Skip to main content

Information and Cyber Security with a Year in Industry

Thank you for considering an application

Please click here to login and apply, or view your application.

Applicant Portal

Need help? Explore our How to Apply Page

Information and Cyber Security with a Year in Industry

MSc
Apply now

Course options

Key information

Duration: 2 years full time

Institution code: R72

Campus: Egham

UK fees*: £14,900

International/EU fees**: £29,300

Key information

Duration: 1 year full time

Institution code: R72

Campus: Egham

UK fees*: £14,900

International / EU fees**: £29,300

View this course

The course

Information and Cyber Security with a Year in Industry (MSc)

Our two-year Information and Cyber Security programme with a year in industry will equip you with the knowledge and skills you need to join the rapidly expanding field of information security. We will prepare you to work at the forefront of some of the most exciting developments in 21st century technology. You will gain first-hand experience of working in professional teams and applying your academic studies to real-world problems and scenarios. The mass creation, transmission and storage of electronic data is one of the defining features of our age. Whilst the associated technologies bring us untold benefits, they also expose us to threats that require the specialist skills and experience of cyber security experts.

Our postgraduate Information Security programmes were the first of their kind in the world. They are certified by GCHQ, the UK Government Communications Headquarters, and led by academics and industrial partners in one of the largest and most established Information Security Groups in the world. Our groundbreaking ISG is a UK Academic Centre of Excellence for research and home to an Engineering and Physical Sciences Research Council (EPSRC) Centre for Doctoral Training in Cyber security.

In year 1 you will learn about cryptography, fraud detection, system security, network security, device security and all the technical, legal and commercial aspects of the industry, including how security itself should be managed. Your second year will include a full-time work placement, which will attract a salary and be assessed towards your final degree. On returning to campus you will complete a supervised dissertation on a topic of your choice. If you decide not to complete the second year you can revert to the standard MSc Information Security (1221) and complete your dissertation a year early to graduate at the end of year 1.

Our academic staff are renowned specialists in the field, with backgrounds in computer science, engineering, mathematics, statistics and social sciences. You will have access to our virtualisation software for experimenting with network security settings and ideas, as well as our Penetration Testing Laboratory and industry-sponsored Smart Card Centre. 

We offer a friendly, supportive learning environment and you will have a dedicated personal advisor to guide you through your studies. The skills you gain will provide a solid foundation if you wish to progress to a PhD. Our graduates are in demand for their cutting-edge grasp of the field, their first-hand work experience, and their transferable skills such as data handling, analysis, problem solving, research, time management, team working, self-motivation and professionalism.

  • You will join a worldwide network as one of over 5,000 alumni information and cyber security professionals.
  • Equip yourself with the knowledge and skills to work at a high level in the information security industry or pursue further postgraduate research.
  • Benefit from first-hand experience of the world of work during your assessed year in industry.
  • Our strong ties with industry mean we understand the needs of employers and our curriculum will ensure that you are well prepared for employment.
  • Our MSc Information and Cyber Security has been certified by the UK's National Cyber Security Centre.

From time to time, we make changes to our courses to improve the student and learning experience. If we make a significant change to your chosen course, we’ll let you know as soon as possible.

Core Modules

Year 1

  • In this module you will develop an understanding of the need for effective security management. You will look at alternative security strategies and examine methods for responding to security management problems. You will critically evaluate different approaches and consider security management requirements. Sessions will be delivered by a combination of security practitioners, information managers and academics and you will be encouraged to actively discuss the subject matter, engaging in an online discussion forum.

  • In this module you will develop an understanding of the uses of cryptography. You will look at the basic cryptographic mechanisms used to provide core security services and examine differences between them, identifying situations in which they are most usefully employed. You will consider the issues that need to be addressed to secure an application, and evaluate the limitations of cryptography and methods for supporting it within a full security architecture.

  • Cyber Entrepreneurship and Practice is a practical module designed to equip MSc Information and Cyber Security students with the entrepreneurial mindset, industry awareness, and applied skills needed to thrive in today’s dynamic cybersecurity landscape. This module bridges academic study with real-world application, introducing students to the daily practices, challenges, and innovations within the cybersecurity profession.

