Utilising Cloud Technology to Secure Cloud SaaS Solutions
Location: Melbourne, VIC
Duration: 3-5 months
Proposed start date: September 2019
This research internship is funded in partnership with Defence Science Institute.
Detexian is developing a software solution for businesses using cloud SaaS solutions (Office 365, G-Suite, Slack, GitHub, Xero, etc.) to ensure the SaaS solutions are configured correctly at all times to protect data. The solution not only maintains parity with changing regulations to ensure compliance, it also makes sure that cloud SaaS solutions are used in accordance with the best-known practices and standards of operation.
Research to be Conducted
This project needs extensive research to be undertaken in discovering and mapping controls from the NIST and ISO27001 frameworks to multiple SaaS solutions. This will require detailed analysis of the frameworks and the SaaS solutions documentation and investigation of their API and other integration frameworks to surface the data.
Once the data has been sourced, an algorithm needs to be developed to rate and score the effectiveness of these controls both on a per SaaS and a whole organisation basis.
We are looking for a PhD student with the following:
- Python / Django development skills that can run AWS native
- Business process design skills
- Time management skills
- Security framework knowledge (NIST / ISO27001)
- Can do attitude, a team player who can handle doing full SDLC for a feature or component of the platform including rapid prototyping, development and production release
Successfully build an algorithm that rates and scores the effectiveness of security controls of multiple SaaS solutions in accordance with NIST and ISO27001 frameworks
The intern will receive $3,000 per month of the internship, usually in the form of stipend payments.
It is expected that the intern will primarily undertake this research project during regular business hours, spending at least 80% of their time on-site with the industry partner. The intern will be expected to maintain contact with their academic mentor throughout the internship either through face-to-face or phone meetings as appropriate.
The intern and their academic mentor will have the opportunity to negotiate the project’s scope, milestones and timeline during the project planning stage.
28 August 2019
APR – 1086