Application Essay Guidelines
We aspire to develop engineers and managers who can be leaders in our industry. To help ground so broad a term, the Past President of the SANS Technology Institute, Stephen Northcutt, wrote a Leadership Essay to help characterize and expand upon our definition of leadership. Please read his essay and explore some of the resources he suggests. Then, write two to three single-spaced pages in your own words about your own preferred definition(s) of leadership, some competencies where you believe you have strengths, and also the competencies you would most like to develop. Relate each competency to personal and/or professional experience, or discuss how you intend to use the master's program and your work experience over the next three years to further your leadership goals. Include a discussion of why 'leadership', rather than just 'engineering' or 'management', is particularly important in the information security field at this time.
By Stephen Northcutt
AbstractLeadership is a broad term, open to interpretation. However, it is the core focus of the SANS Technology Institute's mission. The purpose of this essay is to define what we mean by leadership, express the core compencies you will be exposed to in the program, and discuss what leadership means in the context of information security.
Definition of Leadership
A leader is a person who guides or inspires others within an organization or community to achieve a goal. Leadership development begins with the simple realization that you want to be a leader. Life has many opportunities to press forward and take charge of a situation, or conversely, to shrink into the background. This is why we ask prospective students to write an essay about demonstrated leadership when they apply to our school.
Leadership and Competencies
What does leadership mean, how do you measure leadership? One approach is through management and leadership competencies. We define competencies as measurable skills, knowledge, and abilities that identify successful managers in the information security discipline. In your graduate program, you will be exposed to core competencies. They are covered in your required course, ISE 5600: IT Security Leadership Competencies or ISM 5400: IT Security Planning, Policy, and Leadership. Some of the competencies that you will be taught are reinforced by specific course work and exercises:
- Team Development and Relationship Building: This will occur when you attend a SANS conference and interact with fellow students, and as a result of both of your group projects.
- Importance of Communication: The presentation skills course, ISE/ISM 5000 (SANS MGT 305), will help you develop your oral and written communication skills.
- Self-Direction: We will monitor your progress throughout the program, but it will be up to you to register for and complete courses within the allowed time at a proper level of quality.
- Coaching and Training: One of your final degree requirements will be to teach a Security Awareness course in your own community.
- Leadership Qualities: The faculty you will work with are leaders in the field of information security. Look to them to model leadership in the information security field.
- Vision Development: As a graduate student, you will be required to present original, creative work through the research papers.
- Project Planning: You will learn about Project Management Planning in ISE/ISM 5800 (SANS MGT 525) and a project plan is a requirement of one of the group projects.
Other competencies listed below will be taught in your required courses:
- Conflict Resolution
- Employee Involvement
- Change Management
- Motivation of Employees and Teammates
- Leadership Development
- Leading Tribes
- Leading Change
Two competencies are more important than all the others. How does a leader guide or inspire? They have to be great communicators. Therefore, two of the most important skills you will work on are:
- Ability to communicate well orally
- Ability to communicate well in writing
Leaders in information assurance often have different goals. Some leadership roles in information security are similar to other disciplines, others are unique. A few examples of security leadership roles are listed below:
- Manager, team leader or project manager
- The technical "go to" person
- Thought leader, often through writing and speaking
- Instructor, mentor
- Tribe leader, someone that can build a large following to accomplish a goal
- Change Agent, someone who uses their thought leadership position to alter the way we look at technology or process
- Technical tool author who creates or leads the team that develops a security tool whether open source or commercial
What is the difference between a manager and a leader? A successful leader needs all of the same competencies as a manager, but some of the competencies must be more developed. For instance, vision. You can be a successful manager with a minimal capability for vision. In fact, that is something Human Resources may look for in an industry that is based on repeatable tasks. However, you cannot lead without vision. The Security Thought Leaders interview series introduces a number of visionary leaders in the information assurance industry. In addition, you must have power beyond your positional power, the authority that comes with your role or job description. For many students in the MSISE program, this will lead to something called expert power  people will want to be on your team partly because of your knowledge of technical security. Our goal is for you to be able to work at the highest technical level in your organization. The students in the MSISM program will also receive courses and assignments to develop expert power, people will want to work with you because they feel that you have both programmatic skills and a strong understanding of technical issues. They will look for you to be a bridge between management and technical groups in your organization.
