Security Leadership: Managing in Turbulent Times, presented by SANS Summits

  • Tuesday, 05 May 2020 3:30PM EDT (05 May 2020 19:30 UTC)
  • Speakers: Frank Kim, Lance Spitzner, Lenny Zeltser, Russell Eubanks, Kathy Wang, Rick Holland

Good leadership is about setting clear expectations and providing all the conditions and support a team needs to succeed.'so what happens when the global reality becomes unrelenting fear, uncertainty, and doubt? You've got to maintain business operations, deal with rapidly changing security threats, deploy resources for remote work, and help your team stay focused, while also acknowledging the realities of the anxiety and emotional challenges everyone must contend with.

In this virtual forum, security leaders will share their experiences with and advice for managing in turbulent times.

Summit Chair: Frank Kim @fykim, Senior Instructor, SANS Institute


3:30-3:45 pm EDT

Welcome & Opening Remarks

Frank Kim '@fykim, Senior Instructor, SANS Institute


3:45-4:20 pm EDT


Lessons Learned from Building and Managing a Globally Distributed Fully Remote Team - 'Pre-Pandemic, 'Kathy Wang '@wangkathy, Former CISO, GitLab


4:20-4:50 pm

Advancing Your Cybersecurity Program Past the Crisis, Lenny Zeltser '@lennyzeltser, CISO, Axionus; Senior Instructor, SANS Institute

COVID-19 forced enterprises to transition to a distributed, remote workforce almost overnight. The sudden dispersal of employees:

  • Dramatically accelerated pre-existing trends related to the shifting security paradigm,
  • Turned strategic security plans into in-the-moment tactical decisions, and
  • Left enterprises wondering how to reconcile the current cybersecurity program with their post-pandemic objectives.

In this informative presentation Lenny Zeltser shares how business requirements imposed on your cybersecurity program during the pandemic can chart a path for its long-term success.

4:50-5:00 pm



5:00-5:30 pm

Black Swan Pandemic; Now What? '@rickhholland

In a matter of weeks, an unprecedented shift from neglected pandemic plans, to tabletop exercises, to pandemic response operations occurred without the luxury of a deliberate, calculated transition. Security leaders are starting to adjust to this new model and need to examine the risks and opportunities this new operating environment presents. In this talk, Rick Holland, CISO of Digital Shadows, will provide practical guidance on planning for the next twelve months and building resiliency into your security and risk program. '

5:30-6:00 pm

10 Visibility Gaps Every CISO Must Fill, Russell Eubanks '@russelleubanks, Certified Instructor, SANS Institute

Using critical questions, this talk will help the successful CISO evaluate their level of visibility. This evaluation is simple enough, but the results can quite easily serve as a roadmap to help the CISO effectively close these critical cybersecurity visibility gaps for years to come.

6:00-6:30 pm


Leading Change - Establishing a Security Culture of Protect, Detect and Respond

Lance Spitzner '@lspitzner, Director, SANS Security Awareness

Cybersecurity is no longer just about technology it is ultimately about organizational change. Change in not only how people think about security but what they prioritize and how they act, from the Board of Directors on down. Organizational change is a field of management study that enables organizations to analyze, plan, and then improve their operations and structures by focusing on people and culture.'this presentation is a highlights version of our SANS MGT521 course that will teach leaders how to leverage the principles of organizational change, enabling them to develop, maintain and measure a security driven culture.