Skip to navigation | Skip to content

Share your knowledge. Make a difference.

How to manage the computer and network security function

1 - I can do better 2 - Jury's out 3 - Pretty darn good 4 - Splendiferous 5 - Awesometastic (by 2 people)   Your rating: 1 - I can do better 2 - Jury's out 3 - Pretty darn good 4 - Splendiferous 5 - Awesometastic

Ranked #4754 in Tech & Geek, #107184 overall

Rated G. (Control what you see)

A security manager has to relate to the techies while getting buyin from senior management

 

It is a fine art. I used to think of the as sandal to tie protocol. My smartest technical people tended to wear Birkenstocks and the business unit managers were in suits and ties and to be effected, I had to relate to all of them. This lens is about that tricky balance. It will also help you understand what is offered in the course I write and teach SANS Security Leadership Essentials:
http://www.sans.org/training/description.php?mid=62

This is where I post new security articles 

Loading Fetching RSS feed... please stand by

Please consider attending my course on security leadership 

My course is designed to empower advancing managers who want to get up to speed fast on information security issues and terminology. Lecture sections are intense; the most common student comment is that it's like drinking from a fire hose. The diligent manager will learn vital, up-to-date knowledge and skills required to supervise the security component of any information technology project.

Essentials topics covered in this management track include: Network Fundamentals and Applications, Hardware Architecture, Information Assurance Foundations, Computer Security Policies, Contingency and Continuity Planning, Business Impact Analysis, Incident Handling, Web Security, Offensive and Defensive Information Warfare, culminating with Management Practicum. Only SANS top instructors are invited to teach this course and you will be able to put what you learn into practice, the day you get back into the office.

http://www.sans.org/training/description.php?mid=62

These are some of the books I have worked on 

Network Intrusion Detection (3rd Edition) (Voices (New Riders))

Network Intrusion Detection (3rd Edition) (Voices (New Riders))

by Stephen Northcutt, Judy Novak

Amazon Price: $31.50 (as of 10/12/2008)

Inside Network Perimeter Security (2nd Edition) (Inside)

Inside Network Perimeter Security (2nd Edition) (Inside)

by Stephen Northcutt, Lenny Zeltser, Scott Winters, Karen Kent, Ronald W. Ritchey

Amazon Price: $31.49 (as of 10/12/2008)

At RSA I was interviewed about SANS, GIAC and STI 

Video interview of Stephen Northcutt

Stephen Northcutt on Security Certification, the SANS Top 20

Stephen Northcutt, the CEO of the SANS Institute, provides us with an overview of SANS activities, the Internet Storm Center, the SANS Top 20 and the evolution of the IT security market in terms of the growing need for certification. This is a video that anyone wanting to get certified will be interested in. For more security-related material visit http://www.net-security.org

Runtime: 6:55
3735 views
1 Comments:

powered by YouTube

New Guestbook 

Like this lens? Want to share your feedback, or just give a thumbs up? Be the first to submit a blurb!

Useful Security Blogs 

Just in case you need something to read

There are almost too many security blogs at this point, here are a few I find relevant.
Anton Chuvakin
Anton is becoming the spokesperson for logs and log analysis for our industry. I believe over the next five years we will be doing intrusion detection with logs the same way we did with network IDS a few years back. Sometimes a bit terse, if he makes you made, forgive him :)
OSSEC Blog
If you can believe that detection is really important these days, then you probably should be following the OSSEC Host Based Intrusion Detection folks.

Related topics: How to manage the computer and network security functionhow to speak with your techni...stephen northcutt teaches sec...Computers, Gadgets & Techmore

X
StephenNorthcutt

About StephenNorthcutt

Stephen Northcutt founded the GIAC certification and currently serves as President of the SANS Technology Institute, a post graduate level IT Security College, www.sans.edu. Stephen is author/coauthor of Incident Handling Step-by-Step, Intrusion Signatures and Analysis, Inside Network Perimeter Security 2nd Edition, IT Ethics Handbook, SANS Security Essentials, SANS Security Leadership Essentials and Network Intrusion Detection 3rd edition. He was the original author of the Shadow Intrusion Detection system before accepting the position of Chief for Information Warfare at the Ballistic Missile Defense Organization. Stephen is a graduate of Mary Washington College. Before entering the field of computer security, he worked as a Navy helicopter search and rescue crewman, white water raft guide, chef, martial arts instructor, cartographer, and network designer.

StephenNorthcutt's Pages

See all of StephenNorthcutt's pages