The SANS Technology Institute

Leadership Essay - Updated March 9th, 2010

By Stephen Northcutt
Version 1.4

This essay defines the management and leadership competencies taught at the SANS Technology Institute. Most of them are covered in Security 421 Leadership Competencies, Management 512 Security Leadership Essentials and Management 525 Project Management and Effective Communications.

View Article

Making Time Zones Work For You - March 5th, 2010

By Stephen Northcutt

Most people complain about time zones, they consider them an impediment. Let's consider some strategy to make time zones work in our favor as opposed to being a problem.

View Article

Trust and Leadership - February 24th, 2010

By Ahmed Abdel-Aziz

Ahmed Abdel-Aziz, MSISE student at SANS Technology Institute, discusses the importance of Trust in leadership, how to build Trust, and how leaders use Trust to do good or evil. Ahmed prepared this paper for the SANS MGT 421 Leadership and Management Competencies course.

View Article

The Erosion of Personal Privacy - Updated March 3rd, 2010

By Stephen Northcutt
Version 1.2

Talking about Privacy is a bit like talking about Climate Change; there is a lot of data pointing in a number of directions, people have strong and conflicting opinions, and if we get this wrong, the consequences could be disastrous. As a leader, it is important to understand personal privacy and ensure you, your family, and the people that report to you are at least aware of the risks of ubiquitous data collection.

View Article

Situational Awareness Advice for Security Managers - February 4th, 2008

By Stephen Northcutt

Whether you are a newly appointed leader with security responsibilities or an established leader, today is a great day to assess yourself. Make a new day's resolution to be more effective, to increase your personal alignment with the needs of your business and your group's effectiveness in serving your business. Great leaders are aware of their surroundings, and they ensure that their team and co-workers are also aware.

View Article

Temet Nosce - January 29th, 2008

By Stephen Northcutt

As computer security managers, we need to honestly understand our capacity for effecting change. We need management skills, security skills, and a track record of putting them to use. Our chance of effecting change in ourselves is much higher than with others, so here we explore some meaningful and practical steps to assessing one's self as a manager.

View Article

Waking Sleeping Dogs: Information Security Ethics - March 29th, 2009

By Eric Conrad

Eric Conrad, MSISE student at SANS Technology Institute, discusses ethical dilemmas that he has faced, and the importance of doing what is right even when it is not popular. Eric prepared this paper for the SANS MGT 421:Leadership and Management Competencies course.

View Article

Using Key Competencies to Manage Career Development and Direction - May 30th, 2008

By John Hally

John Hally, MSISE student at SANS Technology Institute, explores the four key competencies he believes are essential to managing and controlling the direction of a person’s professional career path: Visioning, Professionalism and Relationships, Self Direction and Flexibility. John prepared this paper for the MGT 421 Leadership and Management Competencies course.

View Article

The Meeting before the Meeting - September 17th, 2008

By Brad Ruppert

Brad Ruppert, MSISM student at SANS Technology Institute, describes how to host an effective meeting when faced with attendees of higher rank. Brad prepared this paper for the MGT 421 Leadership and Management Competencies course.

View Article

Leadership in a Technical Role - September 17th, 2008

By Rodney Caudle

Rodney Caudle, MSISE and MSISM student at SANS Technology Institute, describes twelve attributes which, if developed, will develop leadership in a technical environment. Rodney prepared this paper for the MGT 421 SANS Leadership and Management Competencies course.

View Article

Motivation Mistakes Inexperienced Leaders Make and How to Avoid Making Them - March 10th, 2008

By Russell Meyer

Russell Meyer, MSISE student at SANS Technology Institute, examines some common motivation mistakes made by inexperienced leaders and discusses how those mistakes could have been avoided. Russell prepared this paper for the MGT 421 Leadership and Management Competencies course.

View Article

Improve the performance of a project with a good start - January 11th, 2008

By Stephen Northcutt

Many projects fail due to cost overruns, falling behind schedule, and so forth. We can reduce the risk of project failure by investing some time in up front planning before we start. A key to success in project management is to identify all stakeholders and ensure that they clearly understand and support what the project should achieve.

