Requirement: Support to Capability Package 120 in NATO Cyber Security Center
Location: Braine-l'Alleud, Belgium
Full Time On-Site: Flexibility such as home working is subject to prior approval from line manager
Not to Exceed: 2026 Base: NTE 102,960 EUR (44 weeks at 2,340 EUR/week NTE)
Options: 2027 and 2028
Period of Performance: 2026 Base: 15 January 2026
Required Security Clearance: NATO SECRET
Please do NOT
apply for any NATO contract positions unless you meet ALL the following criteria:
- Current National or NATO SECRET clearance
- Nationality of one of the NATO member countries
- Current work visa for the specific location if applying for an in-country position
Any applications that do NOT meet all the above - and do not CLEARLY show these on the CV - will be deleted.
Background:
The NCI Agency has been established with a view to meeting the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.
Introduction:
- The NATO Cyber Security Centre (NCSC) is a team of over 200 members working to monitor and protect NATO networks. In the NCSC's role to deliver robust security services to the NATO Enterprise and NATO Allied Operations and Missions (AOM), the centre executes a portfolio of programmes and projects around 219 MEUR euros per year, in order to uplift and enhance critical cyber security services.
- The TRANSFORM Branch supports the missions of the NCSC by ensuring the delivery of coherent, holistic, effective and efficient Cyber Security services across the NATO Enterprise.
- The CP120 project refers to the comprehensive management of technology assets to enhance NATO's cyber security posture to maintaining the ability to defend and protect NATO's networks. Through the implementation of the Capability Package 120 (CP120), NATO ensures the effectiveness of the cyber security services delivered by NCSC in an ever-changing cyber threat landscape.
- In this project, the Agency upgraded the central management of two systems that work together to help the NCSC monitor NATO networks for threats and flag important issues.
- The main objective of the statement of work is to underline the Cyber Security needs of the NCSC and to look for support to Project.
- This document outlines the services to be provided by the Supplier to NCI Agency Cyber Security Transform Branch for the implementation and management of the Project.
- Moreover, it specifies the required skillset and experience.
- The Contractor will have a support role, helping Project Managers and teams with both administrative and operational aspects of project management.
Problem statement
The Cyber Security TRANSFORM Branch, in charge of managing a large scale of projects in its daily operations, is facing a heavy workload and a lack of personnel.
This situation is impacting all the Cyber Security services and numerous other projects.
Service details and deliverables
The Service Provider will deliver the following core activities as per the schedule below, under the direction of
CP120 Project Managers:
- Project planning and execution support: Weekly
- General Project Support Package: Weekly
- Software and tools Package: Weekly
- Administrative Support Package: Weekly
- Project management documentation: Weekly
- 06 Project Tracking and Reporting Bundle: Weekly
- Meeting Management Suite: Weekly
- Compliance and Audit Support Materials: Weekly
The Supplier will:
- Organise and track meetings (weekly, monthly, quarterly, ad hoc) as agreed at the begging of the sprint and requested by the PMs
- Create tasks, resource plans, and allocate resources in Service Now
The Supplier will:
- Develop and keep up to date the NATO Enterprise Tier 2/3 data sources points of contact list
- Develop and keep up to date the REACH/NR laptops Database provided to contractors
- Develop and keep up to date the Database tracking the accounts delivered to contractors (type, validity, etc.)
- Develop and keep up to date the Database with contractor documentation for the NATO sites access
- Develop and keep up to date the Access list to the project portal
- Develop and keep up to date the list of actions assigned to both the NCIA Project Management Team (PMT) as well as to the Contractor PMT members
- Provide logistical support for workshops and meetings
- Use project management software (ServiceNow) and Agency official tools
- Perform project-related transactions in systems like ServiceNow and EBA
The Service Provider will:
- Support the work of the Project Managers in all administrative tasks.
- Coordinate international teams and meetings
- Organized digital filing system for all project documents
- Travel itineraries and expense reports for project team members
- Procurement logs for project-related supplies and services
- Coordinate and submit Purchase Requisitions
The Service Provider will:
- Provide requested routine and planned documentation
- Provide ad-hoc project management documentation
- Maintain Service Line project-related portals such as work loading and work capacity metrics; reporting and planning; contact information; prioritization; project status.
The Service Provider will:
Support the team by routinely
- Weekly project status reports
- Custom reports generated from project management tools
- Regular stakeholder update reports
- Support the production and submission of exception reports
- Closely liaise with Cyber Service Line team and Admin Office to support preparation of defined reports
- Create and maintain all project related documentation (risk and issue management, dependencies, change management, scheduling, supplier management).
- Support with the budget tracking spreadsheets with variance analysis report
- Resource utilization reports
- Organized meeting agendas for various project-related meetings
- Detailed meeting minutes with action items clearly highlighted
- Follow-up reports on action items and decisions
- Compliance checklists ensuring adherence to cybersecurity standards and regulations
- Policy and procedure implementation packages
- Audit-ready documentation packages
The following SLAs will apply:
- Average speed for response times for client queries: 30 minutes-1hour
- Adherence to project timelines
- 99.9% Task completion rates
- Number of reports provided per week: as agreed at the beginning of the sprint NTE 10/week
- Stakeholder Meeting Attendance: 100% of required meetings attended
- Service provider is expected to provide service every day during normal business hours 08:30-17:30.
The Client will:
- Provide necessary access to systems and information required for all services
- Tools and equipment (laptop) will be provided for remote service provisioning
- Designate primary points of contact for escalations and decision-making
- Early Definition: Establish criteria at the beginning of the sprint; Refine criteria as needed throughout the development process
- Prioritization: Identify must-have criteria vs. nice-to-have features; Align prioritization with project / service goals and constraints
The services will be deemed accepted when:
- All specified SLAs are met
- All deliverables have been provided as outlined in Section 4
- The client may reject deliverables if they do not meet the specified acceptance criteria or if they contain critical errors.
- A rejected deliverable must be corrected and resubmitted within 1 (one) business day.
- A weekly 'touch point' between NCIA POC and the supplier's POC to ensure work is on track
- NCIA IT equipment will be provided (one REACH laptop will be provided). This equipment can be used by one person only and associated to that individual.
- Results of the work to be stored on NCI Agency NATO RESTRICTED SharePoint portal and checked on a weekly basis to the assigned Point of Contact (Annex A - Weekly progress report).
- All the documentation provided under this statement of work will be based on NCI Agency templates and/or agreed with the NCIA service manager.
- All support, maintenance, documentation will be stored under configuration management and/or in the provided NCI Agency tools.
- All developed solutions will be property of the NCI Agency.
Security and Non-Disclousure Agreements:
- Any proposed resource providing services under this SOW must be in possession of a security clearance NATO SECRET or above.
Services under current SOW are to be delivered by ONE resource that must meet the following experience, qualities and qualifications:
Experience:
- Relevant experience with Service Now, MS Office suite including MS Project
- Knowledge and experience with the practical support on implementation of ICT projects.
- Prior experience of working in an international environment comprising both military and civilian elements.
- Proactive attitude in seeking and maintaining trust from stakeholders and team.
- Proven ability to communicate effectively orally and in writing with good briefing skills.
- Analytical skills. Time management.
- Works productively in a pressurized environment.
- Focused on objectives and deliverable oriented
- Proven track on developing and maintaining strong and effective relationships with internal and external stakeholders