    Students will engage with core concepts of entrepreneurship, business modelling, innovation, and strategy—all within a cybersecurity context. Through a combination of taught lectures, guest speaker sessions, and interactive workshops, students will explore how cybersecurity intersects with business opportunities, consultancy, and start-up culture.

  • The main goal of this module is to provide students with the tools they need to complete an excellent MSc project. Topics covered include how to use the literature, an introduction to qualitative and quantitative research methods, and guidance on structuring and writing an MSc dissertation. The skills gained are likely to be extremely valuable in any future career.

Year 2

  • The MSc in Information Security project is a major individual piece of work. It can be of academic nature and aimed at acquiring and demonstrating understanding and the ability to reason about a specific area of information security. Alternatively, the project work may document the ability to deal with a practical aspect of information security. Projects are assessed on the basis of the written report, and possibly on the basis of a demonstration or evaluation of an artefact such as a computer program. Alongside the project, a year in industry student undertakes work experience in the security industry for between 9 and 12 months, where they apply their skills and knowledge in the context of a suitable company/enterprise/organisation. The output from the work experience is a report that provides a factual and reflective discussion of the work experience. The report is written in a suitable professional format and includes description of the company and role undertaken, providing relevant information on skills and knowledge gained and reflection on the work experience.

Optional Modules

Below is a taster of some of the exciting optional modules that students on the course could choose from during this academic year. Please be aware these do change over time, and optional modules may be withdrawn or new ones added.

Year 1

  • In this module you will develop an understanding of legal and regulatory risk management in the field of information security and secure e-commerce. You will look at legal obligations and liabilities between private parties, and the implications of government regulations for corporate risk management. You will examine law regulation and liability, voluntary obligations, legal treatment of dematerialised documents and problems of form, involuntary obligations such as negligence, understanding and managing multi-jurisdiction legal and regulatory risk where the laws of several countries apply simultaneously, and the legal treatment of electronic and digital signature systems. You will also consider intellectual property and associated risks, and the basics of data protection and privacy law.

  • In this module you will develop an understanding of computer crime and its history, looking at legal measures such as computer misuse, data protection, criminal damage, software piracy, forgery, and investigative powers. You will examine case studies with emphasis on investigations into hacking, computer misuse and forensics, considering malware such as computer viruses, denial of service attacks and trojan horses. You will also gain an insight into issues that may arise in the future for example, the expansion of the internet, pornography, unsuitable material, and social engineering.

  • In this module you will develop an understanding of the applications of smart cards and security tokens and their use as assets in cyber security. You will look at the constituent components of common systems, analysing strengths and weaknesses in their manufacture and potential risks and security safeguards. You will consider the range of campabilities of SIM cards in smartphones and the main standards and applications of smarts cards for banking and finance. You will also examine the role of embedded smart card and RFID technology for passports, identity cards, and satellite TV, and the security measures that have protected past and current cards.

  • In this module you will develop an understanding of the importance of security in the development of applications. You will look at poor programming practices and how they can be exploited, leading to catastrophic security breaches. You will consider the threat posed by malicious software and examine some of the newer research trends that are likely to influence software security work in the coming years.

  • In this module you will develop an understanding of the foundations and theoretical underpinnings of how data is generated, stored, transmitted, and used as evidence. You will look at the methods used for the collection and analysis of digital evidence, and consider how the integrity of the underlying data is maintained. You will examine the general and UK legal requirements for data storage, and consider the frameworks for the handling and processing of such evidence.

  • In this module you will develop an understanding of the common approaches and methodologies used for carrying out and managing security and penetration testing, including legal requirements for such audits. You will look at network protocols, relevant computer system architectures, and web application systems, considering their vulnerabilities, common forms of attack, and security technologies designed to mitigate these. You will gain practical experience of exploiting vulnerabilities to penetrate a system, learning how to design secure systems and defend them against intrusion.

