Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off

One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.

• Watch our course introduction video before you enroll! (copy and paste into browser) https://vimeo.com/1176025088 Cyber security is no longer just a technical challenge, it's a boardroom responsibility. This course is designed for senior professionals, managers, and rising cyber leaders who need more than technical knowledge. You'll develop the strategic foresight, governance capability, and decisive leadership required to protect your organisation at the highest level. Think of it as your executive playbook for navigating the complexities of modern cyber security management from setting strategy to leading through a live crisis. A foundational understanding of cyber security concepts and business operations is recommended.

Syllabus

Cybersecurity Strategy

This module covers how to design and assess a cybersecurity strategy aligned with business goals and critical asset protection. You will learn core principles such as the CIA Triad, along with key concepts including risks, threats, and vulnerabilities in today’s cyber landscape. It explores how to evaluate threat environments, define cyber risk tolerance, and benchmark maturity using frameworks like NIST, ISO 27001, and CIS Controls. The module also examines how to embed cybersecurity into enterprise strategy and culture as a strategic enabler. By the end, learners will be able to develop a tailored cybersecurity strategy, assess cyber maturity, and align security decisions with organisational priorities.

Cyber Risk Preparation

This module covers cyber security governance, emphasizing executive oversight and accountability for managing cyber risk. You will learn key governance models, including the Three Lines of Defence, and examine senior management responsibilities. Explore global frameworks like NIST CSF, NIST SP 800-53, and CIS Controls to define and evaluate cyber programs. By the end, you will demonstrate how governance guides risk management and embeds cyber security as an organizational responsibility. Focus on framework application for success.

Cybersecurity Corporate Governance

This module focuses on leading cyber risk management, balancing security controls with business priorities. Building on governance, you will explore cyber risk concepts like threat modeling, asset classification, and risk tolerance. Learn structured risk assessment processes to identify vulnerabilities, assess impact, and prioritize mitigation. Understand how risk management cascades from policy to operations, reinforcing the Three Lines of Defence model. By the end, you will contribute to cyber risk discussions and embed risk-informed thinking into cyber strategy. For success, apply risk assessment methods to real scenarios.

Containment, Eradication and Recovery

This module focuses on quantifying cyber risks for evidence-based decision-making. You will learn to prioritize investments and remediation by exploring qualitative and quantitative assessment models, including FAIR and NIST frameworks. Understand how to calculate risk likelihood, impact, and exposure in financial and operational terms. By the end, you will assess organizational risk posture, compare data-driven remediation options, and communicate cyber risk in terms that resonate with stakeholders from executives to regulators. Practice applying quantification models to gain confidence.

Cybersecurity Attacks

This module prepares senior leaders to manage cyber crises with confidence. You will explore cyber attack evolution, real-world case studies, and the cyber kill chain. Focus on the senior management role in preparation and response, including time-critical decision-making and stakeholder communication. Understand how cyber resilience is a leadership responsibility, integrating risk management and strategic foresight. By the end, you will develop leadership-aligned response strategies and build a resilient organizational culture. To maximize learning, consider current organizational incident response plans.