Information and Cyber Security GRC: Risk Management Frameworks and Structures
All organizations face varying risks related to their mission, strategies, and goals. This course will teach you the techniques used to manage risks and a selection of frameworks that can be used.
What you'll learn
All organizations face varying risks related to their mission, strategies, and goals. In this course, Information and Cyber Security GRC: Risk Management Frameworks and Structures, you’ll learn to use risk management techniques. First, you’ll explore quantitative and qualitative risk techniques. Next, you’ll discover how to identify organizational factors to influence the selection of the technique. Finally, you’ll learn how to assess risk management frameworks for your organization. When you’re finished with this course, you’ll have the skills and knowledge of Risk Management Frameworks and Structures needed to manage risks within your organization.
Table of contents
- Risk Framework Overview and ISO 27005 4m
- Factor Analysis of Information Risk (FAIR) 3m
- NIST RMF 800 37 3m
- Information Risk Assessment Methodology 2 (IRAM2) 4m
- Operationally Critical Threat, Asset, and Vulnerability Evaluation (Octave) 3m
- Center for Internet Security® Risk Assessment Method (CIS RAM) 2m
- Risk IT 3m
- Non-Infosec Specific Risk Models and Techniques 4m
- Summary 1m
About the author
Dr. Andrews’ technology career spans three decades. His roles included network manager New York City Department of Education, BMG Direct senior director of IT, and BNY Mellon dean of technology. His doctoral research at Teachers College Columbia found that critical thinking skills thrive in environments that are supportive of five essential elements in the mind of a critical thinker. He teaches cyber security. He has integrated technology management with teaching at Columbia University and other... more