YOU SHOULD APPLY IF

• Knowledge and experience of software security
• Strong understanding of API (application programming interface) design and vulnerabilities
• Demonstrated experience of experimental work on software security, e.g., ability to instrument systems, develop proof-of-concept prototypes and test them in large-scale experimental settings

THE ROLE

Join the Bristol Cyber Security Group, led by Professor Awais Rashid at the University of Bristol, recognised as an Academic Centre of Excellence in Cyber Security Research by the NCSC and EPSRC.
We are seeking candidates with a robust background in software security especially a strong understanding of API (application programming interface) design and vulnerabilities. Candidates should also have experience of experimental work on software security, with demonstrated ability to instrument systems, develop proof-of-concept prototypes and test them in large-scale experimental settings such as our testbed infrastructures.
The candidate will join the SCULI programme, a 5 year major initiative to develop new security mechanisms for ultra-large-scale infrastructures, e.g., current critical national infrastructures and emerging future systems, e.g., smart cities, intelligent transportation, high-value manufacturing and Industry 4.0. Software plays a central role in such infrastructures. The research to be conducted will contribute towards a new paradigm that will ensure that such infrastructures can deliver resilient operations in the presence of untrusted, partially trusted or compromised elements.
With confirmed funding for the next 24 months, this full-time, open-ended position offers a unique opportunity to collaborate with leading institutions like the Universities of Oxford and Lancaster, as well as a network of industry and international partners.

WHAT WILL YOU BE DOING?

You will be working as part of team of academic researchers across University of Bristol, University of Oxford and Lancaster University as well as several industry partners to develop new interfaces and mechanisms to compose and orchestrate security provision across diverse and heterogeneous evolving infrastructures with legacy and non-legacy elements. You will instrument and analyse such infrastructures to identify how, when and where vulnerabilities arise and develop new security mechanisms to address the underpinning issues. Given the nature of the programme, the research directions will be determined by initial exploration of the problem space. So a willingness and ability to learn, develop and apply new techniques is key.