OLASEC LEARNING 

In this module, students will be introduced to the foundational concepts of Cybersecurity Governance, Risk and Compliance (GRC). We'll discuss the critical role GRC plays in supporting business objectives, managing risk, and ensuring regulatory compliance.

You’ll learn how industry regulations (such as HIPAA and NYDFS) influence enterprise policies, and how those regulations are translated into actionable standards and procedures. We’ll also break down the differences between policies, standards, and procedures, and explain how they work together—including typical review cycles and approval processes.

In this module, you’ll learn how to identify and protect the critical information assets of an organization. We’ll explore how cybersecurity risks are assessed and managed, and examine the safeguards organizations use to protect data throughout its lifecycle. Students will gain insight into asset identification, data classification, and the implementation of key security controls.

In this module, students will learn how cyberattacks are detected, analyzed, and responded to in real-world environments. We’ll explore the various tactics, techniques, and procedures (TTPs) used by threat actors, and how organizations use centralized monitoring tools, threat intelligence, and structured response plans to manage and mitigate incidents effectively.

In this module, students will explore how organizations prepare for and recover from disruptive events. You’ll learn how to conduct a business impact analysis, develop disaster recovery strategies, and ensure that continuity plans are properly documented, maintained, and regularly tested. The focus will be on maintaining operational resilience and meeting performance expectations, even during unexpected incidents.

In today’s hyperconnected environment, third-party relationships are a significant source of cybersecurity risk. In this module, students will learn how to build and maintain a third-party risk management (TPRM) program that protects the organization from vendor-related threats. We'll explore how to frame, assess, respond to, and continuously monitor third-party risks in alignment with business goals and regulatory expectations.

In this module, students will explore the critical distinction between security and privacy, and why both are essential in today’s data-driven world. We’ll examine key privacy principles, the roles and responsibilities of data handlers, and how privacy regulations shape the way organizations collect, store, and use personal data. The module also highlights the operational and reputational impact of non-compliance.

In this module, students will gain a practical understanding of the major cybersecurity standards that guide security programs across industries. We’ll explore how to apply these frameworks in professional environments, distinguish between standards and regulations, and examine key requirements from NIST, PCI DSS, and HITRUST. This module helps build the foundation for audit readiness and control-based security governance.

In this module, students will learn how to evaluate the maturity of a cybersecurity program and communicate risk insights effectively. We'll explore how to identify key gaps, report on risk and compliance metrics, and lead initiatives that drive program improvement. The module emphasizes strategic reporting to stakeholders and aligning cybersecurity capabilities with business objectives.

This module introduces the core components of modern IT environments—servers, networks, storage, endpoints, and cloud platforms. Students will explore how IT architecture supports business functions, and how system design choices impact scalability, availability, and organizational value.

Students will learn how to manage enterprise systems effectively, including user access, system configuration, maintenance, and automation. This module emphasizes the role of system administration in supporting governance, internal controls, and compliance with security and operational policies.

This module provides an overview of project lifecycles and the steps required to execute IT initiatives successfully. Topics include project planning, scope definition, stakeholder alignment, risk management, and structured change processes to ensure systems are implemented reliably and securely.

In this module, students will gain a practical understanding of how IT services are delivered and supported. Topics include incident and request management, system performance monitoring, and service-level tracking. 

Students will explore how organizations plan for and respond to system disruptions. This module covers business impact analysis (BIA), backup and recovery strategies, failover design, and disaster recovery (DR) documentation. The focus is on sustaining IT operations during unplanned events to protect business continuity.

This module introduces the role of business intelligence in IT operations. Students will learn how to collect, analyze, and visualize system performance data using tools like Power BI.