Information and Cybersecurity

University of California, Berkeley

This is an archived copy of the 2017-18 guide. To access the most recent version of the guide, please visit http://guide.berkeley.edu.

About the Program

The Master of Information and Cybersecurity (MICS) is a part-time professional degree program that provides the technical skills and contextual knowledge students need to assume leadership positions in private sector technology companies as well as government and military organizations. The interdisciplinary program offers students mastery of core technical skills and fluency in the business, political, and legal context for cybersecurity, as well as managing cyber risk in the service of strategic decision making. The core MICS curriculum includes cryptography, secure programming, systems security, and the ethical, legal, and economic framework of cybersecurity. In addition, students may select from a wide variety of electives covering topics such as privacy engineering, managing cyber risk, and usability security. MICS features a project-based approach to learning and encourages the pragmatic application of a variety of different tools and methods to solve complex problems.

Graduates of the program will be able to:

  • Understand the defining challenges of cybersecurity
  • Comprehend and implement cryptosystems
  • Know the main causes of software vulnerabilities and the means to avoid and defend against them
  • Apply security principles to analyze and determine the security of a system
  • Define the technical, process, and policy capabilities an organization needs to deploy to mitigate cyber risks to acceptable levels

VISIT SCHOOL WEBSITE

Master's Degree Requirements

Unit Requirements

The Master of Information and Cybersecurity is designed to be completed in 20 months. Students will complete 27 units of course work over five terms, taking two courses (6 units) per term for four terms and a one 3-unit capstone course in their final term. MICS classes are divided into foundation courses (9 units), a systems security requirement (3 units), advanced courses (12 units), and a synthetic capstone (3 units). Students will also complete an immersion at the UC Berkeley campus.

Curriculum

Foundation Courses
CYBER W200Beyond the Code: Cybersecurity in Context3
CYBER W202Cryptography for Cyber and Network Security3
CYBER W204Secure Programming3
Systems Security Courses
CYBER W210Network Security3
CYBER W211Operating System Security3
Advanced Courses
CYBER W215Usable Privacy and Security3
CYBER W220Managing Cyber Risk3
CYBER W233Introduction to Privacy Engineering3
Capstone Course
CYBER W295Synthetic Capstone3

Immersion

As a Master of Information and Cybersecurity (MICS) student, the immersion is your opportunity to meet faculty and peers in person on the UC Berkeley campus. You will have the opportunity to gain on-the-ground perspectives from faculty and industry leaders, meet with cybersecurity professionals, and soak up more of the School of Information (I School) culture. Offered twice a year, each four- to five-day immersion will be custom crafted to deliver additional learning, networking, and community-building opportunities.

Please refer to the cybersecurity@berkeley website for more information.

Admissions

Minimum Requirements for Admission

The following minimum requirements apply to all graduate programs and will be verified by the Graduate Division:

  1. A bachelor’s degree or recognized equivalent from an accredited institution;
  2. A grade point average of B or better (3.0);
  3. If the applicant comes from a country or political entity (e.g., Quebec) where English is not the official language, adequate proficiency in English to do graduate work, as evidenced by a TOEFL score of at least 90 on the iBT test, 570 on the paper-and-pencil test, or an IELTS Band score of at least 7 (note that individual programs may set higher levels for any of these); and
  4. Sufficient undergraduate training to do graduate work in the given field.

Applicants Who Already Hold a Graduate Degree

The Graduate Council views academic degrees not as vocational training certificates, but as evidence of broad training in research methods, independent study, and articulation of learning. Therefore, applicants who already have academic graduate degrees should be able to pursue new subject matter at an advanced level without need to enroll in a related or similar graduate program.

Programs may consider students for an additional academic master’s or professional master’s degree only if the additional degree is in a distinctly different field.

Applicants admitted to a doctoral program that requires a master’s degree to be earned at Berkeley as a prerequisite (even though the applicant already has a master’s degree from another institution in the same or a closely allied field of study) will be permitted to undertake the second master’s degree, despite the overlap in field.

