• Watch a preview of this course • Discover how to take this course: Online, In-Person sans.org/LDR512 LDR512: Security Leadership Essentials for Managers Leading Security Initiatives to Manage Information Risk Take this course to learn the key elements of any modern security program. LDR512 covers a wide range of security topics across the entire security stack. Learn to quickly grasp critical information security issues and terminology, with a focus on security frameworks, security architecture, security engineering, computer/network security, vulnerability management, cryptography, data protection, security awareness, application security, DevSecOps, cloud security, and security operations. The course uses the Cyber42 leadership simulation game to put you in real-world scenarios that spur discussion and critical thinking of situations that you will encounter at work. Throughout the class you will participate in twenty-three Cyber42 activities. This course will help your organization: • Develop leaders that know how to build a modern security program • Anticipate what security capabilities need to built to enable the business and mitigate threats • Create higher performing security teams Hands-On Training LDR512 uses case scenarios, group discussions, team-based exercises, in-class games, and a security leadership simulation to help students absorb both technical and management topics. About 60–80 minutes per day is dedicated to these learning experiences using the Cyber42 leadership simulation game. This web application based game is a continuous tabletop exercise where students play to improve security culture, manage budget and schedule, and improve security capabilities at a fictional organization. This puts you in real-world scenarios that spur discussion and critical thinking of situations that you will encounter at work. Course Author Statement “Technical professionals who are thrust into management roles need to learn how to convey security concepts in ways that non-technical people can understand. At the same time, managers who are new to security need to learn more about the different domains of cybersecurity. In both cases, there is a need to learn about the work of managing security. That is why this course focuses on the big picture of securing the enterprise, from governance all the way to the technical security topics that serve as the foundation for any security manager. Ultimately, the goal of the course is to ensure that you, the advancing manager, can make informed choices to improve security at your organization.” —Frank Kim You Will Be Able To • Make sense of different cybersecurity frameworks • Understand and analyze risk • Understand the pros and cons of different reporting relationships • Manage and lead technical teams and projects • Build a vulnerability management program • Inject security into modern DevOps workflows • Strategically leverage a SIEM • Lead a Security Operations Center (SOC) • Change behavior and build a security- aware culture • Effectively manage security projects • Enable modern security architectures and the cloud • Build security engineering capabilities using automation and Infrastructure as Code (IaC) • Get up to speed quickly on information security issues and terminology • Establish a minimum standard of security knowledge, skills, and abilities • Speak the same language as technical security professionals 5 Day Program 30 CPEs Laptop Required GSLC Security Leadership giac.org/gslc “ LDR512 is valuable because it is relevant/current to the security landscape from my management vantage point.” — Michael Bradley, Prudential Financial “ This course was very relevant to my new role as Director of IT.” — Brian Harris, Jackson EMC GIAC Security Leadership The GIAC Security Leadership (GSLC) certification validates a practitioner’s understanding of governance and technical controls focused on protecting, detecting, and responding to security issues. GSLC certification holders have demonstrated knowledge of data, network, host, application, and user controls along with key management topics that address the overall security lifecycle. • Cryptography concepts and applications for managers, networking concepts and monitoring for managers • Managing a security operations center, application security, negotiations and vendors, and program structure • Managing security architecture, security awareness, security policy, and system security • Risk management and security frameworks, vulnerability management, incident response and business continuity GSLC Security Leadership giac.org/gslc