We are the NATO's IT Agency serving 29 nations by defending its networks, and providing real life support to its operations and missions. We are working around the clock safeguarding the freedom and security of nearly 1 billion citizens.
The NCI Agency is currently seeking a talented Principal Technician (Systems, CIS Security) to assists with provision of information security oversight of all CES Managed CIS and networks within the Agency, both for internal operations and for the Agency’s customer-funded Networks, Programme of Work, and ensures adequate level of systems/data protection in accordance with NATO Security policies and directives.
If you think that you have the relevant skills and experience, as well as the relevant academic background that match the requirements of the position, and if you would like to work as a part of multinational team in a challenging environment, we would like to hear from you.
This is a position within the NATO Communications and Information Agency (NCI Agency), an organization of the North Atlantic Treaty Organization (NATO).
The NCIA has been established with a view to meeting to the best advantage the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.
Core Enterprise Services (CES) are accountable for planning and executing the full lifecycle management activities (design, transition and operations) for the identified area of responsibility. CES provides generic, domain independent, technical functionality that enables and facilitates the operation and use of Information Technology resources. CES services (including: subject matter expertise; software engineering; acquisition; operations and maintenance; and, disposal) are provided in the following technical areas: communication and collaboration, web and information services, infrastructure storage and processing, infrastructure networking, composition and mediation, and managed desktop and end user device services. Services are provided throughout the lifecycle to both internal and external customers.
Under the direction of Head, CES CIS Security Office you will perform duties such as the following:
Supports Head, CES CIS Security Office in producing security accreditation paperwork;
Monitors correct handling of Electronic Storage Media through ePO and CMDB, and follows up on incidents;
Assists Head, CES CIS Security office in conducting remediation activities;
Provides expert knowledge and skills to maintain integrity of NCI Agency’s operational business networks, ensuring secure operations in a globally networked and highly mobile environment;
Responsible for implementing adequate level of information security posture to CES systems;
Process equipment, ancillary and software requests in order to balance operational need and operational security;
Assists with provision of information security oversight of all CES Managed CIS and networks within the Agency, both for internal operations and for the Agency’s customer-funded Networks, Programme of Work, and ensures adequate level of systems/data protection in accordance with NATO Security policies and directives;
Coordinates with systems and network administrators in support of security architecture requirements;
Produces reporting on security-related Key Performance Indicators, to ensure full visibility of overall NCIA Information Security posture as a part of the CSSL service delivery and cyber hygiene programmes;
Conducts NCIRC Tier 3-level internal vulnerability assessment testing on CES systems, and provides associated internal reporting to CSSL and Service Owners;
Plan, deploy, and configure a variety of hardware, software, and security products;
Provide feedback, advice and guidance to CSSL and senior CES management in areas of enterprise architecture, NATO security accreditation activities, procurement, as well as training and awareness programmes for CES personnel;
Delivers CIS Security awareness presentations;
Deputize for higher grade staff, if required;
Performs other duties as may be required.
You need to hold a vocational training at a higher level in a relevant technical discipline, or equivalent combination of qualifications and experience, with a minimum of 8 years post-related experience.
In addition to at least 8 years of relevant experience, you will be required to prove:
Extensive experience with system security, security architecture, network security, risk management, vulnerability assessment and incident handling;
Extensive working experience with CIS security implementation with respect to: network technologies, Firewalls, Virtual Private Networks, Intrusion Detection and Forensic Appliances;
Experience with WLAN technologies and endpoint security of mobile devices, such as: Laptops, IOS, tablets and smartphones.
It is considered desirable for you to have:
Vulnerability assessment team member/leader;
Good knowledge and working experience of Public Key Infrastructure;
Knowledge of SCADA systems and experience in SCADA vulnerability assessments;
Good knowledge and working experience of Microsoft Windows Operating Systems (Server 2012/2016 Windows7/Windows10);
Excellent knowledge of, and experience in using common security tools Nessus, NMAP, ePO, etc;
Knowledge of common MS and Linux updating and patching systems;
Knowledge of common IT security frameworks and governance models;
Knowledge of CVSS V2 and V3;
Prior experience of working in an international environment comprising both military and civilian elements;
Knowledge of NATO responsibilities and organization, including ACO and ACT.
Writing and Reporting - Writes convincingly; writes clearly, succinctly and correctly; avoids the unnecessary use of jargon or complicated language; writes in a well-structured and logical way; structures information to meet the needs and understanding of the intended audience.
Following Instructions and Procedures - Appropriately follows instructions from others without unnecessarily challenging authority; follows procedures and policies; keeps to schedules; arrives punctually for work and meetings; demonstrates commitment to the organisation; complies with legal obligations and safety requirements of the role.
Working with People - Shows respect for the views and contributions of other team members; shows empathy; listens, supports and cares for others; consults others and shares information and expertise with them; builds team spirit and reconciles conflict; adapts to the team and fits in well.
Applying Expertise and Technology - Applies specialist and detailed technical expertise; uses technology to achieve work objectives; develops job knowledge and expertise (theoretical and practical) through continual professional development; demonstrates an understanding of different organisational departments and functions.
Most of the work of the NCI Agency is conducted in the English language, and therefore a thorough knowledge of English, both written and spoken, is essential and some knowledge of French is desirable.
Business travel to NATO and national (NATO and non-NATO) facilities as well as frequent travel between the NCI Agency offices.
May be required to undertake duty travel to operational theatres inside and outside NATO boundaries.
NCI Agency normally offers contracts of employment of a definite duration, not exceeding three years. Contracts may be for less than three years as required to support short-term projects, meet uncertainty with respect to the business outlook, staff performance and other factors.
Definite duration contracts may be extended for further periods. When extending contracts, the following is taken into consideration:
- Renewal is in the interest of the Agency.
- Staff member's desire to remain with the Agency.
- The financial situation provides sufficient funding for the post held.
- The skills, competencies and behaviours, potential and work experience of the staff, versus the requirements of the Agency's work and/or availability of funding.
- Staff member has served the Agency with performance to the required standard as defined by the Agency.
- Staff member's deployability to operational theatre.
Serving civilian members of NATO will be offered a contract in accordance with the NATO Civilian Personnel Regulations.
The first six months of definite duration contracts are a probationary period. During this period the staff member's work is assessed to ensure that he/she has the ability to carry out the duties of the post. At or before the end of the probationary period, the staff member will be notified in writing that the appointment is confirmed or terminated or, in exceptional cases, that the probationary period is extended.
What do we offer?
Excellent tax-free salary, including (where eligible) expatriation household and children's allowances and additional privileges for expatriate staff.
Education allowance for children (where appropriate) and an excellent private health insurance scheme.
Generous annual leave and home leave (if eligible).
Retirement Pension Plan.
To learn more about NCI Agency and our work, please visit our website.
Please note that due to the Agency’s transition into a new structure in the near future, this post may be subject to transfer to one of our other locations, as well as to a change of reporting lines. The final decision will be made at the time of a firm offer.
The Agency’s recruitment team advises you that due to the large volume of applications it receives the screening process may take up to 2 months after closing date. We appreciate your patience.