View Article

Project Management for Security Managers: Develop a Plan - January 29th, 2008

By Stephen Northcutt

I like to think of a project plan as something similar to a recipe in a cookbook: it gives me the ingredients I need, and often includes a picture of what the finished product will look like. It gives me the steps in the sequence that I need to follow in order to create the final deliverable. Many times there are intermediate steps along the way, such as creating a sauce to be used later. You can think of these as milestones. As a manager, when someone asks you to review a project plan, it is strongly advised that you give it the cookbook test.

View Article

Resolving Performance Issues Caused by Lack of Skill or Ability - December 24th, 2007

By Kevin Bong

Kevin Bong, MSISE student at SANS Technology Institute, discusses what a manager should do when she suspects the employee is unable to perform a task due to lack of skill or knowledge. Kevin prepared this paper for the MGT 421 Leadership and Management Competencies course.

View Article

Living Life on Purpose - Personal Branding - Updated September 6th, 2007

By Stephen Northcutt and Ted Demopoulos

Personal branding is what prevents you from being a commodity and receiving commodity pay. It's why people want to hire you, work with you, have lunch with you, and generally associate with you. Your personal brand prevents you from being outsourced, ignored, or easily replaced. It's why you are not just another cog in the machine. Your personal brand is the unique value you bring to the table.

View Article

Positional and Personal Authority - Updated September 6th, 2007

By Stephen Northcutt

The effective manager has to be brutally honest with themselves, and understand their mindset and their ability to effect change. As you work through the abundance of budgetary, technical, and management information in your profession, it is important to understand where you are now and where you need to grow. This will help you to periodically develop a "short list" of things you want to ask, change, or implement.

View Article

Cross-training: A Case Study - July 27th, 2007

By T. Brian Granier

This article is presented as a case study outlining the reasons for cross-training, methods of implementation and analysis of the results as it applies to his personal experience with an IT services team.

View Article

How to "Pushback" - July 17th, 2007

By Stephen Northcutt

This essay looks at a unique mechanism for resolving differences, called "pushback". When you say "I am pushing back," you are reminding the other party that you seek conflict resolution, not an argument. It is also a tool to help the other party remember to listen to your position.

View Article

Should I Apply for this Middle Management Position? - Updated June 13th, 2007

By Stephen Northcutt and Kevin Bong
Version 1.1

An opening has come up for a middle management position, should I apply? Odds are it means a pay raise at the beginning, but unless you work hard to develop the skills that a middle manager needs to be successful, you may actually be less employable in a few years as you lose your technical edge.

View Article

Groups in Conflict: How to Manage their Relationship - June 8th, 2007

By James Voorhees

James Voorhees, MSISE student at SANS Technology Institute, explores ways to manage conflicts between groups. He prepared this paper for the MGT 421 SANS Leadership and Management Competencies course.

View Article

Creating the Next Generation of Cyber Security Leaders - May 8th, 2007

By Richard Hammer

Richard Hammer, MSISE, the first graduate of The SANS Technology Institute, discusses how today's top level cyber security directors must have good technical skills; no longer will only being politically savvy qualify someone as a cyber security director. These leaders, to be successful, will need to have both the technical ability and the communication skills to speak with authority on cyber security solutions.

View Article

How To Budget Time - Updated February 10th, 2010

By Stephen Northcutt
Version 1.3

To be successful as a leader we need to budget our time, our resources, and our finances. Often we do not give sufficient consideration to our time. Take a minute to check your Daytimer; if you do not have regular appointments six months out or more to do the critically important tasks such as planning, personnel management, and systems and budget reviews, it is an indication that you are living day to day. It means every crisis that comes up can derail your program. Studies continue to show people that say what they are going to do, as well as when and where they are going to do it outperform those that do not.

View Article

The Security Manager and Business Situational Awareness - January 29th, 2007

By Stephen Northcutt

Business unit managers and business operations leaders are always telling information assurance managers that "Security needs to be aligned with business". This is one of the primary goals of both the SANS Technology Institute's Master of Information Security¹ programs and also the SANS Security Leadership Essentials² course, but what are the fundamental things security managers can do to help align security with the needs of the business? We suggest that progress is possible if there is a process in place to develop and maintain business situational awareness.

