Description of the Master's Degree in Cybersecurity

Justification

Our society’s dependence on networks, and particularly the Internet and the information systems built on them, has led to the emergence of new threats of a growing potential impact. This Master’s Degree in Cybersecurity offered by the University of Murcia is a new proposal comprising academic studies whose objective is to provide society with graduates with the knowledge, skills and abilities required in order to help organisations to counteract such threats.

The professional context of graduates from this master's degree covers the spectrum of both institutions (public administrations, public companies, etc.) and companies, ranging from small SMEs to large corporations. To this end, it considers cybersecurity from different angles and provides students with a multidisciplinary and holistic view of what cybersecurity means, a discipline that is currently in great demand, with the prospect of significant growth in the coming years.

News related to incidents resulting from cyber-attacks appears in the media on an almost daily basis. This continuous presence has made the public aware of the extent to which it is imperative for society to equip itself with experts dedicated to mitigating the threat of cybercrime. Prestigious magazines such as Forbes cite expert studies that identify major trends in cyber-attacks. First, there are a growing number of incidents related to critical infrastructures carried out either by criminals whose purpose is blackmail or by foreign powers for the purpose of espionage. Second, these attacks are increasingly more sophisticated since they are based on artificial intelligence techniques whose objective is to automate targeting and avoid detection. Third, alliances are developing between cybercriminals who exchange tools in cybercrime networks. And fourth, the increasing deployment of the Internet of Things increases the possibility of cyber attackers finding security flaws in systems.

In Spain, the National Cybersecurity Institute (INCIBE) publishes an annual balance of the incidents that have been managed by this centre. The 2020 balance sheet reported the management of more than 130,000 incidents, of which 1,190 targeted critical and essential strategic operators, and 25,499 targeted the Spanish Academic and Research Network. However, the largest number of incidents occurred at the level of small businesses and individuals. Another study published by Deloitte on the state of cybersecurity in Spain indicates that 76% of the organisations surveyed have suffered between 1 and 2 serious incidents per year, and that 18.42% have suffered more than 2. The sectors with the highest number of cyber incidents are Administration, Health and Insurance. The Deloitte report detects a lack of personnel who are sufficiently trained to respond to the challenges of cybersecurity, with 60% of organisations indicating that they do not have any specialists with a specific certification in the field of cybersecurity.

In the current context in the Faculty of Computer Science at the University of Murcia, there is a growing interest in cybersecurity owing to both the interest expressed by the student body (as seen in the intensification of Information Technologies on the bachelor's degree in Computer Engineering, and in particular, in one of the subjects that concerns computer security) and the professional possibilities available. This demand is expected to increase thanks to the degree being offered in an online mode.

This master's degree caters for two different graduate profiles: security engineer and cybersecurity analyst (see Graduate profile and career opportunities). The subjects common to both profiles are those related to cyber defence and cyber attack, which represent a significant percentage of compulsory credits; the difference resides in the electives, which are more oriented towards creativity in the case of the first profile, or towards the application of tools and the analytical study of results and practical cases in that of the second. From an operational point of view, the two profiles are catered for by means of two specific configurations of optional subjects offered in the master's degree subjects. This, therefore, allows students to choose to follow one of the two itineraries, or to choose a configuration according to their educational interests.

This master's degree is offered in synchronous virtual mode. Owing to the field of knowledge, it is considered that all the competences and learning outcomes established as objectives on this degree can be achieved via a synchronous virtual mode. From the teaching point of view, the equipment in the classrooms and laboratories with videoconferencing systems, along with the experience accumulated in recent years as a result of the COVID-19 pandemic, make quality online teaching possible. In addition, the use of teaching methodologies that allow a combination of synchronous and asynchronous activities will greatly help to achieve the training objectives. From the point of view of practical work, there are currently a multitude of technical solutions that allow laboratories regarding subjects to be followed in such a way that these results can be achieved. The virtualisation of laboratories and the use of online tools will facilitate this learning process. 

