PhD position on Explainable Incident Response
4 maanden geleden
In recent years, machine learning (ML) solutions are increasingly being deployed in Security Operations Centres (SOCs) to enhance security coverage, and to reduce the number of missed attacks. Not only do these ML systems create many false positives, it is often very difficult to understand how they work in the first place. Moreover, the forensic analysis of incidents and incident response are largely manual procedures, leading to analyst burnout and ‘alert fatigue'.
The objective of this PhD project is to create ‘AI-assisted practitioners' for incident response by developing novel ML algorithms that reduce analyst workload and provide decision-making assistance. We propose to develop explainable ML algorithms that summarize large volumes of observable data (intrusion alerts, network & system logs) in order to discover contextually meaningful patterns from them. The student will explore multi-modal learning and generative AI to produce actionable explanations from these discovered patterns that are tailored to the operator's expertise. The evaluation of these algorithms will be done under closed-world and open-world settings. For the closed-world setting, a major challenge is the lack of suitable datasets to evaluate ML models. The student will set up a testbed together with our industry collaborators for the collection of intrusion alert datasets. For the open-world setting, the student will deploy these algorithms in real SOC environments in order to measure the extent of workload reduction experienced by security analysts. In doing so, we aim to develop technologies that are not only novel but also have real-world applications.
The PhD student will be embedded within the Semantics, Cybersecurity, and Services (SCS) group at University of Twente. The student will have the opportunity to participate in internships and/or collaboration with industry partners under the TUCCR initiative. The SCS group offers a stimulating, supportive, and diverse research environment, as well as plenty of opportunities for personal and professional growth.
Your profile
You are a highly motivated and enthusiastic researcher, aspiring to do world-class research and have real-world impact. You have a MSc degree with excellent grades in computer science, or similar; Applications from students who are about to finish their MSc degree studies will be considered as well. You are interested in the domain of cybersecurity and have a solid background in systems security and/or data science/artificial intelligence; Some industrial experience in a cybersecurity role and prior experience with writing scientific papers are of additional advantage. You know your way around UNIX/Linux systems and can code in Python. You are curious and interested in learning how things work and how to make them better. You have a creative mind-set and excellent analytical and communication skills. You have good team spirit and like to work in an interdisciplinary and internationally oriented environment. You are proficient in English.
Our offer
As a PhD candidate at UT, you will be appointed to a full-time position for four years, with a qualifier in the first year, within a very stimulating and exciting scientific environment; The University offers a dynamic ecosystem with enthusiastic colleagues; Your salary and associated conditions are in accordance with the collective labour agreement for Dutch universities (CAO-NU); You will receive a gross monthly salary ranging from € 2.770,- (first year) to € 3.539,- (fourth year); There are excellent benefits including a holiday allowance of 8% of the gross annual salary, an end-of-year bonus of 8.3%, and a solid pension scheme; The flexibility to work (partially) from home; A minimum of 232 leave hours in case of full-time employment based on a formal workweek of 38 hours. A full-time employment in practice means 40 hours a week, therefore resulting in 96 extra leave hours on an annual basis; Free access to sports facilities on campus; A family-friendly institution that offers parental leave (both paid and unpaid); You will have a training programme as part of the Twente Graduate School where you and your supervisors will determine a plan for a suitable education and supervision; We encourage a high degree of responsibility and independence, while collaborating with close colleagues, researchers and other staff.-
PhD Researcher in Explainable Incident Response
6 dagen geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob DescriptionIn today's digital landscape, cybersecurity threats are becoming increasingly sophisticated, making it challenging for security analysts to respond effectively. To address this issue, we are seeking a highly motivated PhD researcher to join our team at the University of Twente. The successful candidate will work on developing novel machine...
-
PhD Researcher in Explainable Incident Response
3 weken geleden
Enschede, Overijssel, Nederland University of Twente VoltijdAbout the PositionWe are seeking a highly motivated and enthusiastic researcher to join our team at the University of Twente as a PhD Researcher in Explainable Incident Response. The successful candidate will be part of the Semantics, Cybersecurity, and Services (SCS) group and will work on developing novel ML algorithms that reduce analyst workload and...
-
PhD Position in Explainable Incident Response
21 uur geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob DescriptionIn today's digital landscape, cybersecurity threats are becoming increasingly sophisticated. To combat these threats, organizations are turning to machine learning (ML) solutions to enhance their security operations. However, the deployment of ML systems in Security Operations Centres (SOCs) has created new challenges. One of the primary...
-
PhD Researcher in Explainable Incident Response
3 dagen geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob DescriptionIn the realm of cybersecurity, the increasing deployment of machine learning (ML) solutions in Security Operations Centres (SOCs) has led to a surge in false positives and a lack of understanding of how these systems work. The forensic analysis of incidents and incident response remain largely manual procedures, resulting in analyst burnout...
-
PhD Researcher in Explainable Incident Response
2 weken geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob DescriptionIn the realm of Security Operations Centres (SOCs), machine learning (ML) solutions are increasingly being deployed to enhance security coverage and reduce missed attacks. However, these ML systems create many false positives and are often difficult to understand. The forensic analysis of incidents and incident response are largely manual...
-
PhD Researcher in Explainable Incident Response
1 week geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob DescriptionIn the realm of Security Operations Centres (SOCs), machine learning (ML) solutions are increasingly being deployed to enhance security coverage and reduce missed attacks. However, these ML systems create many false positives and are often difficult to understand. The forensic analysis of incidents and incident response are largely manual...
