Skip to main content

eServices scheduled downtime, July 11–July 13 | Fall 2025 Registration window now open. | Undergraduate Final Deadline is July 28 for fall term

Secure
Professor in front of computers with students

Cybersecurity BS

About The Program

The Bachelor of Science in Cybersecurity prepares students to safeguard critical information systems and respond effectively to the growing complexity of cyber threats. Through a rigorous, lab-intensive curriculum, students gain hands-on experience applying cybersecurity concepts, tools, and technologies to prevent, detect, respond to, and recover from cyberattacks.

The program trains students to assess organizational security needs, implement safeguards, and design comprehensive cyber defense strategies that align with business, legal, and ethical standards. Many core courses are aligned with industry-recognized certifications, allowing students to demonstrate in-demand competencies and enhance their professional marketability—making them immediately competitive for a wide range of cybersecurity roles.

In addition to technical skills, students develop essential soft skills in ethical judgment, professional communication, and collaborative teamwork. The program emphasizes the ability to clearly document and present technical information, engage diverse stakeholders, and lead in complex environments. Students also explore scholarly and professional literature to stay informed on emerging threats and trends, and learn to design secure systems that account for real-world constraints—including economic, environmental, social, and ethical factors. These combined competencies prepare graduates to contribute strategically and responsibly to the protection of digital systems across industries.

Program highlights

  • Lab-intensive, hands-on learning: Emphasizes practical skills in threat detection, incident response, and secure systems design through immersive lab work.
  • Certification-aligned curriculum: Courses are mapped to recognized industry certifications, giving students a competitive edge in the job market.
  • NSA-designated Cyber Defense program: Aligned with the National Center of Academic Excellence in Cyber Defense (NCAE-CD), ensuring adherence to national cybersecurity education standards.
  • Access to advanced infrastructure: Includes IT/OT cyber ranges and cloud-based virtual labs for realistic, scenario-based cybersecurity training.
  • Expert faculty with real-world experience: Courses taught by professionals with extensive backgrounds in government, industry, and military cybersecurity roles.
  • Emphasis on professional skills: Builds leadership, communication, ethics, and teamwork capabilities essential for success in today’s cyber workforce.
  • Future-ready design: Prepares students to navigate evolving cyber threats while designing systems that reflect legal, social, and operational realities.

Learn more about the MS in Cyber Operations program.

Learn more about the accelerated combined (BS + MS) degree in Cybersecurity Operations.

New Fall 2025! Intelligence and Security Analysis Certificate

Seals of the DoD Cyber Academic Engagement Office, National Security Agency, National Centers of Academic Excellence in Cybersecurity, and the Centers of Academic Excellence in Cybersecurity Community, with the CAE-CD and CAE-CO cyber defense and cyber operations submarks

Metro State University is Minnesota’s only institution recognized by the National Security Agency (NSA) with dual designations as a National Center of Academic Excellence in Cyber Defense (NCAE-CD) and Cyber Operations (NCAE-CO).

The Bachelor of Science in Cybersecurity degree is aligned with the NCAE-CD designation, ensuring the program meets rigorous national standards in technical depth, applied learning, and ethical practice. This recognition provides students with a competitive edge in the workforce and validates their readiness to defend critical systems and data in a rapidly evolving cyber landscape.

The Master of Science in Cyber Operations is aligned with the NCAE-CO designation, awarded by the National Security Agency. This elite recognition underscores the program’s focus on the operational side of cybersecurity—emphasizing advanced technical skills, adversarial thinking, and mission-oriented training beyond traditional cybersecurity practices. The NCAE-CO designation affirms that the program meets the nation’s most rigorous standards for preparing professionals to conduct complex cyber operations in support of national defense, critical infrastructure protection, and intelligence missions.

As an active participant in the national CAE community, Metro State continues to lead in cybersecurity workforce development, education, and public service—equipping graduates to protect the digital assets of government, industry, and society.

