The Master of Science in Information Security and Privacy is the premiere master’s degree program for those seeking employment or advancement in management or executive roles in identity security or privacy. Utilizing the interdisciplinary excellence of the School of Information in particular and The University of Texas at Austin as a whole, the subject matter expertise of the Center for Identity, and the leadership of Center and iSchool partners, the MS ISP curriculum offers a 360-degree perspective on information security and privacy that is not available through existing programs in cybersecurity and information assurance.

Students of the MS ISP program take the following 10 classes for a total of 30 credit hours:  

ISP 380 Introduction to Information Security and Privacy

Foundational concepts of information security and privacy exploring information value, classifications, threats, liabilities and risk management, identity and access controls (IAM), trust frameworks, encryption, digital signatures; and network, web, software and cloud security; and privacy laws, regulations and public policy. The equivalent of three lecture hours a week for one semester.

ISP 381 Information Security & Privacy in Society

Examination of how information is socially and culturally variable and fluid, changing throughout history and differing from place to place. Subjects include anthropological study of information; societal norms; and individual, device, communal, and organizational information strategies. The equivalent of three lecture hours a week for one semester.

ISP 382 Public Policy, Information Security, and Privacy

Overview of how information and public policy relate to each other. Examines key information policy areas including privacy, surveillance, theft, health information, business-to-business relationships, and the co-evolution of personal data and information technologies.

ISP 383 Business Governance and Controls for Information Security and Privacy

Organizational perspective on the management and governance of information. Examines business practices and governance mechanisms for minimizing risks and maximizing returns of information. The equivalent of three lecture hours a week for one semester.

ISP 384 Strategic Communication for Information Security and Privacy

Framing messages and the impact on people, organizations, risks and privacy; effective crisis management communications; communication and business continuity planning; time management; sense making processes in organizational crisis; and reputation management.

ISP 385 Information Risk and Benefit Analysis

Overview and evaluation of risks and benefits related to information in multiple sectors including financial services, healthcare, consumer services, government, education, and energy.

ISP 386 Information Security

Enrollment and authentication for cyber and physical access and transactions, cryptography, biometrics, device identity security, and security culture. The equivalent of three lecture hours a week for one semester.

ISP 387 Information Management and Repositories

Knowledge and data management, storage, and mining. Examines data breaches and information representation and algorithms. Attention to information management applications in all market sectors for enrollment, authentication, operational use, fraud detection, and fraud prevention. The equivalent of three lecture hours a week for one semester.

ISP 388 Law governing Information Security, and Privacy

Laws and other policy instruments related to information security and privacy, different classes of protected personal information, and multiple genres of legal information and legal writing. Legal requirements and social responsibilities as they pertain to data protection and the prevention of different types of fraud and information crimes. The equivalent of three lecture hours a week for one semester.

ISP 388L Professional Experience and Project

Study of a practical problem, current phenomenon, or professional issue in an institutional setting. Conference course. The equivalent of three lecture hours a week for one semester. Offered on the credit/no credit basis only. Prerequisite: Graduate standing and completion of at least twenty-four semester hours of coursework in the graduate program in Information Security and Privacy program.

ISP 389 Individual Studies

In-depth study of a problem or topic related to Information Security and Privacy. Individual Instruction. May be repeated for credit. ISP 389 is worth 3 hours of semester credit.

Contact Us


2501 Speedway, MS C4300
Austin, Texas 78712


Get MS ISP news & updates!