This master's degree proposal is designed to facilitate internationalisation, as it is proposed with 90 ECTS credits. This number of credits facilitates student mobility. We are additionally working in parallel on two actions that may allow its inclusion in international programmes such as Erasmus Mundus and the EIT Digital Master's Degree programme, which would allow students from the University of Murcia to carry out part of their study programme in a selection of universities included in this master's degree university college, which is one of the most prestigious in Europe.
 

Competences

Core Competences

  • To possess and understand knowledge that will provide a basis or opportunity for originality in the development and/or application of ideas, often in a research context.
  • Students will be able to apply their acquired knowledge and problem-solving skills in new or unfamiliar environments within broader (or multidisciplinary) contexts related to their area of study.
  • Students must be able to integrate knowledge and confront the complexity of making judgements based on incomplete or limited information, including reflections on the social and ethical responsibilities linked to the application of their knowledge and judgements.
  • Students should be able to communicate their conclusions, the knowledge eventually attained and the reasons underpinning those conclusions to specialist and non-specialist audiences in a clear and unambiguous manner.
  • Students should attain the learning skills that will enable them to continue studying in a largely self-directed or autonomous manner.

Generic Competences

  • Students will be able to analyse methods and techniques related to cyber-attacks and cyber-defence.
  • Students will be able to design, deploy and maintain cyber security systems.
  • Students will be able to identify the regulations and legislation applicable in the field of cybersecurity.
  • Students will be able to prepare clear, concise and reasoned documentation on aspects related to the field of cybersecurity.
  • Students should know the concepts and technologies used in the implementation of cybersecurity in an organisation, considering the definition of strategies, policies and standards for corporate security.

Specific Competences

  • Students will be able to manage the processes associated with vulnerabilities, threats and risks within an organisation.
  • Students must be able to plan, design and implement intelligent products, processes, services and infrastructures in the field of cybersecurity.
  • They should be able to design, monitor and evaluate security architectures and services for systems, critical infrastructures and communications networks.
  • They should be able to apply data and software security techniques.
  • They must identify and know the new trends, good practices, standards, regulations and human aspects related to cybersecurity.

Admission Profile

The entry profile of students who plan to access and study the Master’s Degree in Cybersecurity is the following:

  • Students completing their studies in Computer Engineering, or similar, who wish to continue their training in cybersecurity studies.
  • Working professionals in positions that require knowledge and skills in cybersecurity in any of its areas.
  • Professionals actively seeking employment who wish to acquire skills in the field of cybersecurity.

Access routes and requirements

In general, access to master's degree studies at the University of Murcia is regulated in the following Regulations (Article 3).
 

In particular, the students who may access the Master’s Degree in Cybersecurity are those with official qualifications whose most appropriate profiles would be bachelor’s degrees in engineering related to Computer Science, in particular: those in Computer Engineering and Data Science and Engineering, or their foreign equivalents in the European Higher Education Area or any other area, after verifying the equivalent level of training for access. Those who have completed a bachelor’s degree in Telematics Engineering, in Software Engineering, in Computer Engineering or in Telecommunication Systems Engineering will also be admitted. Those professionals who have bachelor’s degrees that are no longer taught but which are related to the aforementioned degrees, such as Higher Computer Engineering, Technical Engineering in Computer Management and Technical Engineering in Computer Systems, will also be admitted. In the case of other Spanish or foreign degrees, the academic committee will study (on a case-by-case basis) whether they are comparable to the aforementioned degrees or whether the complementary training and work experience are appropriate for access.

The Faculty of Computer Science offers this degree in bilingual mode. The languages used are, therefore, Spanish and English. With regard to the level of English required for access to the degree, students must meet one of the following requirements:

  • Be a native English speaker (proof of which will be provided by the presentation of a passport or identification card showing that the student is a national of an English-speaking country).
  • Have a certificate accrediting level B2 or higher in English or pass a level test.