View Article

How to Address Shortcomings in Employee Evaluations - January 1st, 2007

By Stephen Northcutt

It is something every manager is uncomfortable with, you have an employee that is a pretty good worker and on four of their five evaluation objectives they did fine, however how do you talk about number five?

View Article

Conducting an Exit Interview - Updated October 6th, 2009

By Stephen Northcutt

When employees leave your company, for whatever reason, a well planned exit interview can be of great benefit to both management and the departing employee. This essay looks at four major issues to consider when conducting an exit interview.

View Article

Measuring Employee Performance - Updated April 29th, 2009

By Stephen Northcutt

Forward looking organizations can use quarterly performance reviews to shape to work place and help them develop the hot skills needed to leverage technology accelerators. Certifications increasingly set a baseline or minimum standard and SMART quarterly reviews allow managers to measure experience as it is earned.

View Article

Coaching to Improve Performance - Updated November 19th, 2009

By Stephen Northcutt

A coach is a person who enables clients to master specific skills and knowledge and to develop abilities. Like counselors and mentor, coaches offer prescriptive advice, error analysis, expert opinions and "how to" guidance. Coaching is one of the keys to business execution. If an otherwise skilled employee is struggling with a particular skill or ability, coaching can help them get over the hump. There are seven primary benefits a coach passes on to the client: Encourage Life Long Learning and that is Healthy!; Promote Self Esteem; Learn Goal Setting; Encourage and Model Teamwork; Develop Time Management Skills; Learn About Dealing with Adversity; and, Have Fun with the Task at Hand.

View Article

Google Power Searching for Security Managers - December 3rd, 2007

By Stephen Northcutt

One of the important Operations Security tasks is to determine your organization's exposure to search engines. In the same way, you want to use search engines like Google to gather information about your competition. The most important thing we need to do in a search is to reduce the number of findings. So many times Google will return with over a million pages and this will only get worse as the Internet continues to grow. This first set of operators helps you narrow your search and then we will show a series of commands to find additional information.

View Article

This series includes essays on security audit and governance. Tone at the top is a crucial aspect of leadership. However, our primary repository for audit information is the SANS audit blog: http://blogs.sans.org/it-audit/

Case Study: The Role of IT in Operational Risk - Updated October 6th, 2009

By Stephen Northcutt
Version 1.1

CEO Bill Jones was tired; two days and long nights of damage control were taking their toll. "We aren't saying never, but we don't want to acquire your business in its current state. It looks like you have a double whammy," he explained. "You had a security failure through which your intellectual property was exposed, and your IT operations department needs to be completely retooled. We have no way of knowing whether you can get better as an organization or not. Most importantly, you have lost your leading position in the industry. Long term, it makes business sense for us to have an operation like yours in house. If you can turn things around, please give us a call." The merger that looked like a sure thing was in shambles.

View Article

Applied Intelligence Analysis of Networks - June 16th, 2008

By Richard Porter

Concepts of operation can sometimes be problematic when technologists get caught up in the technology. Richard Porter utilizes an Information Operations concept, OODA, to build an action model for network traffic analysis to provide better Quality of Service to traffic.

View Article

The case for outsourcing Log Analysis - January 11th, 2008

By Stephen Northcutt

I recently saw a press release indicating that SecureWorks has added a managed log retention service in partnership with an industry-leading log management solution provider LogLogic(R), to provide enterprises with comprehensive log aggregation, retention, searching and reporting. This is interesting: four or five years ago there were only a few log management vendors, LogLogic being one of them, and today there are a dozen, but I had not thought of this as a service.

View Article

Qualitative vs. Quantitative Risk Assessment - September 15th, 2007

By Stephen Sims

View Article

The Auditor and the PMBOK: Re-examining the Audit Process - February 28th, 2007

By James Tarala

In most studies that one would read espousing one particular view of the audit process or another, there are varying degrees of similarity between the processes. Many organizations and writers have developed processes that they believe information assurance auditors should follow when performing a formal audit of an organization's information assets. Whether it is the process defined by industry groups or varying universities publishing their standards there are certain similarities that one will find.

