#NC26CSGCDT0010 - Cybersecurity Standards Engineering Support Services - Closed
Deadline: May 11, 2026
Requester: NATO
Location: Brussels, Belgium
Job type: Contractor
Start date: June, 2026
Security clearance: NATO SECRET
SCOPE OF WORK / DUTIES / ROLES
Requirements Analysis and Stakeholder Coordination:
- The contractor shall engage with relevant stakeholders, including NATO committees, Capability Panels, national SMEs, and standards custodians, to elicit, analyse, and validate requirements related to cyber security standards and CIS protection. This includes translating complex cyber security specifications, policies, and operational needs into clear, actionable, and testable requirements.
Development and Maintenance of Cyber Security Standards:
- The contractor shall contribute to the development, review, and maintenance of NATO cyber security standards, ensuring alignment with NATO policies and internationally recognized frameworks such as NIST and ISO. This includes supporting the lifecycle of standardization artefacts within NATO governance processes;
Development of Cyber Security Conformance Criteria and Audit Objectives:
- The contractor shall define, document, and maintain cyber security conformance criteria and audit objectives, with a focus on enabling automation of compliance verification wherever feasible. This includes ensuring that criteria are measurable, testable, and aligned with NATO security policies and standards.
Development of Cyber Security Reference Architectures:
- The contractor shall design and maintain cyber security reference architectures, including the application of modern security principles such as Zero Trust. These architectures shall support secure system design across NATO CIS environments, including cloud and AI-enabled systems.
Support to Secure Cloud and AI Capabilities:
- The contractor shall support the development and standardization of security measures for cloud-based environments and AI-enabled systems, ensuring that emerging technologies are aligned with NATO cyber security standards and best practices.
Interoperability and Standards Harmonization:
- The contractor shall ensure that cyber security standards are harmonized across NATO CIS domains and aligned with international standards and frameworks. This includes supporting interoperability between systems and reducing inconsistencies across standards and implementations.
Reporting, Briefings, and Technical Communication:
- The contractor shall prepare and deliver briefings, presentations, and reports to NATO committees, Capability Panels, and working groups, clearly communicating technical concepts, progress, and recommendations related to cyber security standards.
Support to Unforeseen and Ad Hoc Requirements:
- The contractor shall provide support to unforeseen or ad hoc requirements within the scope of cyber security standards engineering, data standardization, and interoperability, as requested and prioritised by CDT. Such support shall be subject to mutual agreement on scope, effort, and priority.
REQUIRED SKILLS, KNOWLEDGE AND EXPERIENCE
-
The candidate must possess a university degree in a relevant engineering or technical field such as computer science, systems science, or an equivalent technical qualification;
-
The candidate must have comprehensive knowledge of the principles of computer and communications security, networking, and the vulnerabilities of modern operating systems and applications;
-
The candidate must have at least five (5) years of demonstrated experience working with national or international CIS and cyber security standards, including their application and auditing at both governance and operational levels. Demonstrated experience working with NIST and ISO standards is essential;
-
The candidate must have demonstrated experience in securing cloud-based environments;
-
The candidate must have demonstrated experience in defining and implementing cyber security architectures, including Zero Trust principles;
-
The candidate must have good knowledge of securing AI-enabled systems and data- driven capabilities;
-
The candidate must have knowledge of high-level programming languages. Experience with languages such as Python is desirable;
-
The candidate must demonstrate strong communication and presentation skills, including the ability to convey complex cyber security concepts to both technical and non-technical audiences;
-
The candidate must demonstrate strong project management skills;
-
The candidate must demonstrate the ability to analyse complex cyber security specifications and translate them into clear, actionable requirements or standards artefacts;
-
The candidate must demonstrate a strong security-focused and analytical mindset, with attention to detail and problem-solving capability;
-
Knowledge of NATO Security Policy and its supporting Directives is desirable;
-
Knowledge of the NATO Digital Policy Committee (DPC) and its substructure is desirable;
-
Knowledge of NATO standardization artefacts, including STANAGs, Allied Communications Publications (AComP), and Standards Related Documents (SRD), is desirable;
-
Knowledge of NATO CIS Security Accreditation processes, or equivalent national processes, is desirable;
-
Knowledge of additional cyber security standards and frameworks, such as PCI-DSS, FedRAMP, or C5, is desirable;
-
Recognised professional certifications in cyber security and/or project management are desirable.
This position is now closed.
We regularly add new positions. We suggest exploring other available opportunities and staying updated by following our LinkedIn page.
If you don’t find any suitable opportunities, you can send us your CV, as an open application. However, we will not submit you to any vacancies without your written consent.