Student outcomes

After earning the BS in Cybersecurity, students will be able to:

  • Apply knowledge of cybersecurity disciplines, tools, and technologies to prevent, detect, respond to, and recover from cyber incidents.
  • Analyze cybersecurity risks, threats, and countermeasures, and develop strategies to address organizational security needs.
  • Design and implement appropriate security controls to meet organizational requirements while considering legal, economic, environmental, social, and ethical constraints.
  • Communicate technical information effectively through formal reports, documentation, and presentations tailored for diverse audiences, including technical and non-technical stakeholders.
  • Identify, evaluate, and synthesize relevant information from scholarly and professional sources to solve problems and adapt to the evolving threat landscape.
  • Collaborate effectively as a contributing member or leader of a team to address cybersecurity challenges and deliver project-based solutions.
  • Demonstrate sound judgment in recognizing and addressing ethical and legal issues in cybersecurity, adhering to professional standards and responsibilities.

Program educational objectives

The Bachelor of Science in Cybersecurity program is designed to prepare graduates for long-term professional success. Within a few years of completing the program, alumni are expected to:

  • Make meaningful contributions to their communities and the broader field of cybersecurity by applying their knowledge to address current and emerging security challenges, both technical and societal.
  • Advance professionally through demonstrated expertise in cybersecurity principles, practices, and tools across diverse industries and organizational settings.
  • Collaborate effectively in team environments, exhibiting ethical judgment, accountability, and a strong sense of professional responsibility.
  • Integrate cybersecurity practices into a wide range of real-world applications aligned with the core competencies of their undergraduate education.
  • Engage in continuous learning and professional development, maintaining and enhancing their skills in response to evolving technologies, threats, and industry standards.

Program oversight

MN Cyber icon. Train, Test, Detect. Protect.

Housed within the College of Sciences, the MN Cyber Institute is a statewide initiative dedicated to positioning Minnesota as a national leader in cybersecurity education and workforce development. The Institute advances this mission through strategic public-private partnerships, interdisciplinary research, and community engagement.

Oversight of the cybersecurity program is provided by the MN Cyber Advisory Board, which includes representatives from industry, government, and academia. The board offers strategic direction, monitors program performance, and ensures that Metro State’s cybersecurity curriculum remains aligned with real-world workforce needs and evolving industry expectations.

In addition to strong industry alignment, the program is structured to meet the NSA’s Knowledge Units (KUs) required for maintaining Metro State’s prestigious designation as a NCAE-CD institution. This alignment ensures that students receive education grounded in nationally recognized standards of excellence and relevance in the field of cybersecurity.

Career prospects

The demand for cybersecurity professionals continues to surge, with the U.S. Bureau of Labor Statistics projecting a 33% growth in employment for information security analysts over the next decade—more than four times the average for all occupations.

The median annual salary for information security analysts exceeds $124,000, reflecting the high value placed on cybersecurity expertise across all sectors. Entry-level positions such as cybersecurity specialists and incident analysts also offer competitive starting salaries, typically ranging from $80,000 to $92,000 per year.

Graduates of Metro State’s cybersecurity program are well-prepared to pursue a wide range of high-demand roles, including:

  • Security Analyst / Architect / Engineer
  • Penetration Tester
  • Vulnerability Assessor
  • Incident Responder
  • Security Auditor / Manager

With a curriculum aligned to both industry needs and nationally recognized standards, Metro State equips students with the skills, certifications, and ethical foundation required to lead in securing digital systems and infrastructure across government, industry, and nonprofit sectors.

How to enroll

Current students: Declare this program

Once you’re admitted as an undergraduate student and have met any further admission requirements your chosen program may have, you may declare a major or declare an optional minor.

Future students: Apply now

Apply to Metropolitan State: Start the journey toward your Cybersecurity BS now. Learn about the steps to enroll or, if you have questions about what Metropolitan State can offer you, request information, visit campus or chat with an admissions counselor.

Get started on your Cybersecurity BS

Program eligibility requirements

Upon admission to the university, students aspiring to pursue a Bachelor of Science degree in Cybersecurity will be granted pre-major status and assigned an academic advisor from the College of Sciences.

For acceptance into the Cybersecurity major, students must submit an Undergraduate Program Declaration Form when the following conditions are met:

  • Have a minimum cumulative GPA of 2.5 for ICS 265 and MATH 215 or transfer equivalents.
  • Have a grade of C- or higher for all major prerequisites;
  • Completed the General Education Goal I Writing Requirement; and
  • Demonstrated competency in the "C programming language" either by coursework (e.g., ICS 265) or by passing a "C Programming" competency exam.