View Article

This series of essays can help the IT manager learn how to identify and protect intellectual property and intangible assets.

Trademark Infringement - The Likelihood of Confusion - Updated October 27th, 2008

By Eugene R. Quinn, Jr.

When the goods produced or services offered by the alleged infringer compete for sales with those of the trademark owner, infringement usually will be found if the marks are sufficiently similar that confusion can be expected. When the goods are related, but not competitive, several other factors are added to the calculus. If the goods are totally unrelated, there can be no infringement because confusion is unlikely. The goal is to protect the consumer, not to protect trademark.

View Article

Valuation of Intellectual Property Case Study - IPWatchdog.com - Updated September 29th, 2009

By Stephen Northcutt

Since 1999 IPWatchdog.com has provided individuals, small businesses and entrepreneurs with information to help them understand all areas of intellectual property and to become better consumers. In fact, IPWatchdog.com leads the charge to inform individual inventors of invention submission scams. Indeed, if you type "invention submission" into Google, Yahoo or MSN, IPWatchdog.com's "The Truth About Invention Submission," a detailed expose and warning, is the first page that appears in the free rankings.

View Article

What is Intellectual Property - March 14th, 2007

By Stephen Northcutt

Intellectual property is a tangible expression of a human idea that shares many of the characteristics associated with real and personal property. Intellectual property is an asset, and as such it can be bought, sold, licensed, exchanged, or gratuitously given away like any other form of property.

View Article

Creative Commons and Intellectual Property - May 1st, 2007

By Stephen Northcutt

The well known book, The Long Tail, by Chris Anderson, points out how two major perspectives on authorship change the way creators of content feel about copyright.

View Article

What Is a Patent? - April 7th, 2007

By Stephen Northcutt

Patents are tools that grant legal intellectual property protection to inventions, an object, process, or technique that is novel.

View Article

Copyright - April 7th, 2007

By Stephen Northcutt

Copyrights, like patents and trademarks, are a public claim of ownership and offer limited monopoly power over intellectual property.

View Article

Digital Rights Management - April 7th, 2007

By Stephen Northcutt

Digital Rights Management is a broad term encompassing a variety of methods to protect digital media from piracy. Its history and current status exist with some interesting facts and legal controversy.

View Article

Trademark and Brand - April 7th, 2007

By Stephen Northcutt

Trademark and brand are two key identifying elements to your organization. They are important enough to carefully develop and protect.

View Article

Trade Secrets - April 7th, 2007

By Stephen Northcutt

Copyrights, patents and marks are all examples of intellectual property that can be registered with governments or the World Intellectual Property Organization. A trade secret such as know-how and other similar intangible intellectual property is something you do not register, instead, you protect it.

View Article

The Value of IP - April 7th, 2007

By Stephen Northcutt

The value of your IP directly affects the value of your organization and the amount spent to protect the information. Therefore, knowing how to calculate and determine the IP value is crucial.

View Article

Licensing and Franchising - April 3rd, 2007

By Stephen Northcutt

Licensing and franchising are two ways for an organization to protect valuable Intellectual Property.

View Article

10 Steps to Protect IP - March 13th, 2007

By Stephen Northcutt

The last entry in the SANS intellectual property protection series, the ten steps to protect IP.

View Article

SANS Technology Institute's mission is to develop the leaders of the future for the information security industry. One of our admission requirements is that an applicant complete an essay describing leadership qualities they have demonstrated in the past.

SANS Technology Institute's Leadership Essay - June 5th, 2007

By Stephen Northcutt

Stephen Northcutt explores the leadership essay requirement for students applying to The SANS Technology Institute and why STI posts those essays on its Leadership Laboratory.

View Article

Leadership Essay SANS Technology Institute - May 23rd, 2009

By Ahmed Abdel-Aziz

Ahmed has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes how he convinced his company that developing his skills in Information Security could serve and expand the company’s business.

