Last day to save $500 for SANS San Diego 2013

OnSite

MGT520: IT Security Strategic Planning

  •  12 CPE/CMU
  •   Laptop Not Needed

You know the expression, "What got you here, won't get you there"? That is true of the transition from technical person to manager to leader. This companion course to MGT 512: SANS Security Leadership Essentials will give you one of the tools to be successful as a senior IT strategic planner.

Strategic planning is hard for people in IT because we spend so much time responding and reacting. Some of us have been exposed to a SWOT or something similar in an MBA course, but we almost never get to practice until we get promoted to a senior position, and then we are not equipped with the skills we need.

And we will practice in class to build those skills. Topics covered in depth include how to plan the plan, horizon analysis, visioning, environmental scans (SWOT, PEST, Porters etc.), historical analysis, mission, vision, and value statements, and then the planning process core, candidate initiatives, the prioritization process, resource and IT change management in planning, how to build the roadmap, setting up assessments and revising the plan. We will see examples, hear stories from business, especially IT and Security oriented businesses, and then work together on labs.

Business needs change, the environment changes, new risks are always on the horizon, and critical systems are continually exposed to new vulnerabilities. Strategic planning is a never-ending process. This is a hands-on, exercise- intensive course on writing, implementing and assessing strategic plans.

Course Syllabus
Course Contents
  MGT520.1: Plan the Plan!

CPE/CMU Credits: 6

Topics
  • Disciplined process to achieve consistent repeatable results
  • How to approach planning, retreat, virtual team, should you hire an IT security consultant
  • Consider creating an advisory board of trusted outsiders
  • Roles in planning
  • Horizon analysis, how far into the future is appropriate, half-life of information
  • Analytical Hierarchical Process to determine horizon
  • Historical analysis, where have we come from
  • Visioning, cone of plausibility
  • Environmental scans, SWOT, PEST, Porter's 5 forces
  • Mission statements
  • Vision statements
  • Value statements
 
  MGT520.2: IT Strategic Planning and Assessment

CPE/CMU Credits: 6

Topics
  • Candidate initiatives, synectics, possible worlds
  • Prioritization
  • Developing a roadmap
  • IT Change management
  • Institutional assessment
  • Closing the loop
 
Additional Information
 
  Prerequisites

This course is appropriate for alumni of the following course: Management 512: SANS Security Leadership Essentials For Managers with Knowledge Compression
 

Author Statement

I had read about SWOTs for years, but was shocked at how difficult it was to create a strategic plan and get it approved. Some executives or auditors would say it doesn't look out far enough, others would say it isn't realistic to look out so far, some would say you are too bold, others you are too tame. One plan I did the heavy lift on went through 18 revisions and still only had mixed approval. I was reading everything I could on strategic planning and looking at published plans, and finally I saw the key - "plan the plan." It is the same basic notion as "plan the dive, dive the plan." It took six months, but I documented the entire process. I set up assessment gates for each part of the process and worked to get unanimous agreement on the strategic planning process; soon thereafter, I won approval for the plan. That is when I started thinking about developing this course, I didn't want anyone else to go through that level of frustration, or look that incompetent to senior IT management and the board. The goal of this course is simple, to give you the tools to create a repeatable, successful product.

-- Stephen Northcutt

The OnSite program allowed many of our members to attend that have had restrictions on out of state travel.
- Randy Raw

Share
SANS CDI 2013 - DC
Latest Whitepapers

Building and Maintaining a "Certifiable" Workforce
By Robert J. Mavretich

How Can You Build and Leverage SNORT IDS Metrics to Reduce Risk?
By Tim Proffitt

Daisy Chain Authentication
By Courtney Imbert

Last 25 Papers »

Latest Tweets @SANSInstitute

NEW #SANS Survey: Security Analytics & Intelligence 2nd [...]
October 1, 2013 - 6:30 PM

Tips on how to convince your boss to let you train online wi [...]
October 1, 2013 - 6:23 PM

#2 Tip on how 2 convince your boss 2 let u train online: Fle [...]
October 1, 2013 - 3:00 PM

Contact Us

(301) 654-SANS (7267)
Mon-Fri 9am - 8pm EST/EDT
info@sans.org

"It has really been an eye opener concerning the depth of security training and awareness that SANS has to offer."
- Michael Hall, Drivesavers

"Because of the use of real-world examples it's easier to apply what you learn."
- Danny Hill, Friedkin Companies, Inc.

"The perfect balance of theory and hands-on experience."
- James D. Perry II, University of Tennessee