Cybersecurity for Managers: A Playbook

Build your action plan for a more cyber resilient organization

Get Your Brochure

Course Dates

STARTS ON

November 4, 2021

Course Duration

DURATION

6 weeks, online
5-6 hours per week

Course Duration

PROGRAM FEE

US$2,800

Course Information Flexible payment available

Cybersecurity: Creating a Culture of Awareness

One of the biggest myths is that cybersecurity is just an IT problem. Decisions about cybersecurity have implications throughout your organization—not only for technology-focused teams, but for every team. It only takes one bad actor or one mistake to put the entire organization in jeopardy. Therefore, all of us have a role to play in keeping our organization secure.

Who Is This Program For?

This online program is for business leaders, managers, and executives in both technical and non-technical positions looking to build an action plan for a more cyber resilient organization. Technology and business consultants and others acting as liaisons between technology and business units will also benefit.

There are no technical prerequisites for this program.

This program will:

  • Offer frameworks that provide a strategic view of an organization’s cybersecurity risk management, both quantitative and qualitative
  • Cover the leading approaches to managing cybersecurity, including 'defense in depth' and the National Institute of Standards and Technology (NIST) Cybersecurity Framework
  • Offer a practical interpretation of the tradeoffs between security and privacy, and a method for understanding your organization's priorities
  • Develop the vocabulary of cybersecurity to support informed conversations with your CISO, CTO, and other technology leaders

Impact

  • A framework that provides a strategic view of an organization’s cybersecurity risk management, including management mechanisms you can put in place immediately
  • A playbook with actionable next steps for improving a culture of cyber awareness within your organization
  • The language and vocabulary to support informed conversation with your CISO, CTO, and other technology leaders
  • An appreciation of how decisions made by technologists may affect the business landscape within your organization
  • An awareness of the leading approaches to managing cybersecurity, including 'defense in depth' and the National Institute of Standards and Technology (NIST) Cybersecurity Framework
  • A practical interpretation of the tradeoffs between security and privacy, and a method for understanding your organization's priorities

Program Modules

Orientation Module:

Welcome to Your Online Campus

Module 1:

Understanding the Threat Landscape

Gain an overview of the key concepts and practices in cybersecurity and identify how to achieve cyber safety.

Module 2:

Organizing Cyber Management Priorities: The National Institute of Standards and Technology (NIST) Cybersecurity Framework

Use the High-Tek Sensors case to learn about the NIST Cybersecurity Framework and apply key concepts to individual organizations.

Module 3:

Measuring Risk Exposure

Gain an understanding of risk management practices, qualitative and quantitative frameworks for measuring risk and cyber insurance.

Module 4:

Improving Defenses with Systems and Technology

Learn the basics of cybersecurity resource allocation, the concept of ‘defense in depth' and how to improve defenses.

Module 5:

Building a Culture of Cybersecurity

Learn about management mechanisms for influencing cybersecurity culture within organizations using The Cybersecurity Culture Model.

Module 6:

Exploring Ethics in Cybersecurity

Understand important tradeoffs between security and privacy and the considerations of ethics in cybersecurity using the Apple-FBI controversy as an example.

Orientation Module:

Welcome to Your Online Campus

Module 4:

Improving Defenses with Systems and Technology

Learn the basics of cybersecurity resource allocation, the concept of ‘defense in depth' and how to improve defenses.

Module 1:

Understanding the Threat Landscape

Gain an overview of the key concepts and practices in cybersecurity and identify how to achieve cyber safety.

Module 5:

Building a Culture of Cybersecurity

Learn about management mechanisms for influencing cybersecurity culture within organizations using The Cybersecurity Culture Model.

Module 2:

Organizing Cyber Management Priorities: The National Institute of Standards and Technology (NIST) Cybersecurity Framework

Use the High-Tek Sensors case to learn about the NIST Cybersecurity Framework and apply key concepts to individual organizations.

Module 6:

Exploring Ethics in Cybersecurity

Understand important tradeoffs between security and privacy and the considerations of ethics in cybersecurity using the Apple-FBI controversy as an example.

Module 3:

Measuring Risk Exposure

Gain an understanding of risk management practices, qualitative and quantitative frameworks for measuring risk and cyber insurance.

Download Brochure

Program Highlights

Decorative image relating to text that follows

Interactive Cybersecurity Simulation

Test out different budget scenarios for prevention, detection, and response – and learn how each affects profitability

Decorative image relating to text that follows

Case Studies and Examples

Insurance case study on creating a culture of prevention and awareness. Manufacturing case study featuring the NIST Cybersecurity framework. Ethics considerations in cybersecurity explored through a case study involving Apple Inc.

