Postdoctoral Fellow in Cybersecurity of Safety Instrumented Systems (SIS)

This is NTNU

NTNU is a broad-based university with a technical-scientific profile and a focus in professional education. The university is located in three cities with headquarters in Trondheim.

At NTNU, 9,000 employees and 43,000 students work to create knowledge for a better world.

You can find more information about working at NTNU and the application process here.

     

About the job

The postdoctoral fellowship position is a temporary position where the main goal is to qualify for work in senior academic positions.

A safety instrumented system (SIS) is a protection layer that shuts down a chemical, nuclear, electrical, or mechanical system, or part of it, if a hazardous condition is detected. For example, a process upset that is not managed by the distributed control system (DCS) or a pipe rupture are examples of events managed by the SIS. A SIS is composed of dedicated sensors, logic solvers, and final control elements (e.g., valves, relays, actuators) which are all designed fail-safe, to ensure that the SIS is able enter a safe state even upon certain fault conditions. Examples of SIS include Emergency Shutdown Systems, Emergency Venting systems, Process shutdown Systems and High-integrity Pressure Protection systems. The consequences of SIS failure can, in the worst case, be a major accident involving losses of people and damages to the environment and infrastructures.

A SIS is expected to operate independently of other systems, e.g., that a failure of the DCS system should have no negative impact on the ability of the SIS to perform as required. However, SIS systems are usually connected to the same operational technology (OT) network as systems used for control, like the DCS. The OT network may also be accessed from the outside, via the companies’ IT network and the use of secured zones for authorization, restrictions on data flow, and encryption.

The design and operation of SIS is based on regulatory requirements and framed by standards on functional safety, such as IEC 61508, IEC 61511, and IEC 62061/ISO 13849. The focus of these standards is on safety integrity, meaning the ability to perform in response to random and non-deliberate events that can arise during operation and maintenance. However, SIS devices are relying on commercial off the shelf components, and the safety certification is not necessarily providing technical solutions that are resistant to cyber-attack. For example, the Triton/Trisis attack in 2017, has shown the willingness of advanced attackers to attack SIS systems where the outcome could have been, if successful, a complete disaster at the plant. The attackers were able to create a bypass of the key switch whose position could have prevented unauthorized downloading of code to the controllers.

Industry has developed several standards applicable for distributed control and safety systems in response to the increasing risks of attack to industrial control and safety systems, like DCS and SIS. Some are general for all systems within OT networks, like IEC 62443 and NIST framework for cybersecurity, while others are specific for SIS, like ISA 84.00.09. Despite this effort, the SIS systems are exposed to many threats and experiencing new vulnerabilities, as the capabilities of the threat actors are developing.

The position creates an opportunity for more collaboration with other research disciplines such as security management, safety engineering, and policymaking in addition to the focus areas mentioned above.

The research will be carried out within the context of SFI NORCICS, the research-based innovation Norwegian Center for Cybersecurity in Critical Sectors. These sectors include electricity production and distribution, oil & gas production and distribution, manufacturing, healthcare, industrial production, smart districts. NORCICS follows a holistic, comprehensive and systemic approach addressing people, processes and technology to protect critical sectors throughout the cybersecurity core functions (identify, protect, detect, respond, recover). NORCICS has partners from academia, research, the public sector, and the industry.

The position’s working place is NTNU campus in Gjøvik. You will report to the Head of the Department.

Your immediate leader is the Head of the Department of Information Security and Communication Technology.

Duties of the position

The main objective of this postdoc position is to propose and validate a framework for managing the cyber-security of SIS and which ensures that measures implemented for enhanced safety are also cyber-secure.

