This course establishes foundations for addressing cybersecurity as a risk management concept and process, and as a component of overall risk management within an organization. Students will become familiar with theories of risk and methods of risk management, as well as frameworks/models for applying these theories and methods to cybersecurity.
Learning Objectives
With successful completion of this course, students are able to: 1. Articulate risk management concepts and apply them to cybersecurity. 2. Identify and explain organizational impacts from various cybersecurity risk management options. 3. Explain and give examples of how organizational/enterprise risk management decisions may impact cybersecurity risks. 4. Identify and explain common standards for cybersecurity risk management. 5. Align cybersecurity planning with the mission and needs of an organization.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Risk Management
- Executive Cyber Leadership
- Program/Project Management and Acquisition
- Cybersecurity Management
- Strategic Planning and Policy
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.