SANS Cyber Defense Initiative® 2020 Live Online: 30+ Interactive Courses | Virtual NetWars Tournaments. Save $300 thru 11/18


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Security Leadership: Managing in Turbulent Times, presented by SANS Summits

  • Tuesday, May 05, 2020 at 3:30 PM EDT (2020-05-05 19:30:00 UTC)
  • Frank Kim, Kathy Wang, Lance Spitzner, Lenny Zeltser, Russell Eubanks, Rick Holland

You can now attend the webcast using your mobile device!



Good leadership is about setting clear expectations and providing all the conditions and support a team needs to succeed. So what happens when the global reality becomes unrelenting fear, uncertainty, and doubt? You've got to maintain business operations, deal with rapidly changing security threats, deploy resources for remote work, and help your team stay focused, while also acknowledging the realities of the anxiety and emotional challenges everyone must contend with.

In this virtual forum, security leaders will share their experiences with and advice for managing in turbulent times.

Summit Chair: Frank Kim @fykim, Senior Instructor, SANS Institute


3:30-3:45 pm EDT

Welcome & Opening Remarks

Frank Kim @fykim, Senior Instructor, SANS Institute


3:45-4:20 pm EDT


Lessons Learned from Building and Managing a Globally Distributed Fully Remote Team - Pre-Pandemic, Kathy Wang @wangkathy, Former CISO, GitLab


4:20-4:50 pm

Advancing Your Cybersecurity Program Past the Crisis, Lenny Zeltser @lennyzeltser, CISO, Axionus; Senior Instructor, SANS Institute

COVID-19 forced enterprises to transition to a distributed, remote workforce almost overnight. The sudden dispersal of employees:

  • Dramatically accelerated pre-existing trends related to the shifting security paradigm,
  • Turned strategic security plans into in-the-moment tactical decisions, and
  • Left enterprises wondering how to reconcile the current cybersecurity program with their post-pandemic objectives.

In this informative presentation Lenny Zeltser shares how business requirements imposed on your cybersecurity program during the pandemic can chart a path for its long-term success.

4:50-5:00 pm



5:00-5:30 pm

Black Swan Pandemic; Now What? @rickhholland

In a matter of weeks, an unprecedented shift from neglected pandemic plans, to tabletop exercises, to pandemic response operations occurred without the luxury of a deliberate, calculated transition. Security leaders are starting to adjust to this new model and need to examine the risks and opportunities this new operating environment presents. In this talk, Rick Holland, CISO of Digital Shadows, will provide practical guidance on planning for the next twelve months and building resiliency into your security and risk program. 

5:30-6:00 pm

10 Visibility Gaps Every CISO Must Fill, Russell Eubanks @russelleubanks, Certified Instructor, SANS Institute

Using critical questions, this talk will help the successful CISO evaluate their level of visibility. This evaluation is simple enough, but the results can quite easily serve as a roadmap to help the CISO effectively close these critical cybersecurity visibility gaps for years to come.

6:00-6:30 pm


Leading Change - Establishing a Security Culture of Protect, Detect and Respond

Lance Spitzner @lspitzner, Director, SANS Security Awareness

Cybersecurity is no longer just about technology it is ultimately about organizational change. Change in not only how people think about security but what they prioritize and how they act, from the Board of Directors on down. Organizational change is a field of management study that enables organizations to analyze, plan, and then improve their operations and structures by focusing on people and culture. This presentation is a highlights version of our SANS MGT521 course that will teach leaders how to leverage the principles of organizational change, enabling them to develop, maintain and measure a security driven culture.

Speaker Bios

Frank Kim

Frank Kim leads the management and software security curricula for SANS, developing courses on strategic planning, leadership and application security. He is also a SANS certified instructor, helping to shape, develop and support the next generation of security leaders. Previously, Frank served as CISO at the SANS Institute, leading its information risk function, and executive director of cybersecurity at Kaiser Permanente, where he built an innovative security program to serve one of the nation's largest not-for-profit health plans and integrated healthcare provider. Currently, as founder of ThinkSec, a security consulting and CISO advisory firm, Frank helps leaders develop business-driven security programs.

Kathy Wang

Kathy Wang is the former CISO at GitLab, a cloud-native company, and is a recognized thought-leader in information security with a strong background in project management, research, and business development. She has worked in government, commercial, and technology startup environments, and currently advises security services/products startup companies. Kathy is also an internationally-recognized malware expert, who has researched, developed, evaluated, and operationalized various solutions for detecting and preventing client-side attacks used by advanced persistent threats (APT), as they target common platforms (e.g., browser, email, mobile phones). She has spoken internationally at many conferences and on many panels, including RSA, DEFCON, AusCERT, and REcon. Kathy has co-authored a book, Beautiful Security, and holds a BS and MS in Electrical Engineering from The University of Michigan, Ann Arbor.

Lance Spitzner

Lance Spitzner has over 20 years of security experience in cyber threat research, awareness and training. He invented the concept of honeynets, founded the Honeynet Project and published three security books. Lance has worked and consulted in over 25 countries and helped over 350 organizations plan, maintain and measure their security awareness programs. In addition, Lance is a member of the Board of Directors for the National Cyber Security Alliance, frequent presenter, serial tweeter (@lspitzner) and works on numerous community security projects. Before working in information security, Mr. Spitzner served as an armor officer in the Army's Rapid Deployment Force and earned his MBA from the University of Illinois.

Lenny Zeltser

Lenny is senior faculty member at SANS and CISO at Axonius. Earlier in his career, he served as a Director of Product Management at a Fortune 500 company with a focus on security software and services. Previously, he led the enterprise security consulting practice at a major cloud services provider. A frequent public speaker and writer, Lenny has co-authored books on network security and malicious software. Lenny holds an MBA from MIT Sloan and a Computer Science degree from the University of Pennsylvania. He blogs at

Russell Eubanks

From factory job to owner of Security Ever After and consultant for Enclave Security, Russell Eubanks' career trajectory has been anything but traditional. Years ago, while working a factory job, Russell realized he wanted more and started investigating options. He learned about his company's tuition reimbursement program and promptly signed up for computer classes at his local community college. He worked in the factory until early morning then attended classes during the day.

Russell is a certified instructor for SANS, teaching MGT415: A Practical Introduction to Cyber Security Risk Management; MGT514: Security Strategic Planning, Policy, Leadership; and SEC566: Implementing and Auditing the Critical Security Controls - In-Depth and MGT 521: Driving Cybersecurity Change - Establishing a Culture of Protect, Detect and Respond.

Rick Holland

Rick (@rickhholland) has more than 15 years’ experience working in information security. Rick is currently the CISO at Digital Shadows. Previously, he was a vice president and research analyst at Forrester Research, providing strategic guidance on security architecture, operations, and data privacy. Rick also served as an intelligence analyst in the U.S. Army. He is currently the co-chair of the SANS Cyber Threat Intelligence Summit and holds a B.S. in business administration from the University of Texas, Dallas. Rick regularly speaks at leading security conferences across the globe and has been interviewed by industry and business media, including BBC News, CNN, Dark Reading, Motherboard, NPR, The Register, and Wall Street Journal.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.