Leading Security Initiatives to Manage Information Risk
Security managers need both technical knowledge and management skills to gain the respect of technical team members, understand what technical staff are actually doing, and appropriately plan and manage security projects and initiatives. This is a big and important job that requires an understanding of a wide array of security topics.
This course empowers you to become an effective security manager and get up to speed quickly on information security issues and terminology. You won't just learn about security, you will learn how to manage security. MGT512 covers a wide range of security topics across the entire security stack. Data, network, host, application, and user controls are covered in conjunction with key management topics that address the overall security lifecycle, including governance and technical controls focused on protecting, detecting, and responding to security issues.
This course will prepare you to:
- Make sense of different cybersecurity frameworks
- Understand and analyze risk
- Understand the pros and cons of different reporting relationships
- Manage technical personnel
- Build a vulnerability management program
- Inject security into modern DevOps workflows
- Strategically leverage a SIEM
- Lead a Security Operations Center (SOC)
- Change behavior and build a security-aware culture
- Effectively manage security projects
- Enable modern security architectures and the cloud
- Become an effective information security manager
- Get up to speed quickly on information security issues and terminology
- Establish a minimum standard of security knowledge, skills, and abilities
- Speak the same language as technical security professionals
HOW THE COURSE WORKS:
MGT512 uses case scenarios, group discussions, team-based exercises, in-class games, and a security leadership simulation to help students absorb both technical and management topics.
The course uses the Cyber42 leadership simulation game. This web application based game is a continuous tabletop exercise where students play to improve security culture, manage budget and schedule, and improve security capabilities at a fictional organization. This puts you in real-world scenarios that spur discussion and critical thinking of situations that you will encounter at work.
WHAT YOU WILL RECEIVE:
- Electronic courseware containing the entire course content
- Printed course books
- Access to the Cyber42 security leadership simulation web app
- MP3 audio files of the complete course lecture
NOTICE TO STUDENTS:
Some course material for SEC401 and MGT512 may overlap. SANS recommends SEC401 for those interested in a more technical course of study, and MGT512 for those primarily interested in a leadership-oriented but less technical learning experience.
This course prepares you for the GIAC Security Leadership Certification (GSLC), which meets the requirement of DoD 8570 IAM Levels 1, 2, and 3.
Cyber42 Security Leadership Simulation Game Days
Transformational Cybersecurity Leader Triad
Rekt Casino Hack Assessment Transformational Series Weak Security Program, Unprotected Systems, and Poor Detection & Response
WHAT TO TAKE NEXT:
MGT514: Security Strategic Planning, Policy, and Leadership
MGT521: Leading Cybersecurity Change: Building a Security-Based Culture