SEC504: Hacker Tools, Techniques, and Incident Handling
SEC504Offensive Operations
LDR514: Security Strategic Planning, Policy, and Leadership
LDR514Cybersecurity Leadership
- 5 Days (Instructor-Led)
- 30 Hours (Self-Paced)
Course created by:
Frank Kim
Course created by:Frank Kim
- GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- 30 CPEs
Apply your credits to renew your certifications
- In-Person, Virtual or Self-Paced
Attend a live, instructor-led class at a location near you or remotely, or train on your time over 4 months
- Advanced Skill Level
Course material is geared for cyber security professionals with hands-on experience
- 32 Hands-On Lab(s)
Apply what you learn with hands-on exercises and labs
This course offers an MBA-level approach, preparing cybersecurity leaders to build strategic plans, craft effective policies, and lead across technical and business teams.
Featured Quote
This course is a cyber leadership MBA in five days. As a security manager of many years, the class delivered material of great value that I can immediately apply to make a difference at my company.
Course Overview
Forge the crucial bridge between technical security teams and executive management through strategic planning and program development. This course equips security professionals with essential tools to create comprehensive cybersecurity strategy, develop sound security policies, and lead implementation teams effectively. Whether you’re seeking to elevate your leadership impact or prepare for the GSTRT certification (GIAC Strategic Planning, Policy, and Leadership), LDR514 delivers practical skills and executive-level insight.
Through this immersive experience, participants prepare executive presentations, analyze business case studies, address challenges faced by fictional organizations, and engage with 20 Cyber42 leadership simulation challenges. The course also utilizes 9 real-world scenarios and 3 in-depth business case studies to cultivate critical thinking and practical application.
Security leaders will develop the ability to implement strategic approaches aligned with organizational objectives and communicate security imperatives persuasively to business executives— skills that are essential for anyone pursuing a mature cyber security strategy or preparing for the GSTRT certification.
What You'll Learn
- Create security strategic plans aligned with business goals
- Develop and implement effective information security policies
- Build and lead high-performing cybersecurity teams
- Communicate security priorities to executives effectively
- Apply business analysis techniques to security initiatives
Business Takeaways
- Elevated security strategy aligned with business objectives
- Improved risk management through effective policy creation
- Enhanced team performance through leadership techniques
- Stronger executive support for security initiatives
- More effective resource allocation for security programs
- Measurable security metrics tied to business outcomes
- Practical roadmap for security program implementation
Meet Your Author
Frank Kim
FellowFrank Kim is the Founder of ThinkSec, a security consulting and CISO advisory firm. He leads the Cybersecurity Leadership and Cloud Security curricula at SANS, as well as authors and instructs multiple SANS courses.
Read more about Frank KimCourse Syllabus
Explore the course syllabus below to view the full range of topics covered in LDR514: Security Strategic Planning, Policy, and Leadership.
Section 1Strategic Planning Foundations
Students learn frameworks for developing strategic plans that connect security to business and organizational drivers. This section examines stakeholder identification and ways to gain executive support. Through exercises including capability assessments, roadmap development, and strategy maps, students practice creating plans that gain executive approval.
Topics covered
- Business context analysis for security
- Stakeholder identification and engagement
- Strategic security planning frameworks
- Capability assessment methodologies
- Security roadmap development
Labs
- CISO First Impression exercise
- Strategic capability assessment
- Business alignment mapping
- Stakeholder communication planning
- Security roadmap development
Section 2Strategic Roadmap Development
Section two establishes methodologies for analyzing security posture, identifying target states, and developing prioritized roadmaps. Students learn to assess organizational vision, conduct SWOT analysis, and apply security frameworks. The section covers business case creation and metrics for effectively marketing security initiatives.
Topics covered
- Security vision and mission alignment
- SWOT analysis methodology
- Security framework implementation
- Roadmap and gap analysis processes
- Business case development techniques
Labs
- Mission statement development
- Security roadmap creation
- Stakeholder engagement simulation
- Business case preparation
- Security metrics development
Section 3Security Policy Development and Assessment
Section three explores policy as a security leadership tool for guiding organizational behavior. Participants learn methods for developing policies aligned with corporate culture. The section covers policy lifecycle from creation to measurement, with a focus on governance and emerging technology considerations.