The Graduate Division will admit students for a second doctoral degree only if they meet the following guidelines:

  1. Applicants with doctoral degrees may be admitted for an additional doctoral degree only if that degree program is in a general area of knowledge distinctly different from the field in which they earned their original degree. For example, a physics PhD could be admitted to a doctoral degree program in music or history; however, a student with a doctoral degree in mathematics would not be permitted to add a PhD in statistics.
  2. Applicants who hold the PhD degree may be admitted to a professional doctorate or professional master’s degree program if there is no duplication of training involved.

Applicants may apply only to one single degree program or one concurrent degree program per admission cycle.

Required Documents for Applications

  1. Transcripts: Applicants may upload unofficial transcripts with your application for the departmental initial review. If the applicant is admitted, then official transcripts of all college-level work will be required. Official transcripts must be in sealed envelopes as issued by the school(s) attended. If you have attended Berkeley, upload your unofficial transcript with your application for the departmental initial review. If you are admitted, an official transcript with evidence of degree conferral will not be required.
  2. Letters of recommendation: Applicants may request online letters of recommendation through the online application system. Hard copies of recommendation letters must be sent directly to the program, not the Graduate Division.
  3. Evidence of English language proficiency: All applicants from countries or political entities in which the official language is not English are required to submit official evidence of English language proficiency. This applies to applicants from Bangladesh, Burma, Nepal, India, Pakistan, Latin America, the Middle East, the People’s Republic of China, Taiwan, Japan, Korea, Southeast Asia, most European countries, and Quebec (Canada). However, applicants who, at the time of application, have already completed at least one year of full-time academic course work with grades of B or better at a US university may submit an official transcript from the US university to fulfill this requirement. The following courses will not fulfill this requirement:
    • courses in English as a Second Language,
    • courses conducted in a language other than English,
    • courses that will be completed after the application is submitted, and
    • courses of a non-academic nature.

If applicants have previously been denied admission to Berkeley on the basis of their English language proficiency, they must submit new test scores that meet the current minimum from one of the standardized tests.

Where to Apply

Visit the Berkeley Graduate Division application page

Completed applications are given a comprehensive, holistic review. When we review applications, we take into consideration everything you have shared with us, including academic course work and performance, GRE/GMAT score, work experience, Statement of Purpose, and letters of recommendation. It is important that applicants demonstrate the academic aptitude to meet the demands of a rigorous graduate program.

To complete your application, you must submit the following:

  • Online application
  • Official transcripts from all educational institutions attended
  • Official Graduate Record Examination (GRE) or Graduate Management Admission Test (GMAT) score report
  • Statement of Purpose and additional admissions statements
  • Two professional letters of recommendation
  • Current resume
  • TOEFL Scores (if applicable)
  • Application fee ($105 for domestic applicants, or $125 for international applicants)

For more information and application instructions, please visit the cybersecurity@berkeley Admissions Overview.

Related Courses

CYBER W200 Beyond the Code: Cybersecurity in Context 3 Units

Terms offered: Summer 2018
This course explores the most important elements beyond technology that shape the playing field on which cybersecurity problems emerge and are managed. The course emphasizes how ethical, legal, and economic frameworks enable and constrain security technologies and policies. It introduces some of the most important macro-elements (such as national security considerations and interests of nation-states) and micro-elements (such as behavioral economic insights into how people understand and interact with security features). Specific topics include policymaking, business models, legal frameworks, national security considerations, ethical issues, standards making, and the roles of users, government, and industry.
Beyond the Code: Cybersecurity in Context: Read More [+]

CYBER W202 Cryptography for Cyber and Network Security 3 Units

Terms offered: Summer 2018
This course is focused on both the mathematical and practical foundations of cryptography. The course will discuss asymmetric and symmetric cryptography, Kerchkoff’s Principle, chosen and known plaintext attacks, public key infrastructure, X.509, SSL/TLS (https), and authentication protocols. The course will include an in-depth discussion of many different cryptosystems including the RSA, Rabin, DES, AES, Elliptic Curve, and SHA family cryptosystems.
Cryptography for Cyber and Network Security: Read More [+]

