SANS Stay Sharp Training - Live Online: Quickly sharpen your skills with 2-day management courses. Register now.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

No Python Allowed: learning a whole new language to sell the Critical Security Controls

  • Thursday, June 09, 2016 at 8:00 PM EDT (2016-06-10 00:00:00 UTC)
  • Paul Hershberger

You can now attend the webcast using your mobile device!



The success of a Critical Security Controls (CSCs) implementation is dependent on access to resources, including the people, processes and technology required to implement, operate and continuously improve the CSCs. Gaining access to those resources begins with the support of executive leadership. Obtaining that support requires communicating the plan in a way that executive leadership can connect with and quickly understand. It is necessary to shift from communication of the technical details to a business conversation which bridges the gap between the two corporate functions. Learning how to effectively communicate with executive leadership requires stepping away from the keyboard and learning how to speak a new language; one that will resonate with the audience instrumental to the success of the CSCs implementation.

Speaker Bio

Paul Hershberger

Paul Hershberger is the Director IT Security Risk and Compliance at The Mosaic Company and has responsibility for information protection and IT risk management. Paul has over twenty years of information technology and security work experience providing leadership and technical expertise in the areas of vulnerability assessment and penetration testing, security incident response and remediation, computer forensic investigations, user authentication and authorization, SAP Security, and IT Audit. Paul holds the CISSP, GSLC, GCIH, GLEG, and GCCC certifications, completed a Bachelor of Science degree with majors in business administration and management Information Systems and is currently enrolled in the SANS Technology Institute Masters of Science in Information Security Management (MSISM) program.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.