Senior Leadership and Statesmanship
One reason to start focusing on your leadership skills today is that leadership is learned over years, not months. The best way to become a senior leader is by studying competencies and having the discipline to make them become habits and tools in your life. We can define a senior leader as someone who attains a highly respected rank, examples include:
- CEO, CTO, CSO, CISO
- Board member, Chairman of the Board
- President, Vice President
- Bishop, Cardinal
- Mayor, Senator, Representative
Perhaps the highest level of leadership is the statesman, a respected leader in national or international affairs, a person that devotes some or all of their energy to public service and to improve the common good. They have mastered the management, leadership and governance competencies and use the experience from a long and respected career to benefit others.
References1.http://resource.udallas.edu/132/bases_of_social_power.pdf link was visited 9/14/2011
Leadership Essay Version 1.8
Other Related Articles in Leadership Lab: Management Competencies
- Leadership Essay - Feb 7th, 2012
How Would You Define Leadership?
I would define leadership as the ability of any individual, regardless of their status or title, to influence others and achieve a final outcome via team commitment, influence and motivation. Leadership is a highly dynamic and forever changing requirement for all of society in the 21st century and has allowed society as a whole to develop and advance socially and technologically. The concept of leadership and its practice is dependent on a number of different circumstances, environments, teams, values and objectives. As such, leadership can not be restrictive and nor can it remain constant for a sustained period of time. For example, a political leader relies heavily on governance whilst a business leader may be focusing more on strategy and human resource management. Furthermore, leadership pertains to not only the requirements of a specified industry or job title, but the personality traits and individual strengths and requirements of the individual that must lead and achieve an overall outcome for the greater good of an organization or society as a whole.
Throughout my respective management and leadership experiences, I have seen leadership to vary widely, hence supporting my initial statements on its diverse nature. For centuries, academics and well known individuals have attempted to define leadership and essentially establish a structure for teaching others how to lead I believe this to be the wrong way of teaching younger people and children about leadership. Leadership can not be taught or engrained in a student or focus group. Rather, more experienced leaders in society can provide insights into different leadership scenarios and encourage people to incorporate their own traits in defining their own leadership style and how to effectively lead others.
Furthermore, in defining leadership, various leadership styles can be extensively analyzed as they are always present throughout an organization and in different forms. Each individual within an organization has a different leadership style, which vary in their effectiveness in different situations. This is significant as we can learn off the leadership styles of others and determine how certain situations should be encountered and how individuals should be led. Furthermore, leaders can improve their skills by learning off the failures of others. For example, in the corporate world, newly promoted leaders need to learn how to quickly make amends after previous leadership failures and determine how to positively influence others and instill success in their team. In a sense, good leadership is achieved through the use of initiative and individuals trying to find unique ways of achieving an outcome. Subordinates will subsequently respect leaders more if they are willing to exceed all boundaries to achieve a goal, which benefits everyone.
I also believe that leadership should always be related to success and an individual being able to influence others to effect change and achieve an overall outcome. If an individual can not achieve success, than their style needs to be further refined. As discussed earlier, there are a number of mechanism by which leaders can improve their style. The HEC program is one such means by which leaders can theoretically and practically learn how to become more effective and influential.
In conclusion, leadership is primarily based on an individual achieving success through positively influencing others and also developing and advancing further in their respective careers. Future leaders need to learn off the faults of others and be open to change, the use of initiative and listening to their subordinates. It has also been identified in this paper that the beliefs of subordinates also influence the effectiveness of a leader and how they use their team to achieve a task and ultimately, success.