Cybersecurity and Artificial Intelligence
Fully online programme
Cybersecurity and Artificial Intelligence
Course sheet
A.Y. 2026/2027
Bachelor
L-31 R - Scienze e tecnologie informatiche
What will I study?
The Bachelor's degree in Cybersecurity and Artificial Intelligence offers a broad and rigorous technological and methodological foundation in computer science, with a strong focus on security and artificial intelligence, as well as on the design of secure services and software, from infrastructure to applications.
How will I study?
Teaching is structured into cluster courses, each worth 18-30 ECTS credits and divided into multiple modules. Each module entails about 40 hours of online learning, divided between lecture-based learning (recorded synchronous lectures, asynchronous video-lectures, digital materials and multimedia resources) and interactive learning (e-tivities such as exercises, participation in forums, online collaborative projects). Enrolment is open all year long.
What is the workload like?
You are free to organise your study time as you prefer, with no time or location restrictions. By keeping a good study pace, you should manage to prepare for three cluster exams every year, for a total of approximately 60 ECTS credits. Exam dates are scheduled every two months.
On-campus exams and graduation
The programme requires students to pass eight end-of-course exams, one for each cluster course. All exams are held on campus. They are usually scheduled on Fridays or Saturdays every two months, for a total of 6 exam dates per year for each course, to facilitate students with work or family-related commitments. Graduation will also be on campus. Each year there will be four possible graduation dates scheduled across three sessions.
Flexible online learning with continuous tutoring support
Courses are delivered via a state-of-the-art Learning Management System platform allowing you to fully customise your online learning activities. With our continuous tutoring support and an active learning community at your side, you will enjoy an inclusive and effective academic experience, comparable to the one offered by in-person programmes.
The degree program aims to provide future graduates in Cybersecurity and Artificial Intelligence with a broad, solid, and in-depth cultural, technological, and methodological preparation in the field of computer science, with particular attention to issues of security and privacy, as well as artificial intelligence. Its purpose is to equip students to address all challenges related to the development of secure services/software at both the infrastructural and application levels.
The program?s objective is to offer a strong cultural, mathematical, and methodological foundation in order to:
i) understand and master the foundational aspects of computer systems;
ii) become familiar with the basics of the scientific method;
iii) analyze problems and independently?or in teams?develop models and IT solutions;
iv) acquire appropriate technological skills to support various applications;
v) understand and assess the ethical impact of continuous scientific and technological progress within the discipline;
vi) develop communication skills related to the designed solutions and the problems addressed, tailored to both specialist and non-specialist audiences.
The degree program also aims to provide specific skills in the fields of security and privacy, as well as artificial intelligence.
In particular, it aims to:
i) provide the expertise needed to understand the evolution of security and privacy threats, including through advanced scientific and regulatory documentation, in order to apply specific protection tools and countermeasures?especially in modern web/cloud system networks;
ii) provide the skills required to understand and design solutions based on artificial intelligence, including generative AI;
iii) develop competencies for building secure software and infrastructural solutions, also leveraging AI;
iiii) develop skills related to corporate cybersecurity management and organization.
During the first year, the curriculum includes fundamental computer science skills, covering programming, computer architectures, networks and cloud systems, as well as basic mathematics. Students will also acquire competencies related to learning systems and methods for data analysis and visualization.
The second year focuses on acquiring more specialized skills in AI, generative AI, and network and software/service security, complemented by computer science courses related to databases, as well as legal and ethical competencies.
The third year is dedicated to complementary skills in security and AI.
The teaching model is built on an advanced online learning platform, which includes digital resources, asynchronous activities, interactive forums, guided e-tivities, practical exercises, and collaborative tools. Continuous tutoring, the possibility of building personalized pathways, and the presence of an active learning community make the program inclusive and capable of supporting students with diverse needs, while also enhancing independent learning.
The program ensures the development of transversal (soft) skills, such as teamwork, the ability to critically analyze complex scenarios, and the informed use of digital technologies, thus facilitating entry into dynamic work environments and access to master?s programs aligned with the acquired education.
