Requirement: NSATU Cyber Boundary Protection Level 3 Support
Location: Wiesbaden, Germany - 100% onsite
Not to Exceed: Year 1 Monthly Fee: 13,320 EUR
Period of Performance: Year 1 (Base Period): Commencing as soon as possible, but no later than 13th July 2026 until 31st December 2026.
Year 2 (Option Year 1): A period of twelve (12) months immediately following the completion of Year 1.
Year 3 (Option Year 2): A period of twelve (12) months immediately following the completion of Year 2.
Required Security Clearance: NATO COSMIC TOP SECRET
Please do NOT apply for any NATO contract positions unless you meet ALL the following criteria:
- Current National or NATO SECRET clearance
- Nationality of one of the NATO member countries
- Current work visa for the specific location if applying for an in-country position
Introduction:
- The NATO Integrated Mission Services Centre (NIMSC) is responsible for the coordination, planning, and
delivery of engineering and operational support capabilities across NATO Enterprise Architecture and Mobile
CIS Infrastructure, including Deployable CIS Services (DCIS), Dispersible Systems, Highly Mobile Systems,
SATCOM, and Wireless Communications; supporting NATO Missions. To ensure the sustained availability,
performance, and resilience of these mission-critical capabilities, NIMSC requires structured, continuous
Engineering Operations and Maintenance (O&M) support, aligned with NATO governance, processes and
operational priorities. - Through this Statement of Work (SoW), the NIMSC seeks industry support to deliver technical, operational,
engineering and service-governance activities for the NATO Security Assistance and Training for Ukraine
(NSATU), and its NATO Enterprise Architecture and Deployable CIS (DCIS). The objective is to ensure
uninterrupted service delivery, effective incident and change management, accurate and auditable reporting,
and continuous service improvement across all NSATU functional locations. The Contractor, through the
selected personnel, will provide Cyber Security and Boundary Protection Level 3 technical support,
infrastructure maintenance, system documentation management, engineering service reporting, and
participation in on-call and operational coordination activities, ensuring that NSATU NATO Enterprise
Architecture and Deployable CIS (DCIS) capabilities remain fully operational, secure, and aligned with NATO
standards.
The intended business outcome of this Statement of Work is to ensure the reliable, secure, and continuous
operation of NATO CIS services and more specifically for the NATO Security Assistance and Training for
Ukraine (NSATU) mission, through proactive support, maintenance, and iterative service improvement.
Specifically, the objectives of this Statement of Work are to:
- Ensure continuous availability and security of NGFW services by maintaining stable, resilient, and properly
configured firewall infrastructure supporting NSATU operations; - Maintain effective protection of network boundaries through the correct implementation, review, and
optimisation of firewall rulesets, policies, and security controls; - By reducing operational disruptions through timely incident intervention, efficient fault diagnosis, and
adherence to defined resolution KPIs. - Enable proactive firewall management through continuous monitoring, regular updates of signatures and
software, and preventive maintenance activities; - Ensure controlled and compliant configuration management by implementing and validating firewall
changes in accordance with NATO processes, including proper assessment, documentation, and
traceability; - Support operational continuity and mission readiness by ensuring firewall services effectively support
cross-domain information exchange and critical NSATU services; - Strengthen governance and compliance by executing Incident, Change, and Release Management
processes in accordance with NATO standards and cyber security policies.
NSATU NATO CIS architecture, capable of supporting mission-critical operations across all supported security
domains.
Scope of Work:
The scope covers Cyber Boundary Protection Operations & Maintenance of NSATU NATO CIS Services and
architecture including continuous support, monitoring, maintenance, and controlled service updates. The
Contractor shall provide services in a continuous and structured manner, ensuring alignment with operational
priorities, service levels, and NATO governance processes. The services shall be delivered through the
assignment of one (1) qualified personnel as set out in Section 8.
The assigned personnel shall perform the activities defined herein and contribute to the achievement of the
agreed service levels and performance targets.
- The Contractor shall ensure that the assigned personnel:
- Possess the required qualifications and experience;
- Perform the tasks in accordance with NATO processes and procedures;
- Maintain continuity and quality of service delivery.
The Contractor shall provide services contributing to the availability, performance, and continuous operation of
the NSATU and associated IT and Data Management Services.
This includes the following activities:
- 3rd Level Technical Support:
Supporting the delivery of advanced (3rd level) technical support for
NSATU NATO CIS Services and architecture and IT/Data Management Services, ensuring service
availability is maintained in accordance with defined targets. - Fault Diagnosis and Troubleshooting:
Supporting fault diagnosis activities using the IT and Data
Management Services Management System, including both local and remote diagnostic capabilities. - Firewall and Infrastructure Maintenance:
Supporting the supervision and execution of routine
maintenance activities for NGFW infrastructure, management systems, and associated components. - Firewall Configuration and Policy Management: Supporting the implementation, modification, and
validation of firewall rulesets and security policies, ensuring that all configuration changes are properly
assessed, documented, approved, and implemented in accordance with NATO processes and cyber
security requirements. - System Documentation Management:
Supporting the maintenance and updating of system
documentation to reflect changes, configurations, and operational procedures. - Backup and Restore Operations:
Supporting the execution and validation of backup and restore
procedures for IT and Data Management Services devices. - Remote Support Capabilities:
Supporting remote fault diagnosis and intervention activities as required
to ensure service continuity. - Stakeholder Coordination: Supporting collaboration with internal and external stakeholders to ensure
effective coordination of support, maintenance, and service activities. - Process Execution (ITSM): Supporting the execution of:
- Incident Management
- Change Management
- Release Management
traceability, and auditability.
Qualifications:
The support required under this SoW demands a combination of advanced technical expertise, operational
experience, and strong communication and coordination skills. The Contractor's personnel shall meet the
following minimum qualifications:
Specific Technical Qualifications and Experience:
Assigned personnel shall have a minimum of three (3) years of relevant professional experience in firewall
administration and network security, and shall demonstrate qualifications in the following areas:
- PaloAlto Networks Certified Network Security Engineer (PCNSE) or equivalent qualification.
- CompTIA Security+ (pre 2020- Code SY0-601. Post 2020 Code SY0-701).
- In-depth knowledge of PaloAlto firewall configuration, management, and troubleshooting.
- Understanding of networking protocols and security principles.
- In-depth knowledge of network infrastructure and architecture.
- Experience with security policy design and implementation.
- In-depth knowledge of VPN technologies and configurations.
- In-depth knowledge of scripting and automation skills.
It is Desirable that Personnel have the following qualifications and have at least three (3) years of experience in
the following areas:
- PaloAlto Networks Certified Network Security Administrator (PCNSA).
- Certified Information Systems Security Professional (CISSP).
- Cisco Certified Network Associate (CCNA) - (Code 200-301).
Personnel shall possess:
- Shall be able to listen, speak, read and write in English to or above the NATO SLP 3333 (= good/minimum
professional) in accordance with STANAG 6001. - Proven English language ability to communicate effectively, both orally and in writing, including the ability
to deliver clear briefings and articulate complex technical matters; - Strong interpersonal skills, with the ability to work effectively in multinational and multidisciplinary
environments; - Ability to work autonomously with minimal supervision, while contributing effectively as part of a team;
- Strong analytical and problem-solving capabilities, with a results-oriented approach;
- Demonstrated ability to interact with users, stakeholders, and technical teams in a professional and
collaborative manner; - High level of motivation, adaptability, and professional integrity;
- In depth practical understanding of NATO Command structures, roles, and organisational context
- In depth practical Knowledge of NATO Enterprise Architecture and DCIS services, covering OSI Layers
1-7