Students with pre-major status are not permitted to enroll in any 400-level courses within the major. The Computer Science and Cybersecurity (CSC) Department is responsible for officially admitting students into this major and evaluating the equivalence and eligibility of transfer coursework.

Courses and Requirements

SKIP TO COURSE REQUIREMENTS

Guidelines for completing the Cybersecurity BS

  • All newly admitted students will be assigned academic advisors and are placed in pre-major status until they have met the program eligibility requirements. The Undergraduate Program Declaration Form must be submitted for a student to be considered for acceptance into the major.
  • All courses in the major must be completed with a grade of C- or better and a minimum cumulative GPA of 2.5 for ICS 265 and MATH 215 or equivalents.
  • At least 16 credits of major requirements must be completed at Metro State University.
  • The major requires at least 28 credits of upper-division (i.e., 300-level or higher) coursework.
  • Read and understand the guidelines for transfer courses and prerequisites as listed in the General Guidelines section.

Major Requirements

+ Pre - major Foundation (24 credits)

To declare the Cybersecurity major, students must complete the following pre-major foundation courses with a grade of C- or higher and a minimum GPA of 2.5 for ICS 265 and MATH 215 or transfer equivalents. For further details, reference the General Guidelines section below.

Complete all of the following six courses:

This course covers the fundamental concepts of a single user operating system. The topics discussed in the course are the basic concepts of computer organization and architecture, memory management, process handling, disk and file management and control, and peripherals operation. Students also have the opportunities to learn the techniques and procedures of system installation, configuration, administration, and trouble shooting. The operating systems illustrated in the course are MS Windows and/or Mac OS X.

Full course description for Computer and Operating Systems Fundamentals I

This course covers the fundamental concepts of a multi-user operating system. The topics discussed in the course are conventional computer organization and architecture, memory management, process handling, disk and file management and control, and peripherals operation. Students also have the opportunities to learn the techniques and procedures of system installation, configuration, administration, and trouble shooting. The operating systems illustrated in the course are Linux and Unix.

Full course description for Computer and Operating Systems Fundamentals II

This course introduces fundamental concepts in computer programming and the development of computer programs to solve problems across various application domains. Topics include number systems, Boolean algebra, variables, decision-making and iterative structures, lists, file manipulation, and problem deconstruction via modular design approaches. Lab work and homework assignments involving programming using a language such as Python form an integral part of the course.

Full course description for Computational Thinking with Programming

This course is designed to provide a fast-paced exposure to the C programming language for students majoring in a computer-related discipline. The following topics are briefly reviewed using C syntax: looping, selection, variables, scope rules, functions and pass-by-value arguments. New topics include pass-by-address arguments, formatted and unformatted I/O, user defined types (enum, struct, union), preprocessing directives, file handling, pointers, pointer arithmetic, string manipulation and selected library functions.

Full course description for C Programming

This course covers the basic principles and methods of statistics. It emphasizes techniques and applications in real-world problem solving and decision making. Topics include frequency distributions, measures of location and variation, probability, sampling, design of experiments, sampling distributions, interval estimation, hypothesis testing, correlation and regression.

Full course description for Statistics I

+ Core (32 credits)

Once the pre-major foundation courses are completed, students must declare Cybersecurity as their major and successfully complete the subsequent courses with a grade of C- or higher.

Students who have yet to declare their major or receive acceptance into the major are prohibited from enrolling in any 400-level courses within the major. For additional information on prerequisites, please refer to the General Guidelines section below.

In this course, students learn the fundamental principles and concepts in computer forensics. The topics include the classification of the digital evidence, the procedure of discovering and preserving evidence, types of computer and Internet crimes, and analysis of computer crime statistics and demographics. Students also learn how to search and retrieve information to find the evidence using some common tools. Related legal procedures, regulations, and laws are also discussed briefly.

