We may earn an affiliate commission when you visit our partners.
Bobby Rogers
Read more
Read more
This course is no longer available. Find something similar by browsing:
Security Budgeting
Security Investments
Business Cases for Security
Cybersecurity Risk Management
Security Compliance
Register for this course and see more details by visiting:
OpenCourser.com/course/nclsoq/running
Traffic lights
Traffic lights
Read about what's good
what should give you pause and
possible dealbreakers
Provides foundational knowledge about managing budgets in information security programs
Suitable for individuals looking to strengthen their understanding of the business aspects of information security
Taught by Bobby Rogers, a recognized expert in cybersecurity
Helps prepare for advanced cybersecurity management certification exams
Requires prior knowledge in information security management
May be less relevant for individuals with less than 3 years of experience in the field
Save this course
Create your own learning path.
Save this course to your list so you can find it easily later.
Save
Save
Activities
Coming soon
We're preparing activities for
Running the Business of Information Security.
These are activities you can do either before, during, or after a course.
Career center
Learners who complete Running the Business of Information Security will develop knowledge and skills
that may be useful to these careers:
Information Security Manager
Information Security Manager
Information Security Managers are responsible for planning, implementing, and managing the information security program of an organization. This course would be helpful, as it teaches how to prepare, present, and report security budget status to include expenditures, investments, and other critical budget information. This can help Information Security Managers communicate the value of the information security program to senior management and ensure that the organization is getting the most value for its investment.
Director of Information Security
Director of Information Security
Directors of Information Security (CISOs) are responsible for overseeing the information security program of an organization. This course would be helpful, as it teaches how to prepare, present, and report security budget status to include expenditures, investments, and other critical budget information. This can help CISOs communicate the value of the information security program to senior management and ensure that the organization is getting the most value for its investment.
Cybersecurity Analyst
Cybersecurity Analyst
Cybersecurity Analysts are responsible for protecting an organization's computer systems and networks from cyber attacks. This course would be helpful, as it teaches how to manage a dynamic budget based upon changing cybersecurity and business risk. This can help Cybersecurity Analysts make informed decisions about how to allocate funds for cybersecurity and ensure that the organization is protected from cyber threats.
Information Security Auditor
Information Security Auditor
Information Security Auditors are responsible for assessing the security of an organization's computer systems and networks. This course would be helpful, as it teaches how to prepare, present, and report security budget status to include expenditures, investments, and other critical budget information. This can help Information Security Auditors communicate the value of the information security program to senior management and ensure that the organization is getting the most value for its investment.
Security Analyst
Security Analyst
Security Analysts are responsible for monitoring and analyzing an organization's security systems for potential threats. This course would be helpful, as it teaches how to create business cases to justify security investments and expenditures to support the business mission and goals. This can help Security Analysts develop a strong case for investing in information security and ensure that the organization is getting the most value for its money.
IT Security Specialist
IT Security Specialist
IT Security Specialists are responsible for protecting an organization's computer systems and networks from cyber attacks. This course would be helpful, as it teaches how to create business cases to justify security investments and expenditures to support the business mission and goals. This can help IT Security Specialists develop a strong case for investing in information security and ensure that the organization is getting the most value for its money.
Information Security Consultant
Information Security Consultant
Information Security Consultants provide advice and guidance to organizations on how to improve their information security posture. This course would be useful, as it helps build a foundation of knowledge in security budgeting and resource management. This can help Information Security Consultants make informed recommendations to clients about how to allocate funds for security and ensure that they are getting the most value for their money.
Compliance Manager
Compliance Manager
Compliance Managers are responsible for ensuring that an organization complies with all applicable laws and regulations. This course would be helpful, as it teaches how to create business cases to justify security investments and expenditures to support the business mission and goals. This can help Compliance Managers develop a strong case for investing in information security and ensure that the organization is meeting its compliance obligations.
