Two Days Left to Get a Free GIAC Certification Attempt or Take $350 Off with OnDemand or vLive Training!


To attend this webcast, login to your SANS Account or create your Account.

No Python Allowed: learning a whole new language to sell the Critical Security Controls

  • Thursday, June 9th, 2016 at 8:00 PM EDT (00:00:00 UTC)
  • Paul Hershberger
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!


The success of a Critical Security Controls (CSCs) implementation is dependent on access to resources, including the people, processes and technology required to implement, operate and continuously improve the CSCs. Gaining access to those resources begins with the support of executive leadership. Obtaining that support requires communicating the plan in a way that executive leadership can connect with and quickly understand. It is necessary to shift from communication of the technical details to a business conversation which bridges the gap between the two corporate functions. Learning how to effectively communicate with executive leadership requires stepping away from the keyboard and learning how to speak a new language; one that will resonate with the audience instrumental to the success of the CSCs implementation.

Speaker Bio

Paul Hershberger

Paul Hershberger is the Director IT Security Risk and Compliance at The Mosaic Company and has responsibility for information protection and IT risk management. Paul has over twenty years of information technology and security work experience providing leadership and technical expertise in the areas of vulnerability assessment and penetration testing, security incident response and remediation, computer forensic investigations, user authentication and authorization, SAP Security, and IT Audit. Paul holds the CISSP, GSLC, GCIH, GLEG, and GCCC certifications, completed a Bachelor of Science degree with majors in business administration and management Information Systems and is currently enrolled in the SANS Technology Institute Masters of Science in Information Security Management (MSISM) program.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.