The Master of Science in Information Security and Privacy is the premiere master’s degree program for those seeking employment or advancement in management or executive roles in identity security or privacy. Utilizing the interdisciplinary excellence of the School of Information in particular and The University of Texas at Austin as a whole, the subject matter expertise of the Center for Identity, and the leadership of Center and iSchool partners, the MS ISP curriculum offers a 360-degree perspective on information security and privacy that is not available through existing programs in cybersecurity and information assurance.

Students of the MS ISP program take the following 10 classes for a total of 30 credit hours:  

ISP 380 Introduction to Information Security and Privacy

Foundational concepts of information security and privacy exploring information value, classifications, threats, liabilities and risk management, identity and access controls (IAM), trust frameworks, encryption, digital signatures; and network, web, software and cloud security; and privacy laws, regulations and public policy. 

ISP 381 Information Security & Privacy in Society

Examination of how information is socially and culturally variable and fluid, changing throughout history and differing from place to place. Subjects include the anthropological study of information; societal norms; and individual, device, communal, and organizational information strategies. 

ISP 382 Public Policy, Information Security, and Privacy

Overview of how information and public policy relate to each other. Examines key information policy areas including privacy, surveillance, theft, health information, business-to-business relationships, and the co-evolution of personal data and information technologies.

ISP 383 Business Governance and Controls for Information Security and Privacy

Organizational perspective on the management and governance of information. Examines business practices and governance mechanisms for minimizing risks and maximizing returns of information. 

ISP 384 Strategic Communication for Information Security and Privacy

Framing messages and the impact on people, organizations, risks and privacy; effective crisis management communications; communication and business continuity planning; time management; sense making processes in organizational crisis; and reputation management.

ISP 385 Information Risk and Benefit Analysis

Overview and evaluation of risks and benefits related to information in multiple sectors including financial services, healthcare, consumer services, government, education, and energy.

ISP 386 Information Security

Enrollment and authentication for cyber and physical access and transactions, cryptography, biometrics, device identity security, and security culture. 

ISP 387 Information Management and Repositories

Knowledge and data management, storage, and mining. Examines data breaches and information representation and algorithms. Attention to information management applications in all market sectors for enrollment, authentication, operational use, fraud detection, and fraud prevention. 

ISP 388 Law Governing Information Security and Privacy

Laws and governance related to information security and privacy, different classes of protected personal information, and multiple genres of legal information, business governance, regulations and laws. Legal and business requirements and social responsibilities as they pertain to information collection, management, use, protection and privacy. 


ISP 388L Professional Experience and Project

Study of a practical problem, current phenomenon, or professional issue in an institutional setting. Conference course. Offered on the credit/no credit basis only. 

Contact Us


2501 Speedway, MS C4300
Austin, Texas 78712


Get MS ISP news & updates!