Loading...
 
Information Technology

CDD: Active Defense for kubernetes F/M

What we offer

Our company culture is focused on helping our employees enable innovation by building breakthroughs together. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from. Apply now!

 

 

ABOUT US (TEAM)

 

Maintaining security is a constantly shifting task, and we need to respond with continuous learning and research. The portfolio of SAP Security Research contains those topics that we believe are most important for SAP’s security future.

SAP’s vision to secure business is built on 3 ideals: Zero-Vulnerability, to harden the software by eliminating vulnerabilities, Defensible Application, to enable the software to identify and prevent attacks, and Zero-Knowledge, to make any theft of data useless through encryption.

Considering these aspects, SAP Security Research covers the following focal areas: Anonymization for Big Data, Secure Internet of Things, Software security analysis, Open-source analysis, Active Defense, Applied cryptography, Quantum technology, and Machine Learning as enabler for the next generation of security.

 

PURPOSE AND OBJECTIVES

 

This mission is based in the SAP Labs France Research Lab, in Sophia-Antipolis. The work will be performed in the context of the Research Program “Security & Trust”, under the “Active Defense” topic. This topic aims at confusing and misdirecting adversaries, undermining their exploitation capabilities.

Active Defense is the combination of complementary objectives, ranging from the detection of an adversary to her deterrence. In this mission, we want to develop the foundation for the protection of cloud applications, with a focus on detection.

This shall be achieved by implementing a set of filters and services able to modify HTTP responses on-the-fly and to analyze and route HTTP requests based on advanced matching rules, while keeping the performance overhead at a minimum.

Your results will see practical use and will help make active defense more popular and easier to adopt by the software industry.

 

EXPECTATIONS AND TASKS

 

The expected work is to write filters for an Envoy proxy. This includes developing the enrichment, matching, and routing logic of said filters as well as developing a control API for updating enrichment and detection rules.

Some of the tasks to be addressed shall include:

  • Getting familiar with the Active Defense solution’s modus operandi, high-level architecture, and use-cases
  • Getting familiar with Envoy and its capabilities
  • Writing an HTTP response filter able to inject configured content according to a set of configurable rules
  • Writing an HTTP request filter able to detect and react to interaction with injected content
  • Implementing a control API for the configuration of the filters


We expect that 90% of time will be dedicated to implementation and 10% to research activities.

 

PROFILE/EDUCATION/SKILLS AND COMPETENCIES

 

  • University Level: MSc in computer science
  • Good command of the C++ language (web assembly is a plus)
  • Knowledge of REST APIs
  • Knowledge of the HTTP protocol
  • Some familiarity with cybersecurity (web application hacking) is a plus
  • Knowledge of Docker / Kubernetes is a plus
  • Fluency in English (working language)
  • Abilities in organizing meeting and contacting people
  • Good oral and written communication skills
  • Capacity to write documents in English, ability to synthesize

 

PROFESSIONAL EXPERIENCE

 

  • None required

 

 

We are SAP

SAP innovations help more than 400,000 customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with 200 million users and more than 100,000 employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, we build breakthroughs, together.

 

Our inclusion promise

SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.

 

SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Americas: Careers.NorthAmerica@sap.com or Careers.LatinAmerica@sap.com, APJ: Careers.APJ@sap.com, EMEA: Careers@sap.com.

 

EOE AA M/F/Vet/Disability:

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.

Successful candidates might be required to undergo a background verification with an external vendor.

 Requisition ID:323425 | Work Area: Information Technology | Expected Travel: 0 - 10% | Career Status: Graduate | Employment Type: Limited Full Time  | Additional Locations: 

Requisition ID:  323425
Posted Date:  Apr 22, 2022
Work Area:  Information Technology
Career Status:  Graduate
Employment Type:  Limited Full Time
Expected Travel:  0 - 10%
Location: 

Mougins Cedex, FR, 06254

Job alert


Job Segment: ERP, SAP, Database, Cloud, Technology, Research