VOOZH about

URL: https://www.coursera.org/learn/cism-enterprise-risk-leadership

⇱ CISM: Enterprise Risk Leadership | Coursera


CISM: Enterprise Risk Leadership

Ends soon! Keep adding new skills with 10,000+ programs for $239 (usually $399). Save now.

Gain insight into a topic and learn the fundamentals.
Intermediate level

Recommended experience

5 hours to complete
Flexible schedule
Learn at your own pace

Gain insight into a topic and learn the fundamentals.
Intermediate level

Recommended experience

5 hours to complete
Flexible schedule
Learn at your own pace

What you'll learn

  • Establish Continuous Risk Monitoring and Governance.

  • Implement Continuous Governance and Communication.

  • Master Stakeholder Communication and Reporting.

Details to know

Shareable certificate

Add to your LinkedIn profile

Recently updated!

March 2026

Assessments

6 assignments

Taught in English

Build your subject-matter expertise

This course is part of the Exam Prep CISM: Certified Information Security Manager Specialization
When you enroll in this course, you'll also be enrolled in this Specialization.
  • Learn new concepts from industry experts
  • Gain a foundational understanding of a subject or tool
  • Develop job-relevant skills with hands-on projects
  • Earn a shareable career certificate

There are 3 modules in this course

CISM: Enterprise Risk Leadership is the second course of Exam Prep CISM: Certified Information Security Manager Specialization. This course equips learners to explore the fundamental stages of identifying, assessing, and communicating information security risks while aligning risk appetite with organizational objectives. The curriculum dives deep into the technical and strategic aspects of risk assessment, the implementation of robust controls and countermeasures, and the critical role of defining Recovery Time Objectives (RTO) to ensure business continuity.

The course is structured into comprehensive modules, further segmented by Lessons and Video Lectures that blend management-level theory with practical application. This course facilitates learners with approximately 2:00–2:30 hours of video content. To ensure mastery of the material, Graded and Ungraded Quizzes are provided with every module, testing the ability of learners to evaluate impact and monitor risk in real-world business scenarios. - Module 1: Risk Management Fundamentals - Module 2: Risk Assessment and Analysis - Module 3: Risk Treatment and Communication This course is specifically designed for security leads and management-track professionals who aim to bridge the gap between technical risk assessments and enterprise-wide strategic planning, ensuring that Information Security Risk Management aligns with the organization's risk appetite and long-term business objectives. By the end of this course, a learner will be able to: - Establish Continuous Risk Monitoring and Governance. - Implement Continuous Governance and Communication. - Master Stakeholder Communication and Reporting.

Welcome to the week 1. In this week, we will dive into the essential frameworks and practical applications of Information Risk Management and Compliance to protect organizational assets. We will transition into the selection and implementation of Controls and Countermeasures designed to mitigate identified risks effectively. A key focus will be placed on technical recovery metrics, specifically understanding the Recovery Time Objective (RTO) and its role in resilience planning. Finally, we will cover Risk Monitoring and Communication to ensure that risk status is continuously tracked and reported to stakeholders, providing a comprehensive Risk Management Overview that bridges the gap between technical security and executive oversight.

What's included

5 videos2 readings2 assignments

5 videosβ€’Total 41 minutes
  • Information Risk Management - Introductionβ€’5 minutes
  • Information Risk Management and Complianceβ€’13 minutes
  • Good Information Security Risk Managementβ€’7 minutes
  • Controls Countermeasuresβ€’4 minutes
  • Risk Management Overviewβ€’12 minutes
2 readingsβ€’Total 25 minutes
  • Welcome to the Courseβ€’15 minutes
  • Overview of Risk Management Fundamentalsβ€’10 minutes
2 assignmentsβ€’Total 50 minutes
  • Information Risk Management and Compliance - Knowledge Checkβ€’25 minutes
  • Risk Management Fundamentals - Assessmentβ€’25 minutes

Welcome to Week 2. This week, we will begin by establishing a shared language through Information Security Risk Management Concepts, providing the framework necessary for Implementing Risk Management within any organizational structure. You will engage in a Risk Assessment: Deep Dive to uncover hidden vulnerabilities, followed by an exploration of how to select and validate Controls and Countermeasures. To ensure operational resilience, we will examine the critical role of Recovery Time Objectives (RTO) and the necessity of Testing Response and Recovery Plans under realistic conditions. Finally, we will cover the essential processes for Information Security Risks Assessment and the continuous nature of Risk Monitoring and Communication to keep stakeholders informed of the evolving threat landscape.

What's included

7 videos1 reading2 assignments

7 videosβ€’Total 47 minutes
  • Information Security Risk Management Conceptsβ€’6 minutes
  • Implementing Risk Managementβ€’5 minutes
  • Testing Response and Recovery Plansβ€’4 minutes
  • Risk Assessmentβ€’11 minutes
  • Recovery Time Objectivesβ€’2 minutes
  • Risk Monitoring and Communicationβ€’3 minutes
  • Information Security Risks Assessmentβ€’15 minutes
1 readingβ€’Total 10 minutes
  • Overview of Risk Assessment and Analysisβ€’10 minutes
2 assignmentsβ€’Total 50 minutes
  • Information Security Risk Management Concepts - Knowledge Checkβ€’25 minutes
  • Risk Assessment and Analysis - Assessmentβ€’25 minutes

In this week, we begin with an Information Risk Management - Introduction to align our efforts with business goals, followed by a structured look at the Stages of Information Security and Risk Management to provide a clear roadmap for execution. You will explore Good Practices for Managing Information Risk and learn the nuances of Managing Information Security Risk in dynamic environments. A core focus will be on Developing Cyber Risk Management Strategy to ensure long-term protection, alongside the selection of appropriate Impact Controls to minimize the effects of potential incidents. Finally, we will emphasize the critical human element: Information Risk Management - Communication, ensuring that technical findings are translated into actionable intelligence for executive decision-makers.

What's included

5 videos2 readings2 assignments

5 videosβ€’Total 28 minutes
  • Impact Controlsβ€’17 minutes
  • Developing Cyber Risk Management Strategyβ€’3 minutes
  • Good Practices for Managing Information Riskβ€’4 minutes
  • Managing Information Security Riskβ€’1 minute
  • Stages of Information Security and Risk Managementβ€’3 minutes
2 readingsβ€’Total 25 minutes
  • Overview of Risk Treatment and Communicationβ€’10 minutes
  • What's Next?β€’15 minutes
2 assignmentsβ€’Total 50 minutes
  • Developing Cyber Risk Management Strategy - Knowledge Checkβ€’25 minutes
  • Risk Treatment and Communication - Assessmentβ€’25 minutes

Earn a career certificate

Add this credential to your LinkedIn profile, resume, or CV. Share it on social media and in your performance review.

Instructor

Whizlabs
172 Coursesβ€’127,067 learners

Explore more from Software Development

Why people choose Coursera for their career

πŸ‘ Image

Felipe M.

Learner since 2018
"To be able to take courses at my own pace and rhythm has been an amazing experience. I can learn whenever it fits my schedule and mood."
πŸ‘ Image

Jennifer J.

Learner since 2020
"I directly applied the concepts and skills I learned from my courses to an exciting new project at work."
πŸ‘ Image

Larry W.

Learner since 2021
"When I need courses on topics that my university doesn't offer, Coursera is one of the best places to go."
πŸ‘ Image

Chaitanya A.

"Learning isn't just about being better at your job: it's so much more than that. Coursera allows me to learn without limits."

Frequently asked questions

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.

Financial aid available,