[AISWorld] Postdoc position in Information System Security Engineering

Lammari Nadira ilham-nadira.lammari at cnam.fr
Tue Mar 21 06:12:41 EDT 2017 

A postdoctoral fellow position is available in the ISID (Ingénierie des 
Systèmes d’Information et de decision) group of the CEDRIC Laboratory 
(https://cedric.cnam.fr/).

The successful applicant will join the HuMa project described below.

Applicant is expected to be excellent researcher experienced in 
information system modelling, semantic Web and /or model-driven 
engineering. Background in information system security will be helpful.

The position is for 1 year,

It is available immediately and will remain open until filled.

Interested applicants should contact me at lammari at cnam.fr, and in any 
case before April 10.

HuMa project brief description

------------------------------------------------------------------------------------------------

Following a security incident, a security analysis is often required. It 
focuses first on the traces of computer systems (logs) in order to 
reconstruct what has happened and deduce the attacker's mode of 
operation. Nevertheless, to conduct this security analysis, several 
steps are required: (1) to collect evidences that are related to the 
security incident, (2) to organize them, taking into account the time 
and the space and finally (3) to deduce some relevant correlations, that 
allow the understanding of the process that led to the security 
incident. Due to the explosion of connected objects and the 
proliferation of online and surfing activities carried out on social 
networks, Internet induces the appearance of numerous and various 
traces. On the other hand, nowadays, networks of attackers are inventing 
precise exploits that are able to erase the traces of their actions. At 
the present time, a relevant security analysis could be conducted only 
by a human being. The latter possesses for this purpose reasoning 
abilities in complex contexts. However, the great volume of data 
contained in the traces and induced by the use of connected objects, 
undermine his/her analytical capabilities. To cope with this enormous 
amount of data, security analysts have equipped themselves with computer 
tools known as SIEM (Security Information and Event Management). The 
latter, given the difficulty of automating the complex process of human 
reasoning, generate confusing results and multitude of false positives 
and false negatives. The key challenges of the coming years, in the 
context of big data, will, therefore be, also, to capitalize on the 
complex reasoning of security experts in order to introduce guidance in 
SIEM tools and to permit to security analysts to react on the fly. These 
issues are addressed by the HuMa project funded by a public R&D 
(BPI/DGE) institution. This project brings together partners from 
industry (AIRBUS DEFENSE AND SPACE CYBERSECURIY,INTRINSEC, OBERTHUR, 
SYDO, WALLIX) and academic researchers from INRIA GRAND EST, iCUBE, 
CEDRIC/Cnam. INTRINSEC is the project coordinator.

-------------------------------------------------------------------------------------------------


-- 



**************************************************

       LAMMARI ILHAM NADIRA
       Maître de conférences-HDR
       Département Informatique - Equipe ISI
       Laboratoire CEDRIC - Equipe ISID
       Conservatoire National des Arts et Métiers
       292 rue St-Martin 75141 Paris Cedex 03
       tel : 01 40 27 24 86   fax : 01 40 27 24 06

**************************************************

More information about the AISWorld mailing list