°®ÎÛ´«Ã½

InfoSec GRC Analyst

Tackle the challenges of today's digital landscape head-on with the University of South °®ÎÛ´«Ã½â€™s new Information Security Governance, Risk, and Compliance Analyst program (Infosec GRC Analyst), an online program designed to meet the critical shortage of cybersecurity professionals. This course is designed for individuals who are new to the field of Governance, Risk, and Compliance (GRC) and are seeking to transition into a cybersecurity or information security career.

It is ideal for professionals from non-technical backgrounds such as administration, finance, legal, healthcare, education, or project management who are interested in building a foundational understanding of how organizations manage risk, ensure compliance, and uphold cybersecurity governance. No prior experience in cybersecurity or IT is required.

The content is tailored to help learners connect their existing transferable skills with the key concepts, processes, and tools used in GRC roles. With expert instructors, a comprehensive curriculum, and flexible learning options, participants in this online training program will learn how to advise organizations on implementing security controls that can reduce cyber risks – and will earn a Credly digital badge to prove it.

---

CURRICULUM & COURSE DETAILS

Learn to navigate compliance challenges with the USF InfoSec GRC Analyst program. Start with information security fundamentals and progress to implementing and assessing organizations against industry standards. By the end of the program, participants will be able to advise organizations on ways to implement security controls that can reduce cyber risks.

Module 1 Introduces the core principles of GRC, including key frameworks, policies, and risk management practices. Learners will explore roles, assessments, and assurance methods essential to effective information security and compliance.	Module 2 Introduces the NIST Cybersecurity Framework (CSF) and its five core functions (Identify, Protect, Detect, Respond, and Recover), which provide a strategic foundation for managing cybersecurity risks. Through real-world scenarios and structured methodologies, learners will gain practical skills in assessing threats, evaluating controls, and aligning risk management practices with NIST guidelines.	Module 3 Explores how to integrate emerging technologies into existing cyber risk frameworks, with a focus on developing an effective organizational profile that reflects the evolving digital ecosystem. Participants will learn how to apply Zero Trust principles, assess AI-related risks, and use the NIST CSF to build a resilient cybersecurity posture.
Module 4 Dives into information security assessments, remediation planning, and reporting, giving participants the skills needed to prepare an assessment.	Module 5 In the only required synchronous segment, the final module guides participants as they synthesize what they've learned by participating in an authentic audit scenario and producing a final report thus demonstrating their newly acquired skills.

---

---

Learning Objectives

Upon successful completion of this course, learners will be able to: 

• Apply fundamental concepts of information security, including the CIA triad (Confidentiality, Integrity, and Availability) and basic security principles. 
• Differentiate between IS frameworks, standards, and regulations. 
• Use common IS terminology to contextualize and communicate risk effectively. 
• Describe the roles and responsibilities of IS stakeholders/practitioners. 
• Identify the fundamental concepts and principles of Artificial Intelligence (AI) and Zero Trust Architecture (ZTA). 
• Conduct a NIST Cybersecurity Framework (CSF) v2 Gap Assessment

---

Prerequisites

Students are required to pass prior to enrolling in this course. If you have questions regarding this prerequisite, please contact the advisor using the contact information above.

Participants should plan to spend approximately three weeks completing the Cyber Security Essentials (prerequisite) course, dedicating 4-5 hours per week to learning and activities.