Those who control resources and decision-making have more control over cyber risk exposure than any other cybersecurity role. This is a painful truth that many cybersecurity professionals struggle to accept. No matter how credentialed and technically astute your cybersecurity team is, cyber risk exposure can be prolonged unless senior organizational leadership support and resources are in place to support cybersecurity efforts and manage cyber risk. The Fundamentals of Governance, Risk, and Compliance (GRC) is designed for cyber and non-cyber managers who are responsible for decision-making, applying policies, procedures, processes, and resources to identify, manage, and monitor cybersecurity risk to fulfill the organization’s regulatory, legal, and operational requirements.
- Cyber Workforce Roles: CEO, CISO, CIO, CTO, CFO, ISSM, ISSO, ISSE, Contracts Management, IT Acquisitions Management, Budget Analysts, Business Managers, Program Managers, Cyber Risk Managers, Security Control Assessors and Validators, Legal Staff and Regulatory Compliance Managers, and all Security Management roles.
- What You’ll Learn: GRC Roles and Responsibilities, Senior Leadership Involvement, Risk, Risk Management and Risk Capacity, Regulatory and Legal Drivers of Compliance, Reputation and Liability, GRC Components, Policy/Procedures/Templates/Frameworks, Technology and Personnel, Building and Managing a Cyber Risk Program, Security Control Best Practices, Vulnerability Scanning in DevOps and Maintenance, Monitoring and Reporting, Incident Response, Configuration Management, Contingency Planning, Identification and Access Control, Data Protection, Data Loss Prevention, and Reporting Requirements