Topics covered
- Policy purpose and governance frameworks
- Policy language and structure design
- Requirements definition methodologies
- Emerging technology considerations
- Policy assessment techniques
Labs
- Vulnerability management policy creation
- Cloud computing policy development
- AI security policy implementation
- Policy evaluation exercise
- Stakeholder engagement simulation
Section 4Leadership and Management Competencies
Section four addresses critical skills for leading, motivating, and inspiring security teams. Participants develop knowledge and abilities essential for transitioning from management to leadership. The section establishes standards for effective leadership and explores methods for employee motivation aligned with organizational goals.
Topics covered
- Leadership foundations and principles
- Situational leadership approaches
- Effective communication techniques
- Team building methodologies
- Change management strategies
Labs
- Management and leadership comparison
- Performance review exercises
- Delegation practice
- Team communication simulation
- Change management implementation
Section 5Strategic Planning Workshop
Section five applies course concepts through Harvard Business School case studies focused on information security leadership. Participants analyze real-world scenarios that reinforce management competencies. The Strategic Planning Workshop serves as a capstone exercise where students synthesize methodologies and tools from previous sections.
Topics covered
- Executive presentation techniques
- Board communication strategies
- Strategic planning methodologies
- Business priority alignment
- Stakeholder management approaches
Labs
- Harvard case study analysis
- Incident response simulation
- Metrics and maturity assessment
- Merger due diligence exercise
- Executive presentation development
Things You Need To Know
Relevant Job Roles
Cybersecurity Auditor
European Cybersecurity Skills FrameworkPerform cybersecurity audits on the organisation’s ecosystem. Ensuring compliance with statutory, regulatory, policy information, security requirements, industry standards and best practices.
Explore learning pathCyber Incident Responder
European Cybersecurity Skills FrameworkManages compliance with cybersecurity-related standards, legal and regulatory frameworks based on the organisation’s strategy and legal requirements.
Explore learning pathPrivacy Compliance Manager (DCWF 732)
DoD 8140: Cyber EnablersLeads privacy program development and compliance oversight to ensure adherence to privacy laws, standards, and executive data protection needs.
Explore learning pathCybersecurity Architect
European Cybersecurity Skills FrameworkPlans and designs security-by-design solutions (infrastructures, systems, assets, software, hardware and services) and cybersecurity controls.
Explore learning pathCyber Risk Officer
Cybersecurity LeadershipLead, govern, and manage this risk for your organization.
Explore learning pathCyber Threat Intelligence Specialist
European Cybersecurity Skills FrameworkCollect, process, analyse data and information to produce actionable intelligence reports and disseminate them to target stakeholders.
Explore learning pathSecure Project Management (OPM 802)
NICE: Oversight and GovernanceResponsible for overseeing and directly managing technology projects. Ensures cybersecurity is built into projects to protect the organization’s critical infrastructure and assets, reduce risk, and meet organizational goals. Tracks and communicates project status and demonstrates project value to the organization.
Explore learning pathSystems Security Management (OPM 722)
NICE: Oversight and GovernanceResponsible for managing the cybersecurity of a program, organization, system, or enclave.
Explore learning pathInformation Systems Security Developer (DCWF 631)
DoD 8140: CybersecurityDesigns and evaluates information system security throughout the software lifecycle to ensure confidentiality, integrity, and availability.
Explore learning pathSenior Security Leader
Cybersecurity LeadershipDaily focus is on the leadership of technical teams. Includes titles such as Technical Director, Manager, and Team Lead.
Explore learning pathInformation Systems Security Manager (DCWF 722)
DoD 8140: CybersecurityOversees program, system, or enclave cybersecurity, ensuring protection from cyber threats and compliance with organizational standards.
Explore learning pathCybersecurity Risk Manager
European Cybersecurity Skills FrameworkManage the organisation's cybersecurity-related risks aligned to the organisation’s strategy. Develop, maintain and communicate the risk management processes and reports.
Explore learning pathMedia Exploitation Analyst
Digital Forensics and Incident ResponseThis expert applies digital forensic skills to a plethora of media that encompasses an investigation. If investigating computer crime excites you, and you want to make a career of recovering file systems that have been hacked, damaged or used in a crime, this may be the path for you. In this position, you will assist in the forensic examinations of computers and media from a variety of sources, in view of developing forensically sound evidence.
Explore learning pathCyber Policy and Strategy Planner (DCWF 752)
DoD 8140: Cyber EnablersCreates cyberspace strategies and policies that align with mission objectives and support organizational readiness and future initiatives.
