PhD Positions in Web security (m/f/d) - Group Stock

PhD Positions in Web security (m/f/d) – Group Stock

Want to join the Secure Web Applications Group as a PhD student? Great! We have a challenge for you first, though. Note that any applications without a solution will not be considered.

Can you steal the flag that the crawler owl inputs to its Owley chat partner? You will have to install a keylogger on the chat page, but the creators made sure to put all the functionality on separate subdomains to defend against XSS, so it may be necessary to abuse a SOP relaxation mechanism to correctly place your payload.

Once you have the solution, briefly explain how you achieved it and put the flag into your cover letter. Note that any applications without that flag will not be considered. In case of questions about the task, contact Ben Stock directly.

• Full time-gross base salary up to E13 according to the scale of the TVöD (German Federal Employment Agreement)
• Comprehensive benefits package that includes health insurance coverage, 30 days of paid vacation and a robust pension scheme.
• Possibilities for personal and professional growth, encompassing language classes, research support, as well as extracurricular and social activities.
• Our onboarding team will provide you with all the necessary support for a seamless and successful start to your journey with us.
• A research group with a proven track record in publishing at top-tier venues and a collegial atmosphere between everyone in the group.

What we expect

• You have a Bachelor\’s or Master\’s degree from a top-tier, research-oriented institution of higher education in a subject relevant to our research.
• Strong background in computer security, with a specific focus on Web Security. Having played CTFs helps, but is not required.
• Excellent English, but no German! CISPA is a fully international research institute. Knowing German is really not necessary, although daily life is a bit smoother if you speak a few words and if you want to learn German, we offer free courses.

Work @ CISPA

• We promote a flat hierarchy that encourages working together as a cohesive team and contributing one’s perspectives and ideas.
• We offer an exceptional research infrastructure and a robust science support system.
• Our location Saarbrücken is a city with international flair (e.g., an International School and distinguished cuisine influenced by the proximity to the French border). The city is also known for its green spaces, parks and proximity to nature, providing opportunities for relaxation and outdoor activities.
• Your office will be in St. Ingbert in close proximity to the train station, which is why most of our students live in Saarbrücken.

Application Process

Qualified candidates who wish to pursue a doctoral degree in a research area covered by CISPA faculty may apply at any time. We will accept applications throughout the year for exceptionally strong candidates. Admitted applicants will have an opportunity to visit the center and its partner institutions and interact with faculty and students before making their decision. Admitted students are advised by CISPA faculty. All doctoral researchers at CISPA will be a member of a graduate program at our partnering degree-granting universities.

CISPA is committed to increasing the representation of women, minorities, and individuals with disabilities in Computer Science. In accordance with the Equal Opportunity Plan, CISPA aims at increasing the number of women in Computer Science and explicitly encourages women to apply. Applications of severely disabled candidates with equivalent qualifications will be given priority. In general, we welcome applications regardless of gender, nationality, ethnic and social origin, religion/belief, disability, age, sexual orientation and identity.

In case of interest in working at CISPA, please press the \“Apply now\“ button at the end of the page. Please upload your documents in PDF format on our application platform. Applications via email cannot be accepted.

For any questions regarding the application process, please contact us at .

About CISPA

CISPA Helmholtz Center for Information Security is a German national Science Institution within the Helmholtz Association and provides a unique work environment that offers the advantage of a university department and a research laboratory alike. CISPA\’s mission is to rethink the digitized world of the future from the ground up and make it safer through innovative cutting-edge research. CISPA is committed to the highest international academic standards. We offer a world-class research environment that grants extensive resources to a wide range of researchers and constitutes an attractive destination for the best talents and scientists from all countries. CISPA provides a highly international and diverse working environment, currently hosting researchers of over 40 nationalities.

CISPA headquarters is located in Saarbrücken, in the tri-border area of Germany, France, and Luxembourg. The CISPA campus is located close to Saarland University, which is known for its excellence in Computer Science, the Max Planck Institute for Informatics, the Max Planck Institute for Software Systems, and the German Research Center for Artificial Intelligence (DFKI).

#J-18808-Ljbffr