[AISWorld] Postdoc position in Information System Security Engineering
Lammari Nadira
ilham-nadira.lammari at cnam.fr
Tue Mar 21 06:12:41 EDT 2017
A postdoctoral fellow position is available in the ISID (Ingénierie des
Systèmes d’Information et de decision) group of the CEDRIC Laboratory
(https://cedric.cnam.fr/).
The successful applicant will join the HuMa project described below.
Applicant is expected to be excellent researcher experienced in
information system modelling, semantic Web and /or model-driven
engineering. Background in information system security will be helpful.
The position is for 1 year,
It is available immediately and will remain open until filled.
Interested applicants should contact me at lammari at cnam.fr, and in any
case before April 10.
HuMa project brief description
------------------------------------------------------------------------------------------------
Following a security incident, a security analysis is often required. It
focuses first on the traces of computer systems (logs) in order to
reconstruct what has happened and deduce the attacker's mode of
operation. Nevertheless, to conduct this security analysis, several
steps are required: (1) to collect evidences that are related to the
security incident, (2) to organize them, taking into account the time
and the space and finally (3) to deduce some relevant correlations, that
allow the understanding of the process that led to the security
incident. Due to the explosion of connected objects and the
proliferation of online and surfing activities carried out on social
networks, Internet induces the appearance of numerous and various
traces. On the other hand, nowadays, networks of attackers are inventing
precise exploits that are able to erase the traces of their actions. At
the present time, a relevant security analysis could be conducted only
by a human being. The latter possesses for this purpose reasoning
abilities in complex contexts. However, the great volume of data
contained in the traces and induced by the use of connected objects,
undermine his/her analytical capabilities. To cope with this enormous
amount of data, security analysts have equipped themselves with computer
tools known as SIEM (Security Information and Event Management). The
latter, given the difficulty of automating the complex process of human
reasoning, generate confusing results and multitude of false positives
and false negatives. The key challenges of the coming years, in the
context of big data, will, therefore be, also, to capitalize on the
complex reasoning of security experts in order to introduce guidance in
SIEM tools and to permit to security analysts to react on the fly. These
issues are addressed by the HuMa project funded by a public R&D
(BPI/DGE) institution. This project brings together partners from
industry (AIRBUS DEFENSE AND SPACE CYBERSECURIY,INTRINSEC, OBERTHUR,
SYDO, WALLIX) and academic researchers from INRIA GRAND EST, iCUBE,
CEDRIC/Cnam. INTRINSEC is the project coordinator.
-------------------------------------------------------------------------------------------------
--
**************************************************
LAMMARI ILHAM NADIRA
Maître de conférences-HDR
Département Informatique - Equipe ISI
Laboratoire CEDRIC - Equipe ISID
Conservatoire National des Arts et Métiers
292 rue St-Martin 75141 Paris Cedex 03
tel : 01 40 27 24 86 fax : 01 40 27 24 06
**************************************************
More information about the AISWorld
mailing list