PhD position on threat intelligence operationalization
PhD position on threat intelligence operationalization
You cannot apply for this job anymore (deadline was 28 Feb 2022).
Browse the current job offers or choose an item in the top navigation above.
Job description
We are looking for one PhD student at the Department of Computer Science and Mathematics at the Eindhoven University of Technology. The candidate will work in the SECurity cluster on the NWA CATRIN project. The goal of CATRIN is to startup the Responsible Internet, a novel security-by-design concept and extension to the Internet that enables higher levels of trust and sovereignty.
CATRIN integrates technology, economics, and policy research to deliver a first operational Responsible Internet. All the PhDs hired in the project contribute to this effort from different expertise angles.
The research position
This position focuses on the enhancement of current threat intelligence and threat monitoring technologies. The goal of the position is to develop, test, and operationalize enhanced and extensible data models for threat intelligence to support monitoring and detection activities by including information on adversaries, attack procedures, and the information provided by the 'Responsible Internet' model. This approach will require a multidisciplinary approach integrating a deep understanding of attacker operations and methods with technical solutions for data analysis and threat monitoring. These approaches will integrate methods from the domains of Natural Language Processing (NLP), and Artificial Intelligence and Machine Learning (AI/ML).
The SECurity cluster at TU/e is uniquely positioned to support this type of research: the cluster conducts cutting-edge research on cybercriminal operations via underground market infiltration and attacker measurements, as well as running its own, in-house, commercial Security Operation Center (SOC). As such the cluster offers unique insights and data on attacker and defender operations supporting this research. The successful candidate will have access to a broad network of researchers and data, as well as direct access to the TU/e SOC for data collection and experimentation.
An extensive project description is available on request.
Tasks:
- carry out research within the project, in cooperation with the other parties involved;
- develop the techniques and tool prototypes required by the project, in cooperation with the other parties involved;
- contribute to the writing of scientific papers;
- finishing a PhD thesis within four years;
- contributing to the teaching activities of the Security group.
CATRIN integrates technology, economics, and policy research to deliver a first operational Responsible Internet. All the PhDs hired in the project contribute to this effort from different expertise angles.
The research position
This position focuses on the enhancement of current threat intelligence and threat monitoring technologies. The goal of the position is to develop, test, and operationalize enhanced and extensible data models for threat intelligence to support monitoring and detection activities by including information on adversaries, attack procedures, and the information provided by the 'Responsible Internet' model. This approach will require a multidisciplinary approach integrating a deep understanding of attacker operations and methods with technical solutions for data analysis and threat monitoring. These approaches will integrate methods from the domains of Natural Language Processing (NLP), and Artificial Intelligence and Machine Learning (AI/ML).
The SECurity cluster at TU/e is uniquely positioned to support this type of research: the cluster conducts cutting-edge research on cybercriminal operations via underground market infiltration and attacker measurements, as well as running its own, in-house, commercial Security Operation Center (SOC). As such the cluster offers unique insights and data on attacker and defender operations supporting this research. The successful candidate will have access to a broad network of researchers and data, as well as direct access to the TU/e SOC for data collection and experimentation.
An extensive project description is available on request.
Tasks:
- carry out research within the project, in cooperation with the other parties involved;
- develop the techniques and tool prototypes required by the project, in cooperation with the other parties involved;
- contribute to the writing of scientific papers;
- finishing a PhD thesis within four years;
- contributing to the teaching activities of the Security group.
Specifications
- max. 38 hours per week
- Eindhoven View on Google Maps
:fill(white)/logos/tue-en-wide_acOLN2b.png)
Eindhoven University of Technology (TU/e)
Requirements
We are looking for a candidate who meets the following requirements:
- a MSc in Computer Science, Mathematics or closely related field with above average results
- a research oriented attitude;
- interest in computer security and human computer interaction;
- knowledge of attack detection and computer networks is a plus;
- good communicative skills in English, both written and oral;
- ability to work in a team, cooperate with the industrial partners;
- fluent in spoken and written English.
- a MSc in Computer Science, Mathematics or closely related field with above average results
- a research oriented attitude;
- interest in computer security and human computer interaction;
- knowledge of attack detection and computer networks is a plus;
- good communicative skills in English, both written and oral;
- ability to work in a team, cooperate with the industrial partners;
- fluent in spoken and written English.
Conditions of employment
We offer:
- A meaningful job in a dynamic and ambitious university with the possibility to present your work at international conferences.
- A full-time employment for four years, with an intermediate evaluation (go/no-go) after nine months.
- To develop your teaching skills, you will spend 10% of your employment on teaching tasks.
- To support you during your PhD and to prepare you for the rest of your career, you will make a Training and Supervision plan and you will have free access to a personal development program for PhD students (PROOF program).
- A gross monthly salary and benefits (such as a pension scheme, pregnancy and maternity leave, partially paid parental leave) in accordance with the Collective Labor Agreement for Dutch Universities.
- Additionally, an annual holiday allowance of 8% of the yearly salary, plus a year-end allowance of 8.3% of the annual salary.
- Should you come from abroad and comply with certain conditions, you can make use of the so-called '30% facility', which permits you not to pay tax on 30% of your salary.
- A broad package of fringe benefits, including an excellent technical infrastructure, moving expenses, and savings schemes.
- Family-friendly initiatives are in place, such as an international spouse program, and excellent on-campus children day care and sports facilities.
