Who is this course suitable for?

This course is suitable for IT managers, compliance officers, security experts, and anyone interested in understanding how governance, rules, risk management, and compliance impact effective cybersecurity practices.

Are there any prerequisites to join this course?

No prerequisites are required. Completing the prior courses in this CompTIA Security+ certification specialization, particularly Information Security Foundations and Cybersecurity Threats and Defense, will help you understand the concepts better.

When will I have access to the lectures and assignments?

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

What will I get if I subscribe to this Specialization?

When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Is financial aid available?

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.

Cybersecurity Governance and Compliance

Cybersecurity Governance and Compliance

This course is part of CompTIA Security+ Certification Preparation Specialization

Instructor: LearnKartS

Included with

Learn more

2 modules

Gain insight into a topic and learn the fundamentals.

10 reviews

Intermediate level

Recommended experience

3 hours to complete

Flexible schedule

Learn at your own pace

2 modules

Gain insight into a topic and learn the fundamentals.

10 reviews

Intermediate level

Recommended experience

3 hours to complete

Flexible schedule

Learn at your own pace

What you'll learn

Discover how to establish a structure for your Cybersecurity Governance, detail responsibilities and align security with business strategy
Understand risk management end-to-end, including risk identification, analysis, tolerance, appetite, treatment, and business impact analysis
Obtain hands-on skills with compliance management, vendor assessments, privacy issues and data protection controls
Discover strategic security strategies, including policy management, third-party risk oversight, phishing reporting, and penetration testing

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

9 assignments

Taught in English

91% of learners achieved a positive career outcome

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

logos of Petrobras, TATA, Danone, Capgemini, P&G and L'Oreal

Build your subject-matter expertise

This course is part of the CompTIA Security+ Certification Preparation Specialization

When you enroll in this course, you'll also be enrolled in this Specialization.

Learn new concepts from industry experts
Gain a foundational understanding of a subject or tool
Develop job-relevant skills with hands-on projects
Earn a shareable career certificate

There are 2 modules in this course

Build the strategic side of cybersecurity — the one that dictates how organizations remain secure, compliant, and resilient. Cybersecurity Governance and Compliance explains the frameworks that give direction to security decisions, the policies that influence behavior, and the risk practices that keep operations up and running.

You’ll learn how to build governance structures, manage security policies, and evaluate risk through identification, analysis, tolerance, appetite, and treatment. BIA and vendor risk management help you understand business-critical dependencies and third-party exposure. You then move into the practical world of compliance: running vendor assessments, using compliance tools, managing privacy and data protection requirements, and strengthening awareness through penetration testing fundamentals, reconnaissance insights, and phishing reporting. If you want to influence security at a strategic level, this course becomes your roadmap. Enroll and advance into a governance-driven cybersecurity role.

Module details

In this module, you’ll gain an understanding of governance, risk, and compliance (GRC) frameworks and their role in security management. You’ll also explore risk assessment, BIA, vendor management, and governance structures that drive accountability and resilience.

What's included

12 videos5 assignments

12 videosTotal 60 minutes

Course Introduction4 minutes
Introduction to GRC5 minutes
Security Governance and Policy Management5 minutes
External Governance Considerations6 minutes
Governance Structures and Accountability6 minutes
Risk Identification and Assessment5 minutes
Risk Analysis and Documentation5 minutes
Risk Tolerance and Risk Appetite4 minutes
Risk Handling Techniques5 minutes
Business Impact Analysis (BIA)5 minutes
Vendor Risk Management5 minutes
Legal Agreements and Documentation4 minutes

5 assignmentsTotal 53 minutes

Governance Foundations12 minutes
Risk Identification and Analysis21 minutes
Governance Foundations8 minutes
Risk Management and Assessment Framework6 minutes
Business Impact and Third-Party Risk Management6 minutes

In this module, you’ll explore assessment and compliance tools, along with privacy and data protection practices. You’ll also learn about penetration testing, phishing awareness, and the importance of user training in strengthening security.