  • In this module you will develop an understanding of the key areas of cyber security, with a particular focus on the critical national information (CNI) infrastructure. You will look at fault and attack models for information and cyber-physical systems, considering variants of attack trees. You will analyse large-scale networks and their robustness for both random failures and deliberate attacks, evaluating how key elements of the CNI, such as the internet and power and transport infrasturctures, can be captured by such models. You will also examine case studies of attacks by state actors and security problems in control systems protocols.

  • In this module you will develop an understanding of the cultural, societal, political, psychological, and ethical implications of information security and privacy. You will explore the relationships between people and information systems from the perspective of security and privacy. You will critically reflect upon different methodologies that may assist security professionals in developing approaches to ensure that individuals make informed decisions about security and privacy. Sessions will be delivered by a combination of security and privacy practitioners, information managers and academics and you will be encouraged to actively engage in class discussions.

We use a range of teaching methods, including seminars, lectures and lab work. There is a strong focus on small group teaching and practical work. The programme has a flexible, modular structure, combining mandatory courses with a range of optional modules, optional specialist pathways that require certain module choices, a supervised dissertation, and a year in industry.

Your work placement will begin in the summer of your first year, after your examinations in May/June. You will be assigned a supervisor by your host company and they will be responsible for directing your work. You will also have an academic supervisor who will visit you to check that you are integrating successfully, assess your progress and ensure that you are being given appropriate work to do. Although the responsibility for finding a placement is ultimately yours, our Careers Service will help you to identify suitable opportunities from a large database of companies, make applications and prepare for any interviews. You will be invited to attend jobs fairs and companies will visit in year 1 to introduce their placement opportunities. We regularly highlight opportunities through our mailing lists and on social media.

Please note that progression onto a placement is conditional on good academic performance during year 1. On returning to campus after your placement in year 2 you will complete your MSc research project, to be submitted by September of that year.

Assessment is through a combination of end-of-year examinations in year 1, the written dissertation, and feedback and reports from your assessed year in industry.

2:2

UK Honours degree or equivalent in any subject.

Candidates with professional qualifications or relevant professional experience in an associated area will be considered.

International & EU requirements

Bachelor degree from the American University of Armenia or a Specialist diploma with 80% or a GPA of 3.5 overall.

Bachelor degree (Honours) with a 2:2 or a Bachelor degree (Ordinary) with a Pass with 58% overall.

Bachelor degree or Fachhochschuldiplom/Diplom (FH) with a Grade 3.9 overall.

Bachelor degree (Bakalavr) or Specialist Diploma with 3.5 out of 5 or 70% overall.

4 year Bachelor degree from Bangladesh University of Engineering and Technology (BUET) with a First Class Division or a Masters Degree following a 3 or 4 year degree.

Bachelor degree with grade 12 overall or the Licentiaat or Licence and other two cycle diplomas with grade 12 overall.

Diploma Visokog Obrazovanja Diploma Visokog Obrazovanja / Diplomirani with Grade 8

Bakalavar or Diploma of Completed Higher Education with a Grade 4 out 6 overall.

4 year Bachelor degree with 62%, a GPA 2.5 out of 4, Grade 6 out of 12 or grade C+ overall OR 3 year Bachelor degree with 73%, a GPA of 3.1 out of 4, Grade 8 out of 12 or grade B overall, depending on the grading scheme.

4 year Bachelors degree with an overall 70% to 75% or GPA of 2.8 to 3.0 out of 4.0 depending on the institution.

3 out of 5 overall in the Baccalaureus Prvostupnik or Visoko Obrazovanja/Level VII/1 (second level degree obtained on completion of 4-6 year course).

Overall 6.5 out of 10 or a GPA of 2.85 out of 4 in a Bachelor degree from a public university, Ptychion (from University of Cyprus) or Bachelor degree awarded by a private institution (the programme must be accredited by the Ministry of Education and Culture).

Bakalar with dobre (good), score of 2 or Grade C overall.

7 from 13 points grading system or 4 from 7 points grading system in a Bachelor degree, Candidatus Philosophiae or Professionbachelor.