All learning takes place fully online through an integrated set of activities designed to ensure complete educational equivalence to in-person teaching, in accordance with the University?s pedagogical model.
The program?s objective is to offer a strong cultural, mathematical, and methodological foundation in order to:
i) understand and master the foundational aspects of computer systems;
ii) become familiar with the basics of the scientific method;
iii) analyze problems and independently?or in teams?develop models and IT solutions;
iv) acquire appropriate technological skills to support various applications;
v) understand and assess the ethical impact of continuous scientific and technological progress within the discipline;
vi) develop communication skills related to the designed solutions and the problems addressed, tailored to both specialist and non-specialist audiences.
The degree program also aims to provide specific skills in the fields of security and privacy, as well as artificial intelligence.
In particular, it aims to:
i) provide the expertise needed to understand the evolution of security and privacy threats, including through advanced scientific and regulatory documentation, in order to apply specific protection tools and countermeasures?especially in modern web/cloud system networks;
ii) provide the skills required to understand and design solutions based on artificial intelligence, including generative AI;
iii) develop competencies for building secure software and infrastructural solutions, also leveraging AI;
iiii) develop skills related to corporate cybersecurity management and organization.
During the first year, the curriculum includes fundamental computer science skills, covering programming, computer architectures, networks and cloud systems, as well as basic mathematics. Students will also acquire competencies related to learning systems and methods for data analysis and visualization.
The second year focuses on acquiring more specialized skills in AI, generative AI, and network and software/service security, complemented by computer science courses related to databases, as well as legal and ethical competencies.
The third year is dedicated to complementary skills in security and AI.
The teaching model is built on an advanced online learning platform, which includes digital resources, asynchronous activities, interactive forums, guided e-tivities, practical exercises, and collaborative tools. Continuous tutoring, the possibility of building personalized pathways, and the presence of an active learning community make the program inclusive and capable of supporting students with diverse needs, while also enhancing independent learning.
The program ensures the development of transversal (soft) skills, such as teamwork, the ability to critically analyze complex scenarios, and the informed use of digital technologies, thus facilitating entry into dynamic work environments and access to master?s programs aligned with the acquired education.
All learning takes place fully online through an integrated set of activities designed to ensure complete educational equivalence to in-person teaching, in accordance with the University?s pedagogical model.
Expert in System, Data, and Network Security
Role in a work context:
The professions in this category operate in the broad field of business consulting, supporting companies in the analysis and resolution of cybersecurity issues related to management information systems, data processing, intranet and Internet communications, and the development of interactive applications.
Competences associated with the role:
These professionals possess specific expertise in technologies and methods for cybersecurity and can understand the organizational and operational dynamics of the production environments in which they work. They are able to contribute to structured projects and heterogeneous business contexts, offering specialized knowledge typically not present within companies. They work both on solving cybersecurity issues affecting corporate information systems and on supporting technological innovation and the selection of cybersecurity technologies.
Career opportunities:
They carry out highly specialized professional activities in business consulting for companies, public bodies, and professional firms that often lack adequate cybersecurity expertise needed for the proper and effective management of information systems. This includes compliance with regulations on data processing, protection of corporate assets from breaches and system compromises, and maintaining the operability of systems, networks, and applications in the event of cyber intrusions or accidental malfunctions.
Expert in Artificial Intelligence and Its Security Applications
Role in a work context:
The professions in this category focus on the analysis and development of artificial intelligence?based solutions applied to the security of information systems, networks, and data. They support companies and public organizations in identifying and preventing cyber threats, detecting anomalies, and protecting critical infrastructures, contributing to the improvement of security processes and the adoption of innovative technologies.
Competences associated with the role:
These professionals have expertise in applying AI methods and techniques to cybersecurity. They can integrate machine learning, deep learning, and generative AI tools with traditional defense systems. They work on complex projects where AI is used to strengthen the protection of data and systems, making threat prevention and management more effective and supporting technological innovation within organizations.
