PhD Position Vulnerability Scanning, Incident Response and Security Benchmarking

PhD Position Vulnerability Scanning, Incident Response and Security Benchmarking

Published Deadline Location
5 Jul 14 Aug Delft

Job description

     

      

We are in an age of regular news stories about vulnerabilities in enterprise IT being exploited, for theft of customer data, ransomware and other nefarious purposes. The impact of these attacks seem to be rising, yet organisations are still struggling to keep their systems patched.

The reality is that organisations face a painful dilemma: patch fast and comprehensively and incur downtime and potential failures; or patch slow and selectively and risk getting compromised by attacks. As a result, organisations take a long time to patch even critical security vulnerabilities. The way to get out of this catch-22 is to radically change the risk governance of patching. That is the objective of the NWO-funded THESEUS project. In this project, we work with closely with academic institutions, like VU Amsterdam, Utrecht and Tilburg Univertisies; and real-world partner organisations, such as KLM-AirFrance, Rijkswaterstaat, City of Amsterdam, City of The Hague, KPN, CyberSprint, and the National Cyber Security Center. We engage with researchers and professionals to explore questions of vulnerability scanning, automatic vulnerability and patch triaging, risk profiling and benchmarking organisations with respect to their security posture and patch status. We also engage with organisation decision-makers and the wider workforce to rationalise their perspective on the cost and benefits of keeping systems patched in a timely manner.

Within this project, we are looking for a motivated researcher interested in doing research in program analysis, vulnerability scanning and management, and security benchmarking. This includes randomised control experiments with how to effectively notify and incentivize organisations to patch discovered vulnerabilities. You would closely collaborate with our academic and industrial partners to perform Internet-wide scanning of enterprise networks, to analyse the obtained results, benchmark organisations and to find the best ways of reducing risks related to security vulnerabilities.

According to the Future of Jobs Survey 2020 from World Economic Forum, the top skills for 2025 include analytical thinking and innovation; active learning; complex problem-solving; critical thinking and analysis; creativity, originality and initiative; leadership and social influence; technology use, monitoring and control; technology design and programming; resilience, stress tolerance and flexibility; reasoning, problem-solving and ideation; systems analysis and evaluation. Successful completion of this PhD degree will allow you to demonstrably obtain these skills and prepare you for a prominent future career. Our PhDs are very sought after by industry, government and academia.

We expect candidates to have degrees, experience and strong technical skills in information systems or computer science. You would work in close collaboration with researchers from computer and social science disciplines.

The candidate will become a part of a successful world-recognized interdisciplinary team of over 20 scientists who jointly research cybersecurity issues. The team consists of people from different disciplines, countries, and backgrounds. Your project also offers the unique opportunity to collaborate with real-world companies in government, healthcare, and various other sectors. The candidate will have the opportunity to present their work at international conferences, to conduct research abroad and to collaborate with the world's leading researchers working towards a secure digital future.

Specifications

Delft University of Technology (TU Delft)

Requirements

  • In possession or expect to obtain a Master of Science (MSc) or equivalent in computer science, computer engineering or a closely related field;
  • Experience in Internet security and measurement and web security;
  • Excellent programming and data analysis skills;
  • Excellent academic writing and communication skills in English;
  • Curious and critical mind;
  • Being able to organize your work independently;
  • Being a good team player

Doing a PhD at TU Delft requires English proficiency at a certain level to ensure that the candidate is able to communicate and interact well, participate in English-taught Doctoral Education courses, and write scientific articles and a final thesis. For more details please check the Graduate Schools Admission Requirements.

Conditions of employment

Fixed-term contract: 4 years.

Doctoral candidates will be offered a 4-year period of employment in principle, but in the form of 2 employment contracts. An initial 1,5 year contract with an official go/no go progress assessment within 15 months. Followed by an additional contract for the remaining 2,5 years assuming everything goes well and performance requirements are met.

Salary and benefits are in accordance with the Collective Labour Agreement for Dutch Universities, increasing from € 2443 per month in the first year to € 3122 in the fourth year. As a PhD candidate you will be enrolled in the TU Delft Graduate School. The TU Delft Graduate School provides an inspiring research environment with an excellent team of supervisors, academic staff and a mentor. The Doctoral Education Programme is aimed at developing your transferable, discipline-related and research skills.

The TU Delft offers a customisable compensation package, discounts on health insurance and sport memberships, and a monthly work costs contribution. Flexible work schedules can be arranged. For international applicants we offer the Coming to Delft Service and Partner Career Advice to assist you with your relocation.

Employer

Delft University of Technology

Delft University of Technology is built on strong foundations. As creators of the world-famous Dutch waterworks and pioneers in biotech, TU Delft is a top international university combining science, engineering and design. It delivers world class results in education, research and innovation to address challenges in the areas of energy, climate, mobility, health and digital society. For generations, our engineers have proven to be entrepreneurial problem-solvers, both in business and in a social context. At TU Delft we embrace diversity and aim to be as inclusive as possible (see our Code of Conduct). Together, we imagine, invent and create solutions using technology to have a positive impact on a global scale.

Challenge. Change. Impact! 

Department

Faculty Technology, Policy and Management

With its excellent education and research at the intersection of technology, society and policy, the Faculty of TPM makes an important contribution to solving complex technical-social issues, such as energy transition, mobility, digitalisation, water management and (cyber) security. We combine insights from the engineering sciences, the social and the humanities. We develop robust models and designs, are internationally oriented and have an extensive network with knowledge institutions, companies, social organisations and governments.

Click here to go to the website of the Faculty of Technology, Policy and Management.

Additional information

For more information about this vacancy, feel free to contact Dr. Yury Zhauniarovich (y.zhauniarovich@tudelft.nl) and/or prof.dr. Michel van Eeten (m.j.g.vaneeten@tudelft.nl).

 

 

Specifications

  • PhD
  • Behaviour and society
  • 38—40 hours per week
  • €2541—€3247 per month
  • University graduate
  • TUD02524

Employer

Delft University of Technology (TU Delft)

Learn more about this employer

Location

Mekelweg 2, 2628 CD, Delft

View on Google Maps

Interesting for you

X

Apply for this job

Apply for this job

This application process is managed by the employer (Delft University of Technology (TU Delft)). Please contact the employer for questions regarding your application.

Thank you for applying

Please contact the employer for questions regarding your application.

Tip: save this job as favorite in your AcademicTransfer account. This gives you an immediate overview and makes it easy to find the job later on. No account yet? Create it now and take advantage of other useful functionalities too!

Application procedure

Please submit your application online no later than August 14, 2022. You can only apply via the application button 'Apply now'. We will not process applications sent by email and/or post. Applicants should submit:

  • A cover letter explaining your personal motivation in pursuing a PhD, including how you see the PhD fitting into your career trajectory. Please, include links to code repositories/professional communities, media coverage, hall of fame records, if you have any;
  • A CV, which should include details of your eligibility;
  • Other information for consideration, e.g., scientific publications

 

A pre-employment screening can be part of the application procedure.

Application procedure

Application procedure

Please submit your application online no later than August 14, 2022. You can only apply via the application button 'Apply now'. We will not process applications sent by email and/or post. Applicants should submit:

  • A cover letter explaining your personal motivation in pursuing a PhD, including how you see the PhD fitting into your career trajectory. Please, include links to code repositories/professional communities, media coverage, hall of fame records, if you have any;
  • A CV, which should include details of your eligibility;
  • Other information for consideration, e.g., scientific publications

 

A pre-employment screening can be part of the application procedure.

Make sure to apply no later than 14 Aug 2022 23:59 (Europe/Amsterdam).