Cybersecurity and Data Protection (DIGITAL, LEGAL AND MANAGEMENT SKILLS)
2nd level vocational master
A.Y. 2023/2024
Study area
Science and Technology
Master Coordinator
The vocational master programme intends to train professionals with a comprehensive understanding of corporate needs related to cybersecurity and data protection, who will specifically be able to:
- Assess the security architectures of an organisation using appropriate risk-analysis methods, in order to identify threats and vulnerabilities;
- Develop company policies in accordance with the most common best practices and standards (such as NIST Framework, COBIT, ISO 27000, ISO 31000), to better protect corporate systems against cyber attacks and incidents.
- Lay down procedures regarding governance, continuous control of systems, auditing, compliance management and operability management;
- Motivate collaborators and properly and adequately inform company managers about security-related risks, including their operational needs and security requirements;
- Plan and help to implement raise-awareness projects on the topic of information security, involving all company levels.
The programme will provide students with the necessary expertise and skills so that they are able to:
- Follow the latest technological developments in the field of cybersecurity and understand the evolution of technology, in order to introduce innovative solutions and new technologies in existing products, applications and services;
- Draft security policies drawing on internationally recognised standards and best practices, in order to define the organisational strategy, objectives and culture needed for ensuring the protection of data and computer systems from internal and external threats; set up the organisational structure in charge of corporate cybersecurity management, defining roles and responsibilities;
- Assess the cybersecurity risk underlying the company business, document potential risks and prepare cybersecurity risk management plans, by applying risk management policies and procedures as defined by the company;
- Comprehensively implement the corporate security policy and design tools to verify its application; manage all aspects of cyber incidents; periodically review specific strategies and policies drawing on past experiences, aiming for a continuous improvement of security levels.
- Assess the security architectures of an organisation using appropriate risk-analysis methods, in order to identify threats and vulnerabilities;
- Develop company policies in accordance with the most common best practices and standards (such as NIST Framework, COBIT, ISO 27000, ISO 31000), to better protect corporate systems against cyber attacks and incidents.
- Lay down procedures regarding governance, continuous control of systems, auditing, compliance management and operability management;
- Motivate collaborators and properly and adequately inform company managers about security-related risks, including their operational needs and security requirements;
- Plan and help to implement raise-awareness projects on the topic of information security, involving all company levels.
The programme will provide students with the necessary expertise and skills so that they are able to:
- Follow the latest technological developments in the field of cybersecurity and understand the evolution of technology, in order to introduce innovative solutions and new technologies in existing products, applications and services;
- Draft security policies drawing on internationally recognised standards and best practices, in order to define the organisational strategy, objectives and culture needed for ensuring the protection of data and computer systems from internal and external threats; set up the organisational structure in charge of corporate cybersecurity management, defining roles and responsibilities;
- Assess the cybersecurity risk underlying the company business, document potential risks and prepare cybersecurity risk management plans, by applying risk management policies and procedures as defined by the company;
- Comprehensively implement the corporate security policy and design tools to verify its application; manage all aspects of cyber incidents; periodically review specific strategies and policies drawing on past experiences, aiming for a continuous improvement of security levels.
To be eligible for the programme, candidates must hold a Master's or Single Cycle Degree under Ministerial Decree 270/2004.
The expertise acquired during the programme will enable students to work as: privacy and data protection officers or managers in Italian and foreign public administrations and companies; cybersecurity managers; cybersecurity and data protection officers or managers in law firms.
- Department of Computer Science "Giovanni degli Antoni"
via Celoria, 18 - 20133 Milano
[email protected], [email protected]
Courses list
Open sessions
| Courses or activities | Professor(s) | ECTS | Total hours | Language |
|---|---|---|---|---|
| Compulsory | ||||
| Civil and Criminal Liability of System Administrators, Dpos and Cisos | 2 | 20 | Italian | |
| Cloud Security | 2 | 20 | Italian | |
| Computer Crimes | 2 | 20 | Italian | |
| Corporate Security | 2 | 20 | Italian | |
| Cybersecurity and Risk Management International Standards | 5 | 50 | Italian | |
| Cybersecurity Technologies | 3 | 30 | Italian | |
| Data Mining and Statistical Learning | 1 | 10 | Italian | |
| Digital Forensic & Incident Handling | 3 | 30 | Italian | |
| Digital Investigations | 2 | 20 | Italian | |
| Fundamentals of Architectures and Systems | 2 | 20 | Italian | |
| Fundamentals of Criminal Law | 2 | 20 | Italian | |
| Fundamentals of Criminal Procedural Law | 2 | 20 | Italian | |
| Fundamentals of Cybersecurity | 3 | 30 | Italian | |
| Fundamentals of Databases | 1 | 10 | Italian | |
| Fundamentals of Networks | 2 | 20 | Italian | |
| Fundamentals of Programming | 2 | 20 | Italian | |
| Gdpr and Legal Aspects of Data Protection | 2 | 20 | Italian | |
| Information Security & Data Protection | 3 | 30 | Italian | |
| Information Warfare, Electronic Wars, Terrorism and the Protection of Critical Infrastructures | 2 | 20 | Italian | |
| Introduction to Information Security Management | 2 | 20 | Italian | |
| Leadership of Project Teams | 1 | 10 | Italian | |
| The Impact of New Technologies On Competitive Industries and Systems: Challenges, Opportunities and Threats | 2 | 20 | Italian | |
| Web & Mobile Security | 2 | 20 | Italian | |
Enrolment
Places available: 25
Call for applications
Please refer to the call for admission test dates and contents, and how to register.
Application for admission: from 01/12/2023 to 16/02/2024
Application for matriculation: from 06/03/2024 to 13/03/2024
Attachments and documents
Please note
Deadline for call: 16 february 2024