The degree can be taken on a full-time or part-time basis:

 

Full time

Part Time

ECTS minimum enrollment

ECTS maximum enrollment

ECTS minimum enrollment

ECTS maximum enrollment

First year

30

72

18

30

Second

year

30

72

18

30

 

Admission

In general, admission to master's degree studies at the University of Murcia is regulated in the following Regulations (Article 4).

 In the particular case of the Master's Degree in Cybersecurity, admission to studies will be decided by the Centre upon receiving a proposal from the Master's Degree Academic Committee on the basis of the aforementioned criteria. The need for possible adaptations to the curriculum, itineraries or alternative studies will similarly be assessed in the case of students with specific educational needs resulting from disability, and the appropriate support and advice services for this situation will be provided in these cases.

In the event of there being a greater number of applications than places offered, the selection of those admitted will be based on the following percentage: academic record (60%), professional experience (20%), and research experience (20%).

  • The Centre will publish the lists of those admitted onto the master's degree once the Academic Committee’s proposal has been received.
  • Students must submit an application for admission onto official master's degree courses, and after admission onto the corresponding master's degree, will proceed to formalise their enrolment in the manner approved for this purpose by the Rector's resolution for each academic year, by the deadlines and with the requirements established in the rules and instructions for admission and enrolment.
  • The admission systems and procedures shall include, in the case of students with special educational needs arising from disability, the appropriate support and counselling services, which shall assess the need for possible curricular adaptations, itineraries or alternative studies.

 Admission will not, in any case, imply any modification to the academic and, where appropriate, professional effects corresponding to the previous degree held by the interested party, nor its recognition for purposes other than that of studying for a master's degree.

According to RD 822/2021, article 18.4, "Universities may exceptionally establish, on the basis of specific regulations approved by their governing bodies, conditional enrolment procedures for access to a University Master's Degree. This shall consist of allowing a bachelor's degree student who has up to 9 ECTS credits to remain in order to complete the TFG so as to access and enrol on a University Master's Degree, although under no circumstances may they obtain the master's degree if they have not previously obtained the bachelor's degree. The universities will guarantee priority enrolment for students who hold the official university title of Graduate. In this procedure, credits pending recognition or transfer in the bachelor's degree, or the requirement to prove a certain level of knowledge of a foreign language in order to obtain the degree, may be taken into account". The conditional admission option has already been used by the University of Murcia in the academic year 2021/22, with a procedure established by means of a rector's resolution. Should this option continue to be available in future academic years, the Academic Committee of the Master's Degree in Cybersecurity may decide to make use of it in the admission process.

Graduate profile and career opportunities

Two different graduate profiles are offered: Security Engineer, and Cybersecurity Analyst.

The first profile, Security Engineer, is oriented towards the design and development of components and systems in which security is a crucial element. Its main market niche is in security production companies, principally in the software creation, critical infrastructures, communications and architecture design departments. This profile must have an in-depth understanding of the security considerations of network threats and their implications in the life cycle of Systems Engineering in all its aspects, in order to translate them into new products. He/she must also know the ins and outs of defence mechanisms in order to be able to collaborate in the development of new ones and their constant evolution in the security race.

The second profile, Cybersecurity Analyst, is directed towards organisations that need to protect themselves from cyber threats and which require personnel who know how to identify attacks and potential weaknesses in their systems and networks, and are capable of proposing the use and deployment of measures and countermeasures by which to secure them. This profile is more closely linked to cybersecurity managers, who employ tests and audits to help to keep security risks under control and to act in the face of attacks. This second profile is found in a growing number of companies that are increasingly dependent on their information systems and the Internet, and specifically in critical business sectors (such as banking, energy or transport) or public sectors (organisations such as the Armed Forces or the State Security Forces and Corps).

Related doctorates

This master's degree provides access to, among other things, PhD studies. In this respect, the Faculty of Computer Science at the University of Murcia offers PhDs in Computer Science.