Internal Research Fellow (PostDoc) in Solutions for Space System Cyber Security Resilience
Internal Research Fellow (PostDoc) in Solutions for Space System Cyber Security Resilience
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Location
ESOC Darmstadt Germany
Our team and mission
You will join the Ground Segment System and Cybersecurity Engineering Section in the System and Applications Engineering Division Ground Systems Engineering & Innovation Department Directorate of Operations at the European Space Operations Centre (ESOC). The Section is responsible for driving cyber security research and development applied to the ground segment and operations domains for the procurement and delivery of data systems in support of ESAs Space Safety Programme and as a matrix support provider to ESA programmes and mission operations infrastructure for ground segment system security engineering.
You will work closely with other cyber security actors within the Agency and in particular the ESA Security Office. The Security Office is the Agencys security authority. It is responsible among other things for the procurement and delivery of major resilience programmes including the Agencys Space Cyber Security Centre of Excellence (SCCoE) and the Cyber Safety and Security Operations Centre (C-SOC).
The security of space systems is becoming ever more paramount as space assets provide increasingly critical services to society and as the technological and geopolitical landscape leads to a more volatile threat environment. Across the Agency major initiatives are underway to ensure the cyber resilience of ESAs corporate and mission operations infrastructures and future programmes. These initiatives include wide-ranging crucial research and development initiatives to ensure readiness for the future threat landscape.
Within this context there remain several open challenges areas of research and opportunities to advance the state-of-the-art in the space system cyber security domain. The European Space Agency is seeking a post-doctoral Internal Research Fellow to perform state-of the-art research in solutions for space system cyber security resilience.
The focus of the activity is to advance the state of the art and develop solutions that can be used to support users throughout ESA and the wider European community.
You areencouraged to visit the ESA website: of activity/research for the traineeship
You will work closely with experts and in alignment with ongoing initiatives within the Agency. Your objectives will be to perform independent research and development targeting one or more of the following key areas subject to prioritisation and tailoring in accordance with your background and preferences and the Agencys requirements:
1) Secure software engineering for space data systems
- Exploring advanced solutions for vulnerability detection and management such as code exposure coverage and secure patching/update architectures as part of DevSecOps processes;
- Validating mission data system software interfaces and service-specific input sanitisation techniques;
- Contributing to data system evolution in the domain of zero-trust cloud-native infrastructure- and policy-as-code applications;
- Run-time anti-tamper and detection software architectures and patterns for space and ground-segment systems.
2) Digital system security engineering
- Utilising novel model-based frameworks to facilitate the application of emerging system security standards aligned with a model-based system engineering paradigm;
- Developing and curating reference asset architectures threat and control catalogues for instantiating space system risk assessments;
- Deriving formal techniques and metrics to assess system cyber posture and resilience throughout system development and operational lifecycles;
- Developing techniques for context-aware conciliation of software component vulnerabilities and system-level risks.
3)Advanced security emulation and testing
- Leveraging novel emulation and automated testing capabilities including spacecraft digital twins automated penetration testing frameworks and ESAs Space Cyber Centre of Excellence;
- Designing and extending representative ground system honeypot and deception solutions;
- Deriving threat models and verifying novel attack vectors associated with the spin-in of applied artificial intelligence to the space system domain;
- Designing and conducting representative capture-the-flag exercises and in-orbit cyber exercise and technology demonstrations utilising ESAs SCCoE SpaceSecLab and IOD platforms (e.g. OPS-SAT Volt/2 CyberCube).
.
4) Tailored and applied security monitoring for space systems
- Extending ESAs Space Cyber Operations Centre detection and response capabilities in the context of space communication protocols and mission operations leveraging artificial intelligence where appropriate;
- Developing and validating approaches for ground/space segment threat collection via existing and novel interfaces including multi-source sensor intelligence collection fusion and dissemination.
5) Applied forensics for space missions applications and systems
- Thoroughly analysing existing digital forensics methodologies to assess their relevance and effectiveness in space system applications identifying specific research gaps;
- Developing and adapting new forensic techniques tailored specifically for the unique challenges of space missions and applications;
- Implementing forensic investigations and testing using both simulated space environments and real-world data to ensure comprehensive coverage and accuracy;
- Developing actionable recommendation and reporting techniques to enhance the utility of forensic investigations in space systems and missions.
