Cyber security is no longer just an IT issue — it is a core management responsibility. This practical, non-technical course is designed to help managers understand their role in protecting organisational information, reducing cyber risk and supporting secure ways of working.
The course provides a clear overview of today’s cyber threat landscape and explains what managers need to know to meet their responsibilities with confidence. It focuses on prevention, governance and good practice, rather than technical detail, making it ideal for managers at all levels.
Participants will gain an understanding of common cyber threats, how attacks typically occur, and the potential operational, financial and reputational impacts on their organisation. The course also explains the principles of Cyber Essentials and what managers should expect, check and reinforce within their teams and projects.
Learning Objectives
- Understand common cyber threats and their business impact
- Recognise managerial and leadership responsibilities for cyber security
- Support Cyber Essentials and organisational security controls
- Identify and manage cyber risk within teams and projects
- Respond appropriately to incidents and escalate effectively
- Promote a strong cyber-aware culture
-
Registration and GovPD Welcome Address
- Course overview and learning objectives
- Participant expectations and roles
- Why cyber security is a management issue
-
The Cyber Threat Landscape for Managers
- Common cyber threats (phishing, ransomware, insider risk)
- How attacks typically start
- Real-world UK public and corporate sector examples
- Business, operational and reputational impacts
-
Break
-
Managerial Roles, Responsibilities and Governance
- What managers are accountable for (and what they are not)
- Relationship with IT, security and suppliers
- Policies, acceptable use and decision-making
- Cyber risk within corporate governance and assurance frameworks
-
Cyber Essentials: What Managers Need to Know
- Purpose and value of Cyber Essentials
- Overview of the five controls (manager-level):
- Firewalls and internet security
- Secure configuration
- User access control
- Malware protection
- Patch management
- What managers should check, challenge and reinforce
Activity: Manager’s Cyber Essentials checklist
-
Lunch
-
Managing Cyber Risk Day to Day
- Identifying risks in teams and behaviours
- Data handling and information classification (high level)
- Remote working, mobile devices and hybrid risks
- Cyber risk in projects, change and procurement
Activity: Group risk identification exercise
-
Break
-
Incident Awareness and Response
- Recognising early warning signs
- What to do (and not do) during an incident
- Escalation routes and decision-making
- Manager roles during response and recovery
- Learning lessons and strengthening controls
Activity: Incident response scenario
-
Building a Cyber-Aware Culture
- Human factors and common mistakes
- Leading by example as a manager
- Reinforcing good behaviours in teams
- Practical actions managers can take immediately
-
Key Takeaways, Actions and Close
- Recap of key messages
- Individual action planning
- Questions and next steps
- Course evaluation
-
Trainer’s Summary and Close
*Programme subject to change
We are now taking bookings for our wide range of training packages in-house your organisation; we also offer bespoke packages tailored for your organisation.
For more information or to discuss the available option please call 0203 961 5002 or email Info@GovernmentEvents.co.uk
Chris Blunt
Chris Blunt is a highly experienced Cyber Security
Consultant and trainer with over 30 years’ experience in IT,
systems development, and business technology. He
specialises in helping organisations make technology work
effectively, securely, and pragmatically in real-world
environments.
Chris began his career in software development in the late 1980s and has since
worked across the full IT lifecycle from programming and infrastructure design
to IT leadership and strategic consultancy. He has supported organisations of
all sizes, from start-ups and SMEs through to global enterprises, providing
practical solutions that align technology with business needs.
As a licensed Cyber Security Assessor, Chris works closely with Managed
Service Providers (MSPs) and their clients to strengthen cyber resilience,
improve security practices, and ensure systems support organisational
objectives rather than hinder them.
Chris is known for his clear, engaging delivery style. He avoids technical jargon
and focuses on meaningful communication ensuring learners not only
understand cyber security concepts, but can apply them confidently in their
roles. His training is grounded in real-world experience, helping delegates
bridge the gap between theory and practice.
- Public Sector : £550+VAT
- Private Sector : £620+VAT
- Voluntary Sector: £480+VAT
