Deadline Date:
Monday 15 September 2025
Requirement:
Support to Provide CIS Security Assurance
Location:
Braine-l'Alleud, BELGIUM
Full Time On-Site:
Yes
Time On-Site:
100%
Not to Exceed:
2025 BASE: 10 weeks, NTE € 3,105 / week, total NTE € 31,050
2026 - 2027 and 2028 Options
Period of Performance:
BASE 2025: 13 October 2025
Required Security Clearance:
NATO SECRET
Please do NOT
apply for any NATO contract positions unless you meet ALL the following criteria:
- Current National or NATO SECRET clearance
- Nationality of one of the NATO member countries
- Current work visa for the specific location if applying for an in-country position
Any applications that do NOT meet all the above - and do not CLEARLY show these on the CV - will be deleted.
Introduction:
- The NCIA is looking for CIS Security Assurance - On Site service, delivered at NCIA headquarters in Braine L'Alleud, Belgium, for achieving the security accreditation and maintaining the CIS security posture of a medium to large complexity NATO CIS.
- The NCIA provides advanced technological solutions and support to NATO and its member nations. Its mission is to ensure effective and secure communication and information systems for the alliance, enabling operations and decision-making. The agency plays a critical role in maintaining NATO's technological edge and operational readiness through innovation, collaboration, and the implementation of cutting-edge technologies.
- The NATO CIS undergo a security accreditation process, and must obtain Security Accreditation and Approval to Operate (ATO). The NATO CIS security accreditation requires assessing potential cybersecurity risks following a risk management methodology. This includes the identification and assessment of risks for specific NATO CIS in close coordination with NATO accreditation stakeholders (including technical and security authorities), followed by the development and implementation of mitigation and remediation plans, specifically assessing the residual risks after the application of the risk mitigation measures. The security accreditation status is tracked throughout the entire lifecycle of NATO CIS.
The objective of this Statement of Work (SOW) is to provide CIS Security Assurance service on Site, for a medium to large NATO CIS, consisting in development of CIS Security accreditation documentation, conducting risk assessments, recommending mitigation measures, and coordinating the remediation of the findings identified by security assessments.
Scope of Work:
This SOW covers one medium to large NATO CIS, the security accreditation document set and the associated CIS Security assurance activities as described below and detailed in Annex C.
CIS Security Accreditation:
- Produce the CIS Description (CISD) documentation, addressing all NATO CIS components; coordinate with Service Delivery Managers (SDMs), network and security architects and other relevant Subject Matter Experts (SMEs) to ensure the complete and accurate description of the CIS.
- Conduct Security Risk Assessment (SRA) for the NATO CIS in scope; this includes the identification and assessment of risks in close coordination with NATO accreditation stakeholders (including technical and security authorities).
- In close coordination with the security accreditation support and the technical stakeholders, produce the Security Requirements Statements (SRSs) (System Specific and for the System Interconnections), which include evaluating the implementation of the security requirements as per the NATO security policies and directives, advise on mitigation and remediation recommendations for those security requirements partially implemented (or not implemented), and document these in the relevant accreditation documents (Security Requirements Statements (SRSs), SecOPs).
- Produce the Security Operating Procedures (SecOPs) in line with the NATO security policies and directives.
- Develop Security Tests and Verification Plans (STVP).
- Conduct Security tests in accordance with defined test plans and provide associate reporting.
- Support the development of mitigation and remediation plans, following the identification and assessment of cybersecurity risks for NISC managed CIS, specifically assessing the residual risks after the application of cybersecurity risk mitigation measures.
- Assist with complex remediation activities for the NATO CIS in scope of this SoW; conduct remediation activities in collaboration with the NCIA Service Delivery Managers.
- Ensure adequate level of systems/data protection is implemented for NISC managed CIS in accordance with NATO Security policies and directives.
- Perform all operation, support and maintenance activities described in Annex C.
- Log and track Service and Change requests using the enterprise ticketing system (ITSM).
- Ensure all tickets are updated with accurate and detailed information and resolved within the agreed service levels.
- Escalate complex issues to appropriate teams when necessary.
- Follow up on escalated issues to ensure timely resolution and user satisfaction.
- Contribute to the creation and maintenance of a knowledge base, documenting common issues and solutions.
- Share knowledge and best practices with team members to improve overall service quality.
- Monitor support metrics and KPIs to ensure high-quality service delivery.
- Participate in regular reviews to identify areas for improvement and implement corrective actions.
