Graduate Certificate Programs: Cybersecurity Management

Graduate Certificate Programs: Cybersecurity Management

Graduate Certificate Program in
Cybersecurity Management

Designed for working information security professionals, the 15-credit-hour graduate certificate in Cybersecurity Management prepares you to build and execute strategic plans that resonate with business executives, create effective information security policy, design and deploy information security environments, and lead, inspire, and motivate cybersecurity teams. You'll learn from some of the world's top cybersecurity experts, gain hands-on technical and leadership experience you can apply immediately on the job, and emerge with 5 industry-recognized GIAC certifications.

A 100% online option is available.

Applications are accepted monthly. Learn more.

Join Us for a Free Online Info Session

Overview of Graduate Programs
Tuesday, September 28, 11:00 am (ET)
Register here.

Cloud Security Graduate Certificate
Featuring SANS Fellow Frank Kim and SANS Instructor Ryan Nicholson
Thursday, September 30, 6:30 pm (ET)
Register here.

Learn How To

  • Manage the information security function in an enterprise in a way that takes into account the relationship between and responsibilities shared by the communities of interest, including the general business, information technology, and information security.
  • Apply a standards-based approach to risk management, including business impact analyses, cost-benefit analyses, and implementation methods that map to business needs/requirements.
  • Integrate enterprise security operations, including policy, strategic and continuity planning, implementation programs, and personnel into an operation that can effectively manage the security needs of an enterprise.
  • Articulate legal positions to meet ethical and business needs associated with the protection of information and privacy of an enterprise.
  • Devise and implement strategies for incident detection and response, including business continuity planning and disaster recovery planning (BCP/DRP), that are cost effective and meet the business needs of the enterprise.

Curriculum | 15 credit hours

Click on each course title for a full description.

Required Core Courses | 9 credit hours:
ISE 5001: Security Leadership Essentials for Managers | MGT 512, GSLC

SANS class: SANS MGT 512 Security Leadership Essentials for Managers
Assessment: GIAC GSLC
3 Credit Hours

ISE 5001 uses case studies, group discussions, team-based exercises, in-class games, and a security leadership simulation to help you absorb both technical and management topics. Covering a wide range of security topics across the entire security stack, this course empowers you to become an effective security manager and get up to speed quickly on information security issues and terminology. Data, network, host, application, and user controls are examined in conjunction with key management topics that address the overall security lifecycle, including governance and technical controls focused on protecting, detecting, and responding to security issues.

The course will prepare you to:

  • Make sense of different cybersecurity frameworks
  • Understand and analyze risk
  • Understand the pros and cons of different reporting relationships
  • Manage technical personnel
  • Build a vulnerability management program
  • Inject security into modern DevOps workflows
  • Strategically leverage a SIEM
  • Change behavior and build a security-aware culture
  • Effectively manage security projects
  • Enable modern security architectures and the cloud
ISE 6255: Defensible Security Architecture and Engineering | SEC 530, GDSA

Content: SANS SEC 530 Defensible Security Architecture and Engineering
Assessment: GIAC GDSA
3 Credit Hours

Effective security requires a balance between detection, prevention, and response capabilities. Defensible Security Architecture and Engineering is designed to help you establish and maintain a holistic and layered approach to security. You will learn the fundamentals of up-to-date defensible security architecture and how to engineer it, with a heavy focus on leveraging current infrastructure (and investment), including switches, routers, and firewalls. You'll learn how to reconfigure these devices to significantly improve their organization's prevention capabilities in the face of today's dynamic threat landscape. The course will also delve into the latest technologies and their capabilities, strengths, and weaknesses. Multiple hands-on labs will reinforce key points in the course and provide actionable skills that you will be able to leverage immediately at work.

ISE 5650: Security Strategic Planning, Policy, Business Fundamentals and Leadership | MGT 514, GSTRT; SEC 405

Content: SANS MGT 514 Security Strategic Planning, Policy, and Leadership; SANS SEC 405 Business Finance Essentials*
Assessment: GIAC GSTRT, SEC 405 quiz
3 Credit Hours

ISE 5650 covers the critical processes to be employed by technical leaders to develop the skills and techniques to select, train, equip, and develop a team into a single cohesive unit with defined roles that operate together in harmony toward team-objective accomplishment.

