2 Days Left! iPad Pro w/ Smart Keyboard or ASUS Chromebook w/ Online Training!

Network Security 2017

Las Vegas, NV | Sun, Sep 10 - Sun, Sep 17, 2017
This event is over,
but there are more training opportunities.

Selling Your Information Security Strategy

  • David Todd, Master's Degree Candidate
  • Thursday, September 14th, 7:15pm - 7:55pm

It is the information security leader's responsibility to identify the gaps between the most significant security threats and vulnerabilities, compared with the organization's current state. The information security leader should develop a strategy that aligns with the strategic goals of the organization and sells the gap mitigation strategy to executive management and the board of directors. Before embarking on this new adventure, clearly articulate what success looks like to your organization. What is the result you are driving to accomplish? Then develop a strategy to get you there. Take a play directly from the sales organization's playbook - know yourself; know your customer; and know the benefits from your customer's perspective. Following this simple strategy will help the information security leader close the deal of selling your information security strategy.

Speaker Bio: David Todd is the Vice President and Chief Information Security Officer at White Lodging Services, headquartered in Merrillville, Indiana. White Lodging, with their nearly 13,000 associates, is one of the hospitality industry leaders, combining hotel development services, ownership and management into one continuously growing package with 165 premium-branded (Marriott, Hyatt, Hilton, Starwood, Carlson, IHG, & Choice), select and full service hotels in 20 states along with more than 30 restaurants, totaling more than $1.5 billion in revenue. In the late 1990's, David served as the Director of Information Technology for Hyatt Hotels in Chicago. He then transitioned into the property and casualty business, working for Progressive Insurance as the senior manager overseeing their IT Risk and Compliance program. After nearly 13 years with Progressive, he moved to Columbus, Ohio where he served as the Chief Information Security Officer for State Auto Insurance.

