Internal Research Fellow (PostDoc) in Solutions for Space System Cyber Security Resilience

 

Location
ESOC, Darmstadt, Germany  

Our team and mission

You will join the Ground Segment System and Cybersecurity Engineering Section in the System and Applications Engineering Division, Ground Systems Engineering & Innovation Department, Directorate of Operations at the European Space Operations Centre (ESOC). The Section is responsible for driving cyber security research and development applied to the ground segment and operations domains, for the procurement and delivery of data systems in support of ESA’s Space Safety Programme, and as a matrix support provider to ESA programmes and mission operations infrastructure for ground segment system security engineering. 

 

You will work closely with other cyber security actors within the Agency, and in particular the ESA Security Office. The Security Office is the Agency’s security authority. It is responsible, among other things, for the procurement and delivery of major resilience programmes, including the Agency’s Space Cyber Security Centre of Excellence (SCCoE) and the Cyber Safety and Security Operations Centre (C-SOC).

 

The security of space systems is becoming ever more paramount as space assets provide increasingly critical services to society and as the technological and geopolitical landscape leads to a more volatile threat environment. Across the Agency, major initiatives are underway to ensure the cyber resilience of ESA’s corporate and mission operations infrastructures and future programmes. These initiatives include wide-ranging, crucial research and development initiatives to ensure readiness for the future threat landscape.

 

Within this context, there remain several open challenges, areas of research and opportunities to advance the state-of-the-art in the space system cyber security domain. The European Space Agency is seeking a post-doctoral Internal Research Fellow to perform state-of the-art research in solutions for space system cyber security resilience. 

 

The focus of the activity is to advance the state of the art and develop solutions that can be used to support users throughout ESA and the wider European community.

 

You are encouraged to visit the ESA website: https://www.esa.int/

Field(s) of activity/research for the traineeship

You will work closely with experts and in alignment with ongoing initiatives within the Agency. Your objectives will be to perform independent research and development, targeting one or more of the following key areas, subject to prioritisation and tailoring in accordance with your background and preferences and the Agency’s requirements:

 

1) Secure software engineering for space data systems

• Exploring advanced solutions for vulnerability detection and management, such as code exposure, coverage, and secure patching/update architectures as part of DevSecOps processes;
• Validating mission data system software interfaces and service-specific input sanitisation techniques;
• Contributing to data system evolution in the domain of zero-trust, cloud-native, infrastructure- and policy-as-code applications;
• Run-time anti-tamper and detection software architectures and patterns for space and ground-segment systems.

 

2) Digital system security engineering

• Utilising novel model-based frameworks to facilitate the application of emerging system security standards, aligned with a model-based system engineering paradigm;
• Developing and curating reference asset architectures, threat and control catalogues for instantiating space system risk assessments;
• Deriving formal techniques and metrics to assess system cyber posture and resilience throughout system development and operational lifecycles;
• Developing techniques for context-aware conciliation of software component vulnerabilities and system-level risks. 

 

3) Advanced security emulation and testing

• Leveraging novel emulation and automated testing capabilities, including spacecraft digital twins, automated penetration testing frameworks and ESA’s Space Cyber Centre of Excellence;
• Designing and extending representative ground system honeypot and deception solutions;
• Deriving threat models and verifying novel attack vectors associated with the spin-in of applied artificial intelligence to the space system domain;
• Designing and conducting representative capture-the-flag exercises, and in-orbit cyber exercise and technology demonstrations utilising ESA’s SCCoE, SpaceSecLab and IOD platforms (e.g. OPS-SAT Volt/2, CyberCube). 

.

4) Tailored and applied security monitoring for space systems

• Extending ESA’s Space Cyber Operations Centre detection and response capabilities in the context of space communication protocols and mission operations, leveraging artificial intelligence where appropriate;
• Developing and validating approaches for ground/space segment threat collection via existing and novel interfaces, including multi-source sensor intelligence collection, fusion and dissemination. 

 

5) Applied forensics for space missions, applications and systems

• Thoroughly analysing existing digital forensics methodologies to assess their relevance and effectiveness in space system applications, identifying specific research gaps;
• Developing and adapting new forensic techniques tailored specifically for the unique challenges of space missions and applications;
• Implementing forensic investigations and testing using both simulated space environments and real-world data to ensure comprehensive coverage and accuracy;
• Developing actionable recommendation and reporting techniques to enhance the utility of forensic investigations in space systems and missions. 

