Top reasons to study with us
9th for Executive MBA in the UK
FT EMBA global rankings (2022)
10th for Executive MBA in the UK
QS Global MBA rankings (2023)
12th for Full time MBA in the UK
QS Global MBA rankings (2023)
The Cyber Security Executive Master of Business Administration (CEMBA) is a blended, part-time postgraduate programme that will provide middle and senior leaders with the expertise they need to skilfully manage cyber security risk for their organisation. Partnered with leading external cyber security consultants, and taught by international academic experts from the Lancaster University Management School and the School of Computing and Communications, the CEMBA programme adopts a practice-based approach to learning the foundational concepts associated with both leadership and management, as well as cyber security risk. Modules and assessments are designed to help students build up their knowledge and use it to reflect and analyse their own organisational context.
The programme utilises a blended format and consists of 10 core modules that incorporate both business and cyber security topics; two Challenge modules that require students to apply their new knowledge to real cyber security problems; and a workplace-based research dissertation. Core modules follow a similar format: two weeks of individual online preparation; three days of face-to-face engagement at the Lancaster University campus; four weeks of follow-up tutorials and assessment preparation. The programme is 24 months in total.
Lancaster University Management School is ranked 43rd in Europe and 10th in the UK in the Financial Times European Business Schools rankings. It is quadruple accredited by AACSB, AMBA, EQUIS and the SBC. Frequently ranked first globally for Corporate Strategy, the LUMS MBA leads the way in participatory and experience learning for post-experience students.
This programme holds provisional certification from the National Cyber Security Centre (NCSC)Learn more about the NCSC Certified Degree accreditation
2:1 Hons degree in any subject or an equivalent professional qualification.
We may also consider non-standard applicants, please contact email@example.com for information.
- A minimum of five years' of full-time professional/managerial work experience
- An interview with the programme director
- All successful applicants are required to complete the EMBA admissions essay. Further details will be provided with your offer.
English Language Requirements
We may ask you to provide a recognised English language qualification, dependent upon your nationality and where you have studied previously.
We normally require an IELTS (Academic) Test with an overall score of at least 6.5, and a minimum of 6.0 in each element of the test. We also consider other English language qualifications.
Contact: Admissions Team +44 (0) 1524 592032 or email firstname.lastname@example.org
You will study a range of modules as part of your course, some examples of which are listed below.
Business Economic and Financial Literacy
This module provides you with a conceptual framework of finance in order to understand the underlying theoretical reasoning behind financial reporting and economic decision making in practice. It aims to provide you with a degree of economic and financial literacy sufficient for you to interpret and make use of both published and internally generated financial information and understand the decision-making process involving financial information.
At the most fundamental level managers should possess a high level of competence in the use of financial information whether it is information generated for internal consumption such as cost or budgeting information or published financial and economic information of suppliers, customers, competitors or the manager’s own organisation. This course aims to treat the principal topics and issues in finance and economics that are of concern to the general manager and to all those needing to make decisions, especially those that may make the organisation vulnerable to cyber risks.
Cyber Security Core Technologies
This module seeks to provide the core technological grounding needed for managers and leaders to have proactive conversations with technical staff to achieve the overall business aims. Although this module has a technology focus, it assumes no technological background and provides an easily accessible way into the technological aspects of cyber security. The module will take you through all the key foundational elements and capstone this with elements of current research to provide you with a breadth of technological knowledge ready to tackle the challenges of cyber security management and leadership.
Cyber Security Management Challenge
You will participate in two practical challenges, drawn from real-world situations, which require you to synthesise the disciplinary knowledge base you have gained through the previous modules. There will be no specific taught component to this module the focus is on integrating the knowledge and skills gained in the taught element of the programme.
You will work in groups with each group member allocated a role within the organisation. For each challenge, teams will be given a cyber security scenario collectively to manage. They will have decisions to make for the safety of their own organisation while managing the overall aims and objectives of the organisation. Key methods and models have already been delivered through the preceding modules. You will need to apply the models through multi-disciplinary, integrative practice. You will take part in challenges at suitable points throughout the first year of the programme to consolidate your learning.
Cyber Security Operations and Incident Response
Security Operations and Incident Management (SOIM) has developed into a mature process, deployed in many environments; from the early adopters of ICT-intensive sectors such as telecoms and banking and now penetrating all sectors as they become increasingly reliant on digital technology. SOIM can be considered as the ability for organisations to respond to, learn from, and adapt to incidents. This module covers the fundamentals of SOIM and the ways it can be incorporated into organisational structures, process and culture. It will cover the core technology, processes and architectures, focusing on approaches to monitoring and detection of incidents.
Cyber Security Risk Management and Governance
The module will provide you with a solid foundation in the fundamental principles of cyber risk assessment, management and governance, whilst expanding on these domains to cover the knowledge required to gain a working understanding of the topic and its sub-areas. You will learn about the relationship between risk and today’s interconnected, digital, business environment, and explore why effective risk assessment and management is needed to support the communication of risk concepts and values within organisations.
