Cyber Security: GRC Part 1 - Governance
Ends soon! Keep adding new skills with 10,000+ programs for $239 (usually $399). Save now.
Cyber Security: GRC Part 1 - Governance
This course is part of Cyber Security: Essentials for Governance, Risk & Compliance Specialization
Instructor: Matt Bushby
3,096 already enrolled
Included with
Learn more
Recommended experience
Recommended experience
What you'll learn
Implement Cyber Strategy for business alignment
Govern Effective Cyber Security Frameworks and Policies
Drive Organisational Change and Monitor Risk Posture
Details to know
4 assignments
See how employees at top companies are mastering in-demand skills
Build your subject-matter expertise
- Learn new concepts from industry experts
- Gain a foundational understanding of a subject or tool
- Develop job-relevant skills with hands-on projects
- Earn a shareable career certificate
There are 4 modules in this course
β’ Watch our course introduction video before you enroll! (copy and paste into browser) https://vimeo.com/1176024599
This course is for business leaders, compliance officers, and security professionals. It equips you to design, implement, and lead enterprise-wide cyber security strategy. You will learn to align security priorities with strategic goals, manage regulatory frameworks, and drive organizational change. By the end of this course, you will be able to: β’ Understand global cyber security frameworks (NIST, ISO 27001). β’ Design policy frameworks aligned with risk appetite and compliance. β’ Establish governance structures, audit readiness, and cyber risk oversight. β’ Develop business-aligned cyber strategies and actionable roadmaps. β’ Embed change management and articulate return on investment. You will gain knowledge of frameworks such as NIST, ISO 27001, ISM, and Five Safes. This program empowers you to translate complex cyber requirements into clear, actionable initiatives that protect your organization and enable growth. Basic understanding of business operations is recommended.
Cyber threats are constant. This module introduces cyber security frameworks, essential for organizational resilience. You will learn why frameworks mitigate risk, support compliance, and protect reputation. Explore leading frameworks like NIST, ISO 27001, ISM, CIS Benchmarks, and the Five Safes for data governance. This module provides a critical first step to building a secure, compliant, and future-ready organization. To get the most from this module, focus on understanding how each framework addresses specific security challenges.
What's included
1 video1 assignment28 plugins
1 videoβ’Total 2 minutes
- Module 1: Introduction Videoβ’2 minutes
1 assignmentβ’Total 15 minutes
- End of module quizβ’15 minutes
28 pluginsβ’Total 268 minutes
- Overviewβ’5 minutes
- Why should organisations prioritise cyber security?β’12 minutes
- A growing needβ’10 minutes
- Introduction to cyber security frameworksβ’10 minutes
- Cyber security and the threat landscapeβ’10 minutes
- Managing the threat landscapeβ’10 minutes
- Legal liabilityβ’10 minutes
- The cost of a cyber incidentβ’10 minutes
- Real attacks and their costβ’10 minutes
- Attacks impacting Australia and New Zealandβ’10 minutes
- The importance of cyber security frameworksβ’15 minutes
- The National Institute of Standards and Technology (NIST) Frameworkβ’10 minutes
- ISO 27001β’10 minutes
- Government Information Security Manual (ISM)β’10 minutes
- Centre for Internet Security (CIS) Benchmarksβ’10 minutes
- Five Safes frameworkβ’10 minutes
- Frameworks summaryβ’5 minutes
- Aligning the framework with risk appetiteβ’10 minutes
- Review the organisational strategy and objectivesβ’10 minutes
- Adopting the frameworkβ’10 minutes
- Maturity assessmentsβ’10 minutes
- Benchmarking against industry peersβ’10 minutes
- Influence internal stakeholderβ’10 minutes
- The need for change managementβ’10 minutes
- Progress reportsβ’10 minutes
- Showcasing return on investmentβ’10 minutes
- Summaryβ’10 minutes
- Referencesβ’1 minute
An organisationβs cyber resilience is only as strong as the policies that guide its people, processes, and technology. This module teaches you to craft and implement cyber security policy frameworks that align with your organization's risk appetite and drive behavioral change. You will explore the full policy development lifecycle, from drafting to measuring impact. Ensure your policies are compliant, practical, and embedded in daily operations, shaping real-world outcomes. This equips you to build a compliant culture of cyber resilience. To succeed, focus on practical application of policy principles.