-
PhD Researcher in Explainable Incident Response
4 dagen geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob DescriptionIn the realm of Security Operations Centres (SOCs), machine learning (ML) solutions are increasingly being deployed to enhance security coverage and reduce missed attacks. However, these ML systems create many false positives and are often difficult to understand. The forensic analysis of incidents and incident response are largely manual...
-
PhD Researcher in Explainable AI for Incident Response
3 weken geleden
Enschede, Overijssel, Nederland University of Twente VoltijdAbout the RoleWe are seeking a highly motivated and talented PhD researcher to join our team at the University of Twente. The successful candidate will be part of the Semantics, Cybersecurity, and Services (SCS) group, where they will contribute to the development of innovative AI solutions for incident response.Key ResponsibilitiesDesign and develop...
-
PhD Researcher in Explainable Incident Response
2 dagen geleden
Enschede, Overijssel, Nederland University of Twente VoltijdPhD Researcher in Explainable Incident ResponseIn today's complex cybersecurity landscape, machine learning (ML) solutions are increasingly being deployed in Security Operations Centres (SOCs) to enhance security coverage and reduce the number of missed attacks. However, these ML systems create many false positives and are often difficult to understand,...
-
PhD Researcher in Explainable Incident Response
1 week geleden
Enschede, Overijssel, Nederland University of Twente VoltijdAbout the PhD PositionIn the context of increasing adoption of machine learning (ML) solutions in Security Operations Centres (SOCs), the ability to understand and explain ML-driven incident response decisions is becoming a critical challenge. This PhD project aims to address this challenge by developing novel ML algorithms that reduce analyst workload and...
-
Explainable AI Specialist for Cybersecurity
3 weken geleden
Enschede, Overijssel, Nederland University of Twente VoltijdAbout the RoleWe are seeking a highly motivated and talented PhD researcher to join our team at the University of Twente. The successful candidate will be working on developing innovative explainable AI algorithms for incident response in cybersecurity.Key ResponsibilitiesDesign and develop explainable AI models for incident response in...
-
PhD position on Radio Systems
4 maanden geleden
Enschede, Nederland University of Twente VoltijdThe Radio Systems (RS) group of the University of Twente (UT) has a vacancy for a PhD candidate with the aim to define the system-level requirements for joint communication and sensing (JCAS) for future 6G networks . This position is embedded in Program Line 1 (Intelligent Components), within the framework of the Dutch national growth fund for FNS (Future...
-
PhD Position in Artificial Microswimmers
19 uur geleden
Enschede, Overijssel, Nederland University of Twente VoltijdPhD Position in Artificial MicroswimmersWe are seeking a highly motivated and curious PhD candidate to join our research team at the University of Twente. Our group focuses on developing artificial microswimmers capable of autonomous motion and transport in 3D.About the ProjectThe primary objective of this project is to develop a unique experimental model...
-
PhD Position in Advanced Materials Modelling
3 weken geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob Title: PhD Position in Advanced Materials ModellingAbout the Position:We are seeking a highly motivated PhD candidate to join our research team at the University of Twente. The successful candidate will be part of the National research program Aviation in Transition and will focus on the modelling of the press forming process of thermoplastic...
-
PhD Position in Artificial Microswimmers
3 dagen geleden
Enschede, Overijssel, Nederland University of Twente VoltijdPhD Position in Artificial MicroswimmersWe are seeking a highly motivated and skilled PhD candidate to join our research team at the University of Twente. The successful candidate will work on developing artificial microswimmers capable of autonomous motion and transport in 3D.About the ProjectThe primary objective of this project is to develop a unique...
-
PhD Position in Artificial Microswimmers
6 dagen geleden
Enschede, Overijssel, Nederland University of Twente VoltijdPhD Position in Artificial MicroswimmersWe are seeking a highly motivated and skilled PhD candidate to join our research team at the University of Twente. The successful candidate will work on developing artificial microswimmers capable of autonomous motion and transport in 3D.About the ProjectThe primary objective of this project is to develop a unique...
-
Postdoctoral research management position on Digital Finance
4 maanden geleden
Enschede, Nederland University of Twente VoltijdThis postdoc position on Digital Finance is part of DIGITAL, an international Marie Sklodowska-Curie Action (MSCA) Industrial Doctoral Network that includes eight prestigious European universities (University of Twente, WU Vienna, HU Berlin, Bucharest University of Economic Studies, Babes-Bolyai University, Bern Business School, Kaunas University of...
-
PhD position in IC Design group
4 maanden geleden
Enschede, Nederland University of Twente VoltijdPLEASE NOTE: you are required to apply via the "apply now" button below, ánd to fill in an additional questionnaire before via this before we can process your application. The University of Twente (UT) is located in the east of the Netherlands. It offers a dynamic campus, excellent facilities and the possibility to work in- and with- famous research...
-
PhD Position in Radio Systems Research
2 weken geleden
Enschede, Overijssel, Nederland University of Twente VoltijdAbout the PositionThe University of Twente is seeking a highly motivated and enthusiastic PhD candidate to join the Radio Systems group. The successful candidate will be part of a dynamic and international research environment, working on the development of novel dual-scenario beamforming concepts for joint communication and sensing (JCAS) in future 6G...
-
PhD Position in Dynamic On-Body and In-Body Compression Systems
3 weken geleden
Enschede, Overijssel, Nederland University of Twente VoltijdJob DescriptionThe University of Twente is seeking a highly motivated PhD researcher to contribute to the development of innovative technologies for dynamic and adaptable actuation in compression devices. This project aims to design and develop modular, scalable, and compact systems for on-body and in-body applications, with a focus on improving the...
