The possibilities for extending and improving on the curriculum we used during this fellowship are exciting and promising, especially if such a course were offered as part of the regular curriculum, requiring students to perform assignments and tasks outside of the classroom15and threat modeling experiences are recommended. In feedback about our workshops, a number of participants argued that information-security skills need to be integrated into the core curriculum. When we helped a special reporting project team of recent alumni compile a list of security measures it needed to use, one of the group asked why they all hadn’t learned this during their year at CJS and expressed frustration with this gap in their skill set.