Subject guides / Cybersecurity Policy
Cybersecurity Policy
Also appears in programme titles as: Cyber Policy · Information Security Management · Cybersecurity and Governance
What a cybersecurity policy degree actually is
Cyber capability is now statecraft, and every government needs people who understand both the technology of attack and the politics of response — national cyber strategies, incident-response governance, cyber diplomacy and norms. Cybersecurity policy degrees train that hybrid, distinct from the purely technical security MSc.
The map spans the spectrum: KCL's War Studies MA is pure strategy; Royal Holloway (a GCHQ-certified security school) teaches governance on technical foundations; Leiden runs the European governance flagship in The Hague; UNSW Canberra and Georgetown serve the Australian and US security communities.
What you study — and the technical bar
Cyber strategy and doctrine, international law of cyber operations, critical-infrastructure protection, incident-response governance and risk management. The technical bar varies deliberately: KCL and Leiden require none (they teach threat literacy); Royal Holloway expects appetite for the technical layer; Georgetown's risk-management MPS sits in between. Choose by the depth your target employer reads as credible.
Where it leads
National cyber agencies and CERTs, ministries of defence and foreign affairs (cyber diplomacy is a real career track now), critical-infrastructure regulators, threat-intelligence and policy teams at security firms, and international bodies building cyber norms. Security clearances shape this market — which favours studying in the jurisdiction you intend to work in.
Who it suits — and who it does not
A good fit if you are…
- Security practitioners moving from operations into strategy
- International-relations graduates specialising into the hardest-edged policy field
- Government officials building national cyber capacity — a priority funding profile
Probably not the right degree if…
- Aspiring penetration testers — that is a technical security MSc
- Those uncomfortable with defence and intelligence institutions
- Anyone wanting settled international law: cyber norms are still being written
Where to study it: the programme map
Five verified programmes from strategy-first (KCL) through governance (Leiden, Georgetown) to technically-grounded (Royal Holloway) and defence-adjacent (UNSW Canberra).
| University | Official programme title | Length | Tuition (intl) | Experience |
|---|---|---|---|---|
| Georgetown UniversityUnited States | Master of Professional Studies in Cybersecurity Risk Management | — | USD 57,816 | — |
| King's College LondonUnited Kingdom | Cyber Policy & Strategy MA | — | — | — |
| Leiden UniversityNetherlands | MSc Crisis and Security Management (Cybersecurity Governance) | 12 mo | EUR 22,300/yr | — |
| Royal Holloway, University of LondonUnited Kingdom | Information and Cyber Security MSc | 12 mo | GBP 29,300 | — |
| UNSW SydneyAustralia | Master of Cyber Security, Strategy and Diplomacy | 12 mo | AUD 50,500/yr | — |
Every row verified against the official programme page; oldest verification 16 Jul 2026. Nothing here is a paid placement.
Application strategy and funding routes
KCL and Royal Holloway are the one-year Chevening-compatible UK entries; Leiden is the EU governance pick at continental fees. The clearance logic matters: UNSW Canberra feeds the Australian security community, Georgetown the Washington one — pick the capital you want to work in. National cyber-strategy capacity is an explicit theme in several scholarship schemes; name the agency you would return to.
Which scholarship funds which programme
Computed from each scheme's published rules (destination, level, course length) — not a guarantee; list-based schemes still require checking the official list.
- Georgetown University — study destination outside the scheme
- King's College London — study destination outside the scheme
- Leiden University — study destination outside the scheme
- Royal Holloway, University of London — study destination outside the scheme
- UNSW Sydney
- Georgetown University — study destination outside the scheme
- King's College London — course length not on file
- Leiden University — study destination outside the scheme
- Royal Holloway, University of London
- UNSW Sydney — study destination outside the scheme
Frequently asked questions
Do I need a technical background?
Not for KCL, Leiden or Georgetown. Royal Holloway rewards one. What every programme requires is willingness to learn how attacks actually work — policy written in ignorance of the packet layer is the field's cautionary tale.
Cybersecurity policy vs a technical cyber MSc?
Technical degrees certify you to defend systems; these degrees certify you to govern the defence. Salaries start lower than elite technical tracks but the ceiling — national strategy roles — is different in kind.
Which fits Chevening?
KCL and Royal Holloway (one-year UK). Leiden sits in Dutch/EU scholarship territory; UNSW in Australia Awards territory; Georgetown in Fulbright territory.
Related fields
Sources
Official programme pages (linked per row above) · official scholarship rules and participating-programme lists · university admission regulations. Every data row records its source URL and verification date; stale rows are re-checked or removed.
Global Study Prep is independent and not affiliated with any university or scholarship programme. Programme details change — always confirm on the official page before applying.