Budget Analyst
Budget Analyst
Budget Analysts keep track of finances and determine how to spend money across a business. This course, Running the Business of Information Security, would be helpful, as it teaches how to manage the security budget and other resources to their maximum effectiveness. This can help Budget Analysts make informed decisions about how to allocate funds and ensure that the organization is getting the most value for its money.
Information Technology Audit Manager
Information Technology Audit Manager
Information Technology Audit Managers are responsible for planning, implementing, and managing the IT audit function of an organization. This course would be helpful, as it teaches how to create business cases to justify security investments and expenditures to support the business mission and goals. This can help Information Technology Audit Managers develop a strong case for investing in information security and ensure that the organization is getting the most value for its money.
IT Manager
IT Manager
IT Managers are responsible for planning, implementing, and managing the IT systems of an organization. This course would be useful, as it helps build a foundation of knowledge in security budgeting and resource management. This can help IT Managers make informed decisions about how to allocate funds for IT security and ensure that the organization is protected from cyber threats.
Risk Manager
Risk Manager
Risk Managers are responsible for identifying, assessing, and managing the risks of an organization. This course would be helpful, as it teaches how to create business cases to justify security investments and expenditures to support the business mission and goals. This can help Risk Managers develop a strong case for investing in information security and ensure that the organization is getting the most value for its money.
Network Administrator
Network Administrator
Network Administrators are responsible for maintaining and managing the computer networks of an organization. This course would be useful, as it helps build a foundation of knowledge in security budgeting and resource management. This can help Network Administrators make informed decisions about how to allocate funds for network security and ensure that the organization is protected from cyber threats.
Computer and Information Systems Manager
Computer and Information Systems Manager
Computer and Information Systems Managers are responsible for planning, implementing, and managing the information technology (IT) systems of an organization. This course would be useful, as it helps build a foundation of knowledge in security budgeting and resource management. This can help Computer and Information Systems Managers make informed decisions about how to allocate funds for IT security and ensure that the organization is protected from cyber threats.
Finance Manager
Finance Manager
Finance Managers are responsible for planning, implementing, and managing the financial activities of an organization. This course would be helpful, as it teaches how to create business cases to justify security investments and expenditures to support the business mission and goals. This can help Finance Managers develop a strong case for investing in information security and ensure that the organization is getting the most value for its money.
For more career information including salaries, visit:
OpenCourser.com/course/nclsoq/running
Reading list
We haven't picked any books for this reading list yet.
Save
Martin Gill's book provides an overview of the international legal framework for cyber security risk management. With well-regarded expertise in this area of law, Gill's book is an excellent resource.
Provides step-by-step instructions on how to conduct cybersecurity risk assessments. It offers practical guidance for risk management professionals.
Explores insider threats to cybersecurity, providing guidance on how to prevent, detect and respond to these threats.
An advanced text on information security risk management, Thomas Peltier's book covers concepts, methods, and tools for managing information security risks.
From the National Institute of Standards and Technology lays out their Cybersecurity Framework. The text explores how organizations can implement the Framework to improve their cybersecurity posture.
While this book does not focus specifically on cybersecurity risk management, it provides an overview of enterprise risk management. Many of the concepts discussed can be applied to cybersecurity risk management.
While this book does not focus specifically on cybersecurity risk management, it provides a comprehensive overview of risk management. can help readers understand the fundamentals of risk management that can be applied to cybersecurity risk management.
This practical guide helps IT professionals understand and manage risk. Cybersecurity risk management key topic covered in the book.
Cornerstone for understanding quantitative risk analysis in cybersecurity, introducing the FAIR (Factor Analysis of Information Risk) methodology. It's highly valuable for those seeking to move beyond qualitative risk assessments and is often used in graduate-level programs and by professionals. It provides a structured framework for measuring and analyzing information risk, making it a useful reference tool for building or strengthening a risk management program.
Building on the principles of measuring the immeasurable, this book applies quantitative methods specifically to cybersecurity risk. It provides practical approaches for risk assessment and analysis, making complex concepts accessible. It's a valuable resource for professionals and advanced students looking to implement data-driven risk management strategies.