David is an experienced Cyber and Risk Management Executive with Big 4, retail, insurance, and hospitality experience. He has a proven track record of successfully completing highly complex enterprise-wide projects, developing and improving technical and security processes, reducing departmental costs, and effectively managing project timelines and resources. David continues to learn about the constantly changing information security, risk and compliance field by earning a variety of certifications. His certifications include: Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk and Information Systems Control (CRISC), GIAC Certified Incident Handler (GCIH), and several more. David is also midway through completing his second master's degree, as a candidate for the Master of Science degree in Information Security Management from the SANS Technology Institute.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
  • Master's Degree Presentation: Presentations given by SANS Technology Institute's Master's Degree candidates.
Sunday, September 10
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Sunday, September 10th, 8:00am - 8:30am Special Events
Actionable Detects: Blue Team Cyber Defense Tactics Seth Misenar Sunday, September 10th, 7:15pm - 9:15pm Keynote
Monday, September 11
Session Speaker Time Type
Does your current firewall rise above the Evasion Gap? Michael Knapp, Director, Network Security Architects for the Americas Monday, September 11th, 12:30pm - 1:15pm Lunch and Learn
How ForeScout Supports the Critical Security Controls Peter Underwood, Systems Engineer, ForeScout Technologies Monday, September 11th, 12:30pm - 1:15pm Lunch and Learn
Data Breaches on the Dark Web: Between Defense and Response Alex Viana, VP of Engineering, Terbium Labs Monday, September 11th, 12:30pm - 1:15pm Lunch and Learn
The Next Evolution of Protection: Introduction to Deep Learning Cameron Byers, Enterprise Sales Engineer Monday, September 11th, 12:30pm - 1:15pm Lunch and Learn
How to Beat Evasive Malware at Its Own Game Lenny Zeltser, VP Products Monday, September 11th, 12:30pm - 1:15pm Lunch and Learn
Smartphone and Network Forensics Goes Together Like Peas and Carrots Heather Mahalik and Phil Hagen Monday, September 11th, 7:15pm - 8:15pm SANS@Night
The 14 Absolute Truths of Security Keith Palmgren Monday, September 11th, 7:15pm - 8:15pm SANS@Night
Industrial Control System Active Defense and Threat Intelligence Robert M. Lee Monday, September 11th, 7:15pm - 8:15pm SANS@Night
Introduction to Reversing with IDA Stephen Sims Monday, September 11th, 7:15pm - 8:15pm SANS@Night
Stuck in the Box, a SIEM's Tale Justin Henderson Monday, September 11th, 8:15pm - 9:15pm SANS@Night
Be the Cheat Sheet. Know Memory. Alissa Torres Monday, September 11th, 8:15pm - 9:15pm SANS@Night
Increase Network Visibility: Methods to Feed IDS Sensors Brandon Peterson, Master's Degree Candidate Monday, September 11th, 8:15pm - 8:55pm Master's Degree Presentation
Tuesday, September 12
Session Speaker Time Type
Vendor Solutions Expo Tuesday, September 12th, 12:00pm - 1:30pm Vendor Event
Vendor Solutions Expo Tuesday, September 12th, 5:30pm - 7:30pm Vendor Event
Women's CONNECT Event Hosted by SANS COINS program and ISSA WIS SIG Tuesday, September 12th, 6:00pm - 9:15pm Special Events
GIAC Program Presentation Jeff Frisk Tuesday, September 12th, 6:15pm - 7:15pm Special Events
Introducing DeepBlueCLI, a PowerShell Module for Hunt Teaming via Windows Event Logs Eric Conrad Tuesday, September 12th, 7:15pm - 8:15pm SANS@Night
The Seven Deadly Sins of Incident Response Jake Williams Tuesday, September 12th, 7:15pm - 8:15pm SANS@Night
You've Got Ransomware! Managing the Legal Risk of Cyber Fraud Benjamin Wright Tuesday, September 12th, 7:15pm - 8:15pm SANS@Night
Lets Go Hunting Bad Guys. John Strand Tuesday, September 12th, 8:15pm - 9:15pm SANS@Night
Ten Tenets of CISO Success Frank Kim Tuesday, September 12th, 8:15pm - 9:15pm SANS@Night
Control Things Platform Justin Searle Tuesday, September 12th, 8:15pm - 9:15pm SANS@Night
Wednesday, September 13
Session Speaker Time Type
How to Become a SANS Instructor Eric Conrad Wednesday, September 13th, 12:30pm - 1:15pm Lunch and Learn
Looking Beyond Your Four Walls: Periphery Threat intelligence Josh Fu, Sr. Sales Engineer Wednesday, September 13th, 12:30pm - 1:15pm Lunch and Learn
Why a Holistic Approach is Crucial in Cyber Security Keith Buswell, Sales Engineer Wednesday, September 13th, 12:30pm - 1:15pm Lunch and Learn
ICS Down...It's Go Time! Jason Dely, Professional Services Technical Director, ICS and Critical Infrastructure Wednesday, September 13th, 12:30pm - 1:15pm Lunch and Learn
Visibility and Security in the age of Digital Transformation Gill Langston, Director of Product Management, Qualys Wednesday, September 13th, 12:30pm - 1:15pm Lunch and Learn
Response Policy Zones (RPZ):Using DNS to Choke Malware, Botnets, and Ransomware Matt Stith, Product Manager, Spamhaus Technology; Arnie Bjorklund, SecurityZones Wednesday, September 13th, 12:30pm - 1:15pm Lunch and Learn
Using In-Memory Techniques to Battle Linux Malware Nolan Karpinski, Product Lead. Wednesday, September 13th, 12:30pm - 1:15pm Lunch and Learn
So, You Wanna be a Pentester? Adrien de Beaupre Wednesday, September 13th, 7:15pm - 8:15pm SANS@Night
Three Keys to Mobile Security: Are You Doing Everything You Can to Protect Your Apps? Gregory Leonard Wednesday, September 13th, 7:15pm - 8:15pm SANS@Night
Malware Analysis for Incident Responders: Getting Started Lenny Zeltser Wednesday, September 13th, 7:15pm - 8:45pm SANS@Night
Anti-Ransomware G. Mark Hardy Wednesday, September 13th, 8:15pm - 9:15pm SANS@Night
Secure DevOps: Static Analysis & the Puma‚s Tail Eric Johnson Wednesday, September 13th, 8:15pm - 9:15pm SANS@Night
Don't Always Judge a Packet by Its Cover Gabriel Sanchez, Master's Degree Candidate Wednesday, September 13th, 8:15pm - 8:55pm Master's Degree Presentation
Thursday, September 14
Session Speaker Time Type
The Three Cs to Building a Mature Awareness Program Lance Spitzner Thursday, September 14th, 7:15pm - 8:15pm SANS@Night
Selling Your Information Security Strategy David Todd, Master's Degree Candidate Thursday, September 14th, 7:15pm - 7:55pm Master's Degree Presentation
Securing Your Kids Lance Spitzner Thursday, September 14th, 8:15pm - 9:15pm SANS@Night
Privacy and Legal Dimensions in Increasingly Connected Digital World Muzamil Riffat, Master's Degree Candidate Thursday, September 14th, 8:15pm - 8:55pm Master's Degree Presentation