The postdoctoral research fellow will:

• Contribute to the research tasks to address in this research, that include:
  • Identification of new and learning from past attack scenarios on SIS, and assessment of their local (SIS) and global (plant) impacts on safety and outage.
  • Identification and assessment of cyber-risks associated with commonly applied (commercial) SIS systems, focusing on potential vulnerabilities in hardware, firmware, and software implementation that follow safety certification and/or following general technology development with smart instrumentation, autonomy, and industrial internet of things (IIoT).
  • Development of measures for identified vulnerabilities and demonstrate their feasibility and efficiency in collaboration with industry partners. Examples of measures can relate to protection of code, protection of data flows using diodes, and protection against unauthorized downloading, such as key switches.
  • Comparing proposed measures with existing industry practices on cybersecurity measures targeting SIS in specific, with basis in cybersecurity standards from NIST, IEC 62443, and ISA 84.00.09.
  • Summarizing the results into a framework, for example as a guideline, on improved management of cybersecurity of SIS.
    More specific examples of topics relating to the research challenges have been identified with the involved partners and will be reviewed and considered in the detailed planning of the project.
• Contribute to the development of the communication and dissemination strategy of SFI NORCICS.
• Contribute to the development of research and education in Critical Infrastructure Security and Resilience by leading and supporting new research and innovation.
• Work on initiating, organizing, writing proposals for, coordinating, and carrying out national and international R&I projects of high quality, to be funded by national and international sources e.g. the NFR (The Research Council of Norway), and the European Commission.

Required selection criteria

• You must have completed a Norwegian doctoral degree or corresponding foreign doctoral degree recognized as equivalent to a Norwegian PhD in information security, computer science, or equivalent, with focus on the cybersecurity of critical infrastructure and/or cyber-physical systems. If you can document that the PhD thesis has been submitted, your application can be assessed even if you have not yet defended your dissertation. Documentation of the obtained doctoral degree must be presented before you can take up the position.
• Track record with publications on relevant research areas in credible journals and conferences.
• Being able to attend and present at national and international forums.
• Good written and oral English language skills.

The appointment is to be made in accordance with Regulations on terms of employment for positions such as postdoctoral fellow, Ph.D Candidate, research assistant and specialist candidate.

Preferred selection criteria

• Extensive knowledge and solid understanding of Safety Instrumented Systems.
• Experience in identifying, assessing and managing cyber risks for integrated IT/OT systems.
• Experience with developing and operating laboratory facilities for security and safety testing.
• Experience with supervision of MSc students’ thesis work.
• Experience with participating in EU and/or nationally funded R&I projects related to cyber security for critical infrastructure and cyber-physical systems.
• Experience with having developed research project proposals for external funding bodies such as the European Commission, Research Council of Norway, etc. 

Personal characteristics

• Being able to travel frequently.
• Flexibility and willingness to work on a broad range of topics covered by the activities of the SFI NORCICS.
• Initiative-taking and self-starter who works well with minimal supervision and shows excellent judgement about when to look to managers and teammates for guidance, and when and how to communicate with diverse stakeholders.
• Team player with a proven track record of building cross-functional relationships and ability to work in an international research team.
• Effective communication and negotiation skills, both written and verbal persuasiveness and strong influential skills.
• Eager to learn with a high desire to perform and disseminate high-quality research.

Emphasis will be placed on personal and interpersonal qualities.

We offer 

• exciting and stimulating tasks in a strong international academic environment 
• an open and inclusive work environment with dedicated colleagues 
• favourable terms in the Norwegian Public Service Pension Fund 
• employee benefits 

Salary and conditions

As a Postdoctoral Fellow (code 1352) you are normally paid from gross NOK 594 500 per annum before tax, depending on qualifications and seniority. From the salary, 2% is deducted as a contribution to the Norwegian Public Service Pension Fund

The period of employment is 3 years

The engagement is to be made in accordance with the regulations in force concerning State Employees and Civil Servants, and the acts relating to Control of the Export of Strategic Goods, Services and Technology. Candidates who by assessment of the application and attachment are seen to conflict with the criteria in the latter law will be prohibited from recruitment to NTNU.  

