Get an iPad Air w/ Smart KB, or Google Pixel 4A Smartphone, or Take $350 Off with ANY qualifying 5-6 Day Course through April 21.
For special codes to use during registration, view offer details.
Associated Certification: SANS Security Awareness Professional (SSAP)
During registration, use code "StaySharp300" to save $300 off MGT433! Offer is valid through June 2, 2021.
Course Overview
Organizations have invested a tremendous amount of money and resources into securing technology, but little if anything into securing their workforce. As a result, people, not technology, have become the primary attack vector for cyber attackers. The most effective way to manage your organization's human risk is to establish a mature security awareness program that goes beyond compliance, changes people's behaviors, and ultimately creates a secure culture. This two-day intensive course will teach you the key concepts and skills needed to do just that, whether you are establishing a new program or maturing an existing one. The course content is based on lessons learned from hundreds of security awareness programs from around the world. You will learn not only from your instructor, but from extensive interaction with your peers. Finally, through a series of labs and exercises, you will develop your own custom plan to implement as soon as you return to your organization.
This Course Will Prepare You to:
NOTICE TO STUDENTS
This class is designed as a beginner to intermediate level course. Highly experienced security awareness professionals or senior security leaders should consider the more advanced five-day MGT521: Leading Cybersecurity Change: Building a Security-Based Culture
WHAT YOU WILL RECEIVE
This course provides you with the opportunity to join the SANS Security Awareness Community Forum, a private, invitation-only community of over 1,500 awareness officers who share resources and lessons learned. In addition, you will receive the following with the course:
ADDITIONAL RESOURCES
For those of you who are looking to get involved in this field, or are already involved but looking to grow, consider reading this blog on how to develop your career path.
2021 Security Awareness Report (TM): Managing Human Risk
WHAT TO TAKE NEXT
MGT521: Leading Cybersecurity Change: Building a Security-Based Culture. This course takes MGT433 to the next level by teaching you how to leverage the principles of organizational change in order to develop, maintain, and meausre a security-driven culture.
MGT512: Security Leadership for Managers. This course provides an overview of how to manage different security technologies, controls, and frameworks, and how they work together. It's an excellent way to better understand how awareness of human risk and knowing how to manage it partners with other elements of security.
MGT514: Security Strategic Planning, Policy, and Leadership. This is SANS' most advanced course for senior security leaders, CSOs. and CISOs. It's an excellent way to better understand how awareness of human risk and knowing how to manage it support your organization at a strategic level.
The first course section begins with the fundamentals by specifically answering two questions: What is awareness and how do we define it? What is human risk and how can awareness programs enable us to effectively manage it? We then cover the most critical foundations for a successful program, which include leadership support, a program charter, and an advisory board. We'll cover the science of behavior change and the two pillars of a strategy that supports that change. We then do a deep dive into identifying and prioritizing your organization's top human risks and the behaviors to manage those risks.
CPE/CMU Credits: 6
The second course section begins with how to change behaviors at an organizational level, with a focus on building a customized engagement strategy unique to your organization's structure and culture. We then go into the different outreach and training categories and modalities before transitioning into a look at how to sustain change over the long term and impact culture. Finally, we'll explore how to measure the impact of your program and communicate that impact to leadership. We finish the section with a focus on how to put this all together and effectively implement your program.
CPE/CMU Credits: 6
This is a non-technical course designed for both new security awareness professionals and experienced ones who looking to expand and grow their awareness skills and expertise. While an understanding of cybersecurity risk and / or a technical background can help, it is in no way required.
"Having been actively involved in information security for more than 20 years, I have seen one constant factor: people are the number one attack vector for cyber attackers because we fail to properly invest in people and secure them. Once trained, your workforce will become your greatest asset, not only to prevent incidents but also to quickly identify and report them, resulting in a far more resilient organization. I am extremely excited about MGT433, as it provides organizations with the skills, resources, and community they need to build a mature security awareness program that effectively manages and measures human risk."
"Lance is a great speaker. Love the charisma, the energy, and the banter." - Chris Cioffi, Western Power Distribution