Explore learning pathCybersecurity Educator
European Cybersecurity Skills FrameworkImproves cybersecurity knowledge, skills and competencies of humans.
Explore learning pathExecutive Cyber Leader (DCWF 901)
DoD 8140: Cyber EnablersSets direction and policies for cyber operations, assumes risk decisions, and aligns mission objectives with available cyber resources.
Explore learning pathProgram Management (OPM 801)
NICE: Oversight and GovernanceResponsible for leading, coordinating, and the overall success of a defined program. Includes communicating about the program and ensuring alignment with agency or organizational priorities.
Explore learning pathPenetration Tester
European Cybersecurity Skills FrameworkAssess the effectiveness of security controls, reveals and utilise cybersecurity vulnerabilities, assessing their criticality if exploited by threat actors.
Explore learning pathDigital Forensics Investigator
European Cybersecurity Skills FrameworkEnsure the cybercriminal investigation reveals all digital evidence to prove the malicious activity.
Explore learning pathCybersecurity Researcher
European Cybersecurity Skills FrameworkResearch the cybersecurity domain and incorporate results in cybersecurity solutions.
Explore learning pathCourse Schedule & Pricing
Looking for Group Purchase Options?Contact Us
GIAC Certification Attempt
Add a GIAC certification attempt and receive free two practice tests. View pricing in the info icons below.
OnDemand Course Access
When purchasing a live instructor-led class, add an additional 4 months of online access after your course. View pricing in the info icons below.
Filter by:
Location & instructorDate & TimeCourse priceEnrollment options
- Location & instructor
Virtual (OnDemand)
Instructed by Frank KimDate & TimeOnDemand (Anytime)Self-Paced, 4 months accessCourse price$8,260 USD*Prices exclude applicable local taxesEnrollment options - Location & instructor
Amsterdam, NL & Virtual (live)
Instructed by Kim JonesDate & TimeFetching schedule..View event detailsCourse price€7,715 EUR*Prices exclude applicable local taxesEnrollment options - Location & instructor
Washington, DC, US & Virtual (live)
Instructed by Russell EubanksDate & TimeFetching schedule..View event detailsCourse price$8,260 USD*Prices exclude applicable local taxes - Location & instructor
London, GB & Virtual (live)
Instructed by Mark WilliamsDate & TimeFetching schedule..View event detailsCourse price£6,715 GBP*Prices exclude applicable taxes | EUR price available during checkout - Location & instructor
London, GB & Virtual (live)
Instructed by Mark WilliamsDate & TimeFetching schedule..View event detailsCourse price£6,715 GBP*Prices exclude applicable taxes | EUR price available during checkoutEnrollment options - Location & instructor
Boston, MA, US & Virtual (live)
Instructed by Kim JonesDate & TimeFetching schedule..View event detailsCourse price$8,260 USD*Prices exclude applicable local taxes - Location & instructor
Virginia Beach, VA, US & Virtual (live)
Instructed by Kim JonesDate & TimeFetching schedule..View event detailsCourse price$8,260 USD*Prices exclude applicable local taxes - Location & instructor
Virginia Beach, VA, US & Virtual (live)
Instructed by Kim JonesDate & TimeFetching schedule..View event detailsCourse price$8,260 USD*Prices exclude applicable local taxesEnrollment options
Showing 8 of 29
Learn Alongside Leading Cybersecurity Professionals From Around The World
- Slide 1 of 4I love the lab and exercises. They are exactly what I am looking for as the new Marketplace Security PM on my team.
- Slide 2 of 4I have truly enjoyed the labs and exercises. They have broken up the course throughout the week. There has been a lot of information, but these exercises and labs helped us to put the knowledge into action.
- Slide 3 of 4SANS provides the absolute best training material. I'm ready to roll up my sleeves and implement what I’ve learned this week, which was challenging and made me think how I approach leadership and security strategy.
- Slide 4 of 4This course is a game changer for me. It has been very timely and inspirational at this point in my career. All of the tools reviewed in this course are applicable to program goals I am working on RIGHT NOW! Very useful!
Slide 1 of 0
(1/0)
Benefits of Learning with SANS
Get feedback from the world’s best cybersecurity experts and instructors
Choose how you want to learn - online, on demand, or at our live in-person training events
Get access to our range of industry-leading courses and resources