Full course description for Introduction to Computer Forensics

This course introduces principles of computer security with integrated hands-on labs. The course prepares students to effectively protect information assets by providing fundamental details about security threats, vulnerabilities, and their countermeasures ranging from a simple computer to enterprise computing. Topics include broad range of today's security challenges, common security threats and countermeasures, security management, access control mechanisms, applied cryptography, privacy issues, computer ethics, file system security, and network security. Overlap: ICS 382 Computer Security

Full course description for Computer Security

Networks are the backbone of information technology operations within an enterprise and are responsible for a significant portion of an organization's security posture. Cybersecurity professionals are often tasked with securing network operations and responding to network threats which demonstrates the importance to networking knowledge in the cybersecurity industry. As a cybersecurity practitioner, it is imperative that there is an understanding of network operations, protocols, and administration practices. This course focuses on developing skills and taking a deep dive into networking protocols including TCP, UDP, ICMP, and IP, network design and architecture, network administration automation, network analysis, and network protocol and design impacts on security and defense measures. Overlap: ICS 383 Networking Protocols and Analysis

Full course description for Networking Protocols and Analysis

To properly secure any organization's information infrastructure and assets, a periodic assessment of its security posture at various levels of the organization is essential. One key area is the direct assessment of vulnerabilities in the IT infrastructure, systems and applications, followed by targeting and exploitation of the same. This course covers the theoretical bases for cyber threats and vulnerabilities, and delves into selection and application of penetration testing methodologies ranging from reconnaissance to the exploitation of vulnerabilities by probing infrastructure, services and applications. The course places a strong emphasis on the use of these methodologies to demonstrate, document, report on, and provide a clear roadmap for remediation of exposed security issues.

Full course description for Vulnerability Assessment and Penetration Testing

This course provides students with a thorough foundation of applied cryptography for cybersecurity practitioners. As encryption technologies continue to integrate into everyday culture, the importance of cryptography and encryption knowledge of cybersecurity practitioners continues to increase. Students will learn and be able to apply and analyze: the history of cryptography from the earliest ciphers to current encryption methodology, mathematical foundations for cryptography, symmetric and asymmetric algorithms, and applied cryptography pertaining to Virtual Private Networks (VPNs), SSL/TLS, strategies for defense utilizing encryption and cryptography, military applications, steganography, cryptanalysis, and more. Additionally, students will look to the future of cryptography and encryption including a look into quantum cryptography and encryption in cloud environments. Overlap: ICS 483.

Full course description for Cryptography for Cybersecurity Practitioners

Information is an asset that must be protected. Without adequate protection or network security, many individuals, businesses, and governments are at risk of losing that asset. It is imperative that all networks be protected from threats and vulnerabilities so that a business can achieve its fullest potential. Security risks cannot be eliminated or prevented completely; however, effective risk management and assessment can significantly minimize the existing security risks. In order to provide effective protection to the organization's critical infrastructure and services, continuous monitoring as well as various processes, procedures, and technology is required to detect and prevent cyber-attacks, breaches, and security violations. In addition, existence of a comprehensive incident response plan is vitally connected to the survivability of an organization after a severe security breach or compromise of critical business operations. This course focuses on the operational aspect of…

Full course description for Cyber Operations

Covers concepts and methods in the definition, creation and management of databases. Emphasis is placed on usage of appropriate methods and tools to design and implement databases to meet identified business needs. Topics include conceptual, logical and physical database design theories and techniques, such as use of Entity Relationship diagrams, query tools and SQL; responsibilities of data and database administrators; database integrity, security and privacy; and current and emerging trends. Use of database management systems such as MySQL. Coverage of HCI (Human Computer Interaction) topics and development of front ends to databases with application of HCI principles to provide a high level usability experience. Overlap: ICS 311T Database Management Systems.

Full course description for Database Management Systems

+ Capstone Project Sequence (6 credits)

Students are required to complete CYBR 498 and CYBR 499 across a minimum of two semesters.

As the first course in a two-part capstone sequence, CYBR 498 provides students with the foundational framework to conceptualize, research, and plan a rigorous cybersecurity project. This course guides students through the identification and formulation of a well-defined research problem, leveraging current cybersecurity trends, industry challenges, and emerging threats. Students will conduct a comprehensive literature review, synthesizing insights from scholarly research, industry reports, and additional learning resources to support the development of a viable cybersecurity solution. Emphasis is placed on problem definition, scope of work, and research methodology, ensuring that students construct a strong theoretical and practical foundation for their capstone project. In addition to technical research, students will explore legal, ethical, and compliance considerations relevant to cybersecurity research and professional practice. To further enhance career readiness, students will…

Full course description for Cybersecurity Capstone I Concepts, Research and Planning

