Security for Leaders
Decisions without expertise. For technical managers who inherited security without asking for it.
Decisions Without Expertise.
A decision-grade course for technical managers who inherited security — CTOs, engineering managers, tech leads, first-time security leaders. No "what is a firewall." Just the judgment calls experience would otherwise give you.
Every Act 3 module is anchored in real incidents — Colonial Pipeline, MGM vs. Caesars, Samsung ChatGPT, Equifax, Target 2013, Twitter 2020 — and ends with a branching decision scenario where your earlier choices gate what happens next.
"You don't need to become a security practitioner. You need the judgment to make calls that hold up — on vendors, incidents, AI, risk, hiring, and the people you rely on."
What You'll Learn
- Act 1 — Anatomy — the six pillars of a program and a NIST CSF crosswalk you can actually use
- Act 2 — Making the case — translating security into business language without becoming a fraud
- Act 3 — Maturing — vendor evaluation, incident decision-making, AI governance, risk prioritization, your first hire, awareness that isn't theater
Course Curriculum
What a Security Program Actually Is
Assessing Where You Are
Translating Security Into Business Language
Act 3 — Maturing the Program
Vendor evaluation, incident decision-making, AI governance, risk prioritization, your first security hire, awareness that isn't theater. Each module includes a state-driven decision scenario and a downloadable template.