Nexedi is looking for a system security developer interested in implementing anomaly detection in logs and detection of abnormal usage of online services.
Nexedi has deployed various online platforms used for private or public clouds. A competitive analysis shows that conventional public clouds may include threat detection features that probably do not exist yet in open source cloud platforms.
We are thus considering to introduce in SlapOS a new kind of promise (see "Promise Theory - Principles and Applications") dedicated to the detection of abnormal behaviour of running processes.
In other words, we would like to implement "AI for threat detection". Some early prototypes based on unsupervised machine learning have shown promising results to detect abnormal usage of an ERP. We expect however that a fully functional system will combine explicit rules (80%), supervised machine learning (15%) and a combination of unsupervised machine learning and human operation for the rest (5%).
The first step in this task will consist of defining what we want to protect ourselves against : processes deployed by SlapOS that are not used in a way they supposed to be used. For example, a database that is supposed to process a few transactions per second with a few users is not supposed to receive connection requests from thousands of different users. A database that is supposed to be used locally is not supposed to generate a lot of network traffic.
The second step in this task will consist of defining a kind of "operation envelope" (similar to "flight envelope" in aerospace) that processes should stay within. In case they leave the operation envelope, a monitoring alarm is triggered.
The third step could consist in using unsupervised machine learning to detect anomalies. Each time an anomaly is detected, a human studies the anomaly and classifies it. Supervised machine learning can then be used to reduce the number of anomalies processed by humans.
Nexedi has been developing free software since launching in 2001. We are maintaining software solutions (see our full stack) with over 10 million lines of code including:
Besides participating in various research initiatives, Nexedi provides customisation services for solutions with implementations being used by corporations such as Airbus, Sanef, Mitsubishi all around the world. We follow the principles of reflexive programming, enforce strict unit testing and emphasise using the latest web technologies.
Our economic model requires each developer to fulfill R&D objectives aiming at delivering short to medium sized solutions to customer requirements and progressing the evolution of our software stack. This way we try to be innovative and fund long term free software without the need for venture capital.
We would be happy to hear from you, so drop us a line (along with your CV) at jobs(at)nexedi.com and we will get in touch with you.
147 Rue de Ballon
59110 La Madeleine
Phone+33 629 02 44 25