Register
About Schedule Venue
About Schedule Venue

Executive Cyber Risk Certificate (ECRC)

The Executive Cyber Risk Certificate (ECRC) is a leadership development program for board directors, senior executives, and public-sector leaders responsible for governing enterprise risk in a digital world.

This program equips participants with the language, frameworks, and decision tools needed to:

  • Fulfill fiduciary duty of care
  • Define and enforce risk boundaries
  • Lead a transparent, risk-aware culture
  • Align cybersecurity with enterprise strategy and performance


Rather than focusing on technical implementation, ECRC emphasizes governance-forward leadership. Participants learn to govern enterprise risk with clarity, accountability, and defensibility—ensuring cyber risk is addressed as a strategic, enterprise-level concern.


Core Philosophies


The ECRC program is grounded in five leadership principles:

  • Risk Governance is the First Priority of Leadership
  • Fiduciary Duty of Care Requires Doing the Right Things—Because They Are Right
  • The Right Risk Boundary is Unique to the Enterprise—and Must Be Defined by Leadership
  • Risk Culture Must Be Established and Enforced by Leadership
  • “Trustworthy, Reliable, and Safe” Over Technical Metrics


What to Expect


Participants will explore the Three-Tier Governance Model, the Four-Level Learning architecture, and the ECRC Risk Governance Ontology, Taxonomy, and Controlled Vocabulary (OTCV). These foundational concepts are reinforced across seven integrated domains:

  • Introduction and Foundations - Learn the program structure, shared vocabulary, and core philosophies that frame the ECRC approach.
  • Board Governance and & Oversight - Understand the board’s role in risk governance, including fiduciary duty, materiality, and oversight structures.
  • Risk Appetite and Strategy - Define and operationalize risk appetite, tolerance, and capacity. Learn how to embed risk boundaries into enterprise strategy.
  • Risk Leadership and Culture - Explore how executives shape risk culture, enforce accountability, and lead with transparency.
  • Operational Assurance and Resilience - Examine how management ensures operations remain secure, reliable, and within governance-defined boundaries.
  • Continuous Improvement and Integration - Learn how governance evolves through lessons learned, institutional memory, and program maturity.
  • Program Integration and Capstone - Apply what you’ve learned in a final integration exercise and complete your 90-day governance action plan.


Program Format

 

  • 20-hour live workshop at the Buckhead Club in Atlanta
  • Self-paced online learning via the ECRC LMS
  • Official textbooks, case studies, and downloadable tools
  • 90-question proctored exam (70% required to pass)
  • ECRC credential and digital badge upon successful completion


Who Should Attend


This program is designed for:

  • Board directors and committee members
  • C-suite executives (CIO, CISO, CRO, CFO, CEO)
  • General counsel, compliance officers, and public-sector leaders
  • Anyone responsible for setting, enforcing, or reporting on enterprise risk boundaries


Join us to build the governance capability, language, and confidence needed to lead in today’s high-risk digital environment.