Career opportunities:
They work in specialized roles within consulting and applied research. They find employment in IT and cybersecurity service companies, public and private institutions, organizations developing digital solutions and technological platforms, and in sensitive sectors such as finance, healthcare, and critical infrastructure?where data protection and system resilience are essential.
Technicians Specialized in the Analysis and Development of Business Software Using Cybersecurity Methodologies
Role in a work context:
The professions in this category fall within the profiles of Software Analysts and Designers, with specific expertise in secure development and programming, testing and analytical methodologies aimed at identifying security vulnerabilities, and systems for correcting and preventing security issues in software. They are also experts in cryptographic techniques (algorithms and protocols) for protecting data stored in corporate databases.
Competences associated with the role:
These professionals integrate traditional software development and programming skills with specific knowledge of common software security issues. In the software development lifecycle, they can apply the main software security methodologies from the design phase through development and testing. They also verify vulnerabilities in third-party products or business applications and, where necessary, define the most appropriate countermeasures for efficient and secure use.
Career opportunities:
Secure software development and the assessment of third-party software security are now essential requirements for most companies, public administrations, and service providers. Professionals with this profile can work in any organization equipped with an information system or involved in the development of software for third parties.
Technicians Specialized in Cybersecurity Methodologies for Web/Cloud Applications and Services, Including AI-Based Technologies
Role in a work context:
The professions in this category are part of the profiles of Web Application and Cloud Service Analysts and Designers, for whom specific competencies in securing highly interactive, network-based applications are now essential. Equally important is understanding the potential and risks associated with using artificial intelligence, including generative AI, in systems and in cybersecurity in general. These professionals combine web application development and AI model development with knowledge of cloud security issues, protecting corporate networks and individual users from malicious code, unauthorized access, and cybercrime?today?s main vectors of attack.
Competences associated with the role:
These professionals know the main methodologies used for building traditional and generative AI models, as well as web and cloud applications. They support secure design, assess security levels through testing and monitoring tools (including AI-based systems), and apply cryptographic techniques for secure network communication and data protection in web/cloud applications. They are strongly oriented toward technological innovation due to the rapid evolution of web/cloud and AI technologies.
Career opportunities:
The increasing spread of AI-based web and cloud services makes these professionals highly valuable in the industrial, commercial, and service sectors. Security in these contexts is becoming a top priority due to the rise of online fraud and cyberattacks and their potential commercial and financial impact. These professionals are therefore essential for all organizations?public or private, of any size or sector?that have adopted web services, including AI-enhanced solutions, for commercial presence or service delivery.
Technicians Specialized in Information and Communication Technologies
Role in a work context:
The professions in this category belong to the profiles of experts in the application of information and communication technologies across various operational contexts?the foundational domain of the L-31 Computer Science degree program. These professionals combine software development skills with knowledge of operational challenges in different application contexts (industrial automation, information systems, digital communication, decision support, etc.), working on the design, management, and maintenance of even complex IT applications.
Competences associated with the role:
These professionals have solid foundational knowledge and a broad set of competences across computer science and telecommunications. They are familiar with the scientific method, possess strong modelling skills, and can understand and use the mathematical tools supporting computer science. They are able to work in teams, operate independently, select appropriate technologies, and quickly integrate into work environments.
Career opportunities:
Graduates can work in a wide range of application domains for the design and management of IT and cloud systems, as well as for the development of new systems and applications/services.
Role in a work context:
The professions in this category operate in the broad field of business consulting, supporting companies in the analysis and resolution of cybersecurity issues related to management information systems, data processing, intranet and Internet communications, and the development of interactive applications.
Competences associated with the role:
These professionals possess specific expertise in technologies and methods for cybersecurity and can understand the organizational and operational dynamics of the production environments in which they work. They are able to contribute to structured projects and heterogeneous business contexts, offering specialized knowledge typically not present within companies. They work both on solving cybersecurity issues affecting corporate information systems and on supporting technological innovation and the selection of cybersecurity technologies.