View Article

Leadership Essay SANS Technology Institute - May 22nd, 2009

By Seth Misenar

View Article

Leadership Essay SANS Technology Institute - February 17th, 2009

By Algis Kibirkstis

Algis has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes the qualities of a leader that are developed and demonstrated based on the working environments to which one is exposed. He provides an example of his own experience in the telephony industry.

View Article

Leadership Essay SANS Technology Institute - May 23rd, 2009

By Enoch Laudie

Enoch has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes several ways he provides leadership and education to the public about computer security issues.

View Article

Leadership Essay SANS Technology Institute - July 24th, 2008

By Mark Baggett

Mark has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes the following: If a leader can inspire individuals to believe in the idea or cause, then individuals will take action even if it is inconvenient.

View Article

Leadership Essay SANS Technology Institute - May 23rd, 2009

By Trenton Bond

Trenton has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes the value of the following leadership attributes: team building, persistence, and positive attitude.

View Article

Leadership Essay SANS Technology Institute - May 13th, 2008

By Tim Proffitt

Tim has been accepted as a candidate for the Master of Science Degree in Information Security Management. His essay describes his experiences in creating the first technology security department for his employer.

View Article

Leadership Essay SANS Technology Institute - April 16th, 2008

By Brian Nolan

Brian has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes the leadership qualities he values the most and how he has used them to lead his team in an information security services practice.

View Article

Leadership Essay SANS Technology Institute - August 27th, 2008

By Jim Horwath

Jim has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes strong leadership in a time of need that saved the disaster recovery drill from becoming a disaster.

View Article

Leadership Essay SANS Technology Institute - February 22nd, 2008

By Gregory D. Farnham

Gregory Farnham has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes two leadership components: Vision and "Making your own Luck."

View Article

Leadership Essay SANS Technology Institute - February 8th, 2008

By Emilio Valente

Emilio has been accepted as a candidate for the Master of Science Degree in Information Security Engineering. His essay describes leadership in his family life.

View Article

Leadership Essay SANS Technology Institute - December 7th, 2007

By Jim Beechey

View Article

Leadership Essay SANS Technology Institute - September 14th, 2007

By Robert S. Turner

View Article

Leading to Patch Management - June 27th, 2007

By Brad Ruppert

Brad has been accepted as a candidate for the Master of Science Degree in Information Security Management; this leadership essay describes his experience in developing a successful patch management strategy.

View Article

Leadership in Consulting - June 8th, 2007

By Rob VandenBrink

View Article

Leading from the Front - May 4th, 2007

By Dwayne Edwards

Dwayne Edwards has been accepted as a candidate for the Master of Science Degree in Information Security Engineering; his leadership essay describes his experience in leading from the front.

View Article

Leading Through Mentoring and Coaching - January 10th, 2007

By Kevin Bong

Kevin has been accepted as a candidate for the Master of Science Degree in Information Security Engineering; this leadership essay describes his experiences in leadership through mentoring, coaching and building teams.

View Article

SANS Technology Institute Leadership Essay - December 26th, 2006

By John Hally

SANS Technology Institute's mission is to develop the leaders of the future for the information security industry. One of our admission requirements is that an applicant complete an essay describing leadership qualities they have demonstrated in the past. John Hally has been accepted as a candidate for the Master's Degree at STI - he submitted this essay as part of his application.

View Article

This series of papers collects wisdom from leaders in the IT and IT Security Fields. If you are interested in contributing, please drop us a note.

Pearls of Wisdom from Linked In - May 1st, 2009

By Stephen Northcutt

I am on a group on leadership on LinkedIn and people were posting pearls of wisdom. I thought making a collection would be a nice touch to preserve this for all time.

View Article

Eight Critical Success Actions for Information Security - July 11th, 2007

By Alberto Partida

How can information security be a business enabler? Currently the interaction of the business with information security can be a painful and expensive process. This creates frustration, both for the business and also for the information security professionals. If we aim for a different result, then we have to act differently. This article suggests eight actions for information security leaders to implement in order to improve both this situation and their daily working experience.