CYBER W204 Secure Programming 3 Units

Terms offered: Not yet offered
The course presents the challenges, principles, mechanisms and tools to make software secure. We will discuss the main causes of vulnerabilities and the means to avoid and defend against them. The focus is on secure programming practice, including specifics for various languages, but also covering system-level defenses (architectural approaches and run-time enforcement). We will also apply software analysis and vulnerability detection tools in different scenarios.
Secure Programming: Read More [+]

CYBER W210 Network Security 3 Units

Terms offered: Not yet offered
Introduction to networking and security as applied to networks. Exercises cover network programming in a language of the student's choice, understanding and analyzing packet traces using tools like wireshark and mitmproxy, as well as applying security principles to analyze and determine network security. After this course, the student will have a fundamental understanding of networking, TLS and security as it applies to networked systems.
Network Security: Read More [+]

CYBER W211 Operating System Security 3 Units

Terms offered: Not yet offered
This survey of operating system security compares approaches to security taken among several modern operating systems. The course will teach how to conceptualize design issues, principles, and good practices in securing systems in today’s increasingly diverse and complex computing ecosystem, which extends from things and personal devices to enterprises, with processing increasingly in the cloud. We will approach operating systems individually and then build on them so that students learn techniques for establishing trust across a set of interoperating systems.
Operating System Security: Read More [+]

CYBER W215 Usable Privacy and Security 3 Units

Terms offered: Not yet offered
Security and privacy systems can be made more usable by designing them with the user in mind, from the ground up. In this course, you will learn many of the common pitfalls of designing usable privacy and security systems, techniques for designing more usable systems, and how to evaluate privacy and security systems for usability. Through this course, you will learn methods for designing software systems that are more secure because they minimize the potential for human error.
Usable Privacy and Security: Read More [+]

CYBER W220 Managing Cyber Risk 3 Units

Terms offered: Not yet offered
This course offers valuable perspective for both the non-technical business manager and the technical cybersecurity or IT manager. It is the vital connector between the technical world of threats, vulnerabilities, and exploits, and the business world of board-level objectives, enterprise risk management, and organizational leadership. Now more than ever, managers have a need and responsibility to understand cyber risk. Just as financial risks and other operational risks have to be effectively managed within an organization, cyber risk has to be managed. It spans far beyond information technology, with broad implications in the areas of organizational behavior, financial risk modeling, legal issues, and executive leadership.
Managing Cyber Risk: Read More [+]

CYBER W233 Introduction to Privacy Engineering 3 Units

Terms offered: Not yet offered
This course surveys privacy mechanisms applicable to systems engineering, with a particular focus on the inference threat arising due to advancements in artificial intelligence and machine learning. We will briefly discuss the history of privacy and compare two major examples of general legal frameworks for privacy from the United States and the European Union. We then survey three design frameworks of privacy that may be used to guide the design of privacy-aware information systems. Finally, we survey threat-specific technical privacy frameworks and discuss their applicability in different settings, including statistical privacy with randomized responses, anonymization techniques, semantic privacy models, and technical privacy mechanisms.
Introduction to Privacy Engineering: Read More [+]

CYBER W295 Synthetic Capstone 3 Units

Terms offered: Not yet offered
This capstone course will cement skills and knowledge learned throughout the Master of Information and Cybersecurity program: core cybersecurity technical skills, understanding of the societal factors that impact the cybersecurity domain and how cybersecurity issues impact humans, and professional skills such as problem-solving, communication, influencing, collaboration, and group management – to prepare students for success in the field. The centerpiece is a semester-long group project in which teams of students propose and select a complex cybersecurity issue and apply multi-faceted analysis and problem-solving to identify, assess, and manage risk and deliver impact.
Synthetic Capstone: Read More [+]

Faculty and Instructors

+ Indicates this faculty member is the recipient of the Distinguished Teaching Award.

Faculty

David Bamman, Assistant Professor.

+ Robert Berring, Professor. China, law, contracts, Chinese law.
Research Profile

Jenna Burrell, Associate Professor.

Coye Cheshire, Associate Professor. Sociology, trust, social media, social psychology, social networks, collective action, social exchange, information exchange, social incentives, reputation, internet research, online research, online dating, online behavior.
Research Profile

John Chuang, Professor. Computer networking, computer security, economic incentives, ICTD.
Research Profile

Paul Duguid, Adjunct Professor. Trademark, information, communities of practice.
Research Profile

Robert J. Glushko, Adjunct Professor.