Career opportunities:
They carry out highly specialized professional activities in business consulting for companies, public bodies, and professional firms that often lack adequate cybersecurity expertise needed for the proper and effective management of information systems. This includes compliance with regulations on data processing, protection of corporate assets from breaches and system compromises, and maintaining the operability of systems, networks, and applications in the event of cyber intrusions or accidental malfunctions.
Expert in Artificial Intelligence and Its Security Applications
Role in a work context:
The professions in this category focus on the analysis and development of artificial intelligence?based solutions applied to the security of information systems, networks, and data. They support companies and public organizations in identifying and preventing cyber threats, detecting anomalies, and protecting critical infrastructures, contributing to the improvement of security processes and the adoption of innovative technologies.
Competences associated with the role:
These professionals have expertise in applying AI methods and techniques to cybersecurity. They can integrate machine learning, deep learning, and generative AI tools with traditional defense systems. They work on complex projects where AI is used to strengthen the protection of data and systems, making threat prevention and management more effective and supporting technological innovation within organizations.
Career opportunities:
They work in specialized roles within consulting and applied research. They find employment in IT and cybersecurity service companies, public and private institutions, organizations developing digital solutions and technological platforms, and in sensitive sectors such as finance, healthcare, and critical infrastructure?where data protection and system resilience are essential.
Technicians Specialized in the Analysis and Development of Business Software Using Cybersecurity Methodologies
Role in a work context:
The professions in this category fall within the profiles of Software Analysts and Designers, with specific expertise in secure development and programming, testing and analytical methodologies aimed at identifying security vulnerabilities, and systems for correcting and preventing security issues in software. They are also experts in cryptographic techniques (algorithms and protocols) for protecting data stored in corporate databases.
Competences associated with the role:
These professionals integrate traditional software development and programming skills with specific knowledge of common software security issues. In the software development lifecycle, they can apply the main software security methodologies from the design phase through development and testing. They also verify vulnerabilities in third-party products or business applications and, where necessary, define the most appropriate countermeasures for efficient and secure use.
Career opportunities:
Secure software development and the assessment of third-party software security are now essential requirements for most companies, public administrations, and service providers. Professionals with this profile can work in any organization equipped with an information system or involved in the development of software for third parties.
Technicians Specialized in Cybersecurity Methodologies for Web/Cloud Applications and Services, Including AI-Based Technologies
Role in a work context:
The professions in this category are part of the profiles of Web Application and Cloud Service Analysts and Designers, for whom specific competencies in securing highly interactive, network-based applications are now essential. Equally important is understanding the potential and risks associated with using artificial intelligence, including generative AI, in systems and in cybersecurity in general. These professionals combine web application development and AI model development with knowledge of cloud security issues, protecting corporate networks and individual users from malicious code, unauthorized access, and cybercrime?today?s main vectors of attack.
Competences associated with the role:
These professionals know the main methodologies used for building traditional and generative AI models, as well as web and cloud applications. They support secure design, assess security levels through testing and monitoring tools (including AI-based systems), and apply cryptographic techniques for secure network communication and data protection in web/cloud applications. They are strongly oriented toward technological innovation due to the rapid evolution of web/cloud and AI technologies.
Career opportunities:
The increasing spread of AI-based web and cloud services makes these professionals highly valuable in the industrial, commercial, and service sectors. Security in these contexts is becoming a top priority due to the rise of online fraud and cyberattacks and their potential commercial and financial impact. These professionals are therefore essential for all organizations?public or private, of any size or sector?that have adopted web services, including AI-enhanced solutions, for commercial presence or service delivery.
Technicians Specialized in Information and Communication Technologies
Role in a work context:
The professions in this category belong to the profiles of experts in the application of information and communication technologies across various operational contexts?the foundational domain of the L-31 Computer Science degree program. These professionals combine software development skills with knowledge of operational challenges in different application contexts (industrial automation, information systems, digital communication, decision support, etc.), working on the design, management, and maintenance of even complex IT applications.