What's included
1 video1 assignment15 plugins
1 videoβ’Total 1 minute
- Module 2: Introduction Videoβ’1 minute
1 assignmentβ’Total 15 minutes
- End of module quizβ’15 minutes
15 pluginsβ’Total 131 minutes
- Overviewβ’5 minutes
- A cyber security policy frameworkβ’10 minutes
- Aligning policy with risk appetiteβ’10 minutes
- The importance of a policy framework, policies and standardsβ’10 minutes
- Policy writingβ’10 minutes
- The policy draft - reviews and approvalsβ’10 minutes
- Why should we measure policy effectiveness?β’10 minutes
- Identify measurement criteriaβ’10 minutes
- Select tools to monitor effectivenessβ’10 minutes
- Getting buy inβ’10 minutes
- Effectively communicating your policyβ’10 minutes
- Embedding policyβ’10 minutes
- Reviewing effectiveness and further updatesβ’10 minutes
- Summaryβ’5 minutes
- Referencesβ’1 minute
Effective cyber security strategy relies on strong technology governance. This module explores implementing a cyber governance framework that supports strategic oversight, ensures compliance, and embeds security across your business. You will learn to build resilient governance structures, from setting up cyber risk oversight committees to establishing audit mechanisms. This equips you with foundations to embed governance for secure, informed decision-making. For best results, consider how these structures apply to your organization.
What's included
1 video1 assignment11 plugins
1 videoβ’Total 1 minute
- Module 3: Introduction Videoβ’1 minute
1 assignmentβ’Total 15 minutes
- End of module quizβ’15 minutes
11 pluginsβ’Total 92 minutes
- Overviewβ’10 minutes
- Information security governanceβ’10 minutes
- Future fit governanceβ’10 minutes
- Cyber risk oversight committeesβ’10 minutes
- Governance structuresβ’1 minute
- Reporting riskβ’15 minutes
- Auditsβ’10 minutes
- The audit processβ’10 minutes
- Remediation actionsβ’10 minutes
- Summaryβ’5 minutes
- Referencesβ’1 minute
A well-defined cyber security strategy is not just a technical necessity, itβs a business enabler. It aligns security initiatives with organisational goals, anticipates future risks, and builds trust with customers, regulators, and stakeholders. This module teaches you to craft a strategic cyber roadmap that supports business outcomes, optimizes resources, and prioritizes resilience. You will assess gaps, conduct threat modeling, and develop actionable plans for measurable progress. By the end, you will lead or support cyber strategy development, earning executive support and delivering customer value. Position your organization to adapt and thrive. For practical application, consider a real-world scenario for your roadmap.
What's included
1 video1 reading1 assignment26 plugins
1 videoβ’Total 1 minute
- Module 4: Introduction Videoβ’1 minute
1 readingβ’Total 10 minutes
- Congratulations and next stepsβ’10 minutes
1 assignmentβ’Total 15 minutes
- End of module quizβ’15 minutes
26 pluginsβ’Total 237 minutes
- Overviewβ’5 minutes
- An overview of a cyber security roadmapβ’10 minutes
- Getting supportβ’10 minutes
- Risk, Value and Cost (RVC) optimisationβ’10 minutes
- Understand the business' strategy and objectivesβ’15 minutes
- Alignment with the Australian cyber security strategyβ’10 minutes
- Identify organisational cultureβ’1 minute
- Business strategy alignmentβ’10 minutes
- Value for customersβ’10 minutes
- Gap assessmentsβ’10 minutes
- Threat modellingβ’10 minutes
- Threat modelling workshopsβ’10 minutes
- Who should come to a threat modelling workshop?β’10 minutes
- Potential challengesβ’10 minutes
- Understand the organisation's technology footprintβ’10 minutes
- Controls and threat modellingβ’10 minutes
- Gap assessment dashboardβ’10 minutes
- Developing the roadmapβ’10 minutes
- Prioritise road map activitiesβ’10 minutes
- Create an action planβ’10 minutes
- Road map implementationβ’10 minutes
- Reporting progressβ’10 minutes
- Post implementationβ’10 minutes
- What does it take to be a cyber security professional?β’10 minutes
- Summaryβ’5 minutes
- Referencesβ’1 minute
Earn a career certificate
Add this credential to your LinkedIn profile, resume, or CV. Share it on social media and in your performance review.
Instructor
Offered by
Explore more from Computer Security and Networks
- Status: Free TrialI
Infosec
Course
- Status: Free TrialM
Macquarie University
Course
- Status: Preview
Course
- Status: Free TrialL
LearnKartS
Course
Why people choose Coursera for their career
Frequently asked questions
Cyber security governance involves establishing frameworks and policies to align an organization's security efforts with its business strategy and risk management objectives. It ensures accountability and compliance.
This course is for business leaders, compliance officers, and security professionals seeking to lead cyber security strategy and manage organizational risk.
You will learn about key cyber security frameworks such as NIST, ISO 27001, ISM, CIS Benchmarks, and the Five Safes for data governance and information sharing.
More questions
Financial aid available,