University bachelors degree with a GPA of 2.4 overall or 65% overall

75%, 2.5 or C overall in a Bakalaurusekraad/Diploma, Magister or Magistrikraad

GPA of 1 where marks are in 1 - 3 system or GPA of 2.3 where marks are in 1 - 5 system in a Kandidaattii/Kandidat or Maisteri/Magister

Licence awarded from 2009 with grade 12 or Maitrise (pre-Bologna) with grade 11

Grade 3 overall in a Bachelor, Fachhochschuldiplom or Magister Artium

Bachelor degree with a Second Class Lower Division overall.

6 out of 10 overall in a Diploma from the Faculties of Engineering and Agriculture or a Ptychion (Bachelor degree) awarded by an AEI.

Bachelors degree degree with a Second Class Honours, Lower Division.

Egyetemi Oklevel /Foiskola Oklevel/ Alapfokozat with 3 out of 5 overall.

Baccalaurreatus with grade 6.5 out of 10 overall or Kandidatsprof / Cadidatus Mag with 6 out of 10 overall.

Bachelor degree with 55% to 60% overall or a CGPA of 5.5 to 6 out of 10 overall depending on the institution.

Bachelor degree or Diploma IV with overall GPA of 2.8.

Bachelor Degree/Professional Doctorate with 13 out of 20 overall.

Bachelor’s degree (four years) with 70% overall.

Bachelors degree with at least 75% overall depending on the mark scheme.

Diploma di Laurea or Licenza di Accademia di Belle Arti with 84 out of 110 overall.

Bachelor degree (Gakushi) with a B overall, dependent on the mark scheme.

Bakalavr or Specialist Diploma with 3.5 out of 5, 70% or 3.0 out of 4.33 overall.

Bachelor degree with a Second Class Honours (lower division) overall.

Bachelor degree with B or a GPA of 3.0 overall.

Bakalaura Diploms or Professional Bakalaura Diploms with Grade 6 overal.

Dipl Ing (FH) or Dipl Arch (FH) from Liechtenstein Technical College with a Grade 4 overall.

7 out of 10 overall in a Bakalauras or Specialist Diploma.

Bachelor degree, Diplome d?Ingenieur Industriel or Dipl?me d'?tudes Sup?rieures Sp?cialis?es with 40 out of 60 or 14 out of 20 (Bien) overall.

Bachelor degree with Class 2 Division ii, B or 2.8 out of 4.0 overall.

Honours degree with a Second Class (Lower Division) overall.

Bachelor degree or Doctoraal with Grade 6.0 out of 10 overall.

Bachelor degree Honours or Ordinary with an overall Grade C+ or Grade 3 out of 9 points grading system.

Bachelor degree with a Second Class Honours, Lower Division or overall GPA of 2.5 out of 5.

Visoko Obrazovanja with 7 out of 10 overall.

Overall 6.5 out of 10 or a GPA of 2.85 out of 4 in a Bachelor degree from a public university, Ptychion (from University of Cyprus) or Bachelor degree awarded by a private institution (the programme must be accredited by the Ministry of Education and Culture).

Bachelor degree, Candidatus Magisterii, Sivilingeni-r (siv. ing.) (Engineering degree ) or Sivil?konom (siv. ?k.) (Economics degree) Grade D or 2.6 to 3.2.

Bachelor degree with an overall GPA of 2.6.

4 year Bachelor degree or combined bachelors degree and Master degree for the duration of 4 years with 58% - 65% or a CGPA of 2.8 - 3.2 overall depending on your institution.

Licencjat, Inzynier or Bachelor with grade 3.71 overall.

Diploma de Estudos Superiores Especializadoswith grade 14 overall or Licenciado with grade 13 overall.

Bachelor degree with an overall GPA of 3.0 overall.

Diploma de Licenta, Diploma Inginer or Diploma de Arhitect with 7.0 out of 10 overall.

Bakalavr Bachelor degree or Specialist Diploma with 3.5 out of 5 or 70% overall.

Bachelor degree with 70%, 3.0 out of 5.0 or 2.8 out of 4.0 overall.

Diplom Visokog Obrazovanja (second-level degree obtained on completion of a four to six-year course) with 7.5 out of 10 overall.