Competences associated with the role:
These professionals have solid foundational knowledge and a broad set of competences across computer science and telecommunications. They are familiar with the scientific method, possess strong modelling skills, and can understand and use the mathematical tools supporting computer science. They are able to work in teams, operate independently, select appropriate technologies, and quickly integrate into work environments.
Career opportunities:
Graduates can work in a wide range of application domains for the design and management of IT and cloud systems, as well as for the development of new systems and applications/services.
The Degree Programme provides access to the services offered by the University for international mobility, including physical, blended, and virtual mobility. Information is available through the annual calls for applications, information sessions, and the dedicated pages on the University website (https://www.unimi.it/en/international/study-abroad).
Attendance of synchronous lectures is strongly recommended
Enrolment
Qualifications and knowledge required for admission
Applicants to the Bachelor's degree programme in Cybersecurity and Artificial Intelligence must have an upper secondary school diploma or an equivalent qualification obtained abroad. An adequate understanding of basic sciences and elementary logic is also required to successfully attend the programme.
Admission assessment
There is no entrance exam or interview, but after enrolling you will have to take a mandatory online test aimed at assessing your understanding of basic sciences and elementary logic. The test will be available from October 2026 and you will have to take it when you first access the online platform. The outcome will be visible online at the end of the test.
Additional learning requirements (OFA) and remedial activities
Should the test identify knowledge gaps in mathematics, you will be assigned additional learning requirements (OFA), to be met through remedial coursework within 12 months of enrolment. Remedial courses will be delivered online and will focus on the foundations of mathematics.
At the end of the OFA remedial courses, you will have to take an in-person test, which will be scheduled on the same dates as the Mathematics and Foundations of Programming exam, right before it.
Students who have been assigned OFA may access all first‑year learning materials and take all first‑year exams. However, they won't be allowed to take their second-year exams until they pass the OFA remedial test.
Applicants to the Bachelor's degree programme in Cybersecurity and Artificial Intelligence must have an upper secondary school diploma or an equivalent qualification obtained abroad. An adequate understanding of basic sciences and elementary logic is also required to successfully attend the programme.
Admission assessment
There is no entrance exam or interview, but after enrolling you will have to take a mandatory online test aimed at assessing your understanding of basic sciences and elementary logic. The test will be available from October 2026 and you will have to take it when you first access the online platform. The outcome will be visible online at the end of the test.
Additional learning requirements (OFA) and remedial activities
Should the test identify knowledge gaps in mathematics, you will be assigned additional learning requirements (OFA), to be met through remedial coursework within 12 months of enrolment. Remedial courses will be delivered online and will focus on the foundations of mathematics.
At the end of the OFA remedial courses, you will have to take an in-person test, which will be scheduled on the same dates as the Mathematics and Foundations of Programming exam, right before it.
Students who have been assigned OFA may access all first‑year learning materials and take all first‑year exams. However, they won't be allowed to take their second-year exams until they pass the OFA remedial test.
Enrolment
Enrolment
Enrolment in this programme is not conditional upon passing any entrance exam or interview. After enrolling, you will be required to take an online test assessing your prior knowledge in the basic subjects relevant to the programme.
Online enrolment between 3 June 2026 and 15 June 2027.
