To establish credibility as a Security Leader you do not need to be up on all the latest technology; in fact that is impossible. You do however need a solid understanding of fundamental security concepts.
This talk explains fundamental security concepts, which have been constant for millennia and whose understanding is critical for establishing credibility in Security Leadership.
Security is anything but new: humans have had security concerns since the dawn of time, and security fundamentals have not changed since then.
Security fundamentally has NOTHING to do with technology. Although we often focus on securing digital assets and hence technology based security controls, concepts such as authentication, defense in depth, least privilege, perimeter protection, and risk management are not based on technology. How we implement them can and often does change as technology advances.
Here more talks like this at the SANS Security Leadership Summit & Training, September 29-October 4, in Dallas, TX. Here's why CISOs and information security leaders are attending: