Two weeks of training and 14 courses available in San Francisco - Mar. 16-27. Save $300 thru 1/22!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

How to Communicate about Security Vulnerabilities

  • Thursday, January 16th, 2020 at 3:30 PM EST (20:30:00 UTC)
  • Jonathan Risto
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!

Overview

Most organizations know they have problems within their environments. Yet week after week, month after month, we end up with the same items being found, and remediation work not completed. At times we feel like we are herding cats (conducting a lot of work with minimal fruitful results). 

The challenge is that we are often causing our own failures, not by what we are asking our operation partners to do, but how we are communicating with them. Overloading our partners with what is often perceived as a set of non-achievable tasks to complete only sets us up for failure. In this webcast I will contrast different communication methods, highlighting what works and why they are effective in dealing with the different target audiences (executives, management and peers).

Speaker Bio

Jonathan Risto

Jonathan is a SANS Instructor teaching a wide variety of SANS classes including SEC440, SEC504, SEC560, SEC566, and SEC580. He is also the co-author of the SANS MGT516: Managing Security Vulnerabilities: Enterprise and Cloud.

With a career spanning over 20 years that has included working in network design, IP telephony, service development, security and project management, he has a deep technical background that provides a wealth of information he draws upon when teaching. His leadership of direct reports and matrix teams in industries including telecom, government and charity environments. When not teaching for SANS, he primarily works for the Canadian Government performing cyber security research work, in the areas of vulnerability management and automated remediation.  He also performs consulting work. 

He holds a bachelors degree in Electrical Engineering, and is a licensed professional Engineer (P.Eng.). He also holds a Master's Degree in Information Security Management from STI.  In his spare time, he sits on the board of directors for charities and his 3 daughters keep him very busy. When possible, he enjoys the outdoors, astronomy, and photography.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.