As the culminating experience of the undergraduate Cybersecurity program, CYBR 499 challenges students to apply their acquired knowledge, technical expertise, and industry best practices in developing a comprehensive security solution. This project-driven course requires students to integrate research, risk assessment, security implementation, and ethical considerations into a capstone project that addresses real-world cybersecurity challenges. Students will conduct independent research, analyzing and synthesizing scholarly and professional cybersecurity literature to support their project development. They will identify, evaluate, and mitigate cybersecurity risks and threats, applying advanced enterprise security strategies to enhance system defenses. Students will develop critical leadership and collaboration skills throughout the course, managing tasks and responsibilities in a high-pressure project environment. Effective communication is emphasized, as students will present their…

Full course description for Cybersecurity Capstone II - Design, Development, and Implementation

+ Electives (4 credits)

Fulfill four elective credits from the selection provided below, with the following stipulations: The content of CYBR 490: Special Topics in Cybersecurity varies from semester to semester. Students may enroll in this course multiple times for elective credit, provided each instance covers different topics, and they have obtained approval from either the cybersecurity coordinator or the CSC department chair. To count certification preparation courses (CYBR 313, CYBR 323, and CYBR 343) towards major or technical elective requirements, students must successfully pass the related certification exam and submit proof of this achievement. An approved cybersecurity internship (CYBR 350I) is eligible to count as a major elective requirement. Students should obtain approval from the Cybersecurity Internship Coordinator before commencing the internship.

In this course, students continue not only to learn how to identify and collect digital evidence through forensics search tools, but also to study the emerging data mining techniques. The topics include how to design a plan for a computer crime investigation; how to select a computer software tool to perform the investigation; how to articulate the laws applying to the appropriation of computers for forensics analysis; how to verify the integrity of the evidence being obtained; how to prepare the evidence collected for the use in the court; and how to present the evidence as an expert eyewitness in court. Some hypothetical and real cases are also discussed in class.

Full course description for Digital Evidence Analysis

In this course, students will learn the law relating to computer software, hardware, and the Internet. The areas of the law include intellectual property, cyberspace privacy, copyright, software licensing, hardware patent, and antitrust laws. Legislation and public policies on cyberspace technology, cryptographic method export controls, essential infrastructure protection and economic development are also discussed in class.

Full course description for Computer Laws

This course takes a hands-on approach to provide students with foundational concepts and practical skills in Mobile Device Forensics, which can be leveraged to perform forensically sound investigations against crimes involving the most complex mobile devices currently available in the market. Using modern tools and techniques, students will learn how to conduct a structured investigation process to determine the nature of the crime and to produce results that are useful in criminal proceedings. The course will provide walkthrough on various phases of the mobile forensics process for both Android and iOS based devices including forensically extracting, collecting, and analyzing, data and producing and disseminating reports. The course modules and labs will involve certain specialized hardware and software to perform data acquisition (including deleted data), and the analysis of extracted information.

Full course description for Mobile Device Security and Forensics

This course's primary focus is to teach the latest commercial-grade hacking tools, techniques, and methodologies used by hackers and information security professionals to hack an organization lawfully for the sole purpose of discovering vulnerabilities. It is imperative to identify vulnerabilities in your working environment before the attackers and guide your employer towards a better overall security posture. Ethical Hacking is an in-demand skill, primarily because the best defense is a good offense. The course will prepare students for the EC-Council CEH certification exam. The CEH certification, a well-recognized industry certification, helps students develop the necessary skills needed to work in a red team environment, focused on attacking computer systems and gaining access to networks, applications, databases, and other critical data on secured systems.

Full course description for EC-Council Certified Ethical Hacker (CEH) Certification Preparation

This course's primary focus is to provide targeted content and integrated hands-on skills in Linux Operating System and prepare students for the CompTIA Linux+ certification exam. The CompTIA Linux+, a well-recognized industry certification, helps students develop baseline skills needed to perform common tasks in major distributions of Linux, including the Linux command line, essential maintenance, installing and configuring workstations, and networking.

Full course description for CompTIA Linux+ Certification Preparation

This course's primary focus is to provide targeted content and integrated hands-on skills to apply behavioral analytics to networks and devices to prevent, detect, and combat cybersecurity threats through continuous security monitoring. The course will prepare students for the CompTIA CySA+ certification exam. The CompTIA CySA+, a well-recognized industry certification, helps students develop baseline skills needed to proactively capture, monitor, and respond to network traffic findings and emphasize software and application security, automation, and threat hunting, and IT regulatory compliance, which affects the daily work of security analysts.