- Develop and implement automation scripts or advise on automated tools to streamline routine support tasks such as system and software checks and notifications, and the development/continuous update of the accreditation deliverables.
- Utilize automation to create workflows for repetitive tasks, improve service efficiency and proactively implement solutions.
- Communicate effectively with internal user community to understand their issues and provide clear instructions.
- Collaborate with IT teams to resolve security issues and improve service delivery.
The Contractor shall start the execution of the contract by implementing the transition-in Handover-Takeover (HOTO) plan.
The Transition-in Handover-Takeover (HOTO) plan shall include at the minimum:
- Detailed HOTO schedule with GANTT chart
- Resources and PFE required from the Purchaser for successful execution of HOTO plan
- Risk register
For the Transition-In HOTO, Shadowing will be the monitoring of Purchaser's activities by the Contractor for each product listed in Annex C. Reverse shadowing will the monitoring of the Contractor activities by the Purchaser for item listed in Annex C.
Transition-Out:
Whatever the cause or the triggering event of the contract coming to an end, the Contractor shall end the execution of the contract by implementing the transition-out Handover-Takeover (HOTO) plan.
The transition-out Handover-Takeover plan to be executed for contract closure or contract termination shall include at the minimum:
- Detailed HOTO schedule with GANTT chart
- Transition to The Purchaser of any tools, procedures, training and documentation used by The Contractor to execute this SOW.
- Resources and PFE required from the Purchaser for successful execution of HOTO plan
- Risk register
For the Transition-Out HOTO, Shadowing will be the monitoring of the Contractor activities by The Purchaser for each item listed in Annex C. Reverse shadowing will be the monitoring of the Purchaser activities by The Contractor for the second instance for each product listed in Annex C.
Coordination and Reporting:
- The contractor shall report to the assigned service delivery manager.
- The contractor shall participate in daily status update meetings, activity planning and other meetings as instructed, physically in the office or in person via electronic means using Conference Call capabilities, according to service delivery manager's instructions.
- For each sprint to be considered as complete and payable, the contractor must report the outcome of his/her work during the sprint, first verbally during the retrospective meeting and then in writing, within three (3) working days after the sprint's end date. A report in the format of a short email shall be sent to NCI Agency POC briefly mentioning the work held and the achievements during the sprint. The format of this report shall be added into Delivery Acceptance Sheet (DAS) - (Annex B) mentioning briefly the work held and the development achievements during the sprint.
- This is a deliverables-based contract.
- The contractor shall provide services 100% On-site NCIA Headquarters in Braine L' Alleud, Belgium. Exceptional off-site activities to support service delivery can also be arranged with the line manager's coordination and approval.
- There may be requirements to travel to other sites within NATO for completing these tasks.
- Travel costs are out of scope and will be borne by the NCI Agency separately in accordance to the provisions of the AAS+ Framework Contract.
- The work depicted in this SOW is expected to be carried by a single contractor.
- The service shall be delivered during core working hours (0830 - 1200 and 1300 - 1730).
- The contractor will be required to obtain working permission for on-site work in Belgium.
Security:
Performance of the services described in this SOW require a valid NATO SECRET security clearance prior to the start of the engagement.
Qualification:
The consultancy support for this work requires a systems engineer with the following qualifications:
Technical Proficiency:
- The support for this work requires technical proficiencies as the development and execution of the following accreditation deliverables: NATO CIS Security accreditation process; CIS Security Risk Assessments (SRA); CIS Security Tests and Verifications (STV); CIS Security Assessments (SA) remediation
- A minimum of 2 years of experience with the security accreditation process are required, including development of security accreditation documents as listed above.
- Strong troubleshooting skills to diagnose and resolve hardware, software, and network security issues.
- Ability to guide users through problem-solving steps effectively.
- Proficiency in automation to create workflows and automate repetitive processes.
- Ability to identify and implement automation opportunities to enhance efficiency.
- Excellent verbal and written communication skills.
- Full proficiency in English.
- Ability to communicate technical information to non-technical users in a clear and concise manner.
- A minimum of 2 years of work experience in an international environment are required.
- Strong customer service focus with a commitment to user satisfaction.
- Patience and empathy when dealing with user issues and concerns.
- Ability to manage multiple support tickets and prioritize tasks effectively.
- Attention to detail in documenting support activities and maintaining accurate records.
- Ability to work effectively as part of a team and share knowledge and resources.
- Willingness to collaborate with colleagues to solve complex issues.
- The candidate has strong customer relationship skills, including negotiating complex and sensitive situations under pressure.
- The candidate must have the nationality of one of the NATO nations.