In a significant move to address the growing demand for skilled professionals, the Higher Education Commission (HEC) today announced a comprehensively updated, industry-aligned curriculum for cyber security degrees, scheduled for implementation nationwide from the Fall 2026 semester.
The revised academic frameworks for BS, MS, and Associate Degree programmes were developed in accordance with the HEC Undergraduate Education Policy 2023, prioritising practical skills to better equip graduates for real-world cybersecurity challenges.
A central feature of the new programmes is the strong emphasis on hands-on training, mandatory internships, and the integration of industry-recognised certifications within the course of study.
Formulated through extensive consultation with subject specialists from academia, industry, and relevant accreditation bodies, the curriculum offers a range of recommended specialisations including Network and Infrastructure Security, Cryptography, and Digital Forensics and Incident Response.
Further specialised tracks cover Internet of Things and Embedded Systems Security, as well as Governance, Risk, and Compliance. The programmes also place a strong emphasis on fostering research, innovation, and a sense of ethical responsibility among students.
Higher education institutions (HEIs) are permitted to introduce additional areas of specialisation, subject to the availability of qualified faculty, infrastructure, and resources, pending approval by their statutory bodies.
The meeting of the National Curriculum Review Committee (NCRC) for Cyber Security was chaired by Director General Dr. Amjad Hussain. The finalised curriculum has been disseminated to all higher education institutions and is available for public access on the HEC website.