The module describes different perspectives on cyber risk assessment – from individual assets, to whole-system goals and objectives, and covers common risk assessment methods and highlights their uses and limitations. The module will cover features of good risk measurement (and metrics), how to measure risk, why to measure risk, and how these concepts impact risk assessment and management.
Global Operations and Marketing Management in the Cyber Context
The main educational aim of the module is to improve your understanding of operations management and marketing and their joint contribution to the success of an organisation. The key integrating role of operations as the connection between strategy and the delivery of a product or service to a customer is discussed. Issues of process design, planning and control and capacity management are explored as well as the influence on the effectiveness of the operational and marketing functions of the nature of a task, the resource availability and process and quality management. In addition, performance improvement and the experience of customer as critical aspects of organisational are reviewed. The tools and concepts that will be covered in this course will be applied to specific cyber security contexts and problems.
Inclusive Leadership for People and Organisations
The main educational aim of this module is to provide you with a critical and practical understanding of the complexities involved in leading in a cyber security context. To accomplish this, you will learn how individuals learn to lead and develop an understanding of what it takes to lead responsibly and inclusively in consideration of economic, social and environmental factors. You will gain knowledge and understanding of key issues such as leadership learning, leading change, and ethical, spiritual, servant, and authentic leadership.
You will develop key skills that will enable you to understand your purpose as a leader, define a vision from this purpose, and develop the character you feel necessary to lead in an inclusive manner. Specifically, you will explore the unique challenges of leading in uncertain and highly changeable contexts as it relates to cyber security and literacy. Knowledge of the changing nature of managing and leading within this context is vital for sustainable organisational success.
Applied Research Dissertation
This module represents the final element of the Cyber Security Executive MBA programme. It acts as a capstone module, asking you students to reflect on your experience and the knowledge gained from the CEMBA on a real world, industrially inspired research project. The dissertation serves as both a catalyst towards more in-depth specialization on a particular organisational and cyber-related concept as well as an opportunity to refine and solidify your organisational and cyber security literacy and leadership. Students will base their projects in the company in which they are currently employed. However, if that situation is not feasible or appropriate, a case company will be selected in conjunction with a sponsoring company to ensure meaningful adoption of the output in a practical setting.
In addition to the dissertation, you will write a reflective article covering the research project and other aspects of the course and how you they have been applied in your current practice.
Cyber Security Challenge
You will participate in a substantial practical challenge over 4 days. The challenge will simulate a real-world situation. This situation will require you to synthesise the disciplinary knowledge base from your taught modules and then respond to, and resolve, the security challenge.
As this module focuses on integrating the knowledge and skills gained in the taught element of the programme, there will be no specific taught component. You will work, under guidance, in line with current professional approaches. Your team will be given a cyber security scenario collectively to manage and will have decisions to make for the safety of your own organisation while managing the overall aims and objectives of the organisation.
The key methods and models you will need to do this will have already been delivered through the preceding modules. You will need to apply the models through multi-disciplinary, integrative practice. The challenge in this module is the capstone integrative element within the programme. It provides the significant intermediate point, before progressing to substantial work on your dissertation, to reflect on what you have learnt in the programme, and how it applies to your current professional activities.
Cyber Security Regulation
The purpose of this module is to provide a snapshot of legal and regulatory topics that merit consideration when conducting various leadership and management activities in the field of cyber security such as: security management, risk assessment, security testing, forensic investigation, research, product and service development, and cyberoperation.
The intention is to provide a solid grounding for a cyber security manager or leader in common regulatory and legislative concepts that apply to their activities, highlighting sources of legal authority and scholarship.
Human Factors in Cyber Security
The aim of this module is to provide a foundational understanding of the role of human factors in cyber security. One key aspect of this is how to design security that is usable and acceptable to a range of human actors, for instance, end-users, administrators and developers. This module introduces a broader organisational and societal perspective on security that has emerged over the past decade: the importance of trust and collaboration for effective cybersecurity, which can only be achieved by engaging stakeholders and negotiating security solutions that meet their needs. This requires a set of skills that have traditionally not been part of the training provided for security experts and practitioners.
Responsible Innovation and Digitalisation for Business
This module takes a systemic view of innovation in organisations and conceptualises it as a practice and a process embedded in the functioning of organisations and in the routine work of employees. This means that the module departs from more functional and prescriptive views of innovation that focus on products or individual traits. It focuses on understanding what Digital Innovation is, and how it can be stimulated and managed in organisations in a context of potentially conflicting efforts towards cyber security. Students explore the role of technology and digital media as drivers but also as essential elements of innovation in organisations, and how technology supports the management of these complex and competing demands with a particular focus on exploring the importance and essential elements that contribute to create and stimulate innovation within organisations.
The module also covers the implementation and management of innovation in practice, capturing efforts to align processes, culture and internal logics with innovation and the importance of managing competing demands towards security and emphasising functioning logics based on efficiency and business performance.
This module gives you the opportunity to develop an understanding of organisational strategy from both a scientific, artistic, and practice-based perspective.
