Get the Skills you need from Home with SANS Online Training - Special Offers Available Now


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

NAC Applied to the Critical Security Controls

  • Wednesday, April 03, 2013 at 1:00 PM EDT (2013-04-03 17:00:00 UTC)
  • Scott Gordon, Brian Meyer, G. Mark Hardy


  • Forescout Technologies BV

You can now attend the webcast using your mobile device!



Network Access Control (NAC) at first glance appears to be solely concerned with roles-based, device authenticated access to network resources. Given the diversity and proliferation of smart consumer devices in the workplace and the trend for enterprises to take advantage of wireless, cloud and mobile applications, next generation NAC has evolved beyond its namesake to become an integral component to effectuate visibility, asset intelligence and integrity, and network security controls.

This webcast will explore how today's NAC can align with many of the 20 Critical Security Controls, particularly in regards to monitoring, configuration, mobility and access. IT governance, risk management and compliance (GRC) assumptions, control challenges and NAC use cases are also slated for discussion, followed by an opportunity to present your questions to the experts.

Register now for this webcast, and be among the first to receive a new SANS Analyst Whitepaper on the subject.

Questions? Q@SANS.ORG

Click here to view the associated whitepaper.

Speaker Bios

G. Mark Hardy

G. Mark Hardy serves as President of National Security Corporation. He has been providing cyber security expertise to government, military, and commercial clients for over 25 years, and is the author of over 100 articles and presentations. He serves on the National Science Foundation's CyberWATCH Advisory Board, and is a recently retired Navy Captain. A graduate of Northwestern University, he holds a BS in Computer Science, a BA in Mathematics, a Masters in Business Administration, a Masters in Strategic Studies, and is designated as a Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM).

Brian Meyer

Brian Meyer is an information security officer for Meritrust Credit Union. In the past four years at Meritrust, Brian has implemented layers of control to meet ongoing compliance objectives and streamlined security policy. He has worked within the financial industry to assist entities with risk assessments and to meet compliance goals using best-in-class vendor solutions with measurable results. Previously he held the positions of professional services manager and senior system engineer, providing information technology and business services consulting to small and medium businesses. Brian holds a bachelors degree in business administration in management information systems from Pittsburg State University. He holds a CISSP certification from ISC2 and the GISP and GSEC certifications.

Scott Gordon

Scott Gordon is the chief marketing officer at RiskIQ, responsible for global market strategy, operations and sales enablement. He has 20 years' experience contributing to security management, network, endpoint and data security, and risk assessment technologies at innovative startups and large organizations. Prior to RiskIQ, Scott held management positions at ForeScout, Protego Networks (acq. Cisco), Axent and McAfee. Scott is CISSP certified and has authored "Operationalizing Security" and co-authored the "Definitive Guide to NAC."

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.