NextCISO Academy


Training The Leaders Of Tomorrow

The learning theory we aspire to implement within our learning design is the theory of constructivism which basically means that learners are not blank slates. The learner comes to the table with their own ideas, experiences, values and beliefs known as Mental Models.
Learning is the process of adjusting Mental Models to accommodate new information and experiences.
Learners do this by asking questions, discussing, exploring, setting goals and assessing progress. We actively engage our students with workshops, labs and assignments. We use tools to help foster virtual collaboration like Miro, Slack, Google Workspaces, Smartsheets and our virtual reality platform Engage VR.

Our Learning Framework


At its core, the NextCISO program believes that the training to become a CISO starts at the beginning of one’s career. As such, we have devised a framework based upon four knowledge pillars running across a continuous and iterative learning process called design thinking. By employing this framework we are able to deliver cutting edge learning to our students.

Our Learning Framework

1. Human

Human capabilities are increasingly important and valuable. We are better than machines at connecting with and understanding the variable needs of other humans; at recognizing and adapting to highly specific and changing contexts; and at developing creative new approaches.

2. Governance

Starting with a foundation in understanding GRC best prepares junior cybersecurity professionals regardless of which area they decided to specialize.
Understanding controls structures, risk and compliance will produce more holistic thinking security and GRC professionals.

3. Science & Technology

Understanding the underlying technologies is key to the success of cybersecurity professional. To ensure that we are preparing the students for current and future-proofed skills, we chose to focus on cloud security, fundamentals of auditing artificial intelligence, and securing and working inside the metaverse.

4. Design

Design is more than just a planning function. It’s about giving meaning to something. It’s about the experience. That’s why the concept of the design transcends single disciplines and can be applied to all pillars. We teach design and technology, user journey and experience design.

Human Centric Focus

Just as the best human-centered designs intersect empathy with creativity, learning design requires consideration for the end user; the learner.
The learner’s needs, skills, context, beliefs, and prior knowledge and experiences must be considered, assessed, and engaged from the beginning and throughout the learning process in order to optimize the experience in a way that more conventional instruction never could.


Demonstrated learning

Our certifications give the students recognition of their GRC competencies. By earning these, our students demonstrate their commitment to gain practical abilities for the job using the knowledge and skills they’ve gained through the program.

Certificate of Cloud Security Knowledge (CCSK)

The CCSK certificate is widely recognized as the standard of expertise for cloud security and gives you a cohesive understanding of how to secure data in the cloud. It covers key areas, including: best practices for IAM, cloud incident response, application security, data encryption, SecaaS, securing emerging technologies, and more.

Auditing AI Foundations Certification

Artificial Intelligence systems hold the same opportunities for exploitation and misconfigurations as any other technology, but it also has its own unique risks. The Auditing AI Foundations Certification demonstrates that the learner understands how to evaluate an algorithmic system for bias, accuracy, robustness, interpretability, privacy characteristics, and other unintended consequences.

ISO 27001 GRC Analyst Certification

The ISO 27001 GRC Analyst Certification demonstrates that the learner understands the basic elements to implement and manage an ISMS as specified in ISO/IEC 27001. Key areas covered include: ISMS policy, procedures, process mapping, performance measurements, management commitment, internal audit, management review, and continual improvement.

Fundamentals of Children’s Privacy - AuthentiKid

There are nearly 130 million kids protected by some form of data privacy legislation. The current law of the land in the United States is COPPA, or the Children’s Online Privacy Protection Act. Earners of this certificate demonstrate the fundamentals of global children’s privacy laws and compliance.

Continued Support

Our Promise and Commitment

Job Placement

Our certifications give the students recognition of their GRC competencies. By earning these, our students demonstrate their commitment to gain practical abilities for the job using the knowledge and skills they’ve gained through the program.


Students have access to GRCIE mentors for the duration of the program and after. Students have regularly scheduled check-ins throughout the program. Mentors will continue to be available to alumni after graduation to ensure success in their new roles.


While we’ve put a lot of time and energy into building this program, we are always looking for ways to improve. We welcome feedback! Everyone has different learning needs, and we strive to nurture all of our students.

No Judgement Zone

We want this to be a safe space for everyone. There is no such thing as a stupid question, and we are always here to listen to our student’s experiences.
0 M
Though automation could result in the elimination of 85 million jobs, it’s also predicted to create 58 million new jobs.
0 %
Average Salary increase of NextCISO grad.
0 %
U.S. underemployment rate in 2021.
0 K
Average Salary of NextCISO grad.


Words from our alumni


Student Criteria

How do we select our students?

As GRCIE’s mission is to diversify the next generation GRC workforce, we are looking for students that come from underrepresented groups including: racially diverse, gender diversity, LGBT+ community, socioeconomically disadvantaged, and veterans.

Who is a good candidate for the GRC Academy?

Anyone who is ready to dedicate the next six to seven months of their life to learning a new craft. The right candidate is curious, asks smart questions, enjoys exploring new ideas and is eager to learn and grow. The right candidate has grit – a relentless drive to reach a particular goal and a willingness to put in the effort to achieve it. The right candidate is engaged. Engagement is an innate attitude that indicates a person’s enthusiasm. Those students that were the most engaged, got the most hands-on experience and best job offers at the end of the program.

join us

How do I get started?