Topics covered include:

  • Leadership development
  • Coaching and training
  • Employee involvement
  • Conflict resolution
  • Change management
  • Vision development
  • Motivation
  • Communication skills
  • Self-direction
  • Brainstorming techniques
  • Strategic planning and policy development
  • The 10 core leadership competencies

*Both MGT 514 and SEC 405 must be taken in the OnDemand modality.

Elective Courses | 6 credit hours:

Students select two of the following.

ISE 6001: Implementing and Auditing the Critical Security Controls | SEC 566, GCCC

Content: SANS SEC 566: Implementing and Auditing CIS Critical Controls
Assessment: GIAC GCCC
3 Credit Hours

Cybersecurity attacks are increasing and evolving so rapidly that is more difficult than ever to prevent and defend against them. ISE 6001 will help you to ensure that your organization has an effective method in place to detect, thwart, and monitor external and internal threats to prevent security breaches. As threats evolve, an organization's security should too. Standards based implementation takes a prioritized, risk-based approach to security and shows you how standardized controls are the best way to block known attacks and mitigate damage from successful attacks.

ISE 5800 IT Project Management and Effective Communication | MGT 525, GCMP

Content: MGT525: IT Project Management and Effective Communication
Assessment: GIAC GCPM
3 Credit Hours

In ISE 5800 you will learn how to improve your project planning methodology and project task scheduling to get the most out of your critical IT resources. The course utilizes project case studies that highlight information technology services as deliverables. ISE 5800 follows the basic project management structure from the PMP® Guide 5th edition and also provides specific techniques for success with information assurance initiatives. All aspects of IT project management are covered - from initiating and planning projects through managing cost, time, and quality while your project is active, to completing, closing, and documenting as your project finishes.

ISE 6715: Auditing & Monitoring Networks, Perimeters & Systems | AUD 507

Content: SANS AUD 507 Auditing Networks, Perimeters, and Systems
Assessment: GIAC GSNA
3 Credit Hours

ISE 6715 is organized specifically to provide a risk driven method for tackling the enormous task of designing an enterprise security validation program. After covering a variety of high-level audit issues and general audit best practice, you'll have the opportunity to dive deep into the technical how to for determining the key controls that can be used to provide a level of assurance to an organization. Tips on how to repeatably verify these controls and techniques for continuous monitoring and automatic compliance validation are given from real world examples.

ISE 6720: Law of Data Security and Investigations | LEG 523,GLEG

Content: SANS LEG 523 Law of Data Security and Investigations
Assessment: GIAC GLEG
3 Credit Hours

ISE 6720 introduces you to the new laws on privacy, e-discovery, and data security so you can bridge the gap between the legal department and the IT department. It also provides you with skills in the analysis and use of contracts, policies, and records management procedures.

  • "I firmly believe, had it not been for SANS, my career would not be what it is today. My SANS education has enabled me to compete on a completely new level and given me the chance to network with industry greats."

    Steven Romero
    Engineer, Chevron

  • "I have my master's in computer science, but I completed
    two graduate certificate programs with SANS so I could
    truly dive deep into technical areas of cybersecurity
    and learn from instructors who are leading the industry."

    Jeff Sass
    Senior Engineering Manager, Adobe

  • "Earning a graduate certificate from SANS is what really
    accelerated my career. The technical skills I learned in the
    program have given me the confidence to successfully lead
    my team and prepare them for new challenges."

    David Cox
    Manager, Cyber Threat Management, EY

The SANS Technology Institute Advantage

Online and In-Person Study Options

Flexibility for Working Professionals

  • Monthly admissions windows mean you can start on your schedule and earn the graduate certificate in roughly two years.

Credentials that Showcase Your Skills

  • Earn 5 industry-recognized GIAC certifications that validate your skill set in critical, specialized areas of InfoSec.

World-class Faculty

Pathway to a Master's Degree

  • Credits earned in the certificate program may be applied directly toward the master's degree program should you later apply and be accepted.

Success Stories

Video gaming was the start of what would lead to Jeff Sass's decades-long career at Adobe.

Discover why he chose to pursue 3 graduate certificates at — and how the experience helped him win a promotion to manager.

Read Jeff’s story and other profiles here.

Quick Links

Admissions Deadlines & Application Requirements
Tuition & Options for Funding


We're happy to help.
Email or call (301) 241-7665.