 

6) Crypto key management and adaptation of post-quantum cryptography (PQC)

• Developing robust key management protocols to ensure secure generation, distribution, and storage of cryptographic keys in space systems;
• Investigating and implementing PQC algorithms to safeguard space data systems against quantum computing threats;
• Evaluating the performance and security of PQC solutions in the context of space communication protocols and mission operations;
• Integrating PQC techniques into existing security protocols, frameworks and architectures for space systems, ensuring seamless transition and interoperability.

 

You may also propose alternative or extended research opportunities based on your technical background and specialisation. In addition, you will follow and contribute to ongoing R&D projects, engage with academic partners to accelerate spin-in potential of novel R&D, and contribute to an overall Cyber R&D roadmap, promoting developments into ESA programmes.

Technical competencies

Knowledge relevant to the field of researchResearch/publication recordAbility to conduct research autonomouslyBreadth of exposure coming from past and/or current research/activitiesAbility to gather and share relevant informationGeneral interest in space and space research

Behavioural competencies

Result Orientation
Operational Efficiency
Fostering Cooperation
Relationship Management
Continuous Improvement
Forward Thinking 

For more information, please refer to ESA Core Behavioural Competencies guidebook

Education

You should have recently completed, or be close to completion of a PhD in cyber security, computer science or engineering. Preference will be given to applications submitted by candidates within five years of receiving their PhD.

Additional requirements

In addition to your CV and your motivation letter, please prepare a research proposal of no more than 5 pages. This proposal should be uploaded to the "additional documents" field of the "application information" section.

 

You should have:

• proficiency in at least one major programming language, such as Java, C/C++/C#, Python, and preferably in several languages;
• proficiency in the Linux operating system and deployment and configuration of virtualised environments, such as virtual machines, containers and network configurations;
• project-based experience (e.g. EU, ESA, Industry);
• natural curiosity and a passion for new subjects and research areas in space security and technology;
• the ability and interest in conducting prospective interdisciplinary research;
• Aptitude to contextualise specialised areas of research and quickly assess their potential with respect to other domains and applications;
• academic networking skills to add functioning links to universities and research institutes;
• the ability to work in a team, while also being able to work individually and autonomously on your own personal research plans and directions.

 

Generally applied experience in memory-safe programming languages is considered an asset.

Experience in one or more of the following areas is considered a strong asset, particularly if applied to space systems: 

• System and software security engineering;
• Security risk analysis;
• Modern secure development lifecycle processes;
• Cryptography;
• Secure communication protocols.

 

You should also have good interpersonal and communication skills and should be able to work in a multi-cultural environment. Your motivation, overall professional outlook and career goals will also be explored during the later stages of the selection process.

Diversity, Equity and Inclusiveness 
ESA is an equal opportunity employer, committed to achieving diversity within the workforce and creating an inclusive working environment. We therefore welcome applications from all qualified candidates irrespective of gender, sexual orientation, ethnicity, beliefs, age, disability or other characteristics. Applications from women are encouraged.

At the Agency we value diversity, and we welcome people with disabilities. Whenever possible, we seek to accommodate individuals with disabilities by providing the necessary support at the workplace. The Human Resources Department can also provide assistance during the recruitment process. If you would like to discuss this further, please contact us via email at contact.human.resources@esa.int.
 

Important Information and Disclaimer
Applicants must be eligible to access information, technology, and hardware which is subject to European or US export control and sanctions regulations.

During the recruitment process, the Agency may request applicants to undergo selection tests. Additionally, successful candidates will need to undergo basic screening before appointment, which will be conducted by an external background screening service, in compliance with the European Space Agency's security procedures.

The information published on ESA’s careers website regarding working conditions is correct at the time of publication. It is not intended to be exhaustive and may not address all questions you would have. 

 

Nationality and Languages 
Please note that applications can only be considered from nationals of one of the following States: Austria, Belgium, Czechia, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Luxembourg, the Netherlands, Norway, Poland, Portugal, Romania, Slovenia, Spain, Sweden, Switzerland, and the United Kingdom. Nationals from Latvia, Lithuania and Slovakia, as Associate Member States, or Canada as a Cooperating State, can apply as well as those from Bulgaria, Croatia, Cyprus and Malta as European Cooperating States (ECS).

According to the ESA Convention, the recruitment of staff must take into account an adequate distribution of posts among nationals of the ESA Member States*. When short-listing for an interview, priority will first be given to internal candidates and secondly to external candidates from under-represented Member States*. 

The working languages of the Agency are English and French. A good knowledge of one of these is required. Knowledge of another Member State language would be an asset.  

*Member States, Associate Members or Cooperating States.