Aarhus University Seal

Program Analysis for Software Supply Chain Security

Applications are invited for a PhD fellowship/scholarship at Graduate School of Natural Sciences, Aarhus University, Denmark, within the Computer Science programme. The position is available from November 2026 or later. 

 

Title:
Program Analysis for Software Supply Chain Security 

Research area and project description:
Modern software development relies on reusable, publicly available software packages in the form of open-source libraries, tools, and frameworks. This massive reuse of software has enabled remarkable improvements of programmer productivity; however, it also causes major problems with security vulnerabilities, compromised code, and breaking changes can propagate through the “software supply chain” and cause major threats to the security and robustness of the end-user applications. These problems are particularly critical for software written in the dynamic programming languages JavaScript and Python, which constitute the foundation of many categories of modern software. 

The main research hypothesis of the ProSec project is that program analysis technology has the potential to fundamentally improve software supply chain security. By creating novel program analysis techniques for dynamic programming languages, ProSec will make it possible to analyze applications and open-source packages with unprecedented precision and scalability, to detect and prevent security issues in the program code during development before it reaches the end users.

Project description
Please upload a project description (½-4 pages). This document should describe your ideas and research plans for this specific project. If you wish to, you can indicate an URL where further information can be found.

Qualifications and specific competences:
Applicants must have a Master’s degree or at least one year of Master’s degree studies in Computer Science.

Place of employment and place of work:
The place of employment is Aarhus University, and the place of work is Department of Computer Science, Aabogade 34, 8200 Aarhus N, Denmark.  

Contacts:
Applicants seeking further information for this project are invited to contact: 
Professor Anders Møller, amoeller@cs.au.dk


How to apply:

For information about application requirements and mandatory attachments, please see the Application guide. Please read the Application guide thoroughly before applying.

When ready to apply, go to https://phd.nat.au.dk/for-applicants/apply-here/ (Note, the online application system opens 1 June 2026)

  1. Choose August 2026 Call with deadline 1 August 2026 at 23:59 CEST.
  2. You will be directed to the call and must choose the programme “Computer Science”.
  3. In the boxed named “Study”: In the dropdown menu, please choose: “Program Analysis for Software Supply Chain Security (PASSCS)” 

 

Please note:

  • The programme committee may request further information or invite the applicant to attend an interview.

At the Faculty of Natural Science at Aarhus University, we strive to support our scientific staff in their career development. We focus on competency development and career clarification and want to make your opportunities transparent. On our website, you can find information on all types of scientific positions, as well as the entry criteria we use when assessing candidates. You can also read more about how we can assist you in your career planning and development.

Aarhus University’s ambition is to be an attractive and inspiring workplace for all and to foster a culture in which each individual has opportunities to thrive, achieve and develop. We view equality and diversity as assets, and we welcome all applicants. All interested candidates are encouraged to apply, regardless of their personal background. Salary and terms of employment are in accordance with applicable collective agreement. 

32174 / i43