region rather than chasing every flagship. And if your community is Spanish- or Portuguese-speaking, the local scenes — ekoparty, RootedCON, Mind The Sec, 8.8, H2HC, DragonJAR — are often higher-value per dollar than a long-haul flight to a US mega-event.
Plan the dense weeks deliberately. Some weeks and months stack — Las Vegas in early August (Black Hat plus DEF CON), Dubai in December (Black Hat MEA, then GITEX), and a crowded September–October across Europe and LATAM. Decide in advance how much of a dense stretch you will actually work, and protect recovery time.
Use the confirmed 2027 dates as your spine. Lock the events with firm 2027 dates first — Gartner Mumbai and Sydney in March, RSAC in early April, DEF CON 35 in early August — then pencil in the recurring flagships in their usual windows and confirm as organizers publish.
Budget for depth over breadth. Two events attended with preparation, a clear objective and proper follow-up will almost always beat five attended reactively. The follow-up — the relationships and intelligence you act on afterward — is where the value is realized or lost.
Executive Framework
| Your objective | The lens to choose | Example anchors |
|---|---|---|
| Board relationships & strategy direction | Executive | Gartner SRM Summits, Mind The Sec |
| Technical capability & research | Technical | DEF CON, ekoparty, RootedCON, 8.8, H2HC |
| Market view & vendor evaluation | Both / exhibition | RSAC, Infosecurity Europe, it-sa, GISEC, GITEX |
| Regional presence & community | Regional marquee | SICW, Black Hat MEA, ekoparty, Mind The Sec |
| National / public-sector engagement | Gov-anchored | CyberUK, Jornadas STIC CCN-CERT |
| The year's agenda in one place | Both | Black Hat USA, RSAC |
Final Takeaway
The global cybersecurity calendar is abundant to the point of paralysis, and the instinct to attend broadly — or to default to whichever US mega-event everyone names — is exactly how leaders and teams burn time and budget without advancing anything in particular. The events in this guide are worth the flight, but not all of them, and not for everyone. The discipline is in choosing: matching the event to a real objective, the lens to the traveler, and the calendar to your actual regional footprint — including the strong local scenes that the global lists overlook.
Pick deliberately, prepare properly, and follow up relentlessly. A handful of well-chosen events — a global flagship or two for perspective, and the regional gatherings where your real community lives — will do more for your program, your team and your network than a passport full of stamps from conferences you attended because everyone else did.
The best conference strategy is not a longer list. It is a shorter one — chosen on purpose, matched to the people who should be in the room, anchored in the regions you actually operate in, and measured by what changed because you went.
*To be continued — and to be expanded as 2027 programs are confirmed.*