Online services
Programme description and courses list
Compulsory
| Courses or activities | Max ECTS | Total hours | Language | SSD |
|---|---|---|---|---|
| Computer Architectures and Networks | 18 | 120 | Italian | INFO-01/A |
| English Assessment B1 (3 ECTS) | 3 | 0 | English | NN |
| Foundations of Ai | 24 | 160 | Italian | INFO-01/A |
| Mathematics and Foundations of Programming | 21 | 140 | Italian | INFO-01/A MATH-03/A MATH-05/A |
be activated by the A.Y. 2027/2028
Compulsory
| Courses or activities | Max ECTS | Total hours | Language | SSD |
|---|---|---|---|---|
| Advanced Topics in Ai and Cybersecurity | 21 | 140 | Italian | IINF-05/A INFO-01/A |
| Foundations of Data Management and Cybersecurity | 24 | 160 | Italian | GIUR-14/A GIUR-17/A INFO-01/A |
| Intelligent Security | 18 | 120 | Italian | INFO-01/A |
be activated by the A.Y. 2028/2029
Compulsory
| Courses or activities | Max ECTS | Total hours | Language | SSD |
|---|---|---|---|---|
| Advanced Security Topics | 18 | 120 | Italian | IINF-05/A INFO-01/A |
Compulsory
| Courses or activities | Max ECTS | Total hours | Language | SSD |
|---|---|---|---|---|
| Internship | 18 | 0 | Italian | NN |
| Final Thesis | 3 | 0 | Italian | NN |
Optional activities and study plan rules
1 - Elective courses
The student is required to earn 12 ECTS credits of free‑choice courses selected either from those offered by the Degree Programme Board or from any courses offered by the University, provided that their contents do not overlap with those of the courses delivered by the Bachelor's Degree Programme in Computer Security and Artificial Intelligence or by other degree programmes overseen by the Department of Computer Science, and that they are consistent with the student's study plan.
Students may request recognition of ECTS credits for training activities completed at external institutions, by submitting the corresponding certification. Each certification may grant a maximum of 3 ECTS credits, and up to 2 certifications may be recognized. Students wishing to apply for recognition must complete the "istanza" form available at:
https://www.unimi.it/it/studiare/servizi-gli-studenti/segreterie-infostudenti/modulistica-generale
and submit it to the Student Office of their degree programme together with copies of the obtained certifications.
Evaluation will be carried out by a designated committee on the basis of the following criteria:
Validity: the certification must have been obtained within the last 5 years.
Specificity: the certification must relate to skills consistent with those required by the degree programme in which the student is enrolled.
Specialization: the certification must concern specialized and/or professional competences.
Level: the certification must attest competences at an intermediate or advanced level. Basic or entry‑level certifications are not eligible for recognition.
The student is required to earn 12 ECTS credits of free‑choice courses selected either from those offered by the Degree Programme Board or from any courses offered by the University, provided that their contents do not overlap with those of the courses delivered by the Bachelor's Degree Programme in Computer Security and Artificial Intelligence or by other degree programmes overseen by the Department of Computer Science, and that they are consistent with the student's study plan.
Students may request recognition of ECTS credits for training activities completed at external institutions, by submitting the corresponding certification. Each certification may grant a maximum of 3 ECTS credits, and up to 2 certifications may be recognized. Students wishing to apply for recognition must complete the "istanza" form available at:
https://www.unimi.it/it/studiare/servizi-gli-studenti/segreterie-infostudenti/modulistica-generale
and submit it to the Student Office of their degree programme together with copies of the obtained certifications.
Evaluation will be carried out by a designated committee on the basis of the following criteria:
Validity: the certification must have been obtained within the last 5 years.
Specificity: the certification must relate to skills consistent with those required by the degree programme in which the student is enrolled.
Specialization: the certification must concern specialized and/or professional competences.
Level: the certification must attest competences at an intermediate or advanced level. Basic or entry‑level certifications are not eligible for recognition.
Learn more
Guidance for prospective students
- Degree programme introductory webinar. 28 may, at 18.00
- What is La Statale Open
- University guidance
- Open Day 2026
Support services
Continuous tutoring support
Milan
Course locations
Exams are usually held at the Teaching Sector in via Celoria 18, Milan
Tuition fees are to be paid in two instalments:
- the first instalment amounts to 646 euros and is due upon enrolment
- the amount of the second instalment varies according to each student's ISEE University value, from 0 to a maximum of 4,561.12 euros. Payment is due within 120 days of enrolment.
Certain categories of students are entitled to a partial or full tuition waiver, as established by Italian legislation or the University's own regulations.