After the appointment you must assume that there may be changes in the area of work.

The position is subject to external funding.

It is a prerequisite you can be present at and accessible to the institution on a daily basis.

About the application 

The application and supporting documentation to be used as the basis for the assessment must be in English.

Publications and other scientific work must follow the application. Please note that your application will be considered based solely on information submitted by the application deadline. You must therefore ensure that your application clearly demonstrates how your skills and experience fulfil the criteria specified above.

If, for any reason, you have taken a career break or have had an atypical career and wish to disclose this in your application, the selection committee will take this into account, recognizing that the quantity of your research may be reduced as a result.

The application must include:

• CV and certificates.
• Transcripts and diplomas for bachelor's-, master's- and PhD degrees. If you have not yet completed your Ph.D, you must provide confirmation on your estimated date for the doctoral dissertation, or that your PhD thesis has been submitted.
• A copy of the doctoral thesis. If you are close to submitting, or have recently submitted your thesis, you can attach a draft of the thesis. Documentation of a completed doctoral degree must be presented before taking up the position.
• Academic works - published or unpublished - that you would like to be considered in the assessment (up to 5 items).
• Research plan focused explicitly on the suitability of the candidate for the position, and the proposed approach for addressing the described work.
• Name and contact information of three referees

If all, or parts, of your education has been taken abroad, we also ask you to attach documentation of the scope and quality of your entire education, both bachelor's and master's education, in addition to other higher education. Description of the documentation required can be found here. If you already have a statement from Norwegian Directorate for Higher Education and Skills, please attach this as well.
 
Joint works will be considered. If it is difficult to identify your contribution to joint works, you must attach a brief description of your participation. 

In the evaluation of which candidate is best qualified, emphasis will be placed on education, experience and personal and interpersonal qualities. Motivation, ambitions, and potential will also count in the assessment of the candidates. 

NTNU is committed to following evaluation criteria for research quality according to The San Francisco Declaration on Research Assessment - DORA. 

General information 

Working at NTNU 

NTNU believes that inclusion and diversity is a strength. We want our faculty and staff to reflect Norway’s culturally diverse population and we continuously seek to hire the best minds. This enables NTNU to increase productivity and innovation, improve decision making processes, raise employee satisfaction, compete academically with global top-ranking institutions and carry out our social responsibilities within education and research. NTNU emphasizes accessibility and encourages qualified candidates to apply regardless of gender identity, ability status, periods of unemployment or ethnic and cultural background.

NTNU is working actively to increase the number of women employed in scientific positions and has a number of resources to promote equality. 

The city of Gjøvik has a population of 30 000 and is a town known for its rich music and cultural life. The beautiful nature surrounding the city is ideal for an active outdoor life! The Norwegian welfare state, including healthcare, schools, kindergartens and overall equality, is probably the best of its kind in the world. 

As an employee at NTNU, you must at all times adhere to the changes that the development in the subject entails and the organizational changes that are adopted. 

A public list of applicants with name, age, job title and municipality of residence is prepared after the application deadline. If you want to reserve yourself from entry on the public applicant list, this must be justified. Assessment will be made in accordance with current legislation. You will be notified if the reservation is not accepted.

If you have any questions about the position, please contact Prof. Sokratis Katsikas, email sokratis.katsikas@ntnu.no or Professor Mary Ann Lundteigen, email Mary Ann Lundteigen mary.a.lundteigen@ntnu.no or Associate Prof. Vasileios Gkioulos, email vasileios.gkioulos@ntnu.no . If you have any questions about the recruitment process, please contact Teresa Kristina Hoel, e-mail: teresa.k.hoel@ntnu.no.

If you think this looks interesting and in line with your qualifications, please submit your application electronically via jobbnorge.no with your CV, diplomas and certificates attached. Applications submitted elsewhere will not be considered. Upon request, you must be able to obtain certified copies of your documentation. 

Application deadline: 20.11.24