Industry Perspectives

In depth interview with a cloud cybersecurity industry expert

Decorative image relating to text that follows

A Personalized Cybersecurity Playbook

Bring together key concepts and insights from the program modules to build an action plan—a playbook—of what you will do next

Faculty

Faculty Member Stuart Madnick

Stuart Madnick

John Norris Maguire (1960) Professor of Information Technology; Professor, Information Technology and Engineering Systems; Co-Director, PROFIT Program

Stuart Madnick is the John Norris Maguire Professor of Information Technologies at the MIT Sloan School of Management, a Professor of Engineering Systems at the MIT School of Engineering, and the Founding Director of Cybersecurity at MIT Sloan: the Interdisciplinary Consortium for Improving Critical Infrastructure Cybersecurity. Madnick’s involvement in cybersecurity research goes back to 1979, when he coauthored the book Computer Security. Currently he heads the Cybersecurity at MIT Sloan initiative, formerly called the Interdisciplinary Consortium for Improving Critical Infrastructure Cybersecurity, aka (IC)3.

Faculty Member Keri Pearlson

Keri Pearlson

Executive Director, Cybersecurity at MIT Sloan

Keri Pearlson is the Executive Director of Cybersecurity at MIT Sloan and has held positions in academia and industry including Babson College, The University of Texas at Austin, Gartner’s Research Board, CSC, and AT&T. She founded KP Partners, a CIO advisory services firm and the IT Leaders’ Forum, a community of next generation IT executives. She is the founding director of the Analytics Leadership Consortium at the International Institute of Analytics. Pearlson began her career at Hughes Aircraft Company as a systems analyst.

Faculty Member Dr. Michael Siegel

Dr. Michael Siegel

Director of Cybersecurity at MIT Sloan (CAMS) and Principal Research Scientist

Dr. Michael Siegel is a Principal Research Scientist at the Sloan School of Management, Massachusetts Institute of Technology. He is also the Director of Cybersecurity at MIT Sloan (CAMS). Dr. Siegel’s research focuses on the management, strategy, technology, and organizational issues related to cybersecurity with specific interest in vulnerability markets, cyber risk metrics, dark web business models, IoT endpoint security, cybersecurity workforce development, and educating management in cybersecurity. He also has done research in the intelligent integration of information systems, risk management, insurgency and state stability, data analytics, healthcare systems, and systems modeling. More info

What Participants Say

"As mentioned, the program was understandable for people without a technical background. As a C-suite executive from the business side, it was a perfect fit for me."

— Martin Burns, Chief Industry Operations Officer, Investment Company Institute

Sarah Taylor

"I have a much better understanding of the types of threats I need to consider for my company, including some jargon I didn't previously understand. I loved the sections on building a culture of security and I am actively implementing some of those ideas."

— Sarah Taylor, General Manager at Research Square USA

"The program showcases an extended view of Cybersecurity being a business problem, and how people can contribute to fight the cyber threat."

— Brian Ferreira, VP, Gartner

Bruno Schmid

"I really liked the simulation of applying costs for cybersecurity, and the discussion about the Apple case. It makes one realize the number of layers affected when such incidents happen."

— Bruno Schmid, Senior Security Engineer at Avectris Switzerland

"The program was a great introduction and guide. The concepts were very well explained."

— Isabel Sauerbrey, Senior Vice President of Information Technology & Operations at Roswell Biotechnologies

"The best part is the videos and especially discussions. Applying what you have learned at the same time as learning from other students' points of view."

— Simon Mzaouakk, VP- Technology Officer at Watertown Savings Bank USA

Heng Chye Carter Tan

"Interactions with the class participants and simulations helped me understand what like-minded professionals face in their cybersecurity related challenges."

— Heng Chye Carter Tan, Enterprise Solutions Architect at Keppel Enterprise Services Singapore

Certificate

Example image of certificate that will be awarded after successful completion of this program

Certificate

Receive a verified digital certificate of completion from MIT Sloan School of Management. This program also counts towards an MIT Sloan Executive Certificate.

Download Brochure

After successful completion of the program, your verified digital certificate will be emailed to you, at no additional cost, in the name you used when registering for the program. All certificate images are for illustrative purposes only and may be subject to change at the discretion of MIT Sloan.

Apply Now

Early registrations are encouraged. Seats fill up quickly!

Flexible payment options available. Learn more.