This is an introductory course in Risk Management.

It is designed for people with no prior experience on dealing with risk in an IT environment.

Initially the course will answer some fundamental questions:

1. What is Risk?
2. What types of Risk are there?
3. What type of threats constitute risk to IT managers?

We shall discuss the universal ways of dealing with Risk:

1. Acceptance
2. Avoidance
3. Mitigation
4. Transference

We shall further explore how we can calculate risk and how this can be factored in your due diligence and your Cyber Incident Response Planning.

1. Calculating risk factors
2. Quantitative analysis of risk factors
3. Qualitative analysis of risk factors

We are going to discuss a real life case study in detail, to see how managerial failures lead to a disastrous data breach:

1. The EQUIFAX data breach.
2. Was it just one breach?
3. When half the US lose their private details in a single breach

Who is this course for?

This course is designed for people in management that need to learn more about understanding risk, especially in their IT and Cybersecurity.

This is of particular interest if you plan to move to a role as a CISO, CIO, DPO and general management.

Learning outcomes:

At the end of this course you will have a solid understanding of what risk is, how it is calculated and what different ways are there to deal with it.