nl

PhD position on attacks against large language models (LLMs)

Apply now
17 days remaining

PhD position on attacks against large language models (LLMs)

Deadline Published Vacancy ID 2359
Apply now
17 days remaining

Academic fields

Engineering

Job types

PhD

Education level

University graduate

Weekly hours

40 hours per week

Salary indication

€3059—€3881 per month

Location

Drienerlolaan 5, 7522NB, Enschede

View on Google Maps

Job description

This project will investigate attacks on large language models (LLMs), a major recent development in artificial intelligence that has already seen many integrations into public life. If these LLMs can be triggered into providing malicious output, this may have disastrous consequences, leading to the generation of harmful content, the execution of malicious code on connected devices, or the abuse of limited resources. The idea is to assess the resistance of these models against new attacks, using techniques coming from the domain of AI and optimisation, and develop methods to defend against such harms by leveraging cryptographic approaches. To this end, you will:
  1. Investigate how to adapt existing adversarial attacks for image classification and other domains against existing open source LLM (e.g., Llama 3, Phi-3), as well as develop new kinds of attacks, for example based on evolutionary algorithms.
  2. Investigate to what extent data poisoning attacks can influence the output of LLM models in security and safety critical infrastructure.
  3. Perform the attack under different scenarios and model the impact.
  4. Evaluate the impact of such attacks when executed in multi-agentic systems, where the output of one LLM is used as input for another LLM.
  5. Design new defense methods, e.g., inspired by cryptography, to prevent such attacks from affecting real-world LLM systems, where we focus on methods that limit the computational overhead to minimize the energy, and therefore environmental cost of such defences.

These research directions will advance the understanding of security vulnerabilities of LLMs, and the prevention of malicious output generation.

Requirements

  • You are an enthusiastic and highly motivated researcher.
  • You have, or will shortly acquire, a master's degree in the field of computer science, preferably with a specialisation in cybersecurity.
  • You have experience with AI models and techniques, such as generative AI models and metaheuristic optimisation algorithms.
  • You have a creative mindset and excellent analytical and communication skills.
  • You have a good team spirit and like to work in an interdisciplinary and internationally oriented environment.
  • You are proficient in English.

Conditions of employment

  • As a PhD candidate at UT, you will be appointed to a full-time position for four years, with a qualifier in the first year, within a very stimulating and exciting scientific environment;
  • The University offers a dynamic ecosystem with enthusiastic colleagues;
  • Your salary and associated conditions are in accordance with the collective labour agreement for Dutch universities (CAO-NU);
  • You will receive a gross monthly salary ranging from € 3.059,- (first year) to € 3.881,- (fourth year);
  • There are excellent benefits including a holiday allowance of 8% of the gross annual salary, an end-of-year bonus of 8.3%, and a solid pension scheme;
  • The flexibility to work partially (max 2 days a week) from home;
  • A minimum of 232 leave hours in case of full-time employment based on a formal workweek of 38 hours. A full-time employment in practice means 40 hours a week, therefore resulting in 96 extra leave hours on an annual basis.
  • Free access to sports facilities on campus
  • A family-friendly institution that offers parental leave (both paid and unpaid);
  • You will have a training programme as part of the Twente Graduate School where you and your supervisors will determine a plan for a suitable education and supervision;
  • We encourage a high degree of responsibility and independence, while collaborating with close colleagues, researchers and other staff.

Department

The candidate will join the Semantics, Cybersecurity & Services SCS group at the university of Twente, under the supervision of Dr. Luca Mariot, Dr. ir. Thijs van Ede, Dr. Jair Santanna and Dr. Florian Hahn

Additional information

Are you interested in this position? Please send your application via the 'Apply now' button below before 14 February 2026, and include:
  • A Curriculum Vitae, including a list of all courses attended and grades obtained, and, if applicable, a list of publications and references.
  • A cover letter (maximum 2 pages A4), emphasising your specific interest, qualifications, and motivations to apply for this position.
  • An IELTS-test, Internet TOEFL test (TOEFL-iBT), or a Cambridge CAE-C (CPE). Applicants with a non-Dutch qualification and who have not had secondary and tertiary education in English can only be admitted with an IELTS-test showing a total band score of at least 6.5, internet. TOEFL test (TOEFL-iBT) showing a score of at least 90, or a Cambridge CAE-C (CPE).

For more information regarding this position, you are welcome to contact Luca Mariot via the following email addres: l.mariot@utwente.nl.

The first round of interviews will be held March 5, 2026.

Screening is part of the selection process.

High Tech and Human Touch

Join the university of technology that puts people first. Create new possibilities for yourself, your colleagues and society as a whole. Using modern technology and science to drive innovation, change and progress. That’s what it means to work at the University of Twente.

Looking for a job that matters?

Apply now
17 days remaining