Managing cybersecurity is about managing risk, specifically the risk to information assets of valued by an organization. This course examines the role of Governance, Risk Management, and Compliance (GRC) as part of the Cybersecurity management process, including key functions of planning, policies, and the administration of technologies to support the protection of critical information assets. In this course, a learner will be able to: 鈼 Identify the importance and functions of Governance, Risk Management, and Compliance in Cybersecurity program management. 鈼 Describe best practices in risk management including the domains of risk assessment and risk treatment. 鈼 Describe the structure and content of Cybersecurity-related strategy, plans, and planning 鈼 Identify the key components and methodologies of Cybersecurity policies and policy development 鈼 Discuss the role of performance measures as a method to assess and improve GRC programs
Welcome to the GRC Approach to Managing Cybersecurity
Loading...
Skills You'll Learn
Risk Management, Project Management, Security Engineering, Cybersecurity planning, Cybersecurity performance measurement, Strategy and Operations, Leadership and Management, Risk identification, Risk treatment, Strategy
Reviews
4.7 (340 ratings)
- 5 stars79.11%
- 4 stars18.23%
- 3 stars1.47%
- 2 stars0.29%
- 1 star0.88%
EE
Sep 19, 2024
This course was insightful. I learned a lot in the course. I learned cyber security as it relates to governance, risk management, and compliance.
BJ
May 29, 2022
I have a notebook of knowledge from this course! I will reference it on my future job in GRC! Great course and very detailed
From the lesson
Introduction to the Management of Cybersecurity (Module 2.1)
Taught By
Herbert J. Mattord, Ph.D., CISM, CISSP, CDP
Professor of Information Security
Michael Whitman, Ph.D., CISM, CISSP
Professor of Information Security