star twitter facebook envelope linkedin instagram youtube alert-red alert home left-quote chevron hamburger minus plus search triangle x

IT Lab: Summer Security Intensive (SSI)


As our world becomes increasingly digitized, the privacy, intellectual property, and fraud risks continue to grow. These cyber threats are relevant to all sectors of the economy and are driving a major talent shortage in the information security industry. Our Summer Security Intensive will begin to prepare its participants for a career in this high-growth field.

IT Lab: Summer Security Intensive (SSI) is a paid seven-week summer fellowship during which participants:

  • Study with the world’s leading security, analytics, and policy researchers, including the CERT division of the Software Engineering Institute
  • Take coursework in security analytics and policy
  • Apply knowledge, skills, and abilities gained via experiential learning to improve the cybersecurity posture of local organizations

SSI is a fellowship program for rising college seniors. This program is designed for U.S. citizens and permanent residents interested in pursuing graduate degrees and careers in the information security sector.

Students who complete SSI and are later admitted to a master’s program at Heinz College will be eligible to receive a scholarship of at least 50% of tuition.

Whether you're interested in IT, data analytics, or cybersecurity, SSI delivers an excellent summer experience. Carnegie Mellon University’s Heinz College of Information Systems and Public Policy is home to the best master’s programs in IT Management and Information Security in the world. Our cybersecurity curriculum is relevant not only for technologists but also for students from all backgrounds with a sincere interest in IT security and policy.

The pairing of our two schools, the School of Information Systems and Management and the School of Public Policy and Management, offers a unique academic experience that allows us to examine how technology can be used to solve problems that arise in the public and private sectors of our economy. Heinz College prepares students to conduct careful and objective analysis of relevant data, to understand and leverage the power of information technology, and to lead and implement change in managerial and policy contexts.

SSI provides an opportunity for participants to engage in this unique academic and experiential learning environment. Participants take classes and interact with some of the world's foremost experts in information security through:

  • Three specialized courses over the summer at CMU fo­cusing on security policy and technology implementation, as well as engaging in an interactive colloquium that addresses issues facing security professionals.
  • Work with a real-world client (from the local government or non-profit sectors) on a cybersecurity-related project

IT Lab Projects


During the seven-week SSI program, students will participate in a group project, fulfilling an actual business or operational need for our partners, giving students the opportunity to have a measurable impact.

  • Recent Projects

    United States Strategic Command (USSTRATCOM) and the National Security Innovation Network (NSIN)

    Students worked with USSTRATCOM subject-matter experts to research and recommend strategies to address the following policy and technical challenge problems:

    • What is the role of U.S. nuclear weapons in deterring strategic or existential attacks?
    • What could break deterrence in the 21st century? What could strengthen deterrence?
    • What is the efficacy of multi-domain deterrence in an economically competitive environment?
    • How might cyber-attacks on Nuclear Command, Control and Communications (NC3) systems introduce doubt in the reliability and effectiveness of an actor’s NC3 systems?
    Department of Homeland Security Cybersecurity Infrastructure Security Agency (CISA) and the National Risk Management Center (NRMC)
    • Students developed a comprehensive inventory of lists, historical compilations, and trends of cybersecurity incidents.
    • Students developed a comprehensive inventory of metrics used to describe cybersecurity incidents and how they are reported.
    • Students developed a profile of model organizations that produce metrics/statistics today.
    • Students developed an anatomy of a complex cyber incident as an exemplar use case.
    Carnegie Mellon University CISO Office
    • Students assisted in the development and documentation of the control/maturity framework and process indicators for the implementation of a business resiliency program aligned to the ISO 22301 Societal security -- Business continuity management systems international standard.
    • Students developed and deployed data analytics and visualization tools for security monitoring at Carnegie Mellon University.  Deliverables included building dashboards using the ‘glass table’ functionality of Splunk for Enterprise Security.
    Allegheny Health Choices, INC.
    • Students conducted a feasibility study of the implementation of blockchain technologies to protect health care data with Allegheny Health Choices.
    Consortium for Public Education
    • Students performed a vulnerability assessment of the technology currently used by the Consortium for Public Education. The assessment documented a technology baseline along with recommendations for a strategic plan for long-term technology investments.
    Urban League of Greater Pittsburgh
    • Students developed a technical training curriculum for the Pittsburgh Public School District to prepare students for continuing education or entry into the Information Security workforce.
    Pittsburgh Mercy
    • Students developed a security strategy for Pittsburgh Mercy to define organizational policy for the selection, support, and security of technology around mobile computing.
    Allegheny Digital
    • Students examined smart home automation technologies to further understand information security and data privacy risks, such as data leakage and ease of compromise. The IT Lab project team developed technical countermeasures to minimize the threat surface, providing consumers with greater control over the data their smart home is storing, processing, and transmitting.
    National Cyber Forensic Training Alliance (NCFTA)
    • Students developed a comprehensive written Information Security Plan that articulates and documents the organization’s administrative, technical, and physical safeguards for the protection of all information and data maintained, including information maintained on behalf of third parties. The plan recommended procedures for evaluating electronic and physical methods of accessing, collecting, storing, using, transmitting, and protecting all information and data.
    Nimbus Robotics
    • Students performed a security assessment on the IT infrastructure of the organization and evaluated the security of data collected, stored, and transmitted from bionic shoes produced by the company to Nimbus Robotics data repositories.
IT Lab: SSI 2025 Details
  • Priority Application Deadline: February 1, 2025 (receive admission decision by mid-February)
  • Final Application Deadline: April 1, 2025 (receive admission decision by May 1)
  • Dates: June 12, 2025 to August 2, 2025
  • Financial Support: Heinz College will cover costs of participation in the IT Lab program. This includes the costs of housing, tuition, books, supplies, social functions, travel expens­es to and from Pittsburgh (within the United States), $1,000 toward meals, AND a $2,000 stipend.

Applicants should carefully review the IT Lab: SSI Application Process prior to submitting the application for admission.

Apply Now - No Application Fee

Questions regarding ITLab? Contact the Heinz College Office of Admissions at hnzadmit@andrew.cmu.edu or by phone (412) 268-2164.