InfoSec GRC Analyst

A four-module online training program to help prospective cybersecurity professionals master cybersecurity governance, risk, and compliance.

What is the InfoSec GRC Analyst Program?

The average cost of a data breach is $4.5 million, giving growing losses and staffing shortages. USF has partnered with CBIZ Pivot Point Security to offer a comprehensive course focus on information security. The real world case studies participants will learn about the foundations of information security, how to identify threats, implement risk mitigation strategies, and execute risk and gap assessments.  
 
The Information Security Governance, Risk, and Compliance Analyst program, is a new free online program designed to meet the critical shortage of cybersecurity professionals. Dubbed InfoSec GRC Analyst program, this four-module training is for people in governmental, military, and first-responder roles. It aims to equip participants with essential cybersecurity skills to navigate the complex world of information security governance, risk, and compliance. With expert instructors, a comprehensive curriculum, and flexible learning options, participants in this program will walk away with the knowledge and confidence to serve as an information security professional and in demand field, paying meaningful salaries.  And they’ll gain a digital Credly badge to prove it. 

First cohort update


Why Choose the InfoSec GRC Analyst Program?

Learn to navigate compliance challenges with the USF InfoSec GRC Analyst program, starting with information security fundamentals and progress to implementing and assessing organizations against industry standards. By the end of the program, participants will be able to advise organizations on ways to implement security controls that can reduce cyber risks.  
 
Critical support for the program came from U.S. Representative Greg Steube (R-Fla.), who sought ways to address the urgent need for cybersecurity professionals, particularly within governmental agencies. Rep. Steube envisioned a top-shelf training that could fortify governmental organizations against evolving threats and turned to USF’s Corporate Training and Professional Education team to develop the program.

A man stares at a computer screen

Program Features

  • Comprehensive Curriculum: Dive deep into information security fundamentals, governance, risk assessment, compliance actions, and more. Gain practical insights and hands-on experience through real-world case studies and exercises. 
  • Flexible Learning: With self-paced online modules, monthly office hours, and coaching sessions for personalized support, this is an excellent program for seasoned professionals as well as those new to the field. It is designed for working professionals who need to learn on their own time.  
  • Real-world Application: Put skills to the test with authentic audit exercises and produce reports to showcase proficiency. Completers will be able to hit the ground running in audit roles in governance, risk, and compliance.  
  • Expert Instructors and Innovative Design: Learn from industry leaders at CBIZ, including Elzar Camper, Warren Hylton, and Jefrey Carden, who developed the course with learning designers from USF's renowned Innovative Education unit. Benefit from their wealth of experience and expertise in cybersecurity. 
security camera overlooking a busy walkway

Module Overview 

  • Module 1: covers information security fundamentals needed for later modules that focus on identifying threats and vulnerabilities. The module case study focuses on how assessment methods can be operationalized.
  • Module 2: focuses on ways that governance, risk, and compliance actions either work toward better information security or work against it.
  • Module 3: dives into information security assessments, remediation planning, and reporting, giving participants the skills needed to prepare an assessment.
  • Module 4: In the only synchronous segment, the final module guides participants as they synthesize what they've learned by participating in an authentic audit scenario and producing a final report thus demonstrating their newly acquired skills.
a computer screen with spiderweb of icons
module map that lists out each module with a short description of each module.

Program Details

This mostly self-paced program will be offered free of charge for up to 250 participants between July 2024 and June 2025. Priority enrollment is extended to entry-level and transitioning professionals, particularly active-duty members of the military and veterans working within local and regional governmental organizations. While there is no minimum educational requirement, those with some technology experience or education are more likely to be successful in the program. Participants do not have to apply to be ßÙßÇÂþ»­ students; this is a non-credit training program offered by USF Corporate Training and Professional Education. 

  • Application Opens: June 7, 2024
  • Content Access Begins: July 8, 2024 
  • Completion Deadline: 60 days from the date the first module is accessed 
  • Certification: Earn a Credly digital badge recognized by industry professionals, upon completion 
man and women stand in a server room looking at laptop

Benefits to Employers

Smart employers know that investing in their team’s professional development not only benefits the individuals that comprise the organization but also enhances the entire organization – and in this case, safeguards against evolving cyber threats. Benefits specific to this program include: 

  • Enhanced Cybersecurity Expertise: Employees will be equipped with essential skills and knowledge to navigate today's complex cybersecurity landscape. They'll gain a deep understanding of information security governance, risk assessment, and compliance actions, enabling significant contributions to your organization's cybersecurity strategy. 
  • Improved Risk Management: Organizations with a workforce trained in cybersecurity best practices, can better identify, assess, and mitigate cybersecurity risks. Employees learn to proactively identify vulnerabilities, implement security controls, and ensure regulatory compliance, reducing the likelihood of costly data breaches or cyberattacks. 
  • Strategic Decision-Making: Employees who complete this program will be able to make strategic recommendations and guidance on cybersecurity matters. They will be better equipped to advise leadership on implementing effective security measures, aligning cybersecurity initiatives with business objectives, and making informed decisions to protect sensitive data and assets. 
    Long-term Cost Savings: Employers who help upskill and reskill current employees on cybersecurity can reduce the need to outsource security functions or hire external consultants. Additionally, a well-trained team can minimize the financial impact of security incidents and regulatory penalties. 
  • Competitive Advantage: In today's digital age, cybersecurity is paramount for maintaining customer trust and safeguarding an organization's reputation. Demonstrating a commitment to cybersecurity education and investing in employees' professional development gives leading organizations a competitive edge. Clients and partners have confidence in the organization's ability to protect their sensitive information. 
  • Retention and Morale: Offering skill development and career advancement opportunities boosts employee morale and loyalty. Employees appreciate organizations that foster a culture of continuous learning and innovation and invest in their growth, leading to higher job satisfaction and retention rates.