Industrial Cybersecurity: Threat Analysis via OSINT and LLM Applied to Open Source and Open Data - M/F

Job description and duties

Location: JONAGE (69330)
Duration and/or period of the internship: From September 2025 and for a duration of 6 months

RTE, the electricity transmission system operator, is looking at the opportunities and risks associated with the increasing use of Open Source software components in its industrial systems, as well as the exploitation of publicly accessible Open Data.

In a context of strengthening cybersecurity requirements, it is becoming crucial to assess the potential vulnerabilities arising from these practices, in particular by combining OSINT (Open Source Intelligence) techniques with artificial intelligence approaches , such as language models (LLM).

Your main missions:

1. Define a method for evaluating Open Source software
   • Propose a method and criteria for evaluating the maturity, security and relevance of an Open Source project for use in a critical industrial environment.
   • Carry out a bibliographic study on existing methods and best practices.
   • Apply the method to a practical case representative of a software component considered by RTE.
2. Carry out an attack scenario demonstration using OSINT and AI techniques
   • Leverage public data (Open Data, social networks, technical databases, etc.) and OSINT tools to simulate the collection of relevant information for a malicious actor.
   • Use analysis techniques (LLM, classification, event correlation) to construct a realistic threat scenario targeting the electrical network.
   • Example considered: opportunistic attack linked to a national or international event (sporting, political, etc.).

Desired profile

You are currently a final year engineering or Master 's student (computer science, cybersecurity, embedded systems or equivalent) and are interested in topics combining critical systems security, open source and artificial intelligence.

Technical skills:

• Knowledge of cybersecurity, particularly industrial systems (ICS/SCADA);
• Good understanding of Open Source software, its life cycle and governance issues;
• Mastery of OSINT techniques (e.g. Maltego, TheHarvester, Shodan, etc.);
• Familiarity with language models (LLM) and AI-based analysis tools;
• Knowledge of risk management and vulnerability assessment concepts. Your qualities:
• Analytical and synthetic mindset.
• Curiosity, autonomy, scientific rigor.
• Good written and oral communication skills.
• Ability to conduct technological monitoring and formalize a methodical approach.

WHY JOIN US?

By training with us, you benefit from several advantages:

• Support from a tutor trained for this mission
• 35 hours per week
• Paid leave days depending on the length of the internship
• Meal allowances, housing and transport assistance (subject to conditions)
• Provision of all the equipment necessary to carry out your missions (quality protective equipment, IT equipment, office equipment)

RTE's Diversity Policy aims to open the company to all skills and ensure fairness in terms of equal opportunities, inclusion, and the fight against all forms of discrimination. Based on these principles, we pursue an active policy promoting the inclusion of people with disabilities by implementing disability compensation and support programs that guarantee a fair career path for all. If you are in this situation, please let us know your specific needs so that we can provide an appropriate response.

‍