WHAT WILL YOU BE DOING? In the past years, the market for cybersecurity products has been booming. Many vendors claim to offer silver bullet solutions which protect against all possible cyber threats. In practice, however, it is hard to establish how the functionality and value of these products compare, which techniques they use, and how effective they are. Given the ever increasing number of security products available on the market, it has become almost impossible for an end-user to determine “which product should I select to protect my valuable assets and information”. TNO has developed a methodology – STAM (Security Tool Assessment Model) - for assessing security products in a structured manner, allowing direct comparison of such products. STAM is based on a mapping of different security product categories onto typical attack patterns (derived from a kill-chain model). This mapping states which types of products could in theory protect against which classes of threats. In its present state, STAM focuses on detection products. These products use various security monitoring techniques in order to detect adversarial activity. We now seek to further enhance and extend STAM, either by: Using a more in-depth model for attack patterns, e.g. using the MITRE ATT&CK framework (https://attack.mitre.org ); or Including more types of security products (e.g. deception technology or digital forensics). In your assignment, you will be tasked with enhancing and/or extending STAM, depending on the duration of the project. A practical test, in which an actual security product will be tested using the updated version of STAM, may be part of the assignment as well. Your assignment will be part of a TNO project in which you will co-operate with other experts involved in developing and applying STAM. WHAT DO WE REQUIRE OF YOU? You are doing a Master’s degree with a strong computer-science component. You have an interest in cyber security. You have strong analytical skills and are capable of setting up a methodological approach. You are able to translate abstract, conceptual ideas to practical solutions and vice versa. You are enterprising, flexible and focused on cooperation. You are communicative, creative and innovative. WHAT CAN YOU EXPECT OF YOUR WORK SITUATION? The Department of Cyber Security and Robustness employs about forty-five professionals who combine a background in quantitative methods and modeling with knowledge of telecommunications, IT and security. Because of this we are able to predict, improve, and secure the ICT services of our customers. We have a leading position in the European research community, which is reflected in active participation in various national and international research programs. WHAT CAN TNO OFFER YOU? You want to work on the precursor of your career; a work placement gives you an opportunity to take a good look at your prospective future employer. TNO goes a step further. It’s not just looking that interests us; you and your knowledge are essential to our innovation. That’s why we attach a great deal of value to your personal and professional development. You will, of course, be properly supervised during your work placement and be given the scope for you to get the best out of yourself. Naturally, we provide suitable work placement compensation. HAS THIS VACANCY AROUSED YOUR INTEREST? Then please feel free to apply on this vacancy! For further questions don’t hesitate to contact us. Contactpersoon: Harm Schotanus Note that applications via email and third party applications are not taken into consideration.