Bachelor degree (from a public university) with a Class II (lower) overall.

Bakalar or Magister / Inzinier with vel'mi dobre (very good) or Grade 2 overall.

Diplomirani / Diplomirani Inzenir from Visoko izobrazevanje, University Diploma or Visoko Obrazovanja (until 1999) with 7 out of 10 (8 for Visoko Obrazovanja) overall.

Bachelor (Honours), Bachelor or Professional Bachelor degree with 60% or Second Class Lower Division.

Bachelor (Haksa) degree with 3.0 out of 4.5, 2.9 out of 4.3 or 2.8 out of 4.0.

Licenciado, Titulo de Ingeniero or Titulo de Arquitecto with 6 out of 10.

Bachelor degree from National University or Private University with 68% to 73% or GPA 2.8 to 3.0 depending on your institution.

Bachelor degree with a 2nd Class Honours (Lower) overall.

Bachelor degree GPA 2.6 to 2.8 depending on your institution.

Bachelor degree GPA 2.6 to 2.8 depending on your institution.

Bachelor degree (post 2007) or Specialist Diploma (after 1991) with a Grade 3, 9 out of 12 or 4 out of 5 overall.

Bachelor degree with 80%, a GPA of 2.8 out of 4, C+ or Good overall.

Bachelor degree with a GPA of 2.6 overall.

Kandidatexamen with at least a Pass (godkand) overall.

Bachelor degree or Bang tot nghiep dai hoc with 6.5 out of 10.

English language requirements

  • IELTS: 6.5 overall. No subscore lower than 5.5.
  • Pearson Test of English: 67 overall. No subscore lower than 59.
  • Trinity College London Integrated Skills in English (ISE): ISE III.
  • TOEFL iBT: 88 overall, with Reading 18 Listening 17 Speaking 20 Writing 17.
  • Duolingo: 120 overall and no sub-score below 100.

Your year in industry will set you apart when it comes to applying for jobs in the information security industry. By the end of the two years you will have the ideal basis for forging a successful, high-level career or moving on to further postgraduate research. You will have an advanced knowledge and understanding of the latest breakthroughs and techniques, as well as key challenges and opportunities in the field. You will also have first-hand experience of applying your skills to real-world scenarios in the world of work. You will gain valuable transferable skills such as advanced IT skills, data handling, analysis, research, communication, problem solving, time management, adaptability and self-motivation.

Our graduates are highly employable and in recent years they have gone on to forge successful careers in a wide range of sectors, including: banking, telecommunications, security consultancies, the civil service, public utilities and the retail sector.

You will be assigned a personal advisor to guide you through your studies and advise you on further postgraduate opportunities. The campus Careers team will be on hand to offer advice and guidance on your chosen career and the University of London Careers Advisory Service organises regular sessions on finding summer internships or vacation employment and securing employment after graduation.

We have a strong track record of helping graduates into successful, high-level careers in a wide range of sectors.

Home (UK) students tuition fee per year*: £14,900

The fee for your year in industry will be 20% of the course fee for that academic year.

EU and international students tuition fee per year**: £29,300

The fee for your year in industry will be 20% of the course fee for that academic year.

Other essential costs***: Costs incurred by students while on a Year in Industry / Business will vary depending on the nature and location of the placement. For further information please contact the Information Security Group.

How do I pay for it? Find out more about funding options, including loans, grants, scholarships and bursaries.

* and ** These tuition fees apply to students starting their course on a full-time basis in the academic year 2026/27. Students studying on the standard part-time course structure over two years are charged 50% of the full-time applicable fee for each study year.

Royal Holloway reserves the right to increase all postgraduate tuition fees annually. For further information, see fees and funding.

** These estimated costs relate to studying this particular degree at Royal Holloway during the 2026/27 academic year, and are included as a guide. Costs, such as accommodation, food, books and other learning materials and printing, have not been included.

Accreditation

National Cyber Security Centre (NCSC)

This course is accredited by the National Cyber Security Centre (NCSC). This means your qualification is recognised in the industry, giving you a competitive edge when applying for jobs.

Department Information Security

Explore Royal Holloway