Those who control resources and decisions within an organization often have the single greatest influence over cyber risk reduction efforts. Cyber risk exposure can be prolonged unless senior organizational leadership support and resources are in place to support cybersecurity efforts and manage cyber risk. The Fundamentals of Governance, Risk, and Compliance (GRC) is designed for cyber and non-cyber managers who are responsible for decision-making, applying policies, procedures, processes, and resources to identify, manage, and monitor cybersecurity risk to ensure regulatory, legal, and operational requirements.
Learning Objectives
To provide cybersecurity managers and leadership with best practice guidance for how to implement GRC processes and frameworks to continuously evaluate and manage cybersecurity risk in alignment with budgetary, regulatory, legal, and operational requirements.
Framework Connections
Specialty Areas
- Risk Management
- Systems Requirements Planning
- Cybersecurity Management
- Legal Advice and Advocacy
- Program/Project Management and Acquisition
Feedback
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.