Create and release your Profile on Zintellect – Postdoctoral applicants must create an account and complete a profile in the on-line application system. Please note: your resume/CV may not exceed 3 pages.
Complete your application – Enter the rest of the information required for the IC Postdoc Program Research Opportunity. The application itself contains detailed instructions for each one of these components: availability, citizenship, transcripts, dissertation abstract, publication and presentation plan, and information about your Research Advisor co-applicant.
Additional information about the IC Postdoctoral Research Fellowship Program is available on the program website located at: https://orise.orau.gov/icpostdoc/index.html.
If you have questions, send an email to ICPostdoc@orau.org. Please include the reference code for this opportunity in your email.
Research Topic Description, including Problem Statement:
Widespread malware attacks on container repositories can impact on data integrity in national security applications. Third party access has been identified as a major contributor to the problem. ll1e plan is to employ a new cyber forensic tool in a zero-trust security environment to mitigate and reduce the ability of cyber intrusions that can alter and steal valuable data.
Successful mission operations depend on the ability of an organization to collect. manage, analyze, and secure its data. Traditional network frameworks have become less appealing because they rely on a “trust but verify” paradigm that does not stand up well against the advanced tools and techniques of modern cyber attackers. The Zero Trust Framework has emerged as a logical replacement because it represents a paradigm shift to a “high-level strategy that assumes that individuals, devices, and services cannot automatically be trusted.” It is essential that the IC be able to trust the data that it depends, which is often stored in data repositories, arguably, the most prominent means for data sharing around the globe. Hence, the repositories must be trustworthy and secure. Unfortunately, widespread malware attacks on data repositories have recently been reported, in some case, impacting data critical to national security. Third-party apps, a staple of how we interact with data and services in both cloud and mobile-driven environments have shown a number of potential risks and breaches that signal a growing and troubling trend.
Most of the recently recorded attacks on data repositories have largely been accomplished through “access” tokens that authorize the sharing of specific user account information. The latest attacks on data repositories seem to have a common thread, i.e., they come primarily through third party access provided by ( )Auth, the open standard for token-based authentication and authorization.
Through ( )Auth, request links, recipients can be deceived into illicit grants, e.g. consent phishing emails that can enable access to attackers via API resources. In these cases, targeted users unknowingly grant permissions that allow attackers to make API calls on their behalf through attacker-controlled apps. Unfortunately, access to cloud SaaS environments is obtained with relative ease due to end user-granted permissions occurring without much scrutiny. Permissions can be granted by end users simply via a permissions request submitted from the third-party app. Similar problems can also occur through browser extensions via application performance interfaces (APIs). These clear cases that remind us of the dangers of pushing for greater access without a parallel focus on security.
As a result. the focus of this proposal is to develop a new framework based on advanced cyber forensics and the zero trust security model to improve container security in applications critical in select NATO operations.
The objective is to examine the performance of a new cyber forensic tool, currently used in law enforcement, and if it can be extended to NATO-related applications through the use of a zero trust security model.
In this study, the emphasis is placed on an advanced forensic based cyber security framework aligned with a zero trust security model that relies more on data lineage, end-to-end metadata, and the use of machine learning tools and methodologies. Most of the current computer forensic software have weaknesses that by themselves make them ill-suited for certain types of analyses. Such shortcomings require cross-validation of findings, wherein machine learning tools and techniques can play an important role.
The results of this research are expected to provide mitigation strategies and insight into adversary efforts to compromise or steal valuable data in NATO operations. The study will serve as a foundation for future endeavors that identify cyber vulnerabilities and exploits used, as well as ways to counter and protect critical data from intrusions.
Example Approaches:
Intrusion Detection and Prevention, Cyber Forensics, SIEM
Relevance to the Intelligence Community:
- Develop/enhance near real-time cyber forensics.
Key Words: Zero Trust Framework, Cyber forensics, Machine Learning, Data Repositories, Containers
The ORISE GO mobile app helps you stay engaged, connected and informed during your ORISE experience – from application, to offer, through your appointment and even as an ORISE alum!
You gave a rating of 0 star(s)
SECURITY/PRIVACY NOTICE
By continuing to use this system you indicate your awareness of and consent to the following terms and conditions of use. LOGOUT IMMEDIATELY if you do not agree to the conditions stated in this warning.
SECURITY NOTICE
This system is part of a Federal information system. This system is monitored for security purposes to ensure it remains available to all users and to protect information in the system. The system employs software programs to monitor network traffic to identify unauthorized activities. By accessing this system, you are expressly consenting to these monitoring activities. Unauthorized attempts to defeat or circumvent security features; to use the system for other than intended purposes; to deny service to authorized users; to access, obtain, alter, damage, or destroy information; to upload or change information; to otherwise cause system or information damage; or otherwise to interfere with the system or its operation, is prohibited. Evidence of such acts may be dis-closed to law enforcement authorities and result in prosecution under the Computer Fraud and Abuse Act of 1986 and the National Information Infrastructure Protection Act of 1996, or other applicable laws.
PRIVACY NOTICE
This system is for authorized use only. Use of this system constitutes consent to security monitoring and testing. All activity is logged with your host name and IP address. Users (authorized or unauthorized) have no explicit or implicit expectation of privacy. Any or all uses of this system and all files on this system may be intercepted, monitored, recorded, copied, audited, inspected, and dis-closed to authorized site and law enforcement personnel, as well as authorized officials of other agencies, both domestic and foreign. By using this system, the user consents to such interception, monitoring, recording, copying, auditing, inspection, and disclosure at the discretion of authorized site or law enforcement personnel. Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties.
You have been inactive on this page for . You will be logged out after 03:00:00.
Select an icon below to visit the website and download an appropriate browser.
For help, please email Zintellect@orau.org.
Question: What is the deadline for submitting an application?
Answer: Not all opportunities have application deadlines. Some opportunities remain open until they are filled. If an opportunity has an application deadline, then it will be listed in the opportunity details or in the opportunity catalog.
Question: How do I reset my password?
Answer: If you have forgotten your password or wish to reset your password, use the "Forgot password or username?" tab on the login to reset it.
Question: I forgot my username. How do I retrieve it?
Answer: Use the "Forgot password or username?" tab on the login. You will receive an email containing your username.
Question: What do I need to submit an application?
Answer: Typically, applicants are required to submit a resume or CV, an official copy of their transcripts or academic record, and a minimum of two references at the time they apply. Additional requirements such as a writing sample, thesis or dissertation, etc. may be required. Review the opportunity details for additional information about the requirements for applying for an opportunity.
Question: Where do I upload my transcripts?
Answer: If required, you will be asked to upload your transcript as a part of the application process.
Question: Where do I submit a writing sample?
Answer: If required, you will be asked to upload a writing sample as part of the application process.
Question: Can a family member serve as a reference?
Answer: No; family members may not serve as references. References must be able to speak to your educational and/or professional experience. At least one academic reference is preferred.
Our Zintellect A.I. is constantly learning how to Match you to our opportunities! So, we want to know when we get it right or when we get it wrong. This will help us make our better! Plus, as a potential applicant to one of our many opportunities across the country, we value you and want to help you on your career path!