This course focuses on identifying, assessing, and managing security risks within organizational settings. Students will explore frameworks such as NIST and ISO, perform both quantitative and qualitative risk analyses, prioritize mitigation measures, and ensure alignment with compliance requirements and regulatory guidelines. Topics include vendor risk management, third-party audits, continuous monitoring, cyber insurance considerations, and integrating risk metrics into strategic decision-making. By the end of the course, students will be equipped to shape security governance, effectively communicate risk to stakeholders, and foster a responsive risk management culture within organizations.
Prerequisite Courses