Governance, Risk & Compliance
No coding required!
DVMS Institute
The DVMS Institute teaches organizations of any size, scale, or complexity an Affordable and Scalable way to Operationalize a DVMS NIST Cybersecurity Framework Overlay System capable of Assuring Digital Business Protection, Performance, Resilience and Trust.
It offers a free training video to help individuals understand the critical differences between NIST Cybersecurity Framework versions 1.1 and 2.0. This video training is your starting point to understand how the NIST Cybersecurity Framework 2.0 will help your organization begin its journey to create a culture capable of mitigating digital risk to protect organizational digital business performance, resilience, and trust.
GIAC – Global Information Assurance Certification
Enterprise security isn't just the responsibility of an organization's cybersecurity professionals. Keeping the business secure requires input from all levels of leadership. Managers need technical knowledge as well as traditional management skills to be effective leaders for their infosec teams. GIAC's Management certifications confirm the practical skills to build and lead security teams, communicate with both technical teams and business leaders, and develop capabilities that strengthen your organization's security posture. GIAC Cybersecurity Leadership Certifications include:
- GSTRT: GIAC Strategic Planning, Policy, and Leadership
- GSLC: GIAC Security Leadership Certification
- GCCC: GIAC Critical Controls Certification
- GCPM: GIAC Certified Project Manager
- GLEG: GIAC Law of Data Security & Investigations
- GSOM: GIAC Security Operations Manager Certification
- GSNA: GIAC Systems and Network Auditor Certification
- GISP: GIAC Information Security Professional Certification
GRC Academy
GRC Academy provides training resources around NIST, ISO and CMMC standards and regulations.
ISACA
The organization offers certifications in CISA, CGEIT, CRISC and CISM: Certified Information Security Manager. Like CompTIA and CISSP, CISM was named to KnowledgeNet’s list of Top Ten Cyber Security Certifications for 2018.
(ISC)²
(ISC)² offers a large number of information security certifications. Their banner certification is the globally-recognized href="https://www.isc2.org/Certifications/CISSP" target="_blank">CISSP: Certified Information Systems Security Professional.
CISSP holders work as security managers, directors of security, network architects, security analysts – pretty much anyone in a senior management position. The program covers 10 domains, including:
(ISC)² also offers the CGRC: Certified Information Systems Security Professional.
Capitalize on the rising demand for Governance, Risk and Compliance (GRC) expertise by earning the CGRC certification. The CGRC is a proven way to demonstrate your knowledge and skills to integrate governance, performance management, risk management and regulatory compliance within your organization. CGRC professionals utilize frameworks to integrate security and privacy within organizational objectives, better enabling stakeholders to make informed decisions regarding data security, compliance, supply chain risk management and more. The program covers 7 domains, including:
ISSA
The Information Systems Security Association International (ISSA) sponsors leadership training, mentoring, and networking programs for all cybersecurity professionals. It has a special interest group for women who strive to enhance their knowledge of cybersecurity as a whole and promotes the involvement of women in the field.
NICCS – National Initiative for Cybersecurity Careers and Studies
Cyber Career Pathways Tool
CISA released the Cyber Career Pathways Tool, which is designed for individuals looking to start a career in cybersecurity, considering a change within the cyber field, college students, managers, and workforce development specialists interested in the cyber ecosystem.
This tool will help individuals identify, build, and navigate a potential cyber career pathway by increasing understanding of the knowledge, skills, and abilities needed to begin, transition, or advance a cyber career.
OCEG
OCEG provides an interconnected suite of certifications that span all of the critical disciplines including governance, strategy, risk, compliance, security and audit.Women in Defense (WID)
Incorporated in 1985 and an affiliate of the National Defense Industrial Association (NDIA), cultivates and supports the advancement and recognition of women in all aspects of national security — including cybersecurity. The WID Annual National Conference features keynote speakers from NASA, NSA, DHS, CyberCom and StratCom.
Women in Security and Privacy (WISP)
WISP promotes the development, advancement, and inclusion of women in the cybersecurity field. WISP’s calendar is an excellent resource providing a list of their own innovative events alongside other women in cyber events, and various security and hacker conferences in the U.S.
Women Leading Privacy
Women Leading Privacy is a space for women cybersecurity professional to give and get career support, to help advance women in the field, and to expand their personal and professional networks
Women’s Society of Cyberjutsu (WSC)
WSC is a non-profit for women in cyber. Cyberjutsu sounds like a martial art — and Jiggets is a 10th-degree black belt with credentials that include MBA, CISSP, ECSA, C|EH, SCNP, MCSE, CCNA, SCSA, Network+, and A+. Her organization provides training, networking, mentorship, and a job board.