SANS Security Leadership Essentials for Managers

This course, offered in a special partnership with the SANS Institute, has been completely updated and is designed to empower advancing managers who want to get up to speed fast on information security issues and terminology. You don't just learn about security, you learn how to manage security. Lecture sections are intense; the most common student comment is that it's like drinking from a fire hose. The diligent manager will learn vital, up-to-date knowledge and skills required to supervise the security component of any information technology project. Additionally, the course has been engineered to incorporate the NIST Special Papers 800 guidance so that it can be particularly useful to US Government managers and supporting contractors.

Essential security topics covered in this management track include: Network Fundamentals and Applications, Power, Cooling and Safety, Architectural Approaches to Defense in Depth, Cyber Attacks, Vulnerability Assessment and Management, Security Policies, Contingency and Continuity Planning, Awareness Management, Risk Management Analysis, Incident Handling, Web Application Security, Offensive and Defensive Information Warfare, culminating with SANS Management Practicum. The course has been evaluated and approved by CompTIA's CAQC program for Security + 2008 to ensure that managers and their direct reports have a common baseline for security terminology and concepts. You will be able to put what you learn into practice, the day you get back into the office.

This course prepares you for the GSLC certification which meets the requirement of the Department of Defense Directive 8570 IAM Level 1, 2, 3. 

WHO SHOULD ATTEND

• All newly appointed information security officers
• Technically skilled administrators that have recently been given leadership responsibilities
• Seasoned managers that want to understand what your technical people are telling you

OBJECTIVE

There are three goals for this track and certification.

• Establish a minimum standard for IT Security knowledge, skills and abilities. In a nutshell this course covers all of the non-operating system topics that are in SANS Security Essentials, though not to the same level of depth. The goal is to enable managers and auditors to speak the same language as System, Security, and Network administrators.
• Establish a minimum standard for IT Management knowledge, skills and abilities. I keep running into managers that don't know TCP/IP and that is OK, but then they don't know how to calculate Total Cost of Ownership (TCO) leaving me quietly wondering what do they know.
• Save the up and coming generation of senior and rapidly advancing managers a world of pain by sharing the things we wish someone had shared with us. As the saying goes, it is OK to make mistakes, just make new ones.

Leadership Essentials topics covered in this management track include: Return on Investment with a Technology or Security Refresh, Network Fundamentals and Applications, Project Management, Information Assurance Foundations, Computer Security Policies, Contingency and Continuity Planning, Business Impact Analysis, Incident Handling, Intellectual Property Protection and Valuation, Web Security, Competitive Intelligence, Offensive and Defensive Information Warfare, culminating with Management Practicum. The material uses Knowledge Compression™, special charts, and other proprietary SANS techniques to help convey the key points of critical slides and keep the information flow rate at a pace senior executives demand every teaching hour of the course. Only SANS top instructors with management experience are invited to teach this course and you will be able to put what you learn into practice, the day you get back into the office.

Lecturer
Stephen Northcutt
Course Coordinator and Lecturer      

Stephen Northcutt is President of the SANS Technology Institute, a postgraduate seucrity college. He is the author or coauthor of Incident Handling Step-by-Step, Intrusion Signatures and Analysis, Inside Network Perimeter Security, SANS Security Essentials, and Network Intrusion Detection 3rd edition. His newest book is entitled IT Ethics Handbook.