View Article

A series of interviews with SANS Technology Institute College graduates

Interview with Russell Meyer, Third Graduate of SANS Technology Institute - October 16th, 2008

By Stephen Northcutt

Russell Meyer is the third graduate of the SANS Technology Institute, a post graduate information security college. Stephen Northcutt had an interview with Russell to get more of his story about the experience of earning his degree from STI.

View Article

Interview with T. Brian Granier, Second Graduate of SANS Technology - September 19th, 2007

By Stephen Northcutt

T. Brian Granier is the second graduate of the SANS Technology Institute, a post graduate information security college. Stephen Northcutt had an interview with Brian to get more of his story about the experience of earning his degree from STI.

View Article

Interview with Richard Hammer, First Graduate of SANS Technology Institute - March 31st, 2007

By Stephen Northcutt

Richard Hammer is the first graduate of the SANS Technology Institute, a post graduate information security college. Stephen Northcutt spoke with Richard to get more of his story about the experience of earning his degree from STI.

View Article

The Role of the Student's Outcome Statement at SANS Technology Institute - November 1st, 2007

By Stephen Northcutt

There are many and varied reasons for a student to apply to graduate school. If you are accepted, you can expect to make a sizable investment in time, energy and money to complete the program. To protect you, and to remain true to our mission statement, the admissions office asks you to complete an Outcome Statement as part of the admissions process.

View Article

This series of essays explores the many aspects of technology law relating to computer and information security.

Let Credit Card Industry Allocate Data Security Risks by Negotiation - March 12th, 2007

By Benjamin Wright, JD

Retailer TJX suffered a highly publicized breach of security in which some credit card data was compromised. On the heels of this story, Massachusetts legislators are considering a bill to require retailers to assume greater liability for losses suffered. Ben Wright comments on why this will not work well and suggests the financial institutions can use their existing forums to negotiate a solution.

View Article

Data Thefts - Give the Public the Disclosure It Seeks - March 22nd, 2007

By Benjamin Wright, JD

Lawyers advising an enterprise suffering a data security breach tend to have a circle-the-wagons mentality. They go on the defensive. They fear that lawsuits and government investigations will force their client to pay damages and fines. So they advise the client to clam-up and say the least possible about the incident. But this defensiveness can make matters worse.

View Article

Network Neutrality - Updated July 3rd, 2007

By Stephen Northcutt
Version 1.2

What is the role of the information security leader with respect to Network Neutrality? There is big money riding on this that could affect the operational cost of network access for your organization or company.

View Article

Can Cyber Criminals Consent to Being Watched and Foiled? - May 14th, 2007

By Benjamin Wright, J.D.

Computer crime laws protect our use of the Internet, but they also raise issues for security professionals trying to thwart cyber criminals. Benjamin Wright, J.D., examines how decisions regarding consent and criminal law can be applied to efforts to stop botnets and phishers.

View Article

The Dangers of Too Much Data Privacy - May 28th, 2007

By Philip Alexander

Data privacy is a real hot topic nowadays. Thirty six states plus Washington D.C. have passed data privacy laws requiring that companies notify consumers if their personal data has been stolen. The issue is that a certain amount of data sharing is important.

View Article

Assembly Bill (AB) 779 Suffers from Sloppy Draftsmanship - October 12th, 2007

By Benjamin Wright, JD

Confusing language in California's AB779, which has gone to the Governor for signature, forbids merchants from retaining certain payment data. It smacks of a legislature precisely dictating technology. When a legislature dictates technology, it risks misunderstanding. It stifles innovation, and raises problems as technology evolves.

View Article

New Merchant Liability for Losing Credit Card Data - June 14th, 2007

By Benjamin Wright, JD

The Minnesota Legislature has shaken up the ecosystem in the credit card industry. It has enacted legislation that shifts the rules and risks associated with the protection of credit card data. Benjamin Wright, JD examines why the new law gives Minnesota merchants a bit less incentive to accept credit cards as payment.

View Article

ChoicePoint Marked New Era in Data Security Law - May 31st, 2007

By Benjamin Wright, J.D.

Remember how ChoicePoint suffered dearly for its 2005 security break-in? Benjamin Wright, J.D. examines their experience, the varied legal responses from California and many other states, and what enterprises should be doing to better protect private data.

View Article