(Advanced) IT Risk Management
About Course
In this course, you will get an inside look at how cybersecurity and information technology (IT) managers determine which projects they will support with funding and which they won’t base on a preliminary risk analysis. Over the past two decades, I have worked in the cybersecurity and information technology realm, fighting for my projects to become funded. Early in my career, I didn’t understand why certain projects would be funded and executed, while others wouldn’t. What I learned, is that it all came down to risk Management by our executives and managers.
You will learn the terms used by executives and managers in discussing Risk Management, and how to apply the concepts of Risk Management to your networks, systems, and projects. This course is not an operational or tactical course that focuses on how you will secure your networks, but instead focuses on the mindset of managers and teaches you how to think as they do. Once you master these concepts, it is much easier to build your business case for your projects and justify your budgetary needs.
Throughout this course, we will discuss what comprises Risk (assets, threats, and vulnerabilities), providing numerous real-world examples along the way. We will also cover Qualitative and Quantitative Risk Measurements, showing how you can calculate the risk of uncertainty due to vulnerabilities and threats.