Note: As of Winter Quarter 2019, the Applications in Cybersecurity Program is renamed Cybersecurity Risk Management Program.
In this eleven-week program, participants devise an operational cybersecurity risk management strategy using the NIST Cybersecurity Framework for a cyber-physical system or a technology of their choice
Cybersecurity Risk Management Program provides the knowledge and skills essential for an effective response to advanced cybersecurity threats in any operational environment. The program is ideally suited for information technology professionals and managers interested or involved in cybersecurity decision-making. The curriculum is flexible and meets the learning objectives of each participant. They can choose to apply the NIST Cybersecurity Framework to a technology they currently work with, are interested in, or use the Cyber-Physical Systems Lab at DePaul University. 
The program addresses the benefits of a cybersecurity management strategy that includes consideration of ethical, legal, and privacy issues; an understanding of security standards and modern technology; an assessment of threats, vulnerabilities, and risks; and application of the principles of economics for cybersecurity. Classroom lectures and demonstrations will be complemented by readings, case study exercises, and a final project.
Students in this program will be able to:
- design, implement, and sustain a strategy for operational cybersecurity risk management
- apply the NIST Cybersecurity Framework in any operational environment including cyber-physical systems (i.e., IoT and industrial process control systems)
- plan and conduct standardized cybersecurity threat and risk assessment for an operational environment
- experiment with tools and techniques for vulnerability assessment
- develop cybersecurity policies
- apply the principles of economics for cybersecurity
- consider the legal, ethical, and regulatory environment as it relates to operating in cyberspace
 National Institute of Standards and Technologies, "Framework for Improving Critical Infrastructure Cybersecurity," Gaithersburg, MD, 2014. https://nvlpubs.nist.gov/nistpubs/CSWP/NIST.CSWP.04162018.pdf
For a complete program description, please
download the program's brochure.
Dates & Location
Autumn Quarter 2020:
Application Deadline:Late Aug. 2020
Tuition Deadline:Late Aug. 2020
Classes Begin:Week of Sept. 7th (Dates TBA)
Classes End:Week of Nov. 23rd (Dates TBA)
On-campus section: Classes usually meet at the Loop Campus on Saturday afternoons (class time to be announced).
Autumn Quarter 2020
Full payment of tuition must be received before the start of the program. Students who elect to pay tuition using a credit or debit card will be assessed a non-refundable 2.75% convenience fee.
Refund/Cancellation Policy: DePaul reserves the right to cancel any program before that program’s first scheduled meeting, in which case tuition fees (but not convenience fees) will be refunded. The university's refund policy allows a return of 100% of tuition if the student drops the Cybersecurity Risk Management Program within two weeks of the first day of the program (convenience fees will not be refunded).
Notice for Current DePaul Students
- Undergraduates: Please be aware that the tuition fee for this program is not included in the university’s full-time term package pricing.
Each program requires a $40.00 (non-refundable) application fee that can be paid online (via credit card) during the online application process. If you need to pay this fee by check or money order, please make the check or money order payable to DePaul University and send it to:
DePaul University Institute for Professional Development
243 S. Wabash Avenue
Chicago, IL 60604
Textbooks are a separate purchase to be made by st
Reading materials for certificate programs consist of textbooks and supplementary handouts. Textbook readings are considered preparatory in nature and are typically assigned prior to lectures; supplementary handouts are frequently distributed in class to provide additional information.
There is no textbook for this program.
Fees are payable by check made out to DePaul University, or by credit card. Students who elect to pay tuition using a credit or debit card will be assessed a non-redundable 2.75% convenience fee.
Applicants who are eligible for a tuition reimbursement program offered by their employer and are interested in deferring their tuition payment using the university's Employer Tuition Deferral Plan must return the Employer Tuition Deferral Plan application to the Institute for Professional Development Office. Submitting this application to any other DePaul office may delay the student's registration process. Information about this plan, along with an application form, is found
Applicants who wish to use the university's Single Term Payment Plan or a third-party billing arrangement should contact the Institute for Professional Development office at (312) 362-6282 for details.
Professional work experience in the administration, support, management, or risk assessment of security services is recommended. Applicants are expected to have knowledge of information and communication technologies and basic security knowledge.
The Cybersecurity Risk Management Program is catalogued as a non-credit course of DePaul University. A certificate of completion from DePaul University is awarded to those who successfully complete the program's requirements. Program requirements include home work assignments, class discussion, case study exercises and a final project. No midterm or final exams are conducted.
The Cybersecurity Risk Management Program is a graded course. A final grade letter as well as DePaul transcript (upon request) will be available upon program completion.
Application & Registration Procedure
All interested parties should apply for admission using the Institute for Professional Development's
online application; or, to apply via fax, mail, or in person, print out and complete the
Application Form. Upon admission, the Institute office will contact the prospective student with registration information and instructions.
You do not have to be an existing DePaul student to take this certificate program. Registration is restricted to individuals who apply for admission to the program and receive an acceptance letter. IPD staff will register applicants upon receipt of payment and registration form.
Regular DePaul students cannot register themselves via the university's registration system. If interested in enrollment, regular DePaul students should begin by submitting an application for admission. Students must meet the program's admission criteria.