This manual is specifically designed for individuals preparing for the CRISC (Certified in Risk and Information Systems Control) certification exam, which focuses on IT risk management. It provides a comprehensive overview of risk identification, assessment, response, and monitoring. It serves as a valuable reference and study guide for professionals seeking certification and a deeper understanding of the CRISC job practice areas.
This concise guide provides an introduction to the NIST Cybersecurity Framework (CSF), a widely used framework for managing and mitigating cybersecurity risk. It explains the framework's core components and how it can be adapted by organizations of any size. It's a useful starting point for gaining a broad understanding of a key risk management framework.
Provides guidance on implementing the NIST Cybersecurity Framework, offering proven practices to anticipate, understand, and optimize IT risk. It correlates CSF guidance with measurable governance and management practices, and maps CSF steps to COBIT 2019. It's a practical guide for professionals involved in putting the NIST CSF into action within their organizations.
This handbook provides practical guidance on creating and communicating effective cybersecurity programs, with a focus on risk management. It valuable resource for understanding how to translate technical cybersecurity concepts into business terms and build a robust security posture.
Delves into the legal and regulatory aspects of cybersecurity and data privacy, which are crucial components of risk management. It provides an international view of legal frameworks and helps ensure cybersecurity programs comply with relevant laws. It's an essential read for understanding the compliance landscape.
This textbook provides a comprehensive yet accessible introduction to the complex world of cybersecurity. It covers foundational concepts, including risk assessment and security policy, progressing from individual computers to Internet-based systems. It's an ideal resource for high school and undergraduate students gaining a broad understanding of information security principles that underpin risk management.
Save
While not solely focused on risk management, this classic text provides a deep understanding of the principles behind designing and building secure systems. A strong foundation in security engineering is crucial for effective risk mitigation. It's a challenging but highly rewarding read for those looking to deepen their technical understanding. is often used in advanced undergraduate or graduate courses.
Save
This business novel, while not strictly a cybersecurity book, offers valuable insights into IT operations, communication, and improvement, which are essential for effective risk management. It highlights the importance of flow, feedback, and culture in an IT organization. It's a highly recommended read for understanding the broader context in which cybersecurity risk management operates and is often recommended for professionals at all levels.
Save
A follow-up to 'The Phoenix Project', this novel explores similar themes from the perspective of developers. It emphasizes the importance of architecture, complexity, and the challenges of legacy systems, all of which significantly impact cybersecurity risk. It's a good supplementary read for understanding the development side of the IT and risk equation.
Focuses on the specific cybersecurity challenges and risk management considerations within the context of smart grids and industrial control systems (ICS). It's valuable for those interested in a specific domain of cybersecurity risk management, highlighting the unique threats and security controls in operational technology environments.
For more information about how these books relate to this course, visit:
OpenCourser.com/course/nclsoq/running
Share
Similar courses
Similar courses are unavailable at this time. Please try again later.
Time
1 hours
Via
Pluralsight
Instructor
Bobby Rogers
This course belongs to a
collection
called
Security Management. It's comprised of 16 courses:
- Security Management
- The Governance of Information Security
- Information Classification
- Personnel Security
- Risk Assessment and Management
- Security Controls and Control Frameworks
- Investigations and Incident Management
- Business Continuity Management
- Security Operations
- Security Control Assessment
- Law, Ethics, and Security Compliance Management
- Evaluating Your Organization’s Security Posture
- Running the Business of Information Security (viewing)
- Developing and Implementing Vulnerability Management Programs
- Building and Implementing a Security Awareness Training Program
- Security Management: A Case Study
Our mission
OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.
Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.
Find this site helpful? Tell a friend about us.
Affiliate disclosure
We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.
Your purchases help us maintain our catalog and keep our servers humming without ads.
Thank you for supporting OpenCourser.
© 2016 - 2025 OpenCourser