Would you like to join the leading international intergovernmental organization?

Cyber Digital Transformation Division (CDT) drives NATO’s Digital Transformation, a key objective is to strengthen the ability of Allies and the NATO Enterprise to deter, defend against and counter the full spectrum of cyber and cyber-enabled threats at the speed of relevance, comprehensively across the political, military, and technical levels. In particular, strengthen mechanisms and tools to enhance readiness and resilience against cyber threats across the Alliance, focusing in particular on Mission Vital Infrastructure (MVI).

The Cyber Security Standard Engineering Support Services require a professional who can provide expert support in the analysis, coordination, development, and maintenance of NATO Cyber Security and CIS standards. The contractor will contribute to the design and evolution of NATO standardization artefacts within the cyber security domain, working closely with engineers, national subject matter experts, standards custodians, and relevant NATO stakeholders.

Responsibilities:

• Requirements Analysis and Stakeholder Engagement

• Development and Maintenance of Cyber Security Standards

• Development of Cyber Security Conformance Criteria and Audit Objectives

• Development of Cyber Security Reference Architectures

• Interoperability and Standards Harmonization

• Reporting, Briefings, and Technical Communication

• Support to Unforeseen and Ad Hoc Requirements.

Essential Qualifications & Experience:

• A university degree in a relevant engineering or technical field such as computer science, systems science, or an equivalent technical qualification.

• Comprehensive knowledge of the principles of computer and communications security, networking, and the vulnerabilities of modern operating systems and applications.

• At least five (5) years of demonstrated experience working with national or international CIS and cyber security standards, including their application and auditing at both governance and operational levels. Demonstrated experience working with NIST and ISO standards is essential.

• Demonstrated experience in securing cloud-based environments.

• Demonstrated experience in defining and implementing cyber security architectures, including Zero Trust principles.

• Good knowledge of securing AI-enabled systems and datadriven capabilities.

• Knowledge of high-level programming languages. Experience with languages such as Python is desirable.

• Strong communication and presentation skills, including the ability to convey complex cyber security concepts to both technical and non-technical audiences.

• Strong project management skills.

• The ability to analyse complex cyber security specifications and translate them into clear, actionable requirements or standards artefacts.

• Strong security-focused and analytical mindset, with attention to detail and problem-solving capability.

• Knowledge of NATO Security Policy and its supporting Directives is desirable.

• Knowledge of the NATO Digital Policy Committee (DPC) and its substructure is desirable.

• Knowledge of NATO standardization artefacts, including STANAGs, Allied Communications Publications (AComP), and Standards Related Documents (SRD), is desirable.

• Knowledge of NATO CIS Security Accreditation processes, or equivalent national processes, is desirable.

• Knowledge of additional cyber security standards and frameworks, such as PCI-DSS, FedRAMP, or C5, is desirable.

• Recognised professional certifications in cyber security and/or project management are desirable.

If you've read the description and feel this role is a great match, we'd love to hear from you! Click "Apply for this job" to be directed to a brief questionnaire. It should only take a few moments to complete, and we'll be in touch promptly if your experience aligns with our needs.