6) Crypto key management and adaptation of post-quantum cryptography (PQC)
- Developing robust key management protocols to ensure secure generation distribution and storage of cryptographic keys in space systems;
- Investigating and implementing PQC algorithms to safeguard space data systems against quantum computing threats;
- Evaluating the performance and security of PQC solutions in the context of space communication protocols and mission operations;
- Integrating PQC techniques into existing security protocols frameworks and architectures for space systems ensuring seamless transition and interoperability.
You may also propose alternative or extended research opportunities based on your technical background and addition you will follow and contribute to ongoing R&D projects engage with academic partners to accelerate spin-in potential of novel R&D and contribute to an overall Cyber R&D roadmap promoting developments into ESA programmes.
Technical competencies
Behavioural competencies
Result Orientation
Operational Efficiency
Fostering Cooperation
Relationship Management
Continuous Improvement
Forward Thinking
For more information please refer to ESA Core Behavioural Competencies guidebook
Education
You should have recently completed or be close to completion of a PhD in cyber security computer science or engineering. Preference will be given to applications submitted by candidates within five years of receiving their PhD.
Additional requirements
In addition to your CV and your motivation letter please prepare a research proposal of no more than 5 pages. This proposal should be uploaded to the additional documents field of the application information section.
You should have:
- proficiency in at least one major programming language such as Java C/C/C# Python and preferably in several languages;
- proficiency in the Linux operating system and deployment and configuration of virtualised environments such as virtual machines containers and network configurations;
- project-based experience (e.g. EU ESA Industry);
- natural curiosity and a passion for new subjects and research areas in space security and technology;
- the ability and interest in conducting prospective interdisciplinary research;
- Aptitude to contextualise specialised areas of research and quickly assess their potential with respect to other domains and applications;
- academic networking skills to add functioning links to universities and research institutes;
- the ability to work in a team while also being able to work individually and autonomously on your own personal research plans and directions.
Generally applied experience in memory-safe programming languages is considered an asset.
Experience in one or more of the following areas is considered a strong asset particularly if applied to space systems:
- System and software security engineering;
- Security risk analysis;
- Modern secure development lifecycle processes;
- Cryptography;
- Secure communication protocols.
You should also have good interpersonal and communication skills and should be able to work in a multi-cultural environment. Your motivation overall professional outlook and career goals will also be explored during the later stages of the selection process.
Diversity Equity and Inclusiveness
ESA is an equal opportunity employer committed to achieving diversity within the workforce and creating an inclusive working environment. We therefore welcome applications from all qualified candidates irrespective of gender sexual orientation ethnicity beliefs age disability or other characteristics. Applications from women are encouraged.
At the Agency we value diversity and we welcome people with disabilities. Whenever possible we seek to accommodate individuals with disabilities by providing the necessary support at the workplace. The Human Resources Department can also provide assistance during the recruitment process. If you would like to discuss this further please contact us via email at .
Important Information and Disclaimer
Applicants must be eligible to access information technology and hardware which is subject to European or US export control and sanctions regulations.
During the recruitment process the Agency may request applicants to undergo selection tests. Additionally successful candidates will need to undergo basic screening before appointment which will be conducted by an external background screening service in compliance with the European Space Agencys security procedures.
The information published on ESAs careers website regarding working conditions is correct at the time of publication. It is not intended to be exhaustive and may not address all questions you would have.
Nationality and Languages
Please note that applications can only be considered from nationals of one of the following States: Austria Belgium Czechia Denmark Estonia Finland France Germany Greece Hungary Ireland Italy Luxembourg the Netherlands Norway Poland Portugal Romania Slovenia Spain Sweden Switzerland and the United Kingdom. Nationals from Latvia Lithuania and Slovakia as Associate Member States or Canada as a Cooperating State can apply as well as those from Bulgaria Croatia Cyprus and Malta as European Cooperating States (ECS).
According to the ESA Convention the recruitment of staff must take into account an adequate distribution of posts among nationals of the ESA Member States*. When short-listing for an interview priority will first be given to internal candidates and secondly to external candidates from under-represented Member States*.
The working languages of the Agency are English and French. A good knowledge of one of these is required. Knowledge of another Member State language would be an asset.
*Member States Associate Members or Cooperating States.
Employment Type
Intern