- The scientific approach includes a focus on the analytic elements of organisational strategy, which focuses on the traditional ‘toolbox’ used to develop business strategy.
- The artistic perspective encourages you to engage in strategy-making practice and reflection, adding a critical element to your knowledge and utilisation of organisational strategy and decision making.
- A practice-based approach to strategy helps you consider the relationship between good theory and good practice within effective strategic management.
Information contained on the website with respect to modules is correct at the time of publication, but changes may be necessary, for example as a result of student feedback, Professional Statutory and Regulatory Bodies' (PSRB) requirements, staff changes, and new research. Not all optional modules are available every year.
Fees and Funding
Fees for the whole programme: £36,000
There may be extra costs related to your course for items such as books, stationery, printing, photocopying, binding and general subsistence on trips and visits. Following graduation, you may need to pay a subscription to a professional body for some chosen careers.
Specific additional costs for studying at Lancaster are listed below.
Lancaster is proud to be one of only a handful of UK universities to have a collegiate system. Every student belongs to a college, and all students pay a small College Membership Fee which supports the running of college events and activities.
For students starting in 2023, the fee is £40 for undergraduates and research students and £15 for students on one-year courses. Fees for students starting in 2024 have not yet been set.
Computer equipment and internet access
To support your studies, you will also require access to a computer, along with reliable internet access. You will be able to access a range of software and services from a Windows, Mac, Chromebook or Linux device. For certain degree programmes, you may need a specific device, or we may provide you with a laptop and appropriate software - details of which will be available on relevant programme pages. A dedicated IT support helpdesk is available in the event of any problems.
The University provides limited financial support to assist students who do not have the required IT equipment or broadband support in place.
Application fees and tuition fee deposits
For most taught postgraduate applications there is a non-refundable application fee of £40. We cannot consider applications until this fee has been paid, as advised on our online secure payment system. There is no application fee for postgraduate research applications.
For some of our courses you will need to pay a deposit to accept your offer and secure your place. We will let you know in your offer letter if a deposit is required and you will be given a deadline date when this is due to be paid.
Fees in subsequent years
If you are studying on a programme of more than one year’s duration, the tuition fees for subsequent years of your programme are likely to increase each year. Read more about fees in subsequent years.
Scholarships and Bursaries
Details of our scholarships and bursaries for 2024-entry study are not yet available, but you can use our opportunities for 2023-entry applicants as guidance.
Check our current list of scholarships and bursaries.
Data, Computing and Communications
Management and Business
- Advanced Leadership Perspectives MSc
- Advanced Leadership Perspectives PGCert
- Advanced Leadership Perspectives PGDip
- Business Administration MBA
- Business Administration (Executive) MBA
- Business Analytics MSc
- Digital Business, Innovation and Management MSc
- Human Resource Management MSc
- Human Resources and Consulting MA
- Innovation and Entrepreneurship MSc
- Innovation and Improvement Science MSc
- Innovation and Improvement Science PgCert
- Innovation and Improvement Science PgDip
- International Business and Strategy MSc
- International Masters Program for Managers No Qual (PGT)
- Leadership and Management PgCert
- Leadership and Management (Health Care) PgCert
- Leadership Practice MSc
- Leadership Practice PgDip
- Leadership Practice (Apprenticeship Pathway) PgDip
- Logistics and Supply Chain Management MSc
- Management MSc
- Management (Entrepreneurship and Strategy) PhD
- Management (Organisation, Work and Technology) PhD
- Management Science MRes
- Management Science PhD
- Management Science PhD (Integrated)
- Medical Leadership MSc
- Medical Leadership PgDip
- Medical Leadership PgCert
- Organisation, Work and Technology MRes
- Politics, Philosophy and Management MSc
- Professional Development PGCert
- Professional Practice MA
- Professional Practice MSc
- Professional Practice PgCert
- Professional Practice PgDip
- Project Management MSc
- Strategy MSc
- Theory and Practice of Management PhD
- Theory and Practice of Management (IDPM) PhD
MBA and Executive MBA
The information on this site relates primarily to 2023/2024 entry to the University and every effort has been taken to ensure the information is correct at the time of publication.
The University will use all reasonable effort to deliver the courses as described, but the University reserves the right to make changes to advertised courses. In exceptional circumstances that are beyond the University’s reasonable control (Force Majeure Events), we may need to amend the programmes and provision advertised. In this event, the University will take reasonable steps to minimise the disruption to your studies. If a course is withdrawn or if there are any fundamental changes to your course, we will give you reasonable notice and you will be entitled to request that you are considered for an alternative course or withdraw your application. You are advised to revisit our website for up-to-date course information before you submit your application.
More information on limits to the University’s liability can be found in our legal information.
Our Students’ Charter
We believe in the importance of a strong and productive partnership between our students and staff. In order to ensure your time at Lancaster is a positive experience we have worked with the Students’ Union to articulate this relationship and the standards to which the University and its students aspire. View our Charter and other policies.