Full course description for CompTIA CySA+ Certification Preparation

Internships offer students opportunities to gain deeper knowledge and skills in their chosen field. Students are responsible for locating their own internship. Metro faculty members serve as liaisons to the internship sites¿ supervisors and as evaluators to monitor student work and give academic credit for learning. Students are eligible to earn 1 credit for every 40 hours of work completed at their internship site. Students interested in internships within the Computer Science and Cybersecurity Department should work with their advisor and/or faculty internship coordinator to discuss the process for your specific major.

Full course description for Cybersecurity Individualized Internship

In the face of escalating cyber breaches and intrusions, organizations seek professionals adept at identifying and responding to security incidents proactively. This course offers an in-depth exploration of Digital Forensics and Incident Response (DFIR) methodologies, emphasizing frameworks such as NIST and US-CERT. Students will learn to effectively detect, analyze, contain, eradicate, and recover from cyber attacks within enterprise networks. Throughout the course, students will develop expertise in identifying threat actors and security breaches, analyzing artifacts and logs, conducting post-mortem analyses, and implementing and refining mitigation strategies. The curriculum aligns with the CompTIA CySA+ objectives, ensuring students are equipped with the competencies required for effective cybersecurity analysis and incident response. By the end of the course, students will be proficient in using industry-standard forensic tools, assessing cyber attack stages, and developing…

Full course description for Cyber Incident Response and Handling

Malware infections have reached epidemic proportions with over 600 million types of infection reported to date. Traditional antivirus techniques are not sufficient to stem the tide. This course will introduce students to the fundamentals of malware analysis techniques which will allow them to recognize, analyze and remediate infections. Basic static analysis techniques using antivirus scanning, hashing, string searching and other automated analysis tools will be reviewed. Dynamic approaches using system and network monitoring will be employed to detect snooping and attempts to exfiltrate data. Students will set up virtual workspaces, download tools and malware and analyze software in a secure environment. Reverse engineering will be introduced. Overlap: ICS 486.

Full course description for Malware Analysis

This course explores specialized and emerging topics in cybersecurity, addressing cutting-edge threats, technological advancements, and evolving best practices not covered elsewhere in the Cybersecurity program. Designed to keep pace with the rapidly changing cybersecurity landscape, this course provides students with opportunities to analyze and evaluate recent developments, apply advanced tools and methodologies, and synthesize scholarly and professional literature to solve real-world cybersecurity challenges. Emphasis is placed on ethical decision-making, professional responsibility, and adherence to legal and industry standards in addressing contemporary cybersecurity issues. The specific topic of study varies by semester, ensuring alignment with current industry trends and demands.

Full course description for Special Topics in Cybersecurity

This course focuses on how to design and establish information services over the Internet from the server side. Topics include advanced concepts and issues on Internet architecture, server-side design strategies, current technologies and Internet security. Through labs and programming projects, students learn how to use current scripting and markup languages to build nontrivial state-of-the-art applications.

Full course description for Internet Application Development

+ General Guidelines
Transfer Courses

The evaluation of transfer coursework equivalency is conducted by the Computer Science and Cybersecurity (CSC) Department. This evaluation is initially carried out upon admission, and any updates are recorded in the DARS report. When transferring coursework, it's important to note that courses equivalent to our Pre-Major offerings may be available at various universities, community colleges, and technical colleges. In some cases, a lower-division course from another institution may correspond to one of our upper-division courses, or conversely, an upper-division course elsewhere may match one of our lower-division courses. The designation of the course at the originating institution (whether it is considered lower or upper division) is the determining factor for crediting upper-division courses towards major electives or university graduation requirements.

Prerequisites

Students must understand and comply with the prerequisites for any course they enroll in. Enrollment in a course is contingent upon completing all its prerequisites with a minimum grade of C-. Students who fail to meet these prerequisites will be administratively dropped from the course. While the registration system automatically enforces prerequisites for certain courses, discrepancies may occur. If your DARS report indicates that you satisfy the prerequisites for a course, but the registration system denies your enrollment, please contact your academic advisor for assistance.