MANAGEMENT 512

SANS Security Leadership Retreat

Please note that some course material for SEC 401 and MGT 512 may overlap. We recommend SEC 401 for those interested in a more technical course of study, and MGT 512 for those primarily interested in a leadership-oriented but less technical learning experience.

This course prepares you for the GSLC certification which meets the requirement of the DoD 8570 IAM Level 1, 2, 3.

This course features Knowledge Compression™

The SANS Security Leadership Retreat is taught in a small class setting and is designed to empower senior and advancing managers who want to get up to speed fast, or stay abreast on crucial information security issues and terminology with minimum time out of the office. Lecture sections are intense; the most common student comment is that the course is like drinking from a fire hose.

The facilitator, Lori Homsher, keeps the conversations lively; you will learn as much from your peers as you do during lecture and the maximum class size of 20 people with a target of 15 ensures everyone has the opportunity to be heard. The diligent manager will learn vital, up-to-date knowledge and skills required to supervise the security component of any information technology project.

The course covers the most critical sections of the SANS Security Leadership Essentials course, but the students receive all of the course books and access to sound files of Stephen Northcutt teaching the entire course. These sound files can be burned to CD or loaded to an Apple iPod to listen to while commuting or traveling. You will have access to everything you need to prepare for the GIAC Security Leadership Certificate.

Topics covered in this management retreat include: Intellectual property, operations and security, incident handling, information warfare update, applications web security, making a vulnerability scanning program work, updates on intrusion detection and intrusion prevention, a sample risk management pitch to senior management, the application of cryptography to protect data in transit and at rest, wireless and security, Operation Security and selections from the SANS Management Practicum. You will compile a list of the things to check on with your technical people when you return to the office.

Course schedule:

• Monday, March 12, 7:30 P.M. Optional Icebreaker session to meet your peers
• Tuesday, March 13, Class begins at 8:00 A.M. to give you time to check your email before class. A working lunch is scheduled for 12:15 P.M. The afternoon session runs till 5:00 P.M. We will break for an hour to allow you to check your email and phone messages. A working dinner will commence at 6:00 P.M. and the evening session runs till 8:00 P.M.
• Wednesday, March 14, Class begins at 8:00 A.M. to give you time to check your email before class. A working lunch is scheduled for 12:15 P.M. The afternoon session runs till 3:30 P.M. to give you time to catch an evening flight home.

There are three goals for this retreat and certification.

• Establish a minimum standard for IT Security knowledge, skills and abilities. In a nutshell this course covers all of the non-operating system topics that are in SANS Security Essentials, though not to the same level of depth. The goal is to enable managers and auditors to speak the same language as System, Security, and Network administrators.
• Establish a minimum standard for IT Management knowledge, skills and abilities. I keep running into managers that don't know TCP/IP and that is OK, but then they don't know how to calculate Total Cost of Ownership (TCO) leaving me quietly wondering what *do* they know.
• Save the up and coming generation of senior and rapidly advancing managers a world of pain by sharing the things we wish someone had shared with us. As the saying goes, it is OK to make mistakes, just make new ones.

“I learned so much I can take home and implement immediately.”
- Mark Kastner, I_TECH Corp

Author Statement

When SANS designed the Security Leadership for Managers course, we chose to emulate the format utilized by many executive MBA programs. While core source material is derived from our highly regarded SANS Security Essentials program, we decided to focus this program on the big picture of securing the enterprise: network fundamentals, security technologies, using cryptography, defense-in-depth, policy development, and management practicum. This course includes executive briefings designed to present a distilled summary of vitally important information security topics like operating system security and security threat forecasts. Ultimately, the goal of this program is to ensure that managers charged with the responsibility for information security can make informed choices and decisions that will improve their organization's security.
- Stephen Northcutt

Who Should Attend:

This course is designed and taught for mid-level to C level managers and leaders. It will give you the ability to better manage IT projects in a secure manner.

GIAC Certification

You may register to seek GSLC certification for an additional fee of $300 US. Additional information can be found at the GIAC home page http://www.giac.org/index.php and the GIAC FAQ http://www.giac.org/faq.php

This course has been a career changing event. I will be approaching the way I manage in a whole new mind set
-Steve Hoevernaar, Kroger