Morten Hansen, Professor.

Marti A. Hearst, Professor. Information retrieval, human-computer interaction, user interfaces, information visualization, web search, search user interfaces, empirical computational linguistics, natural language processing, text mining, social media.
Research Profile

Ray Larson, Professor. Information Retrieval system design and evaluation, database management.
Research Profile

Deirdre Mulligan, Associate Professor.

Geoffrey D. Nunberg, Adjunct Professor.

Zach Pardos, Assistant Professor. Education Data Science, Learning Analytics, Big Data in Education, data mining, Data Privacy and Ethics, Computational Psychometrics, Digital Learning Environments, Cognitive Modeling, Bayesian Knowledge Tracing, Formative Assessment, Learning Maps, machine learning.
Research Profile

David H. Reiley, Adjunct Professor.

Kimiko Ryokai, Associate Professor.

Pamela Samuelson, Professor. Public policy, intellectual property law, new information technologies, traditional legal regimes, information management, copyright, software protection and cyberlaw.
Research Profile

Annalee Saxenian, Professor. Innovation, information management, entrepreneurship, Silicon Valley, regional economic development, high skilled immigration, Asian development.
Research Profile

Doug Tygar, Professor. Privacy, technology policy, computer security, electronic commerce, software engineering, reliable systems, embedded systems, computer networks, cryptography, cryptology, authentication, ad hoc networks.
Research Profile

Steven Weber, Professor. Political science, international security, international political economy, information science.
Research Profile

Qiang Xiao, Adjunct Professor.

Lecturers

Brooks D. Ambrose, Lecturer.

Lefteris Anastasopoulos, Lecturer.

Olukayode Segun Ashaolu, Lecturer.

Kurt Beyer, Lecturer.

Dav Clark, Lecturer.

Steven Fadden, Lecturer.

Alexander Gilgur, Lecturer.

Benjamin T. Gimpert, Lecturer.

Nathaniel Stanley Good, Lecturer.

Annette Greiner, Lecturer.

Quentin R. Hardy, Lecturer.

Anna Lauren Hoffmann, Lecturer.

Todd Michael Holloway, Lecturer.

Douglas Alex Hughes, Lecturer.

Jez Humble, Lecturer.

Coco Krumme, Lecturer.

Arash Nourian, Lecturer.

Emmanouil Papangelis, Lecturer.

Daniel Percival, Lecturer.

Daniel Perry, Lecturer.

Elisabeth Prescott, Lecturer.

Dmitry Rekesh, Lecturer.

Blaine Gary Robbins, Lecturer.

Ali Sanaei, Lecturer.

Juanjie Joyce Shen, Lecturer.

David Steier, Lecturer.

Andreas Weigend, Lecturer.

Peter Frank Weis, Lecturer.

Jake Ryland Williams, Lecturer.

Scott Young, Lecturer.

Visiting Faculty

Ramakrishna Akella, Visiting Professor.

Paul Laskowski, Visiting Assistant Professor.

Emeritus Faculty

Michael Buckland, Professor Emeritus. Information management, information retrieval, metadata, library services.
Research Profile

Michael D. Cooper, Professor Emeritus. Analysis, design, database management systems, implementation and evaluation of information systems, computer performance monitoring and evaluation, and library automation.
Research Profile

William S. Cooper, Professor Emeritus.

M. E. Maron, Professor Emeritus.

Nancy A. Van House, Professor Emeritus. Digital libraries, science, information management, technology studies, knowledge communities, user needs, information tools, artifacts, participation of users.
Research Profile

Contact Information

School of Information

Phone: 510-642-1464

Fax: 510-642-5814

VISIT SCHOOL WEBSITE

Dean

AnnaLee Saxenian

102 South Hall

Phone: 510-642-9980

dean@ischool.berkeley.edu

Director of Student Affairs

Siu Yung Wong

Phone: 510-664-7092

siu@ischool.berkeley.edu

Admissions

Phone: 855-860-5259

admissions@cybersecurity.berkeley.edu

Back to Top